last executing test programs:

2.881782316s ago: executing program 4 (id=543):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = msgget$private(0x0, 0x344)
msgrcv(r3, &(0x7f0000000240)={0x0, ""/238}, 0xf6, 0x3, 0x3000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000440)={'sit0\x00', &(0x7f00000004c0)={'syztnl0\x00', <r4=>0x0, 0x700, 0x87, 0x6, 0x7fffffff, {{0x2e, 0x4, 0x2, 0x6, 0xb8, 0x67, 0x0, 0x9, 0x29, 0x0, @broadcast, @remote, {[@rr={0x7, 0x1f, 0x4, [@multicast2, @empty, @loopback, @loopback, @multicast2, @multicast1, @multicast2]}, @timestamp={0x44, 0x14, 0xcc, 0x0, 0x3, [0x3, 0x70e, 0x5, 0x7]}, @timestamp_prespec={0x44, 0x1c, 0xc8, 0x3, 0x7, [{@rand_addr=0x64010101, 0x8f3}, {@broadcast, 0x5}, {@private=0xa010102, 0x6d64fef1}]}, @timestamp={0x44, 0x1c, 0x55, 0x0, 0x5, [0x1, 0x7, 0x2, 0x5, 0x3, 0x1]}, @noop, @timestamp={0x44, 0x20, 0x77, 0x0, 0x7, [0x8, 0x40, 0x9, 0xc, 0xfffffffd, 0x5, 0xafd]}, @cipso={0x86, 0x10, 0x3, [{0x7, 0x7, "c7e836e4ab"}, {0x0, 0x3, 'W'}]}, @generic={0xd0, 0x2}, @ra={0x94, 0x4}]}}}}})
sendmsg$nl_route_sched(r0, &(0x7f0000000ac0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000a80)={&(0x7f00000005c0)=@newtfilter={0x4b4, 0x2c, 0x20, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x6, 0x6}, {0xd, 0xa}, {0x6, 0xb}}, [@filter_kind_options=@f_flow={{0x9}, {0x3c8, 0x2, [@TCA_FLOW_EMATCHES={0x3c4, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x4}}, @TCA_EMATCH_TREE_LIST={0x13c, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x5, 0x7, 0xfff}, {{0x2, 0x1}, {0x2, 0x0, 0x0, 0x1}}}}, @TCF_EM_IPT={0x100, 0x1, 0x0, 0x0, {{0xffff, 0x9, 0x4}, [@TCA_EM_IPT_MATCH_DATA={0xc4, 0x5, "b282840fe6ad784f9b0f2f635793e4887d8ff49246655eff557b1c4508f6ba5418b098143241af0053b4eefd8b21620c75e05111ebde17c551ef8ebd118e2d725903ac8e6f9c3b08a5c331c67b25b2564407d15cd412d59c3a5d88b0d5e5249b16ba03fbf6cf180810b3888cc3ec7b797fd269336d524827ab917fdee04c690a68233fde43c622d0c7eca7c0ef1d861f3c4bf825236c6fe61a411b17eb32c3f5037a59ef2c9850534d44d9312087d24a631561bcf9afdcceb0d096f6c0c3381a"}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x3}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x3}, @TCA_EM_IPT_MATCH_DATA={0x20, 0x5, "9bbd1f1a9ea758bf1e386d92aa25ea316a78b858ad8edb88cdbf9908"}]}}, @TCF_EM_NBYTE={0x18, 0x2, 0x0, 0x0, {{0x5, 0x2, 0x7}, {0xfffb, 0x7, 0x1, "fe2707c98a3341"}}}, @TCF_EM_META={0xc, 0x2, 0x0, 0x0, {{0x95, 0x4, 0xa}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x400}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x401}, {0x3, 0x3}}}]}, @TCA_EMATCH_TREE_LIST={0x258, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xbe8, 0x1, 0xfff}, {0x7, 0x1, 0x2, 0x0, 0xb, 0x2, 0x2}}}, @TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x4, 0x7, 0xa82}, {{0x0, 0x0, 0x0, 0x1}, {0x3}}}}, @TCF_EM_NBYTE={0x14, 0x2, 0x0, 0x0, {{0xab, 0x2, 0x6}, {0x0, 0x3, 0x1, "d17346"}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0x2}, {0x92c7, 0x82, 0x9, 0x3}}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x343, 0x7, 0xa}, {{0x3, 0x0, 0x0, 0x1}, {0x4}}}}, @TCF_EM_IPT={0x6c, 0x3, 0x0, 0x0, {{0x9, 0x9, 0x7}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x1}, @TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x9c}, @TCA_EM_IPT_MATCH_DATA={0x19, 0x5, "3394dc9c2fb5a92b0da269c810dcbfcafe17a55b67"}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x3}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xa}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_IPT={0x44, 0x2, 0x0, 0x0, {{0x1, 0x9, 0x5}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x8}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x3}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x7}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}]}}, @TCF_EM_CONTAINER={0xfc, 0x2, 0x0, 0x0, {{0xd, 0x0, 0xa}, "21302aee1abce18a3f991aa353dcd6dd18417209d5de16ca06450dba39f1bf1147edeede7491018d3bde09f5ffc02a7ef2f2ea5c8acf2acecaf59f1503d32a08869c2043e59522c9ed84b78129def6acc7ec53ca2ccfafe5b85d74355c4617615f4b7f0a84605fe2deb6bfe412aace658a6550091f49edde5f7ea736f717794a9dc9d29e88b5f875068e037ad81ef96adbb91e5ee3d176b5560d6e24de9b4aca5bef304e871a2afed1a5e07708c27b9d37e2106a18eaf06e8a597867012afd55d97a85a3794d811a52fcf335f9e49d4c585837badc9b64b9081004955fdf3fb9050a9d4f30f249bd724e076a7a4a"}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0xc, 0x3, 0x4}, {0x9, 0x4, 0xff, 0x7}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0xf, 0x3, 0x3}, {0x80000001, 0x2, 0x3, 0x9}}}]}]}]}}, @TCA_RATE={0x6, 0x5, {0x91, 0x7}}, @filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_BASECLASS={0x8, 0x3, {0x5, 0xe}}, @TCA_FLOW_KEYS={0x8, 0x1, 0x41d2}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0x4}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_DIVISOR={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x30}}, @filter_kind_options=@f_flow={{0x9}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x9}, @filter_kind_options=@f_bpf={{0x8}, {0x54, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x9, 0x3, 0x5, 0xc27}]}}, @TCA_BPF_FLAGS_GEN={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0xd, 0xa}}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_FD={0x8, 0x6, r2}, @TCA_BPF_FLAGS={0x8}]}}]}, 0x4b4}, 0x1, 0x0, 0x0, 0x8001}, 0x48810)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000180)=ANY=[@ANYRES8=r6, @ANYBLOB="3e971d"], 0x9a)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r9, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000c80)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, r9, 0x8, 0x70bd29, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000840}, 0x20000000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x100, 0x6, 0x8, 0x20002, 0x676, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r10, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000380)="7a3c0b0dfcc62e16fa325aee644aa299afb1fa2ca029", 0x16, 0x7fffffffffffffff, &(0x7f00000003c0)={0x0, 0x3938700})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000c10000000000000007ddff00850000006d0000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x3}, 0x94)

1.98744904s ago: executing program 4 (id=563):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x17, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="000000000000000000000000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
io_destroy(0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r6}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

1.906895751s ago: executing program 4 (id=564):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, &(0x7f0000000300)={0x9, "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"})
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000005980)=[{{&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f0000000640)=""/67, 0x43}], 0x2, &(0x7f0000000780)=""/152, 0x98}}, {{&(0x7f0000000880)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000900)=""/157, 0x9d}, {&(0x7f00000009c0)=""/215, 0xd7}, {&(0x7f0000000ac0)=""/240, 0xf0}, {&(0x7f0000000bc0)=""/196, 0xc4}, {&(0x7f0000000cc0)=""/199, 0xc7}, {&(0x7f0000000dc0)=""/163, 0xa3}, {&(0x7f0000000e80)=""/191, 0xbf}], 0x7}, 0x3}, {{&(0x7f0000000fc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000580)=[{&(0x7f0000001040)=""/200, 0xc8}, {&(0x7f0000001140)=""/181, 0xb5}], 0x2, &(0x7f0000001200)=""/200, 0xc8}, 0x1}, {{&(0x7f0000001300)=@x25={0x9, @remote}, 0x80, &(0x7f0000003680)=[{&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/244, 0xf4}, {&(0x7f0000002480)=""/79, 0x4f}, {&(0x7f0000002500)=""/61, 0x3d}, {&(0x7f0000002540)=""/222, 0xde}, {&(0x7f0000002640)=""/33, 0x21}, {&(0x7f0000002680)=""/4096, 0x1000}], 0x7, &(0x7f0000003700)=""/4096, 0x1000}, 0x1}, {{&(0x7f0000004700)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000048c0)=[{&(0x7f0000004780)=""/222, 0xde}], 0x1, &(0x7f0000004900)=""/4096, 0x1000}, 0x84cc}, {{0x0, 0x0, &(0x7f0000005940)=[{&(0x7f0000005900)=""/25, 0x19}], 0x1}, 0x400}], 0x6, 0x40010041, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r3 = dup(r2)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r3, r4, 0x0, 0x8000fffffffe)

1.892451391s ago: executing program 0 (id=565):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, &(0x7f0000000300)={0x9, "b7462fea4315b7064ddd5f48719f0400181be04f476f0879ac2ed07043c1e31029c044952dc812b483ed1eda905e3c6c3013f06fc2966b05536f8b86a56bc3e924f16809ecb28ca2082bdc59320711dc86454c1951ad5c40065e999ebc4b4da4106dc92d779eeda0b3af4dd9c7ec948ac8cc5b63b0632456ac21fab0b996901336dba5ccd417223948d3a16e00686dfa0f21d99725974bb7086e10bf18b4113c37bf43db74611f2d8ca6d12822afb7da7b4f839d48d5050ca355ac7f44741fb13cdd9c21b7bd6bfe9382ce5fdf680fe18318dd0d449fd74a4a6b469c3bec2ef206ca09685762ed4dc6c3d318ce01b1520d19c281e443e67ff8a2088d48159e5ee0eb1b48d19287b17a8ac591a274c62a8e06e6bc7d2de2b4582948725612eda1c1bbf926bda5f6d37278c853c39462a803266144b55e92acbca7256c966c4cb90641aed21b184bd80ea6420038586c1c3c1e5b2e0f6c599150b5ef9b20b191f0ec48b1db947e19228e916131162d4ad24ef90c8e76f15d9d4b9f39e6daa944a49b9c4d0b12961658b63476f27dc7226ac0341e72ae47ab294d02c33b1def1377991cf2ef52ec19efcea61390b6ebff7ee28f6d1598fb95a7fccf68799715a9d17e7461e0cf3462e1c589f647e45cf193bb15ff9e782e9e1c929633d5bd666553774b8df537a09f9587ebc92bf57c87791f75ed59e080a77f0037e68c06f86e82"})
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000005980)=[{{&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f0000000640)=""/67, 0x43}], 0x2, &(0x7f0000000780)=""/152, 0x98}}, {{&(0x7f0000000880)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000900)=""/157, 0x9d}, {&(0x7f00000009c0)=""/215, 0xd7}, {&(0x7f0000000ac0)=""/240, 0xf0}, {&(0x7f0000000bc0)=""/196, 0xc4}, {&(0x7f0000000cc0)=""/199, 0xc7}, {&(0x7f0000000dc0)=""/163, 0xa3}, {&(0x7f0000000e80)=""/191, 0xbf}], 0x7}, 0x3}, {{&(0x7f0000000fc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000580)=[{&(0x7f0000001040)=""/200, 0xc8}, {&(0x7f0000001140)=""/181, 0xb5}], 0x2, &(0x7f0000001200)=""/200, 0xc8}, 0x1}, {{&(0x7f0000001300)=@x25={0x9, @remote}, 0x80, &(0x7f0000003680)=[{&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/244, 0xf4}, {&(0x7f0000002480)=""/79, 0x4f}, {&(0x7f0000002500)=""/61, 0x3d}, {&(0x7f0000002540)=""/222, 0xde}, {&(0x7f0000002640)=""/33, 0x21}, {&(0x7f0000002680)=""/4096, 0x1000}], 0x7, &(0x7f0000003700)=""/4096, 0x1000}, 0x1}, {{&(0x7f0000004700)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, 0x0, 0x0, &(0x7f0000004900)=""/4096, 0x1000}, 0x84cc}, {{0x0, 0x0, &(0x7f0000005940)=[{&(0x7f0000005900)=""/25, 0x19}], 0x1}, 0x400}], 0x6, 0x40010041, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r3 = dup(r2)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r3, r4, 0x0, 0x8000fffffffe)

1.783314453s ago: executing program 1 (id=567):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000007565000000001811000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00'}, 0x10)
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})

1.782831673s ago: executing program 1 (id=568):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
connect$vsock_stream(r5, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket(0x2, 0x80805, 0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r4, 0x80286722, &(0x7f0000000240)={&(0x7f0000000000)=""/89, 0x59, 0x6})
sendmmsg$inet_sctp(r6, 0x0, 0x0, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, 0x0)

1.385413839s ago: executing program 3 (id=571):
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000002680)=ANY=[@ANYBLOB="0600000004000000be7000005c00000000000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0000000002"], 0x48)

1.384177879s ago: executing program 4 (id=572):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
listxattr(0x0, 0x0, 0x0)
pipe(&(0x7f00000008c0)={<r2=>0xffffffffffffffff})
readv(r2, &(0x7f0000000500)=[{&(0x7f0000000000)=""/198, 0xc6}, {&(0x7f0000000100)=""/53, 0x35}, {&(0x7f0000000140)=""/242, 0xf2}, {&(0x7f0000000240)=""/39, 0x27}, {&(0x7f0000000280)=""/239, 0xef}, {&(0x7f0000000380)=""/80, 0x50}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f000001ba40)=""/4096, 0x1000}, {&(0x7f0000000400)=""/205, 0xcd}], 0x9)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70400000800000085000000950000050000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='mm_lru_insertion\x00', r4}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000004200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r7, &(0x7f0000000180), 0x40010)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0xdd0}}]}, 0x3, 0x44a, &(0x7f0000000400)="$eJzs281vG0UbAPBn10n6vv1KKOWjpUCgQkR8JE1aoAcuIJA4FIEEh3IMTlpVdRvUBIlWFQ0IlQsSqgRnxBGJv4AbFwSckLjCHVWqoJcWTkG73m1t106b1rFD/ftJm8x4x555PDve2R07gIE1nv1JIrZGxG8RMVrPNhcYr/+7evls9e/LZ6tJrKy89WeSl7ty+Wy1LFo+b0uRmUgj0k+SopJmi6fPHJ+t1eZPFfmppRPvTS2ePvPssROzR+ePzp+cOXjwwP7pF56fea4rcWZxXdn94cKeXa+9c+H16uEL7/70bdbercX+xji6ZTwL/K+VXOu+J7pdWZ9ta0gnQ31sCGtSiYisu4bz8T8albjeeaPx6sd9bRywrrJz06bOu5dXgLtYEv1uAdAf5Yk+u/4ttx5NPTaESy/VL4CyuK8WW33PUKRFmeGW69tuGo+Iw8v/fJVtsU73IQAAGn1W/fJQPNNu/pfG/Q3lthdrKGMRcU9E7IiIeyNiZ0TcF5GXfSAiHlxj/a1LQzfOf9KLtxXYLcrmfy8Wa1vN879y9hdjlSK3LY9/ODlyrDa/r3hPJmJ4U5afXqWO71/59fNO+xrnf9mW1V/OBYt2XBxquUE3N7s0m09Ku+DSRxG7h9rFn1xbCUgiYldE7F7bS28vE8ee+mZPp0I3j38VXVhnWvk64sl6/y9HS/ylZPX1yan/RW1+31R5VNzo51/Ov9mp/juKvwuy/t/cfPy3FhlLGtdrF9dex/nfP+14TXO7x/9I8nbeLyPFYx/MLi2dmo4YSQ7l+abHZ64/t8yX5bP4J/a2H/87iudk9TwUEdlB/HBEPBIRjxZtfywiHo+IvavE/+PLnfdthP6fa/v5d+34b+n/tScqx3/4rlP9t9b/B/LURPFI/vl3E7fawDt57wAAAOC/Is2/A5+kk9fSaTo5Wf8O/87YnNYWFpeePrLw/sm5+nflx2I4Le90jTbcD51OlotXrOdninvF5f79xX3jLyr/z/OT1YXaXJ9jh0G3pcP4z/xR6XfrgHXXbh1tZqQPDQF6rnX8p83Zc2/0sjFAT/m9Ngyum4z/tFftAHrP+R8GV7vxf64lby0A7k7O/zC4jH8YXMY/DC7jHwbSnfyuX2KQE5FuiGZIrFOi359MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3fFvAAAA//+uEO7O")
chdir(&(0x7f0000000400)='./file0\x00')
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r8, 0x6b, 0x4, &(0x7f0000000000), &(0x7f0000000040)=0x4)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffebb)
read(r2, &(0x7f0000002a40)=""/102364, 0x18fdc)
sendto(r2, &(0x7f0000000680)="4577705ec1e553101c7c0bf8ac54d251cf1ee0bb8812a32e157181425c35972ef935e934aecc08bcec2fc4a05a47b54f4ced9f61327e6522aee54cf32ab39e723462ef821a7f39846646edb0fe1da9a7335a753935e2b5b8f06d7097ccb4378bd7a5d70fca43e5f1faca444a1c9bb3b910c14c8697ac30b0ad52d5680b42b35ed448a5f826f3de819cf4c5fe464e4647da95830bc54767c4d6e7b193a4e4e3e0099261a2e830d3b7dba79ff933258d813d5cb206254079674124578fde28ce3ff8464be2e373f94d", 0xc8, 0x1, 0x0, 0x0)

1.206667832s ago: executing program 3 (id=574):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x17, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="000000000000000000000000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
io_destroy(0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r6}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

1.145069552s ago: executing program 3 (id=575):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
dup(0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r4}, 0x18)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
connect$vsock_stream(r5, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r6, 0x0, 0x0, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, 0x0)

1.142160712s ago: executing program 0 (id=576):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x8e02})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0xdc, &(0x7f0000000200), 0x1, 0x46f, &(0x7f00000008c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
inotify_init()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r1, &(0x7f00000003c0)=""/4096, 0x1000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x28}, 0x1c)
connect$pppl2tp(r4, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x32)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000002c0)="ee3f7716", 0x4}], 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x18)
r8 = inotify_add_watch(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x943)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRES64=r8], 0x69)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001a40)={&(0x7f0000000080)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000440)=[{&(0x7f0000001c00)=""/158, 0x9e}, {&(0x7f0000000200)=""/68, 0x44}, {&(0x7f0000000380)=""/130, 0x82}, {&(0x7f0000000500)=""/254, 0xfe}, {&(0x7f00000007c0)=""/241, 0xf1}], 0x5, &(0x7f0000001900), 0x0, 0x40010}, 0x4000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000002}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0xfffffffffffffee2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

823.255028ms ago: executing program 1 (id=577):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000"], &(0x7f0000000780)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0) (fail_nth: 1)

602.491551ms ago: executing program 1 (id=578):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000007565000000001811000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00'}, 0x10)
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})

587.144151ms ago: executing program 1 (id=579):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x17, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="000000000000000000000000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

556.006722ms ago: executing program 1 (id=580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x14, &(0x7f0000000280)=ANY=[@ANYRES8=0x0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
r2 = socket$l2tp(0x2, 0x2, 0x73)
getpeername$l2tp(r2, &(0x7f0000000380)={0x2, 0x0, @multicast2}, &(0x7f0000000540)=0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f00000000c0)={0x41, 0x12}, 0x10)
bind$tipc(r3, 0x0, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x841, 0x2}, 0x10)
sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x2, {{0x43, 0x3}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x51)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[], 0x1c}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='\x00\xfa\x98\xba\xea\xf9\xc1\x13\xe9\xd2#]\x17\x8dV\x83\xf4k\x19\x9b\xb3\x8d&')
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x7, 0x8, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r1}, 0x94)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r7, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r7, 0x84, 0x13, &(0x7f0000000000)=0x93d2, 0x4)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="182000000000000000000000000000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r9, 0x111, 0x1, 0x200, 0x4)
sendmsg$nl_xfrm(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="5000000027000100000000000000000a01"], 0x50}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0xfffffffff7ffffe9}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="1b0000001c008102e00f80ecdb4cb9f207c804a00d00000088081a", 0x1b}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)=<r11=>0x0)
rt_sigqueueinfo(r11, 0x24, &(0x7f0000000440)={0x35, 0x4b90bbbb, 0x5})

469.817363ms ago: executing program 4 (id=582):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, &(0x7f0000000300)={0x9, "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"})
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000005980)=[{{&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f0000000640)=""/67, 0x43}], 0x2, &(0x7f0000000780)=""/152, 0x98}}, {{&(0x7f0000000880)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000900)=""/157, 0x9d}, {&(0x7f00000009c0)=""/215, 0xd7}, {&(0x7f0000000ac0)=""/240, 0xf0}, {&(0x7f0000000bc0)=""/196, 0xc4}, {&(0x7f0000000cc0)=""/199, 0xc7}, {&(0x7f0000000dc0)=""/163, 0xa3}, {&(0x7f0000000e80)=""/191, 0xbf}], 0x7}, 0x3}, {{&(0x7f0000000fc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000580)=[{&(0x7f0000001040)=""/200, 0xc8}, {&(0x7f0000001140)=""/181, 0xb5}], 0x2, &(0x7f0000001200)=""/200, 0xc8}, 0x1}, {{&(0x7f0000001300)=@x25={0x9, @remote}, 0x80, &(0x7f0000003680)=[{&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/244, 0xf4}, {&(0x7f0000002480)=""/79, 0x4f}, {&(0x7f0000002500)=""/61, 0x3d}, {&(0x7f0000002540)=""/222, 0xde}, {&(0x7f0000002640)=""/33, 0x21}, {&(0x7f0000002680)=""/4096, 0x1000}], 0x7, &(0x7f0000003700)=""/4096, 0x1000}, 0x1}, {{&(0x7f0000004700)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000048c0)=[{&(0x7f0000004780)=""/222, 0xde}], 0x1, &(0x7f0000004900)=""/4096, 0x1000}, 0x84cc}, {{0x0, 0x0, &(0x7f0000005940)=[{&(0x7f0000005900)=""/25, 0x19}], 0x1}, 0x400}], 0x6, 0x40010041, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r3 = dup(r2)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r3, r4, 0x0, 0x8000fffffffe)

343.832165ms ago: executing program 2 (id=584):
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000002680)=ANY=[@ANYBLOB="0600000004000000be7000005c00000000000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0000000002"], 0x48)

307.528555ms ago: executing program 2 (id=585):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60e}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280))
r3 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0xc, 0x288}, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r3, 0x3516, 0x0, 0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1)

248.887116ms ago: executing program 2 (id=586):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x17, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="000000000000000000000000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
io_destroy(0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r7}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

245.844136ms ago: executing program 3 (id=587):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
io_getevents(0x0, 0x4000000000009, 0x0, 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f00000004c0)={'u:r:untrusted_app:s0:c512,c768', 0x20, 'system_u:object_r:syslogd_initrc_exec_t:s0', 0x20, 0x101, 0x20, '/usr/sbin/cupsd\x00'}, 0x6f)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
socket(0x10, 0x3, 0x0)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

228.349616ms ago: executing program 3 (id=588):
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x20000000000001bd, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
pipe2(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r3 = epoll_create(0x8)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r4, 0x8943, &(0x7f0000000000))
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x8, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0x3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000080)={@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, r7}, 0x14)
r8 = socket$netlink(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r10, &(0x7f0000001a00)=[{{&(0x7f00000003c0)=@alg, 0x80, &(0x7f0000000280)=[{&(0x7f0000000800)=""/180, 0xb4}], 0x1, &(0x7f0000000600)=""/105, 0x69}, 0x4}, {{&(0x7f0000000740)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000000340)=[{&(0x7f00000008c0)=""/254, 0xfe}, {&(0x7f0000000a00)=""/191, 0xbf}, {&(0x7f0000000b00)=""/186, 0xba}, {&(0x7f0000000bc0)=""/192, 0xc0}], 0x4, &(0x7f0000000c80)=""/15, 0xf}, 0x7}, {{0x0, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000cc0)=""/201, 0xc9}, {&(0x7f0000000dc0)=""/243, 0xf3}], 0x2}, 0x1}, {{&(0x7f0000000f00)=@nfc_llcp, 0x80, &(0x7f0000000440)=[{&(0x7f0000000f80)=""/199, 0xc7}, {&(0x7f0000001080)=""/55, 0x37}, {&(0x7f00000010c0)=""/102, 0x66}], 0x3}, 0x8000}, {{&(0x7f0000001180)=@nfc_llcp, 0x80, &(0x7f0000001200)=[{&(0x7f0000001300)=""/200, 0xc8}], 0x1, &(0x7f0000001400)=""/194, 0xc2}, 0x3}, {{&(0x7f0000001240)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000001700)=[{&(0x7f0000001500)=""/159, 0x9f}, {&(0x7f00000015c0)=""/99, 0x63}, {&(0x7f0000001640)=""/141, 0x8d}], 0x3, &(0x7f0000001740)=""/115, 0x73}, 0x4}, {{&(0x7f00000017c0)=@hci, 0x80, &(0x7f0000001940)=[{&(0x7f0000002480)=""/4096, 0x1000}, {&(0x7f0000001840)=""/52, 0x34}, {&(0x7f0000001880)=""/158, 0x9e}, {0x0}], 0x4, &(0x7f0000001980)=""/90, 0x5a}, 0x7}], 0x7, 0x0, &(0x7f0000001bc0)={0x0, 0x3938700})
sendmsg$DEVLINK_CMD_RATE_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x24, r9, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}]}, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x20000841)
r11 = socket$inet6(0xa, 0x3, 0xffffffff)
setsockopt$inet6_IPV6_XFRM_POLICY(r11, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
r12 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r12, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r12, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[], 0x7}}, 0x4000000)
sendmsg$key(r12, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x4040)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0xf6c447fee59251f4})

200.723627ms ago: executing program 4 (id=589):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @initr0, @generic={0x65}, @initr0, @exit, @alu={0x4, 0x0, 0x6, 0x3}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = inotify_init1(0x800)
inotify_add_watch(r1, &(0x7f0000000040)='.\x00', 0x24000420)
r2 = syz_io_uring_setup(0x4169, &(0x7f0000000200)={0x0, 0x0, 0x8000}, &(0x7f0000000480), &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000280)={0x0, 0x0, 0x800, 0x1000, 0xffffffff, 0x0, r2}, 0x0, &(0x7f00000005c0))
creat(&(0x7f0000000280)='./file0\x00', 0x175)
syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
io_uring_enter(r2, 0x48e9, 0x8daf, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x7f}, 0x18)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0x20)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, 0x12, r6, 0x0)
ioctl$FS_IOC_SETFSLABEL(r5, 0x41009432, &(0x7f0000000300)="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")

196.741747ms ago: executing program 2 (id=590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
io_getevents(0x0, 0x4000000000009, 0x0, 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f00000004c0)={'u:r:untrusted_app:s0:c512,c768', 0x20, 'system_u:object_r:syslogd_initrc_exec_t:s0', 0x20, 0x101, 0x20, '/usr/sbin/cupsd\x00'}, 0x6f)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

179.525567ms ago: executing program 0 (id=591):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000000d1400032bbd7000fddbfa250800038004000000"], 0x18}, 0x1, 0x0, 0x0, 0x24000804}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0)

151.297308ms ago: executing program 2 (id=592):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)

122.162518ms ago: executing program 2 (id=593):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000018c0)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41}, 0x94)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r3 = syz_open_pts(r2, 0x0)
dup3(r3, r2, 0x0)
ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x3)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0x38000, 0x8, 0x0, 0x2, 0x5, "aa32b73986bbee6bd231334cbfa0b758261a93"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZE(r4, 0x5609, &(0x7f0000000180)={0x65f5, 0x1, 0xff})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, <r5=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f00000001c0)}, 0x20)
r6 = syz_open_dev$vcsn(&(0x7f0000001700), 0x5, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="85100000feffffff180000000000000000000000ffff0000182a0000", @ANYRES32=r1, @ANYBLOB="0000000000000000183500000200000000000000000000239e001812", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000"], &(0x7f00000014c0)='GPL\x00', 0x839, 0xfd, &(0x7f0000001600)=""/253, 0x40f00, 0x4c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001500)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000001540)={0x2, 0x3, 0xfffffff6, 0xa3}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000001740)=[r6, r0, r0, r1, r1, r1, r0], &(0x7f0000001780)=[{0x3, 0x3, 0x4, 0x6}, {0x4, 0x4, 0xd, 0x9}, {0x0, 0x2, 0x4, 0x4}, {0x2, 0x1, 0x6, 0x2}, {0x1, 0x4, 0x4, 0x1}, {0x2, 0x2, 0x2, 0x8}], 0x10, 0x5}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')

112.777309ms ago: executing program 3 (id=594):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000e3375900f1102f00000000009500000000000000876455"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)
syz_read_part_table(0x5dc, &(0x7f0000000000)="$eJzs3L9rJFUcAPDvm5md3YAasbZYSCMKRrATF7VQkk780VnYKFhEJBZilSwKgj/+gBQ2ooWxCLG2UJAQDFhcdRyEO7g/4q648I6Zndm95FLdhoODz6eY997M9/u++3hvy5ngyZZXI3KKOGlHv5RtUxUbZff8kxTluYRB16aI+HD/7Xc2x++m4fxec3c3ZinDRVLdtVWMu95fVfy0/+l3RR+x017/v93HRVS5yUux9/CPXmlj0pJLZ3nV37ndrKjjWvwZEVupbA7BMGIav0U8G6M2bj3iuTLn3G7zbruDZdTzc/HIDiZH0zei+iD6U1H3R3Qldr5P+ZUubhDFhcwy4vnX17cvm7TNn6buHLZyzoOn1rpBsXiwdVb33VePb+3EdDSfPXJXsj+nX5y+93IzefN3a+YYLLt4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACu3AtfvvhP0Q/ebK9pft34PYpF6G7EvbZTRYxHV1T/YHK0+s2320V8Pfns+uepn78znPc+njWHP5yLKJeuv3VW1H/8+u/KhXLN8v9bu3E3567EaXf/q9ceSJ4US9cHAAAAAAAAAAAAAAAAAACAxmFsjt8vRvHWzyk+isXr/jlGESn1w1FEzjnfya3+5f9675mud3IzUpMUuU85rmcfFFh9OiIPf3yp/aDALDHnXLUl0mNcKJe6HwAA//+8u1lf")
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1900000004000000040000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000070000e4000000000000001000000000002b05000000000040000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$HIDIOCGFLAG(0xffffffffffffffff, 0x8004480e, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00'})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x69ae03)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x800448d2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
syz_io_uring_setup(0x2c44, &(0x7f0000000340)={0x0, 0x308, 0x2, 0x4, 0x11000}, 0x0, 0x0)

15.37497ms ago: executing program 0 (id=595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xbf22}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r0, 0x0}, 0x20)

14.79931ms ago: executing program 0 (id=596):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xbf22}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r0, 0x0}, 0x20)

0s ago: executing program 0 (id=597):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, 0x0, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x3ed7, 0x0)
rt_sigsuspend(0x0, 0x0)

kernel console output (not intermixed with test programs):

 
[   45.072211][ T3779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   45.072227][ T3779] Call Trace:
[   45.072234][ T3779]  <TASK>
[   45.072243][ T3779]  __dump_stack+0x1d/0x30
[   45.072277][ T3779]  dump_stack_lvl+0xe8/0x140
[   45.072300][ T3779]  dump_stack+0x15/0x1b
[   45.072319][ T3779]  should_fail_ex+0x265/0x280
[   45.072374][ T3779]  should_fail+0xb/0x20
[   45.072408][ T3779]  should_fail_usercopy+0x1a/0x20
[   45.072484][ T3779]  _copy_from_iter+0xcf/0xe40
[   45.072525][ T3779]  ? __build_skb_around+0x1a0/0x200
[   45.072564][ T3779]  ? __alloc_skb+0x223/0x320
[   45.072598][ T3779]  netlink_sendmsg+0x471/0x6b0
[   45.072687][ T3779]  ? __pfx_netlink_sendmsg+0x10/0x10
[   45.072712][ T3779]  __sock_sendmsg+0x142/0x180
[   45.072744][ T3779]  ____sys_sendmsg+0x31e/0x4e0
[   45.072869][ T3779]  ___sys_sendmsg+0x17b/0x1d0
[   45.072916][ T3779]  __x64_sys_sendmsg+0xd4/0x160
[   45.073050][ T3779]  x64_sys_call+0x2999/0x2fb0
[   45.073076][ T3779]  do_syscall_64+0xd2/0x200
[   45.073098][ T3779]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.073131][ T3779]  ? clear_bhb_loop+0x40/0x90
[   45.073158][ T3779]  ? clear_bhb_loop+0x40/0x90
[   45.073196][ T3779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.073223][ T3779] RIP: 0033:0x7fb6b601e929
[   45.073241][ T3779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.073317][ T3779] RSP: 002b:00007fb6b4687038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   45.073340][ T3779] RAX: ffffffffffffffda RBX: 00007fb6b6245fa0 RCX: 00007fb6b601e929
[   45.073356][ T3779] RDX: 00000000200009d4 RSI: 00002000000012c0 RDI: 0000000000000003
[   45.073371][ T3779] RBP: 00007fb6b4687090 R08: 0000000000000000 R09: 0000000000000000
[   45.073461][ T3779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.073476][ T3779] R13: 0000000000000000 R14: 00007fb6b6245fa0 R15: 00007ffd35a487c8
[   45.073499][ T3779]  </TASK>
[   45.315618][ T3781] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   45.700005][   T29] audit: type=1400 audit(1750974261.954:358): avc:  denied  { ioctl } for  pid=3805 comm="syz.3.91" path="socket:[5278]" dev="sockfs" ino=5278 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   45.739151][   T29] audit: type=1400 audit(1750974261.984:359): avc:  denied  { getopt } for  pid=3805 comm="syz.3.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   45.786584][   T29] audit: type=1326 audit(1750974262.034:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3805 comm="syz.3.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1131e929 code=0x7ffc0000
[   45.809928][   T29] audit: type=1326 audit(1750974262.034:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3805 comm="syz.3.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fac1131e929 code=0x7ffc0000
[   45.833110][   T29] audit: type=1326 audit(1750974262.034:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3805 comm="syz.3.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac1131e929 code=0x7ffc0000
[   45.856510][   T29] audit: type=1326 audit(1750974262.034:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3805 comm="syz.3.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7fac1131e929 code=0x7ffc0000
[   45.938631][ T3812] loop3: detected capacity change from 0 to 128
[   45.984472][ T3815] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   45.997902][ T3812] cgroup: noprefix used incorrectly
[   46.048411][ T3820] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   46.138370][ T3825] loop4: detected capacity change from 0 to 8192
[   46.152837][ T3830] netlink: 256 bytes leftover after parsing attributes in process `syz.0.102'.
[   46.285174][ T3845] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   46.341457][ T3853] netlink: 16 bytes leftover after parsing attributes in process `syz.4.111'.
[   46.375888][ T3849] loop0: detected capacity change from 0 to 8192
[   46.390545][ T3856] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1, syncid = 4, id = 0
[   46.532612][ T3862] loop0: detected capacity change from 0 to 512
[   46.547453][ T3862] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   46.608902][ T3862] EXT4-fs: error -4 creating inode table initialization thread
[   46.618928][ T3862] EXT4-fs (loop0): mount failed
[   46.656583][ T3872] loop4: detected capacity change from 0 to 128
[   46.696589][ T3872] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.728288][ T3872] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.779068][ T3877] FAULT_INJECTION: forcing a failure.
[   46.779068][ T3877] name failslab, interval 1, probability 0, space 0, times 0
[   46.792006][ T3877] CPU: 0 UID: 0 PID: 3877 Comm: syz.1.117 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   46.792035][ T3877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   46.792051][ T3877] Call Trace:
[   46.792059][ T3877]  <TASK>
[   46.792067][ T3877]  __dump_stack+0x1d/0x30
[   46.792092][ T3877]  dump_stack_lvl+0xe8/0x140
[   46.792111][ T3877]  dump_stack+0x15/0x1b
[   46.792128][ T3877]  should_fail_ex+0x265/0x280
[   46.792228][ T3877]  should_failslab+0x8c/0xb0
[   46.792261][ T3877]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   46.792300][ T3877]  ? should_fail_ex+0xdb/0x280
[   46.792334][ T3877]  ? sidtab_sid2str_get+0xa0/0x130
[   46.792426][ T3877]  kmemdup_noprof+0x2b/0x70
[   46.792450][ T3877]  sidtab_sid2str_get+0xa0/0x130
[   46.792474][ T3877]  security_sid_to_context_core+0x1eb/0x2e0
[   46.792500][ T3877]  security_sid_to_context_force+0x2a/0x40
[   46.792535][ T3877]  selinux_inode_init_security+0x31f/0x3c0
[   46.792643][ T3877]  security_inode_init_security+0x149/0x330
[   46.792682][ T3877]  ? __pfx_shmem_initxattrs+0x10/0x10
[   46.792715][ T3877]  shmem_tmpfile+0x78/0x110
[   46.792788][ T3877]  vfs_tmpfile+0x223/0x4d0
[   46.792821][ T3877]  do_tmpfile+0xa8/0x190
[   46.792859][ T3877]  path_openat+0x1dd7/0x2170
[   46.792941][ T3877]  ? _parse_integer_limit+0x170/0x190
[   46.793026][ T3877]  ? _parse_integer+0x27/0x40
[   46.793060][ T3877]  ? kstrtoull+0x111/0x140
[   46.793095][ T3877]  ? kstrtouint+0x76/0xc0
[   46.793124][ T3877]  do_filp_open+0x109/0x230
[   46.793210][ T3877]  do_sys_openat2+0xa6/0x110
[   46.793241][ T3877]  __x64_sys_open+0xe6/0x110
[   46.793311][ T3877]  x64_sys_call+0x14d4/0x2fb0
[   46.793332][ T3877]  do_syscall_64+0xd2/0x200
[   46.793348][ T3877]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.793402][ T3877]  ? clear_bhb_loop+0x40/0x90
[   46.793502][ T3877]  ? clear_bhb_loop+0x40/0x90
[   46.793528][ T3877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.793575][ T3877] RIP: 0033:0x7f7fc54fe929
[   46.793596][ T3877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.793613][ T3877] RSP: 002b:00007f7fc3b67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   46.793631][ T3877] RAX: ffffffffffffffda RBX: 00007f7fc5725fa0 RCX: 00007f7fc54fe929
[   46.793644][ T3877] RDX: 0000000000000000 RSI: 000000000053f802 RDI: 0000200000000080
[   46.793660][ T3877] RBP: 00007f7fc3b67090 R08: 0000000000000000 R09: 0000000000000000
[   46.793733][ T3877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.793750][ T3877] R13: 0000000000000001 R14: 00007f7fc5725fa0 R15: 00007ffddeac10e8
[   46.793832][ T3877]  </TASK>
[   47.159028][ T3883] loop2: detected capacity change from 0 to 2048
[   47.196454][ T3883]  loop2: p1 < > p4
[   47.204958][ T3883] loop2: p4 size 8388608 extends beyond EOD, truncated
[   47.234346][ T3888] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   47.267658][ T3315] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   47.278531][ T3895] vhci_hcd: invalid port number 96
[   47.283773][ T3895] vhci_hcd: default hub control req: 2000 vfffc i0060 l0
[   47.316517][ T3897] netlink: 16 bytes leftover after parsing attributes in process `syz.4.125'.
[   47.356083][ T3900] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '
'
[   47.367174][ T3900] loop0: detected capacity change from 0 to 512
[   47.386743][ T3893] syz.3.123 (3893) used greatest stack depth: 10088 bytes left
[   47.390473][ T3900] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.414974][ T3900] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   47.474125][ T3911] loop4: detected capacity change from 0 to 512
[   47.521250][ T3911] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   47.548202][ T3911] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   47.571245][ T3911] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.597290][ T3911] EXT4-fs (loop4): shut down requested (2)
[   47.608119][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.632759][ T3922] syz.3.134 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   47.646558][ T3922] netlink: 277 bytes leftover after parsing attributes in process `syz.3.134'.
[   47.677639][ T3925] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   47.799641][ T3937] loop2: detected capacity change from 0 to 512
[   47.842601][ T3937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.872147][ T3937] ext4 filesystem being mounted at /23/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   47.902122][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   47.941402][ T3937] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.142: corrupted inode contents
[   47.987271][ T3949] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.000102][ T3937] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm syz.2.142: mark_inode_dirty error
[   48.020962][ T3937] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.142: corrupted inode contents
[   48.034057][ T3954] netlink: 8 bytes leftover after parsing attributes in process `syz.3.147'.
[   48.054952][ T3937] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.142: mark_inode_dirty error
[   48.084906][ T3949] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.111564][ T3937] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.142: mark inode dirty (error -117)
[   48.145400][ T3937] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   48.177651][ T3964] FAULT_INJECTION: forcing a failure.
[   48.177651][ T3964] name failslab, interval 1, probability 0, space 0, times 0
[   48.191846][ T3964] CPU: 1 UID: 0 PID: 3964 Comm: syz.4.149 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   48.191873][ T3964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.191885][ T3964] Call Trace:
[   48.191892][ T3964]  <TASK>
[   48.191900][ T3964]  __dump_stack+0x1d/0x30
[   48.191935][ T3964]  dump_stack_lvl+0xe8/0x140
[   48.191959][ T3964]  dump_stack+0x15/0x1b
[   48.192036][ T3964]  should_fail_ex+0x265/0x280
[   48.192077][ T3964]  should_failslab+0x8c/0xb0
[   48.192105][ T3964]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   48.192140][ T3964]  ? hugetlbfs_alloc_inode+0xbc/0x100
[   48.192256][ T3964]  hugetlbfs_alloc_inode+0xbc/0x100
[   48.192290][ T3964]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[   48.192394][ T3964]  alloc_inode+0x40/0x170
[   48.192428][ T3964]  new_inode+0x1d/0xe0
[   48.192459][ T3964]  hugetlbfs_get_inode+0x7b/0x370
[   48.192491][ T3964]  hugetlb_file_setup+0x192/0x3d0
[   48.192541][ T3964]  ksys_mmap_pgoff+0x157/0x310
[   48.192575][ T3964]  x64_sys_call+0x1602/0x2fb0
[   48.192652][ T3964]  do_syscall_64+0xd2/0x200
[   48.192670][ T3964]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.192759][ T3964]  ? clear_bhb_loop+0x40/0x90
[   48.192816][ T3964]  ? clear_bhb_loop+0x40/0x90
[   48.192838][ T3964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.192860][ T3964] RIP: 0033:0x7fa65241e929
[   48.192884][ T3964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.192902][ T3964] RSP: 002b:00007fa650a45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   48.192921][ T3964] RAX: ffffffffffffffda RBX: 00007fa652646160 RCX: 00007fa65241e929
[   48.192934][ T3964] RDX: 0000000000000002 RSI: 0000000000800000 RDI: 0000200000800000
[   48.192946][ T3964] RBP: 00007fa650a45090 R08: ffffffffffffffff R09: 0000000000000000
[   48.192958][ T3964] R10: 0000000000042031 R11: 0000000000000246 R12: 0000000000000001
[   48.193017][ T3964] R13: 0000000000000000 R14: 00007fa652646160 R15: 00007fff48652bb8
[   48.193037][ T3964]  </TASK>
[   48.500507][ T3949] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.580498][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.592320][ T3969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.154'.
[   48.605855][ T3949] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.621773][ T3969] netlink: 12 bytes leftover after parsing attributes in process `syz.0.154'.
[   48.699966][ T3949] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.717599][ T3982] loop1: detected capacity change from 0 to 512
[   48.725770][ T3982] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   48.730460][ T3949] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.749016][ T3949] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.763956][ T3949] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.783055][ T3982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   48.797649][ T3982] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.813444][ T3982] EXT4-fs (loop1): shut down requested (2)
[   48.849214][ T3992] Invalid ELF header magic: != ELF
[   48.873920][ T3994] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   48.911584][ T3995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   48.990144][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   49.026449][ T4001] FAULT_INJECTION: forcing a failure.
[   49.026449][ T4001] name failslab, interval 1, probability 0, space 0, times 0
[   49.039340][ T4001] CPU: 0 UID: 0 PID: 4001 Comm: syz.4.166 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   49.039431][ T4001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.039444][ T4001] Call Trace:
[   49.039451][ T4001]  <TASK>
[   49.039461][ T4001]  __dump_stack+0x1d/0x30
[   49.039487][ T4001]  dump_stack_lvl+0xe8/0x140
[   49.039520][ T4001]  dump_stack+0x15/0x1b
[   49.039613][ T4001]  should_fail_ex+0x265/0x280
[   49.039674][ T4001]  should_failslab+0x8c/0xb0
[   49.039705][ T4001]  kmem_cache_alloc_noprof+0x50/0x310
[   49.039740][ T4001]  ? audit_log_start+0x365/0x6c0
[   49.039780][ T4001]  audit_log_start+0x365/0x6c0
[   49.039814][ T4001]  audit_seccomp+0x48/0x100
[   49.039893][ T4001]  ? __seccomp_filter+0x68c/0x10d0
[   49.039921][ T4001]  __seccomp_filter+0x69d/0x10d0
[   49.040033][ T4001]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   49.040121][ T4001]  ? vfs_write+0x75e/0x8e0
[   49.040203][ T4001]  __secure_computing+0x82/0x150
[   49.040269][ T4001]  syscall_trace_enter+0xcf/0x1e0
[   49.040302][ T4001]  do_syscall_64+0xac/0x200
[   49.040322][ T4001]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.040390][ T4001]  ? clear_bhb_loop+0x40/0x90
[   49.040411][ T4001]  ? clear_bhb_loop+0x40/0x90
[   49.040433][ T4001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.040456][ T4001] RIP: 0033:0x7fa65241e929
[   49.040476][ T4001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.040498][ T4001] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c9
[   49.040588][ T4001] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   49.040603][ T4001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   49.040616][ T4001] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   49.040629][ T4001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.040641][ T4001] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   49.040663][ T4001]  </TASK>
[   49.050688][ T4004] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.295790][ T4004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.167'.
[   49.401114][ T4016] infiniband syz2: set active
[   49.406042][ T4016] infiniband syz2: added veth0_to_bond
[   49.412160][ T4022] FAULT_INJECTION: forcing a failure.
[   49.412160][ T4022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.425710][ T4022] CPU: 0 UID: 0 PID: 4022 Comm: syz.4.175 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   49.425746][ T4022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.425811][ T4022] Call Trace:
[   49.425819][ T4022]  <TASK>
[   49.425828][ T4022]  __dump_stack+0x1d/0x30
[   49.425864][ T4022]  dump_stack_lvl+0xe8/0x140
[   49.425889][ T4022]  dump_stack+0x15/0x1b
[   49.425909][ T4022]  should_fail_ex+0x265/0x280
[   49.425947][ T4022]  should_fail+0xb/0x20
[   49.426041][ T4022]  should_fail_usercopy+0x1a/0x20
[   49.426082][ T4022]  _copy_to_user+0x20/0xa0
[   49.426109][ T4022]  simple_read_from_buffer+0xb5/0x130
[   49.426211][ T4022]  proc_fail_nth_read+0x100/0x140
[   49.426256][ T4022]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   49.426359][ T4022]  vfs_read+0x1a0/0x6f0
[   49.426398][ T4022]  ? __rcu_read_unlock+0x4f/0x70
[   49.426425][ T4022]  ? __fget_files+0x184/0x1c0
[   49.426452][ T4022]  ksys_read+0xda/0x1a0
[   49.426650][ T4022]  __x64_sys_read+0x40/0x50
[   49.426691][ T4022]  x64_sys_call+0x2d77/0x2fb0
[   49.426719][ T4022]  do_syscall_64+0xd2/0x200
[   49.426742][ T4022]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.426796][ T4022]  ? clear_bhb_loop+0x40/0x90
[   49.426823][ T4022]  ? clear_bhb_loop+0x40/0x90
[   49.426857][ T4022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.426884][ T4022] RIP: 0033:0x7fa65241d33c
[   49.426963][ T4022] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   49.426985][ T4022] RSP: 002b:00007fa650a87030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.427008][ T4022] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241d33c
[   49.427024][ T4022] RDX: 000000000000000f RSI: 00007fa650a870a0 RDI: 0000000000000006
[   49.427039][ T4022] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   49.427103][ T4022] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[   49.427118][ T4022] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   49.427142][ T4022]  </TASK>
[   49.659485][ T4029] loop3: detected capacity change from 0 to 164
[   49.660838][ T4016] RDS/IB: syz2: added
[   49.674153][ T4031] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   49.675427][ T4016] smc: adding ib device syz2 with port count 1
[   49.698071][ T4016] smc:    ib device syz2 port 1 has pnetid 
[   49.715477][ T4029] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   49.724239][   T29] kauditd_printk_skb: 356 callbacks suppressed
[   49.724253][   T29] audit: type=1326 audit(1750974265.974:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.775617][ T4038] loop2: detected capacity change from 0 to 128
[   49.794463][ T4029] Zero length message leads to an empty skb
[   49.805573][ T4036] loop0: detected capacity change from 0 to 8192
[   49.806229][   T29] audit: type=1400 audit(1750974266.024:719): avc:  denied  { mount } for  pid=4028 comm="syz.3.177" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   49.834212][   T29] audit: type=1326 audit(1750974266.024:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.857673][   T29] audit: type=1326 audit(1750974266.024:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.881044][   T29] audit: type=1326 audit(1750974266.024:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.904597][   T29] audit: type=1326 audit(1750974266.024:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.927905][   T29] audit: type=1326 audit(1750974266.024:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.951468][   T29] audit: type=1326 audit(1750974266.024:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   49.969386][ T4038] audit: audit_backlog=65 > audit_backlog_limit=64
[   49.974768][   T29] audit: type=1326 audit(1750974266.024:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4035 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb6b601e929 code=0x7ffc0000
[   50.006933][ T4040] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   50.026273][ T4040] Symlink component flag not implemented
[   50.032042][ T4040] Symlink component flag not implemented
[   50.070340][ T4040] Symlink component flag not implemented (7)
[   50.070593][ T4038] netlink: 'syz.2.181': attribute type 2 has an invalid length.
[   50.076554][ T4040] Symlink component flag not implemented (116)
[   50.094044][ T4046] bond_slave_1: entered promiscuous mode
[   50.114028][ T4046] netlink: 4 bytes leftover after parsing attributes in process `syz.4.183'.
[   50.193272][ T4046] bond0: (slave bond_slave_1): Releasing backup interface
[   50.203636][ T4046] bond_slave_1 (unregistering): left promiscuous mode
[   50.271790][ T4066] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   50.295746][ T4071] FAULT_INJECTION: forcing a failure.
[   50.295746][ T4071] name failslab, interval 1, probability 0, space 0, times 0
[   50.308481][ T4071] CPU: 0 UID: 0 PID: 4071 Comm: syz.4.192 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   50.308541][ T4071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.308555][ T4071] Call Trace:
[   50.308564][ T4071]  <TASK>
[   50.308573][ T4071]  __dump_stack+0x1d/0x30
[   50.308600][ T4071]  dump_stack_lvl+0xe8/0x140
[   50.308625][ T4071]  dump_stack+0x15/0x1b
[   50.308713][ T4071]  should_fail_ex+0x265/0x280
[   50.308778][ T4071]  should_failslab+0x8c/0xb0
[   50.308803][ T4071]  __kmalloc_noprof+0xa5/0x3e0
[   50.308836][ T4071]  ? io_cache_alloc_new+0x2a/0xb0
[   50.308923][ T4071]  io_cache_alloc_new+0x2a/0xb0
[   50.308949][ T4071]  io_sqe_buffer_register+0x335/0x1310
[   50.308982][ T4071]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[   50.309046][ T4071]  ? should_fail_ex+0xdb/0x280
[   50.309077][ T4071]  io_sqe_buffers_register+0x2ac/0x530
[   50.309106][ T4071]  io_register_rsrc+0x1b2/0x1e0
[   50.309141][ T4071]  __se_sys_io_uring_register+0x9e5/0xeb0
[   50.309198][ T4071]  ? fput+0x8f/0xc0
[   50.309228][ T4071]  ? ksys_write+0x192/0x1a0
[   50.309314][ T4071]  __x64_sys_io_uring_register+0x55/0x70
[   50.309366][ T4071]  x64_sys_call+0xc91/0x2fb0
[   50.309418][ T4071]  do_syscall_64+0xd2/0x200
[   50.309437][ T4071]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.309470][ T4071]  ? clear_bhb_loop+0x40/0x90
[   50.309560][ T4071]  ? clear_bhb_loop+0x40/0x90
[   50.309589][ T4071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.309657][ T4071] RIP: 0033:0x7fa65241e929
[   50.309672][ T4071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.309689][ T4071] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   50.309777][ T4071] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   50.309789][ T4071] RDX: 0000200000001580 RSI: 000000000000000f RDI: 0000000000000003
[   50.309800][ T4071] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   50.309811][ T4071] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   50.309822][ T4071] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   50.309843][ T4071]  </TASK>
[   50.610312][ T4083] FAULT_INJECTION: forcing a failure.
[   50.610312][ T4083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.623467][ T4083] CPU: 1 UID: 0 PID: 4083 Comm: syz.2.195 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   50.623586][ T4083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.623599][ T4083] Call Trace:
[   50.623607][ T4083]  <TASK>
[   50.623617][ T4083]  __dump_stack+0x1d/0x30
[   50.623678][ T4083]  dump_stack_lvl+0xe8/0x140
[   50.623700][ T4083]  dump_stack+0x15/0x1b
[   50.623721][ T4083]  should_fail_ex+0x265/0x280
[   50.623788][ T4083]  should_fail+0xb/0x20
[   50.623824][ T4083]  should_fail_usercopy+0x1a/0x20
[   50.623859][ T4083]  _copy_from_user+0x1c/0xb0
[   50.623923][ T4083]  ___bpf_copy_key+0xa5/0x110
[   50.623951][ T4083]  map_update_elem+0x165/0x520
[   50.624036][ T4083]  __sys_bpf+0x5d7/0x790
[   50.624081][ T4083]  __x64_sys_bpf+0x41/0x50
[   50.624166][ T4083]  x64_sys_call+0x2478/0x2fb0
[   50.624261][ T4083]  do_syscall_64+0xd2/0x200
[   50.624281][ T4083]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.624307][ T4083]  ? clear_bhb_loop+0x40/0x90
[   50.624327][ T4083]  ? clear_bhb_loop+0x40/0x90
[   50.624403][ T4083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.624424][ T4083] RIP: 0033:0x7f1e7e6ce929
[   50.624439][ T4083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.624456][ T4083] RSP: 002b:00007f1e7cd37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   50.624478][ T4083] RAX: ffffffffffffffda RBX: 00007f1e7e8f5fa0 RCX: 00007f1e7e6ce929
[   50.624499][ T4083] RDX: 0000000000000020 RSI: 0000200000000a80 RDI: 0000000000000002
[   50.624511][ T4083] RBP: 00007f1e7cd37090 R08: 0000000000000000 R09: 0000000000000000
[   50.624522][ T4083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.624535][ T4083] R13: 0000000000000000 R14: 00007f1e7e8f5fa0 R15: 00007ffe9c8c6ce8
[   50.624560][ T4083]  </TASK>
[   50.951633][ T4100] netlink: 'syz.1.200': attribute type 2 has an invalid length.
[   50.959375][ T4100] netlink: 16 bytes leftover after parsing attributes in process `syz.1.200'.
[   51.047281][ T4087] loop3: detected capacity change from 0 to 8192
[   51.061031][ T4110] loop1: detected capacity change from 0 to 512
[   51.071972][ T4112] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   51.090797][ T4097] loop4: detected capacity change from 0 to 8192
[   51.105031][ T4110] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.119126][ T4110] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.119220][ T4087]  loop3: p2 p3 p4
[   51.134371][ T4087] loop3: p2 start 452985600 is beyond EOD, truncated
[   51.141274][ T4087] loop3: p3 size 33554432 extends beyond EOD, truncated
[   51.155465][ T4097]  loop4: p2 p3 p4
[   51.160720][ T4087] loop3: p4 start 8388607 is beyond EOD, truncated
[   51.168570][ T4097] loop4: p2 start 452985600 is beyond EOD, truncated
[   51.175343][ T4097] loop4: p3 size 33554432 extends beyond EOD, truncated
[   51.184299][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.189209][ T4097] loop4: p4 start 8388607 is beyond EOD, truncated
[   51.201511][ T4097] FAULT_INJECTION: forcing a failure.
[   51.201511][ T4097] name failslab, interval 1, probability 0, space 0, times 0
[   51.214371][ T4097] CPU: 1 UID: 0 PID: 4097 Comm: syz.4.199 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   51.214513][ T4097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   51.214569][ T4097] Call Trace:
[   51.214578][ T4097]  <TASK>
[   51.214587][ T4097]  __dump_stack+0x1d/0x30
[   51.214614][ T4097]  dump_stack_lvl+0xe8/0x140
[   51.214653][ T4097]  dump_stack+0x15/0x1b
[   51.214674][ T4097]  should_fail_ex+0x265/0x280
[   51.214711][ T4097]  should_failslab+0x8c/0xb0
[   51.214807][ T4097]  kmem_cache_alloc_node_noprof+0x57/0x320
[   51.214886][ T4097]  ? __alloc_skb+0x101/0x320
[   51.214924][ T4097]  __alloc_skb+0x101/0x320
[   51.214960][ T4097]  alloc_skb_with_frags+0x7d/0x470
[   51.215032][ T4097]  sock_alloc_send_pskb+0x43a/0x4f0
[   51.215070][ T4097]  __ip_append_data+0x199c/0x24b0
[   51.215105][ T4097]  ? css_rstat_updated+0xcd/0x5b0
[   51.215217][ T4097]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   51.215248][ T4097]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   51.215276][ T4097]  ip_make_skb+0x137/0x2c0
[   51.215312][ T4097]  udp_sendmsg+0x1013/0x13b0
[   51.215344][ T4097]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   51.215381][ T4097]  ? __pfx_udp_sendmsg+0x10/0x10
[   51.215428][ T4097]  inet_sendmsg+0xac/0xd0
[   51.215471][ T4097]  __sock_sendmsg+0x102/0x180
[   51.215502][ T4097]  ____sys_sendmsg+0x345/0x4e0
[   51.215591][ T4097]  ___sys_sendmsg+0x17b/0x1d0
[   51.215647][ T4097]  __sys_sendmmsg+0x178/0x300
[   51.215739][ T4097]  __x64_sys_sendmmsg+0x57/0x70
[   51.215786][ T4097]  x64_sys_call+0x2f2f/0x2fb0
[   51.215905][ T4097]  do_syscall_64+0xd2/0x200
[   51.215927][ T4097]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.215959][ T4097]  ? clear_bhb_loop+0x40/0x90
[   51.215987][ T4097]  ? clear_bhb_loop+0x40/0x90
[   51.216013][ T4097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.216062][ T4097] RIP: 0033:0x7fa65241e929
[   51.216081][ T4097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.216102][ T4097] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   51.216121][ T4097] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   51.216132][ T4097] RDX: 0000000000000300 RSI: 0000200000004d00 RDI: 0000000000000009
[   51.216144][ T4097] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   51.216156][ T4097] R10: 0000000000000f00 R11: 0000000000000246 R12: 0000000000000001
[   51.216199][ T4097] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   51.216284][ T4097]  </TASK>
[   51.477029][ T4121] FAULT_INJECTION: forcing a failure.
[   51.477029][ T4121] name failslab, interval 1, probability 0, space 0, times 0
[   51.489813][ T4121] CPU: 0 UID: 0 PID: 4121 Comm: syz.0.209 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   51.489848][ T4121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   51.489863][ T4121] Call Trace:
[   51.489870][ T4121]  <TASK>
[   51.489880][ T4121]  __dump_stack+0x1d/0x30
[   51.489906][ T4121]  dump_stack_lvl+0xe8/0x140
[   51.489925][ T4121]  dump_stack+0x15/0x1b
[   51.489941][ T4121]  should_fail_ex+0x265/0x280
[   51.489971][ T4121]  should_failslab+0x8c/0xb0
[   51.489999][ T4121]  kmem_cache_alloc_noprof+0x50/0x310
[   51.490033][ T4121]  ? vm_area_dup+0x33/0x2c0
[   51.490069][ T4121]  vm_area_dup+0x33/0x2c0
[   51.490097][ T4121]  __split_vma+0xe9/0x650
[   51.490123][ T4121]  ? mas_find+0x4ea/0x610
[   51.490140][ T4121]  vms_gather_munmap_vmas+0x2a5/0x7a0
[   51.490172][ T4121]  mmap_region+0x4ce/0x1580
[   51.490196][ T4121]  ? mntput_no_expire+0x6f/0x3c0
[   51.490223][ T4121]  ? mntput+0x4b/0x80
[   51.490267][ T4121]  do_mmap+0x9b3/0xbe0
[   51.490311][ T4121]  vm_mmap_pgoff+0x17a/0x2e0
[   51.490348][ T4121]  ksys_mmap_pgoff+0x268/0x310
[   51.490382][ T4121]  x64_sys_call+0x1602/0x2fb0
[   51.490407][ T4121]  do_syscall_64+0xd2/0x200
[   51.490429][ T4121]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.490459][ T4121]  ? clear_bhb_loop+0x40/0x90
[   51.490483][ T4121]  ? clear_bhb_loop+0x40/0x90
[   51.490505][ T4121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.490541][ T4121] RIP: 0033:0x7fb6b601e929
[   51.490558][ T4121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.490575][ T4121] RSP: 002b:00007fb6b4687038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   51.490598][ T4121] RAX: ffffffffffffffda RBX: 00007fb6b6245fa0 RCX: 00007fb6b601e929
[   51.490612][ T4121] RDX: 000000000100000b RSI: 0000000000003000 RDI: 0000200000002000
[   51.490623][ T4121] RBP: 00007fb6b4687090 R08: 0000000000000007 R09: 0000000000000000
[   51.490634][ T4121] R10: 0000000000012011 R11: 0000000000000246 R12: 0000000000000001
[   51.490646][ T4121] R13: 0000000000000000 R14: 00007fb6b6245fa0 R15: 00007ffd35a487c8
[   51.490664][ T4121]  </TASK>
[   51.923896][ T4155] netlink: 4 bytes leftover after parsing attributes in process `syz.0.217'.
[   51.938041][ T4159] loop3: detected capacity change from 0 to 512
[   51.945891][ T4155] bond0: (slave bond_slave_1): Releasing backup interface
[   51.960594][ T4160] loop1: detected capacity change from 0 to 128
[   51.971279][ T4159] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.974626][ T4160] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   51.999052][ T4159] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.019990][ T4160] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.073982][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.090160][ T4169] FAULT_INJECTION: forcing a failure.
[   52.090160][ T4169] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.103422][ T4169] CPU: 0 UID: 0 PID: 4169 Comm: syz.2.219 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   52.103506][ T4169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.103523][ T4169] Call Trace:
[   52.103530][ T4169]  <TASK>
[   52.103539][ T4169]  __dump_stack+0x1d/0x30
[   52.103626][ T4169]  dump_stack_lvl+0xe8/0x140
[   52.103646][ T4169]  dump_stack+0x15/0x1b
[   52.103661][ T4169]  should_fail_ex+0x265/0x280
[   52.103737][ T4169]  should_fail+0xb/0x20
[   52.103770][ T4169]  should_fail_usercopy+0x1a/0x20
[   52.103810][ T4169]  _copy_from_iter+0xcf/0xe40
[   52.103917][ T4169]  ? __build_skb_around+0x1a0/0x200
[   52.103969][ T4169]  ? __alloc_skb+0x223/0x320
[   52.104004][ T4169]  netlink_sendmsg+0x471/0x6b0
[   52.104083][ T4169]  ? __pfx_netlink_sendmsg+0x10/0x10
[   52.104107][ T4169]  __sock_sendmsg+0x142/0x180
[   52.104137][ T4169]  ____sys_sendmsg+0x31e/0x4e0
[   52.104175][ T4169]  ___sys_sendmsg+0x17b/0x1d0
[   52.104319][ T4169]  __x64_sys_sendmsg+0xd4/0x160
[   52.104359][ T4169]  x64_sys_call+0x2999/0x2fb0
[   52.104465][ T4169]  do_syscall_64+0xd2/0x200
[   52.104483][ T4169]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.104515][ T4169]  ? clear_bhb_loop+0x40/0x90
[   52.104539][ T4169]  ? clear_bhb_loop+0x40/0x90
[   52.104562][ T4169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.104668][ T4169] RIP: 0033:0x7f1e7e6ce929
[   52.104688][ T4169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.104706][ T4169] RSP: 002b:00007f1e7cd37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   52.104729][ T4169] RAX: ffffffffffffffda RBX: 00007f1e7e8f5fa0 RCX: 00007f1e7e6ce929
[   52.104744][ T4169] RDX: 00000000200009d4 RSI: 00002000000012c0 RDI: 0000000000000003
[   52.104771][ T4169] RBP: 00007f1e7cd37090 R08: 0000000000000000 R09: 0000000000000000
[   52.104825][ T4169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.104840][ T4169] R13: 0000000000000000 R14: 00007f1e7e8f5fa0 R15: 00007ffe9c8c6ce8
[   52.104863][ T4169]  </TASK>
[   52.497874][ T4185] sg_write: data in/out 124/1 bytes for SCSI command 0x75-- guessing data in;
[   52.497874][ T4185]    program syz.2.224 not setting count and/or reply_len properly
[   52.519981][ T4184] sg_write: process 91 (+}[@) changed security contexts after opening file descriptor, this is not allowed.
[   52.554054][ T3304] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   52.577700][ T4190] FAULT_INJECTION: forcing a failure.
[   52.577700][ T4190] name failslab, interval 1, probability 0, space 0, times 0
[   52.590524][ T4190] CPU: 0 UID: 0 PID: 4190 Comm: syz.1.226 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   52.590636][ T4190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.590649][ T4190] Call Trace:
[   52.590656][ T4190]  <TASK>
[   52.590666][ T4190]  __dump_stack+0x1d/0x30
[   52.590693][ T4190]  dump_stack_lvl+0xe8/0x140
[   52.590717][ T4190]  dump_stack+0x15/0x1b
[   52.590817][ T4190]  should_fail_ex+0x265/0x280
[   52.590901][ T4190]  should_failslab+0x8c/0xb0
[   52.590927][ T4190]  kmem_cache_alloc_noprof+0x50/0x310
[   52.590956][ T4190]  ? audit_log_start+0x365/0x6c0
[   52.591016][ T4190]  audit_log_start+0x365/0x6c0
[   52.591060][ T4190]  audit_seccomp+0x48/0x100
[   52.591116][ T4190]  ? __seccomp_filter+0x68c/0x10d0
[   52.591144][ T4190]  __seccomp_filter+0x69d/0x10d0
[   52.591173][ T4190]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   52.591253][ T4190]  ? vfs_write+0x75e/0x8e0
[   52.591298][ T4190]  __secure_computing+0x82/0x150
[   52.591325][ T4190]  syscall_trace_enter+0xcf/0x1e0
[   52.591378][ T4190]  do_syscall_64+0xac/0x200
[   52.591399][ T4190]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.591430][ T4190]  ? clear_bhb_loop+0x40/0x90
[   52.591518][ T4190]  ? clear_bhb_loop+0x40/0x90
[   52.591544][ T4190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.591569][ T4190] RIP: 0033:0x7f7fc54fe929
[   52.591586][ T4190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.591609][ T4190] RSP: 002b:00007f7fc3b66d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   52.591632][ T4190] RAX: ffffffffffffffda RBX: 0000000000001053 RCX: 00007f7fc54fe929
[   52.591765][ T4190] RDX: 00007f7fc3b66dec RSI: 0000000000000000 RDI: 00007f7fc55814cc
[   52.591780][ T4190] RBP: 0000200000002100 R08: 00007f7fc3b66b07 R09: 0000000000000000
[   52.591794][ T4190] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   52.591809][ T4190] R13: 00007f7fc3b66dec R14: 00007f7fc3b66df0 R15: 00007ffddeac10e8
[   52.591832][ T4190]  </TASK>
[   52.804260][ T4192] loop0: detected capacity change from 0 to 8192
[   52.826305][ T4192] netlink: 8 bytes leftover after parsing attributes in process `syz.0.227'.
[   52.850266][ T4190] loop1: detected capacity change from 0 to 8192
[   52.858280][ T4192] netlink: 8 bytes leftover after parsing attributes in process `syz.0.227'.
[   52.928958][ T4195] loop3: detected capacity change from 0 to 8192
[   52.984304][ T4202] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   53.097942][ T4214] loop1: detected capacity change from 0 to 512
[   53.106947][ T4214] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   53.127649][ T4214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   53.144326][ T4214] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.167335][ T4228] loop3: detected capacity change from 0 to 128
[   53.174009][ T4228] EXT4-fs: test_dummy_encryption option not supported
[   53.236571][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   53.281246][ T4237] process 'syz.1.239' launched '/dev/fd/4' with NULL argv: empty string added
[   53.316383][ T4244] capability: warning: `syz.4.241' uses 32-bit capabilities (legacy support in use)
[   53.329288][ T4244] FAULT_INJECTION: forcing a failure.
[   53.329288][ T4244] name failslab, interval 1, probability 0, space 0, times 0
[   53.342071][ T4244] CPU: 1 UID: 0 PID: 4244 Comm: syz.4.241 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   53.342150][ T4244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.342166][ T4244] Call Trace:
[   53.342174][ T4244]  <TASK>
[   53.342189][ T4244]  __dump_stack+0x1d/0x30
[   53.342216][ T4244]  dump_stack_lvl+0xe8/0x140
[   53.342241][ T4244]  dump_stack+0x15/0x1b
[   53.342308][ T4244]  should_fail_ex+0x265/0x280
[   53.342348][ T4244]  should_failslab+0x8c/0xb0
[   53.342404][ T4244]  __kmalloc_noprof+0xa5/0x3e0
[   53.342493][ T4244]  ? io_cache_alloc_new+0x2a/0xb0
[   53.342522][ T4244]  io_cache_alloc_new+0x2a/0xb0
[   53.342586][ T4244]  io_sqe_buffer_register+0x335/0x1310
[   53.342617][ T4244]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[   53.342663][ T4244]  ? __kvmalloc_node_noprof+0x398/0x4e0
[   53.342718][ T4244]  ? io_sqe_buffers_register+0xc2/0x530
[   53.342849][ T4244]  io_sqe_buffers_register+0x2ac/0x530
[   53.342885][ T4244]  __se_sys_io_uring_register+0xa9f/0xeb0
[   53.342929][ T4244]  ? fput+0x8f/0xc0
[   53.342958][ T4244]  ? ksys_write+0x192/0x1a0
[   53.343043][ T4244]  __x64_sys_io_uring_register+0x55/0x70
[   53.343088][ T4244]  x64_sys_call+0xc91/0x2fb0
[   53.343158][ T4244]  do_syscall_64+0xd2/0x200
[   53.343180][ T4244]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.343222][ T4244]  ? clear_bhb_loop+0x40/0x90
[   53.343248][ T4244]  ? clear_bhb_loop+0x40/0x90
[   53.343275][ T4244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.343301][ T4244] RIP: 0033:0x7fa65241e929
[   53.343320][ T4244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.343397][ T4244] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   53.343491][ T4244] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   53.343506][ T4244] RDX: 0000200000001600 RSI: 0000000000000000 RDI: 0000000000000003
[   53.343522][ T4244] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   53.343618][ T4244] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   53.343633][ T4244] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   53.343657][ T4244]  </TASK>
[   53.626735][ T4254] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   53.699221][ T4247] loop0: detected capacity change from 0 to 128
[   53.722001][ T4247] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.724305][ T4263] loop4: detected capacity change from 0 to 128
[   53.737695][ T4247] ext4 filesystem being mounted at /59/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   53.773391][ T4263] EXT4-fs: test_dummy_encryption option not supported
[   53.793617][ T3312] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.827036][ T4269] FAULT_INJECTION: forcing a failure.
[   53.827036][ T4269] name failslab, interval 1, probability 0, space 0, times 0
[   53.840390][ T4269] CPU: 1 UID: 0 PID: 4269 Comm: syz.1.252 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   53.840462][ T4269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.840478][ T4269] Call Trace:
[   53.840487][ T4269]  <TASK>
[   53.840496][ T4269]  __dump_stack+0x1d/0x30
[   53.840524][ T4269]  dump_stack_lvl+0xe8/0x140
[   53.840556][ T4269]  dump_stack+0x15/0x1b
[   53.840644][ T4269]  should_fail_ex+0x265/0x280
[   53.840684][ T4269]  should_failslab+0x8c/0xb0
[   53.840715][ T4269]  kmem_cache_alloc_noprof+0x50/0x310
[   53.840743][ T4269]  ? security_inode_alloc+0x37/0x100
[   53.840857][ T4269]  security_inode_alloc+0x37/0x100
[   53.840947][ T4269]  inode_init_always_gfp+0x4b7/0x500
[   53.840993][ T4269]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[   53.841060][ T4269]  alloc_inode+0x58/0x170
[   53.841101][ T4269]  new_inode+0x1d/0xe0
[   53.841153][ T4269]  hugetlbfs_get_inode+0x7b/0x370
[   53.841194][ T4269]  hugetlb_file_setup+0x192/0x3d0
[   53.841290][ T4269]  ksys_mmap_pgoff+0x157/0x310
[   53.841392][ T4269]  x64_sys_call+0x1602/0x2fb0
[   53.841415][ T4269]  do_syscall_64+0xd2/0x200
[   53.841438][ T4269]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.841516][ T4269]  ? clear_bhb_loop+0x40/0x90
[   53.841536][ T4269]  ? clear_bhb_loop+0x40/0x90
[   53.841557][ T4269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.841590][ T4269] RIP: 0033:0x7f7fc54fe929
[   53.841627][ T4269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.841696][ T4269] RSP: 002b:00007f7fc3b67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   53.841789][ T4269] RAX: ffffffffffffffda RBX: 00007f7fc5725fa0 RCX: 00007f7fc54fe929
[   53.841804][ T4269] RDX: 0000000000000002 RSI: 0000000000ff5000 RDI: 0000200000000000
[   53.841819][ T4269] RBP: 00007f7fc3b67090 R08: ffffffffffffffff R09: 0000000000000000
[   53.841835][ T4269] R10: 000000000004c831 R11: 0000000000000246 R12: 0000000000000001
[   53.841850][ T4269] R13: 0000000000000000 R14: 00007f7fc5725fa0 R15: 00007ffddeac10e8
[   53.841922][ T4269]  </TASK>
[   54.316566][ T4284] Invalid logical block size (8)
[   54.585820][ T4295] loop1: detected capacity change from 0 to 512
[   54.593023][ T4295] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   54.609644][ T4297] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   54.622329][ T4295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   54.635892][ T4295] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.720855][ T4302] loop2: detected capacity change from 0 to 512
[   54.728992][ T4302] EXT4-fs (loop2): orphan cleanup on readonly fs
[   54.738047][ T4302] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.262: bg 0: block 248: padding at end of block bitmap is not set
[   54.759444][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   54.771899][ T4302] __quota_error: 344 callbacks suppressed
[   54.771915][ T4302] Quota error (device loop2): write_blk: dquota write failed
[   54.786526][ T4302] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   54.796728][ T4302] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.262: Failed to acquire dquot type 1
[   54.808568][ T4302] EXT4-fs (loop2): 1 truncate cleaned up
[   54.811620][ T4308] loop1: detected capacity change from 0 to 128
[   54.821050][ T4308] EXT4-fs: test_dummy_encryption option not supported
[   54.821468][ T4302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.850528][ T4302] syz.2.262 (4302) used greatest stack depth: 9304 bytes left
[   54.858684][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.956355][   T29] audit: type=1400 audit(1750974271.214:1067): avc:  denied  { bind } for  pid=4314 comm="syz.2.266" lport=127 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   54.976737][   T29] audit: type=1400 audit(1750974271.214:1068): avc:  denied  { node_bind } for  pid=4314 comm="syz.2.266" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   55.281878][ T4326] netlink: 16 bytes leftover after parsing attributes in process `syz.2.270'.
[   55.291805][ T4327] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1, syncid = 4, id = 0
[   55.483274][   T29] audit: type=1326 audit(1750974271.734:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.508160][   T29] audit: type=1326 audit(1750974271.734:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.531709][   T29] audit: type=1326 audit(1750974271.734:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.531825][ T4333] loop2: detected capacity change from 0 to 8192
[   55.555122][   T29] audit: type=1326 audit(1750974271.734:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.584901][   T29] audit: type=1326 audit(1750974271.734:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.608416][   T29] audit: type=1326 audit(1750974271.744:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4332 comm="syz.2.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e7e6ce929 code=0x7ffc0000
[   55.816658][ T4339] loop2: detected capacity change from 0 to 8192
[   56.015630][ T4364] netlink: 16 bytes leftover after parsing attributes in process `syz.3.281'.
[   56.051480][ T4372] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1, syncid = 4, id = 0
[   56.104009][ T4380] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   56.130651][ T4384] loop3: detected capacity change from 0 to 512
[   56.168267][ T4384] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.181439][ T4384] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.199421][ T4384] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.285: corrupted inode contents
[   56.200696][ T4393] loop4: detected capacity change from 0 to 128
[   56.218338][ T4393] EXT4-fs: test_dummy_encryption option not supported
[   56.248032][ T4384] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.285: mark_inode_dirty error
[   56.265761][ T4395] loop2: detected capacity change from 0 to 512
[   56.273892][ T4395] ext4: Unknown parameter 'measure'
[   56.289619][ T4384] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.285: corrupted inode contents
[   56.338101][ T4384] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.285: mark_inode_dirty error
[   56.371201][ T4384] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.285: mark inode dirty (error -117)
[   56.385263][ T4384] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   56.435013][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.464320][ T4404] xt_hashlimit: max too large, truncated to 1048576
[   56.543321][ T4410] loop1: detected capacity change from 0 to 2048
[   56.595141][ T4410] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.622756][ T4425] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   56.661066][ T4410] EXT4-fs error (device loop1): ext4_ext_precache:649: inode #2: comm syz.1.292: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   56.671420][ T4428] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   56.688070][ T4410] EXT4-fs (loop1): Remounting filesystem read-only
[   56.701451][ T4410] netlink: 100 bytes leftover after parsing attributes in process `syz.1.292'.
[   56.790008][ T4431] FAULT_INJECTION: forcing a failure.
[   56.790008][ T4431] name failslab, interval 1, probability 0, space 0, times 0
[   56.802888][ T4431] CPU: 0 UID: 0 PID: 4431 Comm: +}[@ Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   56.802920][ T4431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.802933][ T4431] Call Trace:
[   56.802940][ T4431]  <TASK>
[   56.802986][ T4431]  __dump_stack+0x1d/0x30
[   56.803077][ T4431]  dump_stack_lvl+0xe8/0x140
[   56.803097][ T4431]  dump_stack+0x15/0x1b
[   56.803114][ T4431]  should_fail_ex+0x265/0x280
[   56.803147][ T4431]  should_failslab+0x8c/0xb0
[   56.803171][ T4431]  __kmalloc_node_noprof+0xa9/0x410
[   56.803266][ T4431]  ? qdisc_alloc+0x65/0x440
[   56.803307][ T4431]  qdisc_alloc+0x65/0x440
[   56.803338][ T4431]  ? nla_strcmp+0xc3/0xe0
[   56.803406][ T4431]  qdisc_create+0xf5/0x9e0
[   56.803434][ T4431]  tc_modify_qdisc+0xe2c/0x1380
[   56.803471][ T4431]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   56.803498][ T4431]  rtnetlink_rcv_msg+0x65a/0x6d0
[   56.803556][ T4431]  netlink_rcv_skb+0x120/0x220
[   56.803601][ T4431]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   56.803632][ T4431]  rtnetlink_rcv+0x1c/0x30
[   56.803663][ T4431]  netlink_unicast+0x59e/0x670
[   56.803696][ T4431]  netlink_sendmsg+0x58b/0x6b0
[   56.803718][ T4431]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.803738][ T4431]  __sock_sendmsg+0x142/0x180
[   56.803765][ T4431]  ____sys_sendmsg+0x31e/0x4e0
[   56.803827][ T4431]  ___sys_sendmsg+0x17b/0x1d0
[   56.803942][ T4431]  __x64_sys_sendmsg+0xd4/0x160
[   56.804049][ T4431]  x64_sys_call+0x2999/0x2fb0
[   56.804150][ T4431]  do_syscall_64+0xd2/0x200
[   56.804168][ T4431]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.804195][ T4431]  ? clear_bhb_loop+0x40/0x90
[   56.804218][ T4431]  ? clear_bhb_loop+0x40/0x90
[   56.804301][ T4431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.804322][ T4431] RIP: 0033:0x7fa65241e929
[   56.804338][ T4431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.804356][ T4431] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.804375][ T4431] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   56.804388][ T4431] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000006
[   56.804400][ T4431] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   56.804422][ T4431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.804434][ T4431] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   56.804454][ T4431]  </TASK>
[   57.075817][ T4440] netlink: 16 bytes leftover after parsing attributes in process `syz.2.301'.
[   57.105358][ T4442] loop2: detected capacity change from 0 to 512
[   57.115103][ T4444] loop0: detected capacity change from 0 to 128
[   57.123330][ T4442] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.136530][ T4442] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.137872][ T4444] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   57.159817][ T4444] ext4 filesystem being mounted at /71/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.197460][ T4442] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.302: corrupted inode contents
[   57.209652][ T4442] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm syz.2.302: mark_inode_dirty error
[   57.221545][ T4442] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.302: corrupted inode contents
[   57.227422][ T4444] syz.0.303 uses obsolete (PF_INET,SOCK_PACKET)
[   57.233594][ T4442] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.302: mark_inode_dirty error
[   57.241465][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.252204][ T4442] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.302: mark inode dirty (error -117)
[   57.274535][ T4442] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   57.296921][ T4449] bond_slave_1: entered promiscuous mode
[   57.304016][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.315327][ T4448] bond_slave_1: left promiscuous mode
[   57.347981][ T4455] FAULT_INJECTION: forcing a failure.
[   57.347981][ T4455] name failslab, interval 1, probability 0, space 0, times 0
[   57.360748][ T4455] CPU: 1 UID: 0 PID: 4455 Comm: syz.2.307 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   57.360781][ T4455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.360856][ T4455] Call Trace:
[   57.360865][ T4455]  <TASK>
[   57.360874][ T4455]  __dump_stack+0x1d/0x30
[   57.360987][ T4455]  dump_stack_lvl+0xe8/0x140
[   57.361033][ T4455]  dump_stack+0x15/0x1b
[   57.361054][ T4455]  should_fail_ex+0x265/0x280
[   57.361092][ T4455]  should_failslab+0x8c/0xb0
[   57.361116][ T4455]  kmem_cache_alloc_noprof+0x50/0x310
[   57.361142][ T4455]  ? copy_sighand+0x52/0x1b0
[   57.361226][ T4455]  copy_sighand+0x52/0x1b0
[   57.361280][ T4455]  copy_process+0xc98/0x1fe0
[   57.361334][ T4455]  kernel_clone+0x16c/0x5b0
[   57.361492][ T4455]  ? vfs_write+0x75e/0x8e0
[   57.361535][ T4455]  __x64_sys_clone+0xe6/0x120
[   57.361576][ T4455]  x64_sys_call+0x2c59/0x2fb0
[   57.361600][ T4455]  do_syscall_64+0xd2/0x200
[   57.361638][ T4455]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.361664][ T4455]  ? clear_bhb_loop+0x40/0x90
[   57.361692][ T4455]  ? clear_bhb_loop+0x40/0x90
[   57.361774][ T4455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.361799][ T4455] RIP: 0033:0x7f1e7e6ce929
[   57.361890][ T4455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.361973][ T4455] RSP: 002b:00007f1e7cd36fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   57.361993][ T4455] RAX: ffffffffffffffda RBX: 00007f1e7e8f5fa0 RCX: 00007f1e7e6ce929
[   57.362018][ T4455] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000000004021400
[   57.362071][ T4455] RBP: 00007f1e7cd37090 R08: 0000000000000000 R09: 0000000000000000
[   57.362087][ T4455] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   57.362113][ T4455] R13: 0000000000000000 R14: 00007f1e7e8f5fa0 R15: 00007ffe9c8c6ce8
[   57.362135][ T4455]  </TASK>
[   57.364970][ T4455] netlink: 84 bytes leftover after parsing attributes in process `syz.2.307'.
[   57.567232][ T3312] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   57.649065][ T4484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   57.682356][ T4488] netlink: 'syz.0.315': attribute type 3 has an invalid length.
[   57.701108][ T4492] loop3: detected capacity change from 0 to 512
[   57.708017][ T4484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   57.747097][ T4492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.786224][ T4492] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.838126][ T4492] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.317: corrupted inode contents
[   57.867703][ T4492] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.317: mark_inode_dirty error
[   57.881549][ T4492] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.317: corrupted inode contents
[   57.904021][ T4492] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.317: mark_inode_dirty error
[   57.917805][ T4492] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.317: mark inode dirty (error -117)
[   57.930825][ T4492] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   57.960204][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.019328][ T4512] C: renamed from lo (while UP)
[   58.036055][ T4512] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   58.058716][ T4516] FAULT_INJECTION: forcing a failure.
[   58.058716][ T4516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.071975][ T4516] CPU: 0 UID: 0 PID: 4516 Comm: syz.3.326 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   58.072044][ T4516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   58.072061][ T4516] Call Trace:
[   58.072070][ T4516]  <TASK>
[   58.072079][ T4516]  __dump_stack+0x1d/0x30
[   58.072105][ T4516]  dump_stack_lvl+0xe8/0x140
[   58.072129][ T4516]  dump_stack+0x15/0x1b
[   58.072154][ T4516]  should_fail_ex+0x265/0x280
[   58.072192][ T4516]  should_fail+0xb/0x20
[   58.072269][ T4516]  should_fail_usercopy+0x1a/0x20
[   58.072316][ T4516]  _copy_from_iter+0xcf/0xe40
[   58.072348][ T4516]  ? __build_skb_around+0x1a0/0x200
[   58.072415][ T4516]  ? __alloc_skb+0x223/0x320
[   58.072447][ T4516]  netlink_sendmsg+0x471/0x6b0
[   58.072468][ T4516]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.072487][ T4516]  __sock_sendmsg+0x142/0x180
[   58.072519][ T4516]  ____sys_sendmsg+0x31e/0x4e0
[   58.072604][ T4516]  ___sys_sendmsg+0x17b/0x1d0
[   58.072664][ T4516]  __x64_sys_sendmsg+0xd4/0x160
[   58.072712][ T4516]  x64_sys_call+0x2999/0x2fb0
[   58.072769][ T4516]  do_syscall_64+0xd2/0x200
[   58.072791][ T4516]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.072823][ T4516]  ? clear_bhb_loop+0x40/0x90
[   58.072850][ T4516]  ? clear_bhb_loop+0x40/0x90
[   58.073018][ T4516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.073097][ T4516] RIP: 0033:0x7fac1131e929
[   58.073167][ T4516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.073187][ T4516] RSP: 002b:00007fac0f987038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.073207][ T4516] RAX: ffffffffffffffda RBX: 00007fac11545fa0 RCX: 00007fac1131e929
[   58.073222][ T4516] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000b
[   58.073238][ T4516] RBP: 00007fac0f987090 R08: 0000000000000000 R09: 0000000000000000
[   58.073253][ T4516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.073268][ T4516] R13: 0000000000000000 R14: 00007fac11545fa0 R15: 00007ffcda705d08
[   58.073332][ T4516]  </TASK>
[   58.281614][ T4518] netlink: 16 bytes leftover after parsing attributes in process `syz.0.327'.
[   58.622915][ T4548] netlink: 16 bytes leftover after parsing attributes in process `syz.0.340'.
[   59.457460][ T4568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.344'.
[   59.688941][ T4577] netlink: 16 bytes leftover after parsing attributes in process `syz.2.348'.
[   59.801707][   T29] kauditd_printk_skb: 101 callbacks suppressed
[   59.801725][   T29] audit: type=1326 audit(1750974276.054:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.836896][   T29] audit: type=1326 audit(1750974276.054:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.856841][    T9] IPVS: starting estimator thread 0...
[   59.881753][   T29] audit: type=1326 audit(1750974276.094:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.905240][   T29] audit: type=1326 audit(1750974276.094:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.928880][   T29] audit: type=1326 audit(1750974276.094:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.952665][   T29] audit: type=1326 audit(1750974276.114:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.976119][   T29] audit: type=1326 audit(1750974276.114:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   59.999555][   T29] audit: type=1326 audit(1750974276.114:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   60.000145][ T4594] IPVS: using max 1968 ests per chain, 98400 per kthread
[   60.022904][   T29] audit: type=1326 audit(1750974276.114:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   60.053507][   T29] audit: type=1326 audit(1750974276.114:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4589 comm="syz.4.355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   60.098315][ T4607] loop1: detected capacity change from 0 to 512
[   60.121787][ T4607] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   60.142485][ T4611] loop3: detected capacity change from 0 to 512
[   60.162890][ T4616] netlink: 24 bytes leftover after parsing attributes in process `syz.0.358'.
[   60.176259][ T4611] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   60.195216][ T4607] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   60.216595][ T4611] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   60.234293][ T4616] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   60.241681][ T4616] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[   60.250641][ T4607] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.261133][ T4611] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.284568][ T4607] EXT4-fs (loop1): shut down requested (2)
[   60.292626][ T4607] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   60.296039][ T4616] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   60.335523][ T4611] EXT4-fs (loop3): shut down requested (2)
[   60.341762][ T4611] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   60.353150][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   60.403695][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   60.498590][ T4645] loop3: detected capacity change from 0 to 1024
[   60.522039][ T4645] netlink: 68 bytes leftover after parsing attributes in process `syz.3.366'.
[   60.540986][ T4649] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   60.583992][ T4654] FAULT_INJECTION: forcing a failure.
[   60.583992][ T4654] name failslab, interval 1, probability 0, space 0, times 0
[   60.596795][ T4654] CPU: 1 UID: 0 PID: 4654 Comm: syz.1.368 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   60.596844][ T4654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.596973][ T4654] Call Trace:
[   60.596982][ T4654]  <TASK>
[   60.596992][ T4654]  __dump_stack+0x1d/0x30
[   60.597079][ T4654]  dump_stack_lvl+0xe8/0x140
[   60.597104][ T4654]  dump_stack+0x15/0x1b
[   60.597135][ T4654]  should_fail_ex+0x265/0x280
[   60.597174][ T4654]  should_failslab+0x8c/0xb0
[   60.597203][ T4654]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   60.597244][ T4654]  ? sidtab_sid2str_get+0xa0/0x130
[   60.597276][ T4654]  kmemdup_noprof+0x2b/0x70
[   60.597311][ T4654]  sidtab_sid2str_get+0xa0/0x130
[   60.597342][ T4654]  security_sid_to_context_core+0x1eb/0x2e0
[   60.597378][ T4654]  security_sid_to_context+0x27/0x40
[   60.597400][ T4654]  selinux_lsmprop_to_secctx+0x67/0xf0
[   60.597431][ T4654]  security_lsmprop_to_secctx+0x43/0x80
[   60.597507][ T4654]  audit_log_task_context+0x77/0x190
[   60.597546][ T4654]  audit_log_task+0xf4/0x250
[   60.597613][ T4654]  audit_seccomp+0x61/0x100
[   60.597645][ T4654]  ? __seccomp_filter+0x68c/0x10d0
[   60.597668][ T4654]  __seccomp_filter+0x69d/0x10d0
[   60.597692][ T4654]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.597768][ T4654]  ? vfs_write+0x75e/0x8e0
[   60.597818][ T4654]  ? __rcu_read_unlock+0x4f/0x70
[   60.597846][ T4654]  ? __fget_files+0x184/0x1c0
[   60.597918][ T4654]  __secure_computing+0x82/0x150
[   60.597942][ T4654]  syscall_trace_enter+0xcf/0x1e0
[   60.598046][ T4654]  do_syscall_64+0xac/0x200
[   60.598067][ T4654]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.598092][ T4654]  ? clear_bhb_loop+0x40/0x90
[   60.598113][ T4654]  ? clear_bhb_loop+0x40/0x90
[   60.598133][ T4654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.598181][ T4654] RIP: 0033:0x7f7fc54fe929
[   60.598201][ T4654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.598224][ T4654] RSP: 002b:00007f7fc3b67038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d2
[   60.598248][ T4654] RAX: ffffffffffffffda RBX: 00007f7fc5725fa0 RCX: 00007f7fc54fe929
[   60.598263][ T4654] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.598347][ T4654] RBP: 00007f7fc3b67090 R08: 0000000000000000 R09: 0000000000000000
[   60.598363][ T4654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.598379][ T4654] R13: 0000000000000000 R14: 00007f7fc5725fa0 R15: 00007ffddeac10e8
[   60.598402][ T4654]  </TASK>
[   60.893305][ T4660] program syz.2.370 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.934833][ T4664] capability: warning: `syz.1.371' uses deprecated v2 capabilities in a way that may be insecure
[   60.990456][ T4670] loop2: detected capacity change from 0 to 512
[   60.997675][ T4670] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   61.029385][ T4670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   61.080198][ T4670] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.096221][ T4675] loop4: detected capacity change from 0 to 512
[   61.103031][ T4675] EXT4-fs: quotafile must be on filesystem root
[   61.122725][ T4670] EXT4-fs (loop2): shut down requested (2)
[   61.131512][ T4675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4675 comm=syz.4.375
[   61.152922][ T4670] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   61.202309][ T4683] loop1: detected capacity change from 0 to 512
[   61.216064][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   61.286083][ T4683] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.310620][ T4683] ext4 filesystem being mounted at /67/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.363378][ T4692] loop2: detected capacity change from 0 to 128
[   61.383870][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.384444][ T4692] EXT4-fs: test_dummy_encryption option not supported
[   61.411966][ T4696] loop0: detected capacity change from 0 to 128
[   61.465082][ T4696] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.733670][ T4714] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=33445 sclass=netlink_route_socket pid=4714 comm=syz.0.388
[   61.997677][ T4732] loop1: detected capacity change from 0 to 512
[   62.017135][ T4732] ext4 filesystem being mounted at /71/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.264375][ T4760] __nla_validate_parse: 7 callbacks suppressed
[   62.264461][ T4760] netlink: 16 bytes leftover after parsing attributes in process `syz.3.400'.
[   62.304050][ T4764] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   62.406614][ T4781] loop4: detected capacity change from 0 to 512
[   62.421124][ T4783] xt_hashlimit: max too large, truncated to 1048576
[   62.443156][ T4781] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.454270][ T4789] FAULT_INJECTION: forcing a failure.
[   62.454270][ T4789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.467494][ T4789] CPU: 1 UID: 0 PID: 4789 Comm: syz.3.408 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   62.467544][ T4789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   62.467585][ T4789] Call Trace:
[   62.467591][ T4789]  <TASK>
[   62.467598][ T4789]  __dump_stack+0x1d/0x30
[   62.467618][ T4789]  dump_stack_lvl+0xe8/0x140
[   62.467687][ T4789]  dump_stack+0x15/0x1b
[   62.467701][ T4789]  should_fail_ex+0x265/0x280
[   62.467729][ T4789]  should_fail+0xb/0x20
[   62.467763][ T4789]  should_fail_usercopy+0x1a/0x20
[   62.467792][ T4789]  strncpy_from_user+0x25/0x230
[   62.467817][ T4789]  strncpy_from_bpfptr+0x43/0x50
[   62.467836][ T4789]  bpf_prog_load+0x884/0x1070
[   62.467990][ T4789]  ? security_bpf+0x2b/0x90
[   62.468008][ T4789]  __sys_bpf+0x51d/0x790
[   62.468052][ T4789]  __x64_sys_bpf+0x41/0x50
[   62.468085][ T4789]  x64_sys_call+0x2478/0x2fb0
[   62.468108][ T4789]  do_syscall_64+0xd2/0x200
[   62.468166][ T4789]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.468189][ T4789]  ? clear_bhb_loop+0x40/0x90
[   62.468209][ T4789]  ? clear_bhb_loop+0x40/0x90
[   62.468228][ T4789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.468246][ T4789] RIP: 0033:0x7fac1131e929
[   62.468258][ T4789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.468280][ T4789] RSP: 002b:00007fac0f987038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   62.468296][ T4789] RAX: ffffffffffffffda RBX: 00007fac11545fa0 RCX: 00007fac1131e929
[   62.468307][ T4789] RDX: 0000000000000094 RSI: 0000200000000200 RDI: 0000000000000005
[   62.468317][ T4789] RBP: 00007fac0f987090 R08: 0000000000000000 R09: 0000000000000000
[   62.468389][ T4789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.468399][ T4789] R13: 0000000000000000 R14: 00007fac11545fa0 R15: 00007ffcda705d08
[   62.468416][ T4789]  </TASK>
[   62.470106][ T4781] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.405: corrupted inode contents
[   62.499028][ T4791] loop3: detected capacity change from 0 to 256
[   62.500986][ T4781] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #18: comm syz.4.405: mark_inode_dirty error
[   62.691047][ T4781] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.405: corrupted inode contents
[   62.704827][ T4791] bio_check_eod: 102 callbacks suppressed
[   62.704842][ T4791] syz.3.409: attempt to access beyond end of device
[   62.704842][ T4791] loop3: rw=2049, sector=256, nr_sectors = 4 limit=256
[   62.712668][ T4781] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #18: comm syz.4.405: mark_inode_dirty error
[   62.738472][ T4781] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #18: comm syz.4.405: mark inode dirty (error -117)
[   62.755340][ T4781] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[   62.837185][ T4801] loop0: detected capacity change from 0 to 512
[   62.860707][ T4801] EXT4-fs (loop0): too many log groups per flexible block group
[   62.868561][ T4801] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   62.905338][ T4801] EXT4-fs (loop0): mount failed
[   62.983944][ T4814] xt_hashlimit: max too large, truncated to 1048576
[   62.989718][ T4817] loop0: detected capacity change from 0 to 512
[   63.003762][ T4820] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   63.015205][ T4822] loop3: detected capacity change from 0 to 128
[   63.021927][ T4822] EXT4-fs: test_dummy_encryption option not supported
[   63.028039][ T4817] ext4: Unknown parameter 'noacl'
[   63.101000][ T4831] loop4: detected capacity change from 0 to 512
[   63.128055][ T4831] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.146643][ T4831] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.422: corrupted inode contents
[   63.159713][ T4831] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #18: comm syz.4.422: mark_inode_dirty error
[   63.178635][ T4841] xt_hashlimit: max too large, truncated to 1048576
[   63.181391][ T4831] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.422: corrupted inode contents
[   63.224990][ T4831] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #18: comm syz.4.422: mark_inode_dirty error
[   63.238114][ T4843] FAULT_INJECTION: forcing a failure.
[   63.238114][ T4843] name failslab, interval 1, probability 0, space 0, times 0
[   63.239035][ T4831] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #18: comm syz.4.422: mark inode dirty (error -117)
[   63.250824][ T4843] CPU: 1 UID: 0 PID: 4843 Comm: syz.0.427 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   63.250860][ T4843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.250878][ T4843] Call Trace:
[   63.250888][ T4843]  <TASK>
[   63.250900][ T4843]  __dump_stack+0x1d/0x30
[   63.250932][ T4843]  dump_stack_lvl+0xe8/0x140
[   63.250962][ T4843]  dump_stack+0x15/0x1b
[   63.250984][ T4843]  should_fail_ex+0x265/0x280
[   63.251031][ T4843]  should_failslab+0x8c/0xb0
[   63.251063][ T4843]  kmem_cache_alloc_noprof+0x50/0x310
[   63.251100][ T4843]  ? mas_alloc_nodes+0x265/0x520
[   63.251129][ T4843]  mas_alloc_nodes+0x265/0x520
[   63.251158][ T4843]  mas_preallocate+0x33e/0x520
[   63.251210][ T4843]  mmap_region+0xb7e/0x1580
[   63.251279][ T4843]  do_mmap+0x9b3/0xbe0
[   63.251329][ T4843]  vm_mmap_pgoff+0x17a/0x2e0
[   63.251372][ T4843]  ksys_mmap_pgoff+0xc2/0x310
[   63.251414][ T4843]  ? __x64_sys_mmap+0x49/0x70
[   63.251447][ T4843]  x64_sys_call+0x1602/0x2fb0
[   63.251486][ T4843]  do_syscall_64+0xd2/0x200
[   63.251509][ T4843]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.251546][ T4843]  ? clear_bhb_loop+0x40/0x90
[   63.251575][ T4843]  ? clear_bhb_loop+0x40/0x90
[   63.251653][ T4843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.251684][ T4843] RIP: 0033:0x7fb6b601e963
[   63.251706][ T4843] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   63.251729][ T4843] RSP: 002b:00007fb6b4686e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   63.251755][ T4843] RAX: ffffffffffffffda RBX: 00000000000004f0 RCX: 00007fb6b601e963
[   63.251773][ T4843] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   63.251790][ T4843] RBP: 0000200000000602 R08: 00000000ffffffff R09: 0000000000000000
[   63.251807][ T4843] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000008
[   63.251822][ T4843] R13: 00007fb6b4686ef0 R14: 00007fb6b4686eb0 R15: 00002000000002c0
[   63.251846][ T4843]  </TASK>
[   63.474147][ T4831] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[   63.515424][ T4854] tmpfs: Bad value for 'size'
[   63.522434][ T4854] netlink: 'syz.0.430': attribute type 3 has an invalid length.
[   63.533591][ T4854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.430'.
[   63.581451][ T4859] FAULT_INJECTION: forcing a failure.
[   63.581451][ T4859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.594877][ T4859] CPU: 0 UID: 0 PID: 4859 Comm: syz.4.433 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   63.594905][ T4859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.594918][ T4859] Call Trace:
[   63.594925][ T4859]  <TASK>
[   63.594933][ T4859]  __dump_stack+0x1d/0x30
[   63.594955][ T4859]  dump_stack_lvl+0xe8/0x140
[   63.594977][ T4859]  dump_stack+0x15/0x1b
[   63.595026][ T4859]  should_fail_ex+0x265/0x280
[   63.595060][ T4859]  should_fail+0xb/0x20
[   63.595091][ T4859]  should_fail_usercopy+0x1a/0x20
[   63.595163][ T4859]  _copy_from_user+0x1c/0xb0
[   63.595327][ T4859]  vmemdup_user+0x59/0xd0
[   63.595358][ T4859]  path_setxattrat+0x1b6/0x310
[   63.595478][ T4859]  __x64_sys_fsetxattr+0x6b/0x80
[   63.595559][ T4859]  x64_sys_call+0x2f7c/0x2fb0
[   63.595586][ T4859]  do_syscall_64+0xd2/0x200
[   63.595616][ T4859]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.595648][ T4859]  ? clear_bhb_loop+0x40/0x90
[   63.595722][ T4859]  ? clear_bhb_loop+0x40/0x90
[   63.595749][ T4859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.595776][ T4859] RIP: 0033:0x7fa65241e929
[   63.595795][ T4859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.595870][ T4859] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   63.595889][ T4859] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   63.595904][ T4859] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000005
[   63.595919][ T4859] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   63.595933][ T4859] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   63.595958][ T4859] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   63.595978][ T4859]  </TASK>
[   63.817239][ T4871] FAULT_INJECTION: forcing a failure.
[   63.817239][ T4871] name failslab, interval 1, probability 0, space 0, times 0
[   63.830032][ T4871] CPU: 1 UID: 0 PID: 4871 Comm: syz.4.438 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   63.830062][ T4871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.830078][ T4871] Call Trace:
[   63.830086][ T4871]  <TASK>
[   63.830096][ T4871]  __dump_stack+0x1d/0x30
[   63.830187][ T4871]  dump_stack_lvl+0xe8/0x140
[   63.830209][ T4871]  dump_stack+0x15/0x1b
[   63.830246][ T4871]  should_fail_ex+0x265/0x280
[   63.830311][ T4871]  should_failslab+0x8c/0xb0
[   63.830411][ T4871]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   63.830446][ T4871]  ? mqueue_alloc_inode+0x34/0x50
[   63.830556][ T4871]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[   63.830593][ T4871]  mqueue_alloc_inode+0x34/0x50
[   63.830628][ T4871]  alloc_inode+0x40/0x170
[   63.830660][ T4871]  new_inode+0x1d/0xe0
[   63.830720][ T4871]  mqueue_get_inode+0x26/0x6a0
[   63.830756][ T4871]  mqueue_create_attr+0x172/0x260
[   63.830789][ T4871]  ? __pfx_mqueue_create_attr+0x10/0x10
[   63.830842][ T4871]  vfs_mkobj+0xa5/0x1c0
[   63.830870][ T4871]  do_mq_open+0x385/0x4f0
[   63.830936][ T4871]  __x64_sys_mq_open+0xcb/0x100
[   63.831050][ T4871]  x64_sys_call+0x27d6/0x2fb0
[   63.831076][ T4871]  do_syscall_64+0xd2/0x200
[   63.831155][ T4871]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.831181][ T4871]  ? clear_bhb_loop+0x40/0x90
[   63.831268][ T4871]  ? clear_bhb_loop+0x40/0x90
[   63.831356][ T4871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.831384][ T4871] RIP: 0033:0x7fa65241e929
[   63.831404][ T4871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.831451][ T4871] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[   63.831476][ T4871] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   63.831492][ T4871] RDX: 0000000000000110 RSI: 0000000000000040 RDI: 00002000000004c0
[   63.831507][ T4871] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   63.831595][ T4871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   63.831612][ T4871] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   63.831636][ T4871]  </TASK>
[   64.082201][ T4901] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   64.098787][ T4903] FAULT_INJECTION: forcing a failure.
[   64.098787][ T4903] name failslab, interval 1, probability 0, space 0, times 0
[   64.111638][ T4903] CPU: 0 UID: 0 PID: 4903 Comm: syz.2.441 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   64.111671][ T4903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   64.111686][ T4903] Call Trace:
[   64.111694][ T4903]  <TASK>
[   64.111702][ T4903]  __dump_stack+0x1d/0x30
[   64.111727][ T4903]  dump_stack_lvl+0xe8/0x140
[   64.111813][ T4903]  dump_stack+0x15/0x1b
[   64.111832][ T4903]  should_fail_ex+0x265/0x280
[   64.111901][ T4903]  should_failslab+0x8c/0xb0
[   64.111924][ T4903]  kmem_cache_alloc_noprof+0x50/0x310
[   64.111952][ T4903]  ? skb_clone+0x151/0x1f0
[   64.111972][ T4903]  skb_clone+0x151/0x1f0
[   64.112063][ T4903]  __netlink_deliver_tap+0x2c9/0x500
[   64.112104][ T4903]  netlink_unicast+0x64c/0x670
[   64.112137][ T4903]  netlink_sendmsg+0x58b/0x6b0
[   64.112206][ T4903]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.112225][ T4903]  __sock_sendmsg+0x142/0x180
[   64.112251][ T4903]  ____sys_sendmsg+0x31e/0x4e0
[   64.112325][ T4903]  ___sys_sendmsg+0x17b/0x1d0
[   64.112375][ T4903]  __x64_sys_sendmsg+0xd4/0x160
[   64.112415][ T4903]  x64_sys_call+0x2999/0x2fb0
[   64.112480][ T4903]  do_syscall_64+0xd2/0x200
[   64.112498][ T4903]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.112533][ T4903]  ? clear_bhb_loop+0x40/0x90
[   64.112555][ T4903]  ? clear_bhb_loop+0x40/0x90
[   64.112577][ T4903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.112632][ T4903] RIP: 0033:0x7f1e7e6ce929
[   64.112647][ T4903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.112665][ T4903] RSP: 002b:00007f1e7cd37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.112683][ T4903] RAX: ffffffffffffffda RBX: 00007f1e7e8f5fa0 RCX: 00007f1e7e6ce929
[   64.112696][ T4903] RDX: 0000000000000040 RSI: 0000200000003640 RDI: 0000000000000003
[   64.112708][ T4903] RBP: 00007f1e7cd37090 R08: 0000000000000000 R09: 0000000000000000
[   64.112720][ T4903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.112739][ T4903] R13: 0000000000000000 R14: 00007f1e7e8f5fa0 R15: 00007ffe9c8c6ce8
[   64.112759][ T4903]  </TASK>
[   64.347010][ T4907] loop2: detected capacity change from 0 to 512
[   64.349046][ T4911] netlink: 'syz.4.442': attribute type 13 has an invalid length.
[   64.361231][ T4911] netlink: 152 bytes leftover after parsing attributes in process `syz.4.442'.
[   64.361616][ T4909] netlink: 24 bytes leftover after parsing attributes in process `syz.2.443'.
[   64.379858][ T4907] ext4: Unknown parameter '�
'
[   64.392357][ T4911] FAULT_INJECTION: forcing a failure.
[   64.392357][ T4911] name failslab, interval 1, probability 0, space 0, times 0
[   64.405187][ T4911] CPU: 1 UID: 0 PID: 4911 Comm: syz.4.442 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   64.405297][ T4911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   64.405310][ T4911] Call Trace:
[   64.405317][ T4911]  <TASK>
[   64.405327][ T4911]  __dump_stack+0x1d/0x30
[   64.405360][ T4911]  dump_stack_lvl+0xe8/0x140
[   64.405411][ T4911]  dump_stack+0x15/0x1b
[   64.405427][ T4911]  should_fail_ex+0x265/0x280
[   64.405458][ T4911]  should_failslab+0x8c/0xb0
[   64.405488][ T4911]  kmem_cache_alloc_node_noprof+0x57/0x320
[   64.405586][ T4911]  ? __alloc_skb+0x101/0x320
[   64.405619][ T4911]  __alloc_skb+0x101/0x320
[   64.405655][ T4911]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[   64.405694][ T4911]  ? trace_reschedule_exit+0xd/0xc0
[   64.405761][ T4911]  ? sysvec_reschedule_ipi+0x4f/0x70
[   64.405795][ T4911]  ? __pfx_rtnetlink_event+0x10/0x10
[   64.405823][ T4911]  rtnetlink_event+0x18c/0x200
[   64.405906][ T4911]  raw_notifier_call_chain+0x6f/0x1b0
[   64.405931][ T4911]  ? call_netdevice_notifiers_info+0x9c/0x100
[   64.405991][ T4911]  call_netdevice_notifiers_info+0xae/0x100
[   64.406055][ T4911]  netif_change_tx_queue_len+0xba/0x170
[   64.406095][ T4911]  do_setlink+0xb01/0x2810
[   64.406185][ T4911]  ? save_fpregs_to_fpstate+0x100/0x160
[   64.406213][ T4911]  ? _raw_spin_unlock+0x26/0x50
[   64.406237][ T4911]  ? finish_task_switch+0xad/0x2b0
[   64.406298][ T4911]  ? __schedule+0x6a8/0xb30
[   64.406333][ T4911]  rtnl_newlink+0xe75/0x12d0
[   64.406364][ T4911]  ? css_rstat_updated+0xcd/0x5b0
[   64.406442][ T4911]  ? xas_load+0x413/0x430
[   64.406479][ T4911]  ? xas_load+0x413/0x430
[   64.406526][ T4911]  ? __memcg_slab_free_hook+0x135/0x230
[   64.406599][ T4911]  ? __kfree_skb+0x109/0x150
[   64.406638][ T4911]  ? __rcu_read_unlock+0x4f/0x70
[   64.406666][ T4911]  ? avc_has_perm_noaudit+0x1b1/0x200
[   64.406705][ T4911]  ? selinux_capable+0x1f9/0x270
[   64.406800][ T4911]  ? security_capable+0x83/0x90
[   64.406835][ T4911]  ? ns_capable+0x7d/0xb0
[   64.406857][ T4911]  ? __pfx_rtnl_newlink+0x10/0x10
[   64.406891][ T4911]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   64.406917][ T4911]  netlink_rcv_skb+0x120/0x220
[   64.406956][ T4911]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   64.407041][ T4911]  rtnetlink_rcv+0x1c/0x30
[   64.407061][ T4911]  netlink_unicast+0x59e/0x670
[   64.407172][ T4911]  netlink_sendmsg+0x58b/0x6b0
[   64.407200][ T4911]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.407225][ T4911]  __sock_sendmsg+0x142/0x180
[   64.407286][ T4911]  ____sys_sendmsg+0x31e/0x4e0
[   64.407332][ T4911]  ___sys_sendmsg+0x17b/0x1d0
[   64.407386][ T4911]  __x64_sys_sendmsg+0xd4/0x160
[   64.407456][ T4911]  x64_sys_call+0x2999/0x2fb0
[   64.407483][ T4911]  do_syscall_64+0xd2/0x200
[   64.407514][ T4911]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.407547][ T4911]  ? clear_bhb_loop+0x40/0x90
[   64.407574][ T4911]  ? clear_bhb_loop+0x40/0x90
[   64.407650][ T4911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.407676][ T4911] RIP: 0033:0x7fa65241e929
[   64.407764][ T4911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.407785][ T4911] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.407808][ T4911] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   64.407823][ T4911] RDX: 0000000002008854 RSI: 0000200000000180 RDI: 0000000000000003
[   64.407837][ T4911] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   64.407926][ T4911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.407941][ T4911] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   64.407965][ T4911]  </TASK>
[   64.409588][ T4911] erspan0: refused to change device tx_queue_len
[   64.462935][ T4917] random: crng reseeded on system resumption
[   64.468610][ T4911] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[   64.757560][ T4926] loop0: detected capacity change from 0 to 512
[   64.820482][ T4928] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   64.836676][ T4917] netlink: 76 bytes leftover after parsing attributes in process `wޣ�'.
[   64.848811][ T4926] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.874400][ T4926] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.448: corrupted inode contents
[   64.899365][ T4926] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm syz.0.448: mark_inode_dirty error
[   64.919899][ T4926] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.448: corrupted inode contents
[   64.945198][ T4941] xt_hashlimit: max too large, truncated to 1048576
[   64.956560][ T4926] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.448: mark_inode_dirty error
[   64.971854][ T4926] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.448: mark inode dirty (error -117)
[   64.987101][ T4926] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   65.014045][ T4949] loop3: detected capacity change from 0 to 512
[   65.022290][ T4949] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   65.043634][ T4952] netlink: 'syz.4.460': attribute type 21 has an invalid length.
[   65.054052][ T4952] netlink: 8 bytes leftover after parsing attributes in process `syz.4.460'.
[   65.073072][ T4949] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.088656][ T4949] EXT4-fs (loop3): shut down requested (2)
[   65.099628][   T29] kauditd_printk_skb: 243 callbacks suppressed
[   65.099646][   T29] audit: type=1326 audit(1750974281.354:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.106112][ T4956] loop0: detected capacity change from 0 to 1024
[   65.129409][   T29] audit: type=1326 audit(1750974281.354:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.199310][   T29] audit: type=1326 audit(1750974281.454:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.222810][   T29] audit: type=1326 audit(1750974281.454:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.227104][ T4966] netlink: 'syz.1.463': attribute type 21 has an invalid length.
[   65.255511][ T4967] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   65.267928][ T4966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.463'.
[   65.304749][   T29] audit: type=1326 audit(1750974281.514:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.328142][   T29] audit: type=1326 audit(1750974281.514:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.351541][   T29] audit: type=1326 audit(1750974281.514:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.374967][   T29] audit: type=1326 audit(1750974281.514:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.398408][   T29] audit: type=1326 audit(1750974281.514:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.422266][   T29] audit: type=1326 audit(1750974281.514:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4951 comm="syz.4.460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa65241e929 code=0x7ffc0000
[   65.488368][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x1
[   65.495922][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.503409][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.510900][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.518421][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.525870][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x2
[   65.528385][ T4980] netlink: 'syz.2.466': attribute type 1 has an invalid length.
[   65.533350][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.548554][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.558821][ T4980] netlink: 8 bytes leftover after parsing attributes in process `syz.2.466'.
[   65.560073][ T4982] netlink: 'syz.4.468': attribute type 13 has an invalid length.
[   65.567710][ T4980] netlink: 16 bytes leftover after parsing attributes in process `syz.2.466'.
[   65.575434][ T4982] netlink: 152 bytes leftover after parsing attributes in process `syz.4.468'.
[   65.575967][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.600867][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.608319][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.615769][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.623186][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x2
[   65.630758][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.638228][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.645667][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.653518][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.661055][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.668484][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.675942][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.683348][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.690794][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.698290][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.705815][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.713280][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.720739][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.728207][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.735644][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.743040][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.750548][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.758071][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.765613][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.773035][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.773230][ T4988] loop0: detected capacity change from 0 to 512
[   65.780531][    T9] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   65.788713][ T4988] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   65.795283][    T9] hid-generic 0000:0003:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   65.813860][ T4982] erspan0: refused to change device tx_queue_len
[   65.824079][ T4982] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[   65.843584][ T4988] EXT4-fs (loop0): failed to initialize system zone (-117)
[   65.851023][ T4988] EXT4-fs (loop0): mount failed
[   65.948318][ T4983] infiniband syz!: set active
[   65.953078][ T4983] infiniband syz!: added team_slave_0
[   65.993115][ T4983] RDS/IB: syz!: added
[   65.997350][ T4983] smc: adding ib device syz! with port count 1
[   66.003693][ T4983] smc:    ib device syz! port 1 has pnetid 
[   66.183120][ T5005] loop3: detected capacity change from 0 to 8192
[   66.249406][ T5016] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   66.263536][ T5018] loop3: detected capacity change from 0 to 128
[   66.270617][ T5018] EXT4-fs: test_dummy_encryption option not supported
[   66.420691][ T5027] hub 6-0:1.0: USB hub found
[   66.427776][ T5012] batadv1: entered promiscuous mode
[   66.433062][ T5012] batadv1: entered allmulticast mode
[   66.439024][ T5027] hub 6-0:1.0: 8 ports detected
[   66.506987][ T5037] $H�: renamed from bond0 (while UP)
[   66.519884][ T5037] $H�: entered promiscuous mode
[   66.525105][ T5037] bond_slave_0: entered promiscuous mode
[   66.730480][ T5056] wg2: entered promiscuous mode
[   66.735474][ T5056] wg2: entered allmulticast mode
[   66.802268][ T5064] Invalid ELF header magic: != ELF
[   66.948008][ T5067] loop2: detected capacity change from 0 to 8192
[   67.223970][ T5111] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   67.316587][ T5119] loop3: detected capacity change from 0 to 512
[   67.398087][ T5119] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   67.415007][ T5119] EXT4-fs (loop3): mount failed
[   68.048110][ T5151] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   68.293780][ T5185] loop3: detected capacity change from 0 to 1024
[   68.317197][ T5185] EXT4-fs: Ignoring removed orlov option
[   68.322972][ T5185] EXT4-fs: Ignoring removed bh option
[   68.344850][ T5185] EXT4-fs: Ignoring removed bh option
[   68.378489][ T5185] __nla_validate_parse: 6 callbacks suppressed
[   68.378504][ T5185] netlink: 8 bytes leftover after parsing attributes in process `syz.3.496'.
[   68.405782][ T5185] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   68.413047][ T5185] IPv6: NLM_F_CREATE should be set when creating new route
[   68.420311][ T5185] IPv6: NLM_F_CREATE should be set when creating new route
[   68.464372][ T5206] netlink: 16 bytes leftover after parsing attributes in process `syz.3.497'.
[   68.548754][ T5218] loop3: detected capacity change from 0 to 256
[   68.569356][ T5218] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   68.578553][ T5218] FAT-fs (loop3): bogus number of directory entries (1)
[   68.585570][ T5218] FAT-fs (loop3): Can't find a valid FAT filesystem
[   68.684169][ T5228] loop2: detected capacity change from 0 to 512
[   68.696995][ T5228] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.713249][ T5228] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.500: corrupted inode contents
[   68.725888][ T5228] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm syz.2.500: mark_inode_dirty error
[   68.738868][ T5228] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.500: corrupted inode contents
[   68.750921][ T5228] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.500: mark_inode_dirty error
[   68.764406][ T5228] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.500: mark inode dirty (error -117)
[   68.778281][ T5228] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   69.058281][ T5239] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   69.089022][ T5242] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   69.188055][ T5247] loop0: detected capacity change from 0 to 512
[   69.252425][ T5247] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.287390][ T5247] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.507: corrupted inode contents
[   69.367803][ T5247] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm syz.0.507: mark_inode_dirty error
[   69.397386][ T5278] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[   69.399717][ T5247] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.507: corrupted inode contents
[   69.443488][ T5275] loop1: detected capacity change from 0 to 1024
[   69.454822][ T5247] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.507: mark_inode_dirty error
[   69.481087][ T5275] EXT4-fs: Ignoring removed orlov option
[   69.486978][ T5275] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.507787][ T5286] xt_hashlimit: max too large, truncated to 1048576
[   69.546934][ T5247] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.507: mark inode dirty (error -117)
[   69.561577][ T5247] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   69.612453][ T5311] 9pnet_fd: Insufficient options for proto=fd
[   69.628200][ T5275] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8842c118, mo2=0002]
[   69.641705][ T5313] loop0: detected capacity change from 0 to 1024
[   69.675260][ T5333] futex_wake_op: syz.3.519 tries to shift op by -1; fix this program
[   69.794043][ T5350] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.813891][ T5352] loop4: detected capacity change from 0 to 512
[   69.826967][ T5352] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   69.838514][ T5352] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.872222][ T5350] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.886237][ T5352] EXT4-fs (loop4): shut down requested (2)
[   69.892508][ T5352] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   69.939907][ T5358] loop4: detected capacity change from 0 to 164
[   69.948904][ T5358] ISOFS: unable to read i-node block
[   69.954255][ T5358] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   69.990538][ T5350] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.038048][ T5350] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.108902][ T5350] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.131556][ T5350] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.151811][ T5350] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.175694][ T5350] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.253652][ T5368] loop1: detected capacity change from 0 to 512
[   70.277049][ T5368] ext4 filesystem being mounted at /99/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.299922][ T5372] FAULT_INJECTION: forcing a failure.
[   70.299922][ T5372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.313156][ T5372] CPU: 0 UID: 0 PID: 5372 Comm: syz.4.529 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   70.313207][ T5372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   70.313224][ T5372] Call Trace:
[   70.313233][ T5372]  <TASK>
[   70.313243][ T5372]  __dump_stack+0x1d/0x30
[   70.313271][ T5372]  dump_stack_lvl+0xe8/0x140
[   70.313340][ T5372]  dump_stack+0x15/0x1b
[   70.313379][ T5372]  should_fail_ex+0x265/0x280
[   70.313419][ T5372]  should_fail+0xb/0x20
[   70.313454][ T5372]  should_fail_usercopy+0x1a/0x20
[   70.313497][ T5372]  strncpy_from_user+0x25/0x230
[   70.313599][ T5372]  ? kmem_cache_alloc_noprof+0x186/0x310
[   70.313632][ T5372]  ? getname_flags+0x80/0x3b0
[   70.313682][ T5372]  getname_flags+0xae/0x3b0
[   70.313711][ T5372]  do_sys_openat2+0x60/0x110
[   70.313746][ T5372]  __x64_sys_openat+0xf2/0x120
[   70.313785][ T5372]  x64_sys_call+0x1af/0x2fb0
[   70.313812][ T5372]  do_syscall_64+0xd2/0x200
[   70.313833][ T5372]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.313866][ T5372]  ? clear_bhb_loop+0x40/0x90
[   70.313892][ T5372]  ? clear_bhb_loop+0x40/0x90
[   70.313970][ T5372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.313997][ T5372] RIP: 0033:0x7fa65241e929
[   70.314015][ T5372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.314037][ T5372] RSP: 002b:00007fa650a87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   70.314092][ T5372] RAX: ffffffffffffffda RBX: 00007fa652645fa0 RCX: 00007fa65241e929
[   70.314199][ T5372] RDX: 0000000000000481 RSI: 0000200000000000 RDI: ffffffffffffff9c
[   70.314214][ T5372] RBP: 00007fa650a87090 R08: 0000000000000000 R09: 0000000000000000
[   70.314230][ T5372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.314245][ T5372] R13: 0000000000000000 R14: 00007fa652645fa0 R15: 00007fff48652bb8
[   70.314269][ T5372]  </TASK>
[   70.514688][ T5368] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.527: corrupted inode contents
[   70.570267][ T5368] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #18: comm syz.1.527: mark_inode_dirty error
[   70.592898][ T5368] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.527: corrupted inode contents
[   70.605210][ T5368] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.527: mark_inode_dirty error
[   70.618710][ T5368] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.527: mark inode dirty (error -117)
[   70.637792][ T5387] loop3: detected capacity change from 0 to 512
[   70.649278][ T5368] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[   70.658835][ T5387] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.674622][ T5389] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[   70.696334][ T3304] EXT4-fs unmount: 27 callbacks suppressed
[   70.696354][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.713763][ T5387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   70.729214][ T5387] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.764148][ T5387] EXT4-fs (loop3): shut down requested (2)
[   70.773373][ T5387] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   70.827879][   T29] kauditd_printk_skb: 127 callbacks suppressed
[   70.827914][   T29] audit: type=1400 audit(1750974287.084:1564): avc:  denied  { bind } for  pid=5396 comm="syz.2.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   70.863405][   T29] audit: type=1400 audit(1750974287.104:1565): avc:  denied  { listen } for  pid=5396 comm="syz.2.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   70.883970][   T29] audit: type=1400 audit(1750974287.104:1566): avc:  denied  { connect } for  pid=5396 comm="syz.2.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   70.904940][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   70.909596][ T5398] loop2: detected capacity change from 0 to 2048
[   70.936812][ T5398] EXT4-fs: Ignoring removed mblk_io_submit option
[   70.950659][   T29] audit: type=1400 audit(1750974287.204:1567): avc:  denied  { read } for  pid=5400 comm="syz.1.535" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   70.973305][   T29] audit: type=1400 audit(1750974287.204:1568): avc:  denied  { open } for  pid=5400 comm="syz.1.535" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   71.022403][ T5407] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.169639][ T5398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.365195][   T29] audit: type=1400 audit(1750974287.294:1569): avc:  denied  { ioctl } for  pid=5400 comm="syz.1.535" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   71.390684][   T29] audit: type=1326 audit(1750974287.304:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5400 comm="syz.1.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fc54fe929 code=0x7ffc0000
[   71.409453][ T3364] Process accounting resumed
[   71.414215][   T29] audit: type=1326 audit(1750974287.304:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5400 comm="syz.1.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f7fc54fe929 code=0x7ffc0000
[   71.442097][   T29] audit: type=1326 audit(1750974287.304:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5400 comm="syz.1.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fc54fe929 code=0x7ffc0000
[   71.465503][   T29] audit: type=1326 audit(1750974287.304:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5400 comm="syz.1.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fc54fe929 code=0x7ffc0000
[   71.499331][ T5413] loop0: detected capacity change from 0 to 8192
[   71.507593][ T5407] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.523959][ T5270] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:21: bg 0: block 234: padding at end of block bitmap is not set
[   71.609320][ T5419] loop0: detected capacity change from 0 to 1024
[   71.623655][ T5270] EXT4-fs (loop2): Remounting filesystem read-only
[   71.631412][ T5419] EXT4-fs: Ignoring removed orlov option
[   71.633804][ T5407] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.657205][ T5419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.739350][ T5407] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.762312][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.796545][ T5407] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.808814][ T5407] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.822570][ T5407] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.852393][ T5407] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.871653][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.898957][ T5430] x_tables: ip6_tables: mh match: only valid for protocol 135
[   71.908163][ T5430] Invalid logical block size (4)
[   71.945162][ T5434] loop3: detected capacity change from 0 to 512
[   71.967314][ T5434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.981208][ T5434] ext4 filesystem being mounted at /111/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.000211][ T5434] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.546: corrupted inode contents
[   72.012455][ T5434] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.546: mark_inode_dirty error
[   72.037547][ T5434] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.546: corrupted inode contents
[   72.051234][ T5434] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.546: mark_inode_dirty error
[   72.064758][ T5434] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.546: mark inode dirty (error -117)
[   72.080265][ T5434] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   72.114540][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.127815][ T5446] netlink: 12 bytes leftover after parsing attributes in process `syz.1.550'.
[   72.223066][ T5454] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[   72.238523][ T5454] random: crng reseeded on system resumption
[   72.264303][ T5464] loop0: detected capacity change from 0 to 164
[   72.272044][ T5464] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.287751][ T5464] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.297616][ T5464] Symlink component flag not implemented
[   72.303331][ T5464] Symlink component flag not implemented
[   72.310949][ T5464] Symlink component flag not implemented (7)
[   72.317005][ T5464] Symlink component flag not implemented (116)
[   72.383761][ T5471] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[   72.390443][ T5471] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   72.405577][ T5471] vhci_hcd vhci_hcd.0: Device attached
[   72.441994][ T5478] loop0: detected capacity change from 0 to 512
[   72.450095][ T5475] vhci_hcd: connection closed
[   72.450409][ T5269] vhci_hcd: stop threads
[   72.459523][ T5269] vhci_hcd: release socket
[   72.464013][ T5269] vhci_hcd: disconnect device
[   72.481709][ T5478] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.503857][ T5478] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.520146][ T5478] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.562: corrupted inode contents
[   72.533631][ T5478] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm syz.0.562: mark_inode_dirty error
[   72.547005][ T5478] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.562: corrupted inode contents
[   72.560262][ T5478] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.562: mark_inode_dirty error
[   72.572638][ T5478] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.562: mark inode dirty (error -117)
[   72.585597][ T5478] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   72.609496][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.878213][ T5523] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   73.291138][ T5539] loop4: detected capacity change from 0 to 512
[   73.301436][ T5539] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.572: corrupted in-inode xattr: invalid ea_ino
[   73.317260][ T5539] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.572: couldn't read orphan inode 15 (err -117)
[   73.329898][ T5539] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.376473][ T5549] loop0: detected capacity change from 0 to 512
[   73.384466][ T5549] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.576: bg 0: block 131: padding at end of block bitmap is not set
[   73.400347][ T5549] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   73.409354][ T5549] EXT4-fs (loop0): 1 truncate cleaned up
[   73.417271][ T5549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.688604][ T5556] FAULT_INJECTION: forcing a failure.
[   73.688604][ T5556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.701840][ T5556] CPU: 1 UID: 0 PID: 5556 Comm: syz.1.577 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   73.701918][ T5556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.701934][ T5556] Call Trace:
[   73.701942][ T5556]  <TASK>
[   73.701951][ T5556]  __dump_stack+0x1d/0x30
[   73.701977][ T5556]  dump_stack_lvl+0xe8/0x140
[   73.701998][ T5556]  dump_stack+0x15/0x1b
[   73.702022][ T5556]  should_fail_ex+0x265/0x280
[   73.702054][ T5556]  should_fail+0xb/0x20
[   73.702089][ T5556]  should_fail_usercopy+0x1a/0x20
[   73.702153][ T5556]  _copy_from_user+0x1c/0xb0
[   73.702173][ T5556]  ___sys_sendmsg+0xc1/0x1d0
[   73.702262][ T5556]  __x64_sys_sendmsg+0xd4/0x160
[   73.702302][ T5556]  x64_sys_call+0x2999/0x2fb0
[   73.702363][ T5556]  do_syscall_64+0xd2/0x200
[   73.702385][ T5556]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.702416][ T5556]  ? clear_bhb_loop+0x40/0x90
[   73.702475][ T5556]  ? clear_bhb_loop+0x40/0x90
[   73.702496][ T5556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.702596][ T5556] RIP: 0033:0x7f7fc54fe929
[   73.702626][ T5556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.702670][ T5556] RSP: 002b:00007f7fc3b67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.702689][ T5556] RAX: ffffffffffffffda RBX: 00007f7fc5725fa0 RCX: 00007f7fc54fe929
[   73.702703][ T5556] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000005
[   73.702719][ T5556] RBP: 00007f7fc3b67090 R08: 0000000000000000 R09: 0000000000000000
[   73.702755][ T5556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.702770][ T5556] R13: 0000000000000000 R14: 00007f7fc5725fa0 R15: 00007ffddeac10e8
[   73.702795][ T5556]  </TASK>
[   74.004599][ T5564] netlink: 60 bytes leftover after parsing attributes in process `syz.1.580'.
[   74.013973][ T5564] unsupported nlmsg_type 40
[   74.031702][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.099934][ T5574] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�p
[   74.323853][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.452106][ T5610] loop3: detected capacity change from 0 to 2048
[   74.491512][ T5348] ==================================================================
[   74.499661][ T5348] BUG: KCSAN: data-race in ppp_asynctty_receive / tty_set_termios
[   74.499699][ T5348] 
[   74.499705][ T5348] write to 0xffff888119cfe508 of 44 bytes by task 5619 on cpu 0:
[   74.499720][ T5348]  tty_set_termios+0xc0/0x8c0
[   74.499744][ T5348]  set_termios+0x496/0x4e0
[   74.499767][ T5348]  tty_mode_ioctl+0x379/0x5c0
[   74.499790][ T5348]  ppp_asynctty_ioctl+0x13f/0x2d0
[   74.499815][ T5348]  tty_ioctl+0x845/0xb80
[   74.499843][ T5348]  __se_sys_ioctl+0xce/0x140
[   74.499870][ T5348]  __x64_sys_ioctl+0x43/0x50
[   74.499896][ T5348]  x64_sys_call+0x19a8/0x2fb0
[   74.499918][ T5348]  do_syscall_64+0xd2/0x200
[   74.499934][ T5348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.499955][ T5348] 
[   74.499960][ T5348] read to 0xffff888119cfe508 of 4 bytes by task 5348 on cpu 1:
[   74.499974][ T5348]  ppp_asynctty_receive+0x75c/0xd40
[   74.500000][ T5348]  tty_ldisc_receive_buf+0xbf/0xf0
[   74.500030][ T5348]  tty_port_default_receive_buf+0x59/0x90
[   74.500063][ T5348]  flush_to_ldisc+0x141/0x360
[   74.500099][ T5348]  process_scheduled_works+0x4ce/0x9d0
[   74.500129][ T5348]  worker_thread+0x582/0x770
[   74.500158][ T5348]  kthread+0x486/0x510
[   74.500176][ T5348]  ret_from_fork+0xda/0x150
[   74.500194][ T5348]  ret_from_fork_asm+0x1a/0x30
[   74.500215][ T5348] 
[   74.500219][ T5348] value changed: 0x00000500 -> 0x00038000
[   74.500233][ T5348] 
[   74.500236][ T5348] Reported by Kernel Concurrency Sanitizer on:
[   74.500247][ T5348] CPU: 1 UID: 0 PID: 5348 Comm: kworker/u8:66 Not tainted 6.16.0-rc3-syzkaller-00072-gee88bddf7f2f #0 PREEMPT(voluntary) 
[   74.500275][ T5348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.500289][ T5348] Workqueue: events_unbound flush_to_ldisc
[   74.500322][ T5348] ==================================================================
[   74.501101][ T5610]  loop3: p4 < >
[   74.552001][ T5623] loop2: detected capacity change from 0 to 512
[   74.558214][ T5623] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   74.559387][ T5623] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   74.559542][ T5623] EXT4-fs (loop2): 1 truncate cleaned up
[   74.559971][ T5623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.173005][ T5623] Set syz1 is full, maxelem 65536 reached
[   75.228528][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.