last executing test programs:

2.133986029s ago: executing program 3 (id=1454):
prctl$PR_GET_TSC(0x19, &(0x7f0000000080))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = gettid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='io_uring_task_add\x00', r2}, 0x18)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$SG_SET_RESERVED_SIZE(r4, 0x2275, &(0x7f0000000000)=0xc92b)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r6 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
mq_open(&(0x7f0000000b40)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
timer_gettime(r5, &(0x7f0000000000))

1.189749247s ago: executing program 3 (id=1467):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)

1.114560139s ago: executing program 3 (id=1468):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0xc})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000380))

1.05569051s ago: executing program 3 (id=1470):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1, 0x111000)
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000180))
r1 = socket$inet(0x10, 0x3, 0x0)
r2 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000000200)=ANY=[@ANYBLOB="120100c48a0000ff6d0412c540000102030109022d00010102a0750904000301030101070921020609010581030800ab00040905020300007f04bf00000000"], &(0x7f0000000cc0)={0xa, &(0x7f00000002c0)={0xa, 0x6, 0x200, 0xdd, 0x0, 0x3, 0x8, 0x93}, 0x179, &(0x7f0000000540)={0x5, 0xf, 0x179, 0x4, [@ptm_cap={0x3}, @generic={0xb1, 0x10, 0x8, "ecdd18230250046df4018e0e1215b2eeaa774d9dbb07d27150f41486e41366eb5b1d6a150041da2bc730329466ceeda4d6462b6fb24e30d499b9d8e958d01a17849aa102aeeaa191facab50a8816f8ab34ec8b2b98ee66158e7deee960a48a866a9e3425daa12dd740050e51dbac8d6a2216b30b2d467802f3a9bc369960304c70122da4f0c79a16818dd7828a424d849b05b70905cd1fed9239544b243abe705d978d81767ac305ce811905ca02"}, @generic={0xb9, 0x10, 0xa, "e0e4079ba889ffd291636d6afa95860d6004da27fa3daf0a141248f879a57f17e2e67d0ca4b0b3d97cbd176b62081f36fcd0a8f20d0302a7d2dee4a785b3d78727a018baa977adc181ec9ac8b679cec8f7ddf617c5fa69e2009a1a575bcc5f89459d7ab0496487fc4f1e65664bff064916224c08bf2f9cd0427e2fed0ee2bcac64a6ad0fcfea084c3c6fc89efca7667f5ef5afec565e39858820c63d1006bd25044af03dd8d0b781ea440644447ff5feda5d29fc7fe9"}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x1, 0x4, 0xa}]}, 0x5, [{0xed, &(0x7f00000009c0)=@string={0xed, 0x3, "9e2a5cb06f809073d938f2cdea4e34f50ed1e896b174172af6ac3822d4622ecb1960839140aa948a4fe010b5e7714e007825a91f2726d3a04f9a3ba5b451abd71d460c5d4f3cc6a95badcf5693d7807deaf55a16ec644fe2f0b1a7f55ab078c9e1641c0f864c87d010a88bca732fa07d1371ef1cc60cf55c64f4ef02e0b42e6edd4aa722ddd56e92151d3a78268d1325987540e34e44851809aa0f6fc6437f6c19bc901d4a3d51b0135c93789e39ab80632379b4874b3e8dc7c10fd5b54a7a699bae9385b48f3d2c767e3a4d91c0870074fede611356c292f84c7f4beae6697094bb53e2ff87c86f2b523e"}}, {0x4d, &(0x7f0000000ac0)=@string={0x4d, 0x3, "73b92a81059ca08b8d6fced795cb390b144a391da9e43818dae0d4df5e1834404be839cb5f5e5a22216da3edfc550047e029fb5d132e9fda2db8749a228378ecb536b894a86be1d86bca55"}}, {0x2a, &(0x7f0000000b40)=@string={0x2a, 0x3, "ffb8238fd8b54c6e9ed593f857713e1582f8472f74b04d16d7dd2be88551e0d6240418efad631bba"}}, {0xec, &(0x7f0000000b80)=@string={0xec, 0x3, "06f31a956fe82678f19d8500108c9f92c1909476b0b6c4c5412d1ed5ecd963009d7802b24691dc47443da8ea35736d3d18772831a1256d90eee56266266c96164fbf23a0bf3c84841f993c80392259066a967b450c89640ba92c8b0e73dfa6816a878277cc660463650d547d871a238e4335b773c0211acb5aabc09c9c5f0da896e3d3e73587d5fb0753e8489debbc33116d20343f89a2a63864c14804313a7e9dc29e18767adce835c51063960d89cc2b3d979dbc61112649d21d845e6c11ab7bbeb3d6eb8be66e3fdc092d7a3856b5f384c60bd6f9cd2654f359ce897611cbba5a7fff08f2aa5dc1c2"}}, {0x4, &(0x7f0000000c80)=@lang_id={0x4, 0x3, 0x426}}]})
syz_usb_control_io$hid(r2, &(0x7f0000000f40)={0x24, &(0x7f0000000d40)={0x20, 0x0, 0x89, {0x89, 0x22, "1db56fa015cb32d500865ed833e47ae8ad4dda5549608949aa0a31481a8b5f6db047a802e27729dc6de46954f1753c749ea652caae8963d8e8a494796f9490213c94ac4fa8ae8c1ac8a7db49b148171d3d0baa709b69a1a0a093a6e6c4514acae5d0ddc61cc320fa54277039816bd7d395844a3bb1e5a9b0ab8642e2c30f9d385d0769c2ca9958"}}, &(0x7f0000000e00)={0x0, 0x3, 0x86, @string={0x86, 0x3, "46b5a60a1c185d2652534e446618519039f9b0474fabb0a7cbb5a3ad1c5bc0af00d6cbf24a54530d18811129706eea554d8f0d8bc41abcfd1f9e3060f0875c28df1757b990f766a51d477f473a503e64d19ca58b94395681d17f8f244e2bf094e45bf844e96185938a13532cc806a5fbb52c978ebc66d0eed8bf6259ed033e3e53fff754"}}, &(0x7f0000000ec0)={0x0, 0x22, 0xd, {[@main=@item_012={0x0, 0x0, 0x9}, @main=@item_4={0x3, 0x0, 0x8, "42fe9742"}, @global=@item_012={0x0, 0x1, 0x2}, @main=@item_4={0x3, 0x0, 0x9, "30d8f2c7"}, @global=@item_012={0x0, 0x1, 0xb}]}}, &(0x7f0000000f00)={0x0, 0x21, 0x9, {0x9, 0x21, 0xfffb, 0x6, 0x1, {0x22, 0xde1}}}}, &(0x7f0000001240)={0x2c, &(0x7f0000000f80)={0x0, 0x16, 0xe8, "9019923e19a7f651f0dd8b76645377d387e53c824645255bced8700e86fd8142c1f1f5e92e2c17367dda50d52f9b63ef07e98540110e16b24bbc5adb3bfde58fd7d363ff55d2ca5b52b7b1e527f6b35419ae5649e7cf22df7c4d5dd1d6cad97f86748e7dc367dc67b39ccff9d12fbe41b8fbba9b47f9c53e24005073ca4edaa51d7b4e8d398701bc58d99c02598bc15a22365cb3ed3898169677e2ab009d0905f03b618d160892c2b663bafafe6eaa39d189a3c020c39dc011a3d0c2cde25b72db636e0f1ce278ebb652e20796dc293ccbbd96d1ac439c9697216fb692d744f545f77a77c0828eac"}, &(0x7f00000010c0)={0x0, 0xa, 0x1}, &(0x7f0000001100)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000001140)={0x20, 0x1, 0x8e, "dc2f162f8a4da683c7022604f67947d66a8efe866ea169cd3a24c386333256bea124347947caa1aff5c9a5d638bb61cf6d7ec2d83586e51baa968a629ec0a857ba6efc24d849ef0acf90618ac3572dd089c7044cd7678630786709e51a24142638878fac43b9d44f6ed6c682683afab311d2a80d88af833032fbd05f867779a010a339bb9bc916d814aa638b8dae"}, &(0x7f0000001200)={0x20, 0x3, 0x1, 0x4}})
signalfd4(r1, &(0x7f0000000000)={[0x1]}, 0x8, 0x180800)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r3, 0x6, 0x3, &(0x7f00000000c0), 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x3, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000001840), &(0x7f00000017c0)='%pi6   \x00'}, 0x20)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x5437, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)

1.007464441s ago: executing program 1 (id=1474):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
unlinkat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x200)

946.815392ms ago: executing program 4 (id=1475):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

940.124702ms ago: executing program 1 (id=1476):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000900000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000000000bf090000000000005509010000000000852000000300000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

906.568383ms ago: executing program 1 (id=1477):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
close(r0)

871.663363ms ago: executing program 4 (id=1479):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

842.473964ms ago: executing program 4 (id=1480):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0xc})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000380))

790.259504ms ago: executing program 4 (id=1483):
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90000, 0x1, @perf_bp={0x0, 0xc}, 0x115428, 0x0, 0x0, 0x7, 0x5f4b, 0x1, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x29f101e, &(0x7f00000001c0), 0xff, 0x52d, &(0x7f0000000640)="$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")
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, 0x0)
socket$netlink(0x10, 0x3, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000200)='mm_collapse_huge_page_swapin\x00'}, 0x18)
gettid()
r2 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000c00)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="360009000a0800003d3511350fcfef75ae7bb94cf4b3b137399acc9cdac49dfb6bbaa8c165ebf55b8d9feec4bc835e9929f383b9c29b29d6f66a70a2c31b396a129605099563dfc0a43c2858d84ed13058d3d6e6fdd5c161c1864d6ace2c8cc1", @ANYRES32, @ANYBLOB, @ANYBLOB="d0ba2759a610dcbeefa250d0ff5e5c4a44873d6a7e02e3cf5c4785e79f024965b19a567639cf89dd8b5a5968d8b54f62057c67762e2d57e4c167217e80f6b4feaaab2a3690152a808f17fa46cd9956bf1eb18328b4b329cf4bea607073410c700c76cd26cffc14e8c50a644f5e1928d25382ef62bd4398b90f1487d5f65a314685837f95bb4424611b3c6ecc7eb56c196f7b2ba763f497ecec6152433e0afeff2003eafa2f70dba8f13eeb7b517e75d6809c37038eb197f645aed101b1990db835ebc9d51f9f3e29f62c0ba51b4676df2ff7", @ANYRESHEX=r1], 0x20)
r3 = socket$netlink(0x10, 0x3, 0x400000000000004)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000040)=0x1000000, 0x4)
writev(r3, &(0x7f0000000100)=[{&(0x7f0000000180)="480000001400190d7ebdeb75fd0d9c562c84d8c033aae421962ea6ff3cd3c461ebe430a2ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6", 0x48}], 0x1)
bind$xdp(r2, &(0x7f0000000080)={0x2c, 0x4, 0x0, 0x19}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000017732d18d22a42cb1467f865947afb3d15d7cb831c71cac0788ffb93e37b3ac53d8408d63f60d4a89e3ed95816ee2ca2b154507d250524c639753ca65bac802c687127387b0b0b08aab7f4ee287174c7e753ea154a88c66d9593d361a14d6e6f5994dcba307713d7e47ec3214114d42a4b42954936a19177664291e2b8cdf63468095f"], 0x48)
ppoll(0x0, 0x0, &(0x7f00000002c0), &(0x7f0000000300)={[0x400]}, 0x8)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = memfd_create(&(0x7f0000000580)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec=\x9e\xc3\xfd\x85d\x0fl5\xf3\xbe\" 6\r<\xea\x8dz\xcf6\x99\x91\xear8p\xaaR\xd5\xa6\xab#N>\x9a\xdf\xea\x009\xfbB\xc1\xd0_\xc0\'Z\xeb\xd8\xaf\xf0\'J\xe2\xff\xe5x*;(p\xf7p\xce\xbb\xa7\xfe\x04\xd0t\x81\x1a\x1b?m/\x1ex\xf8\x88^\xbaU\xb9\xa6\xab\x8d\a\xa6\"\xd9\x13\xeb\xe2\rh\x8dsx\xaa!\xd5Q\xf8\xce*\x95\x0es\xfaZ\x94t\x19\xdc\xdc\xcf\x0f\x9a\xa2O>\xb9\xfc\x01\fW\xee\xffh\xbd\xb2\xb4z\xeb\x84\x13\x13u\x8f', 0x0)
write$bt_hci(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="01"], 0x2b)
syz_read_part_table(0x5be, &(0x7f00000005c0)="$eJzs2z9I3GcYB/DnTI5AMmTJlC5NhgwlSyRjbmjCeUmIrVzqElpIaEIIuekCgQs9COigNyjeII4uItzin8nzBidFwVnEwSI4uLQoBcHFK+LbXesfCHw+8PLwvu/37vk9w2/8Bd+0jvi73W5nIqJ97fS/7m3ku5593/Nj8ZeITPwWEb93fvfP0U0mJf7717tpv5n2E+PXW4N7T7ONjZf7914v1jrS/de0bkw2e888HBduKrd0s6+/XBiq5D6sF6rbA2ur3dO7+WLzRa0+8zz75G3KLad6NdVPUYkv8THeRClK8S7K59R/rLH14PB2oTH3/tFBV2t4oTPles4450n7f74z8qpefXx/9tbow8r8SnHnynGu9D/eLgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALt9UbulmX3+5MFTJfVgvVLcH1la7p3fzxeaLWn3mefbJ25RbTvVqqp+iEl/iY7yJUpTiXZTPqf9YY+vB4e1CY+79o4Ou1vBCZ8r1nHHOk/b/fGfkVb36+P7srdGHlfmV4s6V41zp2gU9AAAAAAAAAAAAAAAAAAAAAETEs8JPPxfz3fmITPwaET/89UfH0Xk7fe+eSbm7qW6m84nx663BvafZxsbL/XuvF2t/pvOvad2YbPZe+jCc2r8BAAD//1Z7laY=")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000540)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
ioctl$sock_inet_SIOCGIFADDR(r2, 0x8915, &(0x7f00000006c0)={'veth1_to_bond\x00', {0x2, 0x0, @private}})
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r5, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x1, 0x6000, @fd_index=0x2, 0x8, &(0x7f0000002680)=[{0x0}], 0x1, 0x1c, 0x1, {0x1}})
openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0xa0000, 0x0)

765.375716ms ago: executing program 1 (id=1485):
timer_create(0x2, 0x0, &(0x7f0000003b00)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000003b40)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='ns\x00')
getdents64(r3, 0xffffffffffffffff, 0x43)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
creat(&(0x7f0000000a40)='./bus\x00', 0x108)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
lsetxattr$security_selinux(&(0x7f00000001c0)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000200), &(0x7f0000000240)='system_u:object_r:net_conf_t:s0\x00', 0x20, 0x1)

714.161336ms ago: executing program 1 (id=1488):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000900000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000000000bf090000000000005509010000000000852000000300000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

684.655117ms ago: executing program 1 (id=1489):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = socket(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r2, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000040), 0x4)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write(r2, &(0x7f0000000000)='\"', 0xfdef)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e24, 0x6, @empty, 0x1}, 0x1c)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
fsopen(0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$XDP_MMAP_OFFSETS(0xffffffffffffffff, 0x11b, 0x1, &(0x7f0000000180), &(0x7f0000000080)=0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
connect$can_bcm(r4, &(0x7f0000000140), 0x10)

508.26233ms ago: executing program 0 (id=1497):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
unlinkat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x200)

488.659181ms ago: executing program 0 (id=1499):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000900000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000000000bf090000000000005509010000000000852000000300000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

438.996431ms ago: executing program 0 (id=1502):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)=""/62, 0x8c)

330.404253ms ago: executing program 4 (id=1503):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

319.262173ms ago: executing program 4 (id=1504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xfffffd26)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x401c5820, &(0x7f00000001c0)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000f00000000000000358b87279c645f922400", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a32"], 0x34}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/mnt\x00')
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x14}, 0x20000000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r6 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r6, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000500)={0x114, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x15}}}}, [@NL80211_ATTR_TID_CONFIG={0xec, 0x11d, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xf4}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1a00000000000000}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xd1}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x67}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x25}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x2d}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xfd}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xe}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x6}]}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x80}, 0x85)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0x1000, @dev={0xfe, 0x80, '\x00', 0x3f}, 0x2}, 0x1c)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f0000000040)=0xc210, 0x4)
unshare(0x4000400)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)

315.609754ms ago: executing program 0 (id=1505):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
sendfile(r0, r1, 0x0, 0x1000000000004)
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, 0xfffffffffffffffd)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES64=r0, @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x2000c801}, 0x0)

291.430034ms ago: executing program 0 (id=1506):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000140)={0x9, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x2, 0x9, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

259.122595ms ago: executing program 0 (id=1507):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = io_uring_setup(0x7af9, &(0x7f0000001740)={0x0, 0x20ed, 0x1000, 0x2, 0x223})
io_uring_register$IORING_REGISTER_FILES2(r1, 0xd, &(0x7f0000001b40)={0x1, 0x1, 0x0, &(0x7f0000001a80)=[{0x0}], 0x0}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r4=>0x0})
sendto$packet(r0, &(0x7f0000000040)="10208100", 0x4, 0x0, &(0x7f0000000340)={0x11, 0x8100, r4, 0x1, 0x0, 0x6, @local}, 0x14)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x1, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0xc45, 0x760b, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x2, 0xe0, 0x1, [{{0x9, 0x4, 0x0, 0x6, 0x1, 0x3, 0x1, 0x1, 0x2, {0x9, 0x21, 0x100, 0xff, 0x1, {0x22, 0x4db}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x9, 0x2, 0x2}}}}}]}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000200)={0xa, 0x6, 0x310, 0x1, 0x9, 0xb6, 0xff, 0x4}, 0xc1, &(0x7f00000006c0)={0x5, 0xf, 0xc1, 0x3, [@ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0x32, 0x8, 0x10, 0x4, 0xbf}, @generic={0xae, 0x10, 0x2, "3a10d588c5e151d5d78565863e5042442e5e8b57f8cc6ebd87023c285a7609c7a8954230b87ab1965d097c6556822be83dccee1011d9a96917a98bf949f7c99a3ea03ac4335d9cfecb3a21f2c9c503d299c059599e795db5fa553c37997f050c4f9b3b404b73e647bc1e33b868352d09a3264a7293c56db7ad87007ccee552bad9344706931be5afc47f0a5e89fb786fd1dcd33603ab5a0a1b6170775e308fd174562096c29e0e88ed9f6b"}]}, 0x6, [{0xfd, &(0x7f00000007c0)=@string={0xfd, 0x3, "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"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x860}}, {0xae, &(0x7f00000008c0)=@string={0xae, 0x3, "5fe239c97ba672639c6c4d86a1a84dd74584f5d53253493da89277511eaf7d7e765999358c3b60e34c86dee787125e4f1643109439fc6f64355ad60aa17fb1017613b4cd8fd42e44c79f7b3876f57e866ef43a37d4fcc4946766483a3e02c1d4289a8b6f57960a1b6c329dca71041738f51b1d2f8bef15903a6878e2316e4e88e792be99b6d98a3c0f348713dba3bf67cc72712adf83c81f14b3ca230b941a6185032bae1da3f98ade9f831c"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x3409}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x1c01}}, {0xfb, &(0x7f0000000a00)=@string={0xfb, 0x3, "f2ff3d60452cabb00d0bd06666839fd9d60953a20ee1b05e7afe75e1363ee0ee7f21f5432ef8f05b20126a7d629c0cb36a6a29b652aa52f0d1a429471a66fb2d666a4798d73e1fa37477c49f3451b853028dc51a7d16f231b0d47c06c2b6bf1a67160585cc8571a318a50316ddd97de43a942d42f663f8be87b4d0b5295a14eb326c696b77b488f3698b41d88c7a6ccd408e39ee167f76b900c6bad98448d8b24ccfa13156b489299b25dd78b2fa73a7fd7fe1d87b505cad0d2026cba8e0189f2f0729e42f6576ebb1a173058bd76dfbcc6764fe14ddf74a4d73f4099bf18b82d3d6a2eebb134b04ab7f402e4c90f35953213fce60b9553a39"}}]})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r7, 0x0)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r8, &(0x7f0000000380)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000002c0)=[{&(0x7f0000000600)=""/183, 0xb7}], 0x1, 0x0, 0x6}}], 0x48}, 0x0)

225.030886ms ago: executing program 2 (id=1508):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
fchown(0xffffffffffffffff, 0x0, 0x0)

195.392306ms ago: executing program 2 (id=1509):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
unlinkat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x200)

158.838147ms ago: executing program 3 (id=1510):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
sendfile(r0, r1, 0x0, 0x1000000000004)
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, 0xfffffffffffffffd)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
sendmsg$NFT_MSG_GETSET(r2, 0x0, 0x0)

145.082317ms ago: executing program 2 (id=1511):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000900000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000000000bf090000000000005509010000000000852000000300000095"], 0x0, 0x8, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

140.526237ms ago: executing program 3 (id=1512):
syz_emit_ethernet(0x36, &(0x7f0000000740)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff0806032389170606000affffffffffff25e6f5ada08aaaaaaaaaaa1c2c9f673d58ac18ca7e914bd250e7b2c66ce2c3d70a01ce78fde91cf343ef65b6e2c39a70e67e911f4acc42919063443373bd2f9ad3a960a92d7ac57a1321d35531a24e81bb8e813ca6506f520806023776fe"], &(0x7f0000000500)={0x0, 0x1, [0x93e, 0x942, 0x7fc, 0x254]})
r0 = epoll_create1(0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x4}]}}}, @IFLA_LINK={0x8, 0x5, r3}]}, 0x4c}, 0x1, 0xba01, 0x0, 0x4004001}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup/syz0\x00', 0x200002, 0x0)
epoll_pwait2(r0, &(0x7f0000000000)=[{}, {}, {}], 0x3, &(0x7f0000000080)={0x77359400}, &(0x7f0000000280)={[0x3]}, 0x8)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRES32=r4], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="abbc45ec2bf16986996ff52c9c5003ee7ff176fe3ea06f7951a12042664ef61a3f42fa35887a1dd8940456a5404cc717782d9b55f717422085189b", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='syzkaller\x00', 0xbf86, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r6 = io_uring_setup(0x156f, &(0x7f00000002c0)={0x0, 0x4005275, 0x2, 0xd, 0x21})
pause()
close_range(r6, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r8=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000040000000900"], 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="020000000400000007000000020000000010"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r10}, 0x10)
setregid(0x0, 0x0)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r7, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0x48, 0x40000, &(0x7f0000000540)={0xc9, 0x0, r8, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x36}}, 0x14)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
getuid()
dup(r4)

101.226278ms ago: executing program 2 (id=1513):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

56.270838ms ago: executing program 2 (id=1514):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)

0s ago: executing program 2 (id=1515):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)=""/62, 0x8c)

kernel console output (not intermixed with test programs):

] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29'.
[   37.193490][ T3533] infiniband syz1: set active
[   37.194923][ T3539] netlink: 24 bytes leftover after parsing attributes in process `syz.1.34'.
[   37.198235][ T3533] infiniband syz1: added syz_tun
[   37.229640][ T3533] RDS/IB: syz1: added
[   37.233701][ T3533] smc: adding ib device syz1 with port count 1
[   37.241320][ T3533] smc:    ib device syz1 port 1 has pnetid 
[   37.341626][ T3544] can0: slcan on ptm0.
[   37.458110][ T3543] can0 (unregistered): slcan off ptm0.
[   37.574787][ T3533] syz.3.31 (3533) used greatest stack depth: 10624 bytes left
[   37.763832][ T3565] ip6tnl1: entered promiscuous mode
[   37.769093][ T3565] ip6tnl1: entered allmulticast mode
[   37.775906][ T3565] team0: Device ip6tnl1 is of different type
[   38.185175][ T3542] dccp_close: ABORT with 52 bytes unread
[   38.281343][ T3590] netlink: 8 bytes leftover after parsing attributes in process `syz.1.48'.
[   38.352387][ T3596] netlink: 68 bytes leftover after parsing attributes in process `syz.3.51'.
[   38.412400][ T3605] syz.1.53 uses obsolete (PF_INET,SOCK_PACKET)
[   38.524639][ T3619] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   38.541174][ T3621] can0: slcan on ptm0.
[   38.604721][ T3620] can0 (unregistered): slcan off ptm0.
[   38.640277][ T3632] syz_tun: entered allmulticast mode
[   38.671640][   T29] kauditd_printk_skb: 103 callbacks suppressed
[   38.671729][   T29] audit: type=1400 audit(1743702036.031:223): avc:  denied  { ioctl } for  pid=3631 comm="syz.3.60" path="socket:[5303]" dev="sockfs" ino=5303 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   38.674984][ T3632] dvmrp1: entered allmulticast mode
[   38.715403][   T29] audit: type=1400 audit(1743702036.081:224): avc:  denied  { execute } for  pid=3635 comm="syz.4.62" path="/13/cpu.stat" dev="tmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   38.771344][ T3631] syz_tun: left allmulticast mode
[   38.781869][ T3631] dvmrp1: left allmulticast mode
[   38.830636][ T3644] Illegal XDP return value 59662336 on prog  (id 5) dev N/A, expect packet loss!
[   38.968551][   T29] audit: type=1400 audit(1743702036.331:225): avc:  denied  { getopt } for  pid=3639 comm="syz.1.64" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   39.162461][ T3660] can0: slcan on ptm0.
[   39.304945][ T3659] can0 (unregistered): slcan off ptm0.
[   39.428729][   T29] audit: type=1400 audit(1743702036.791:226): avc:  denied  { name_bind } for  pid=3677 comm="syz.3.79" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   39.449811][   T29] audit: type=1400 audit(1743702036.791:227): avc:  denied  { node_bind } for  pid=3677 comm="syz.3.79" saddr=::1 src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   39.573655][   T29] audit: type=1400 audit(1743702036.931:228): avc:  denied  { getopt } for  pid=3683 comm="syz.2.81" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   39.608752][ T3685] netlink: 24 bytes leftover after parsing attributes in process `syz.3.80'.
[   39.619737][ T3685] netlink: 4 bytes leftover after parsing attributes in process `syz.3.80'.
[   40.388802][   T29] audit: type=1400 audit(1743702037.751:229): avc:  denied  { create } for  pid=3704 comm="syz.2.89" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   40.463616][   T29] audit: type=1400 audit(1743702037.771:230): avc:  denied  { setopt } for  pid=3704 comm="syz.2.89" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   40.482938][   T29] audit: type=1400 audit(1743702037.781:231): avc:  denied  { create } for  pid=3713 comm="syz.3.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   40.502088][   T29] audit: type=1400 audit(1743702037.781:232): avc:  denied  { getopt } for  pid=3713 comm="syz.3.91" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   40.618860][ T3731] capability: warning: `syz.1.98' uses deprecated v2 capabilities in a way that may be insecure
[   40.804898][ T3744] netlink: 24 bytes leftover after parsing attributes in process `syz.3.104'.
[   40.890295][ T3744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.104'.
[   41.537429][ T3781] netlink: 'syz.2.118': attribute type 10 has an invalid length.
[   41.554718][ T3781] bridge0: port 3(team0) entered blocking state
[   41.561094][ T3781] bridge0: port 3(team0) entered disabled state
[   41.607124][ T3781] team0: entered allmulticast mode
[   41.612272][ T3781] team_slave_0: entered allmulticast mode
[   41.618074][ T3781] team_slave_1: entered allmulticast mode
[   41.739669][ T3781] team0: entered promiscuous mode
[   41.744814][ T3781] team_slave_0: entered promiscuous mode
[   41.750565][ T3781] team_slave_1: entered promiscuous mode
[   41.921873][ T3781] bridge0: port 3(team0) entered blocking state
[   41.928210][ T3781] bridge0: port 3(team0) entered forwarding state
[   42.005852][ T3782] vlan0: entered promiscuous mode
[   42.039611][ T3782] vlan0: entered allmulticast mode
[   42.044825][ T3782] veth0_vlan: entered allmulticast mode
[   42.063119][ T3782] team0: Port device vlan0 added
[   42.094718][ T3782] syz.2.118 (3782) used greatest stack depth: 10616 bytes left
[   42.153482][ T3792] rdma_rxe: rxe_newlink: failed to add syz_tun
[   42.287404][ T3799] ucma_write: process 52 (syz.0.126) changed security contexts after opening file descriptor, this is not allowed.
[   42.334884][ T3802] tmpfs: Unknown parameter 'usrquota'
[   42.744376][ T3826] tmpfs: Unknown parameter 'usrquota'
[   43.491438][ T3841] netlink: 16 bytes leftover after parsing attributes in process `syz.1.143'.
[   43.529790][ T3823] dccp_close: ABORT with 88 bytes unread
[   43.630503][ T3851] Zero length message leads to an empty skb
[   43.676925][ T3381] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   43.684360][ T3381] hid-generic 0000:0003:0000.0001: unknown main item tag 0x0
[   43.698241][   T29] kauditd_printk_skb: 19 callbacks suppressed
[   43.698258][   T29] audit: type=1400 audit(1743702041.061:252): avc:  denied  { setopt } for  pid=3856 comm="syz.2.151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   43.715253][ T3381] hid-generic 0000:0003:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   43.763741][   T29] audit: type=1326 audit(1743702041.111:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3858 comm="syz.3.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   43.787249][   T29] audit: type=1326 audit(1743702041.111:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3858 comm="syz.3.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   43.810864][   T29] audit: type=1326 audit(1743702041.111:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3858 comm="syz.3.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   43.834342][   T29] audit: type=1326 audit(1743702041.111:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3858 comm="syz.3.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   43.857770][   T29] audit: type=1326 audit(1743702041.111:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3858 comm="syz.3.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   44.023682][ T3890] syz1: rxe_newlink: already configured on syz_tun
[   44.173157][ T3901] syz_tun: entered allmulticast mode
[   44.191878][ T3901] dvmrp1: entered allmulticast mode
[   44.286734][ T3899] syz_tun: left allmulticast mode
[   44.292783][ T3899] dvmrp1: left allmulticast mode
[   44.574612][   T29] audit: type=1326 audit(1743702041.921:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3915 comm="syz.3.174" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x0
[   44.728097][   T29] audit: type=1400 audit(1743702042.091:259): avc:  denied  { append } for  pid=3935 comm="syz.1.183" name="vsock" dev="devtmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   44.955575][ T3949] netlink: 24 bytes leftover after parsing attributes in process `syz.2.189'.
[   44.987017][ T3949] netlink: 4 bytes leftover after parsing attributes in process `syz.2.189'.
[   45.028578][   T29] audit: type=1400 audit(1743702042.381:260): avc:  denied  { read write } for  pid=3955 comm="syz.4.191" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   45.065541][   T29] audit: type=1400 audit(1743702042.421:261): avc:  denied  { open } for  pid=3955 comm="syz.4.191" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   45.096291][ T3949] syz.2.189 (3949) used greatest stack depth: 10576 bytes left
[   45.977988][ T4016] ip6tnl1: entered promiscuous mode
[   45.983240][ T4016] ip6tnl1: entered allmulticast mode
[   45.989938][ T4016] team0: Device ip6tnl1 is of different type
[   46.177879][ T4023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.248507][ T4023] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.324518][ T4030] tipc: Can't bind to reserved service type 1
[   46.381359][ T4034] netlink: 24 bytes leftover after parsing attributes in process `syz.1.225'.
[   46.399171][ T4034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.225'.
[   46.499750][ T4040] syz1: rxe_newlink: already configured on syz_tun
[   46.525499][ T4044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.536696][ T4044] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.632379][ T4060] netlink: 24 bytes leftover after parsing attributes in process `syz.1.237'.
[   46.649340][ T4060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.237'.
[   47.208338][ T4080] rdma_rxe: rxe_newlink: failed to add syz_tun
[   48.429192][ T4143] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.740245][ T4146] rdma_rxe: rxe_newlink: failed to add syz_tun
[   49.241676][ T4154] dccp_close: ABORT with 56 bytes unread
[   49.553430][   T29] kauditd_printk_skb: 32 callbacks suppressed
[   49.553443][   T29] audit: type=1400 audit(1743702046.911:294): avc:  denied  { write } for  pid=4178 comm="syz.3.273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   49.625992][   T29] audit: type=1326 audit(1743702046.991:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.697531][   T29] audit: type=1326 audit(1743702047.021:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.721013][   T29] audit: type=1326 audit(1743702047.021:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.744351][   T29] audit: type=1326 audit(1743702047.021:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.768376][   T29] audit: type=1326 audit(1743702047.021:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.791982][   T29] audit: type=1326 audit(1743702047.021:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.815594][   T29] audit: type=1326 audit(1743702047.021:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.838971][   T29] audit: type=1326 audit(1743702047.021:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.862513][   T29] audit: type=1326 audit(1743702047.021:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4185 comm="syz.0.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   49.936009][ T4201] gtp0: entered promiscuous mode
[   50.276134][    C0] hrtimer: interrupt took 36981 ns
[   50.397597][ T4234] rdma_rxe: rxe_newlink: failed to add syz_tun
[   50.473506][ T4242] syz_tun: entered allmulticast mode
[   50.509054][ T4242] dvmrp1: entered allmulticast mode
[   50.518481][ T4241] syz_tun: left allmulticast mode
[   50.541418][ T4241] dvmrp1: left allmulticast mode
[   50.733058][ T4266] rdma_rxe: rxe_newlink: failed to add syz_tun
[   50.814071][ T4276] netlink: 24 bytes leftover after parsing attributes in process `syz.0.315'.
[   50.834312][ T4276] netlink: 4 bytes leftover after parsing attributes in process `syz.0.315'.
[   50.959192][ T4283] syz_tun: entered allmulticast mode
[   50.983817][ T4283] dvmrp1: entered allmulticast mode
[   51.004022][ T4282] syz_tun: left allmulticast mode
[   51.014908][ T4282] dvmrp1: left allmulticast mode
[   51.185345][ T4303] netlink: 24 bytes leftover after parsing attributes in process `syz.0.329'.
[   51.202796][ T4303] netlink: 4 bytes leftover after parsing attributes in process `syz.0.329'.
[   51.300595][ T4317] syz_tun: entered allmulticast mode
[   51.309604][ T4317] dvmrp1: entered allmulticast mode
[   51.316489][ T4316] syz_tun: left allmulticast mode
[   51.321694][ T4316] dvmrp1: left allmulticast mode
[   51.466081][ T4324] random: crng reseeded on system resumption
[   51.570728][ T4334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.343'.
[   51.628411][ T4345] syz_tun: entered allmulticast mode
[   51.644362][ T4345] dvmrp1: entered allmulticast mode
[   51.650699][ T4344] syz_tun: left allmulticast mode
[   51.655903][ T4344] dvmrp1: left allmulticast mode
[   51.735116][ T4359] IPv6: NLM_F_CREATE should be specified when creating new route
[   51.821114][ T4372] netlink: 4 bytes leftover after parsing attributes in process `syz.1.360'.
[   51.871326][ T4380] syz_tun: entered allmulticast mode
[   51.880579][ T4380] dvmrp1: entered allmulticast mode
[   51.887462][ T4379] syz_tun: left allmulticast mode
[   51.892651][ T4379] dvmrp1: left allmulticast mode
[   52.567282][ T4424] can0: slcan on ptm0.
[   52.614663][ T4423] can0 (unregistered): slcan off ptm0.
[   52.785960][ T4433] random: crng reseeded on system resumption
[   52.868276][ T4443] netlink: 24 bytes leftover after parsing attributes in process `syz.1.387'.
[   52.906047][ T4452] netlink: 24 bytes leftover after parsing attributes in process `syz.4.390'.
[   52.910244][ T4443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.387'.
[   53.001322][ T4469] can0: slcan on ptm0.
[   53.055882][ T4467] can0 (unregistered): slcan off ptm0.
[   53.192816][ T4506] netlink: 24 bytes leftover after parsing attributes in process `syz.2.404'.
[   54.704552][   T29] kauditd_printk_skb: 296 callbacks suppressed
[   54.704570][   T29] audit: type=1326 audit(1743702052.051:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.734269][   T29] audit: type=1326 audit(1743702052.051:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.757666][   T29] audit: type=1326 audit(1743702052.051:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.781111][   T29] audit: type=1326 audit(1743702052.051:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.804478][   T29] audit: type=1326 audit(1743702052.051:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.827978][   T29] audit: type=1326 audit(1743702052.051:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.851310][   T29] audit: type=1326 audit(1743702052.051:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.874674][   T29] audit: type=1326 audit(1743702052.051:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.898054][   T29] audit: type=1326 audit(1743702052.051:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   54.921227][   T29] audit: type=1326 audit(1743702052.051:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dafe1d169 code=0x7ffc0000
[   55.195585][ T4575] capability: warning: `+}[@' uses 32-bit capabilities (legacy support in use)
[   55.299107][ T4587] syz1: rxe_newlink: already configured on syz_tun
[   55.322980][ T4589] syz_tun: entered allmulticast mode
[   55.331423][ T4589] dvmrp1: entered allmulticast mode
[   55.488141][ T4607] IPv6: NLM_F_CREATE should be specified when creating new route
[   56.538564][ T4667] loop3: detected capacity change from 0 to 256
[   56.547051][ T4667] vfat: Unknown parameter '��������'
[   56.875056][ T4693] random: crng reseeded on system resumption
[   57.002398][ T4695] __nla_validate_parse: 4 callbacks suppressed
[   57.002414][ T4695] netlink: 24 bytes leftover after parsing attributes in process `syz.2.482'.
[   57.051510][ T4697] loop2: detected capacity change from 0 to 512
[   57.078585][ T4697] EXT4-fs error (device loop2): ext4_iget_extra_inode:4692: inode #15: comm syz.2.483: corrupted in-inode xattr: invalid ea_ino
[   57.092651][ T4697] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.483: couldn't read orphan inode 15 (err -117)
[   57.106949][ T4697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.149398][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.312209][ T4704] syz_tun: entered allmulticast mode
[   57.326611][ T4704] dvmrp1: entered allmulticast mode
[   57.363039][ T4706] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4706 comm=syz.2.484
[   57.467262][ T4715] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.580605][ T4715] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.627679][ T4715] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.667742][ T4715] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.768208][ T4715] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.781075][ T4715] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.807780][ T4715] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.819529][ T4715] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.963871][ T4755] netlink: 8 bytes leftover after parsing attributes in process `syz.3.507'.
[   58.020690][ T4760] netlink: 28 bytes leftover after parsing attributes in process `syz.1.509'.
[   58.108304][ T4762] gtp0: entered promiscuous mode
[   58.382695][ T4786] loop3: detected capacity change from 0 to 512
[   58.441459][ T4786] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   58.454653][ T4786] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   58.555709][ T4786] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   58.569967][ T4786] EXT4-fs (loop3): 1 truncate cleaned up
[   58.582962][ T4786] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.811414][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.920784][ T4816] loop2: detected capacity change from 0 to 512
[   58.928220][ T4816] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   58.946549][ T4816] EXT4-fs (loop2): 1 truncate cleaned up
[   58.953783][ T4816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.987773][ T4821] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4821 comm=syz.1.535
[   59.009748][ T4821] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4821 comm=syz.1.535
[   59.022711][ T4821] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4821 comm=syz.1.535
[   59.046707][ T4825] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.138128][ T4825] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.150348][ T4827] random: crng reseeded on system resumption
[   59.175832][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.241093][ T4834] loop4: detected capacity change from 0 to 512
[   59.252157][ T4825] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.263549][ T4834] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   59.281989][ T4834] EXT4-fs (loop4): 1 truncate cleaned up
[   59.289463][ T4834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.310543][ T4839] rdma_rxe: rxe_newlink: failed to add syz_tun
[   59.346569][ T4825] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.405529][ T4825] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.417643][ T4825] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.430450][ T4825] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.430567][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.442744][ T4825] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.582423][ T4857] netlink: 8 bytes leftover after parsing attributes in process `syz.2.549'.
[   59.651626][ T4866] netlink: 48 bytes leftover after parsing attributes in process `syz.2.552'.
[   59.714637][   T29] kauditd_printk_skb: 310 callbacks suppressed
[   59.714655][   T29] audit: type=1326 audit(1743702057.071:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.744169][   T29] audit: type=1326 audit(1743702057.071:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.767427][   T29] audit: type=1326 audit(1743702057.071:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.790813][   T29] audit: type=1326 audit(1743702057.071:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f821637bad0 code=0x7ffc0000
[   59.814277][   T29] audit: type=1326 audit(1743702057.071:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.845707][   T29] audit: type=1326 audit(1743702057.071:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.869028][   T29] audit: type=1326 audit(1743702057.081:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.869060][   T29] audit: type=1326 audit(1743702057.081:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.869134][   T29] audit: type=1326 audit(1743702057.091:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   59.869163][   T29] audit: type=1326 audit(1743702057.091:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.0.556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   60.456791][ T4922] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4922 comm=syz.4.579
[   60.475053][ T4922] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.527509][ T4922] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.577226][ T4922] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.608786][ T4927] loop2: detected capacity change from 0 to 1024
[   60.636066][ T4927] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[   60.649264][ T4922] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.669696][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[   60.702496][ T4922] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.715374][ T4922] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.729666][ T4922] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.741022][ T4922] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.691821][ T4965] can0: slcan on ptm0.
[   61.744559][ T4964] can0 (unregistered): slcan off ptm0.
[   61.881470][ T5003] loop4: detected capacity change from 0 to 512
[   61.890166][ T5003] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   61.910627][ T5003] EXT4-fs (loop4): 1 truncate cleaned up
[   61.916878][ T5003] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.042262][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.514992][ T5033] loop3: detected capacity change from 0 to 512
[   62.522092][ T5033] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   62.533505][ T5033] EXT4-fs (loop3): 1 truncate cleaned up
[   62.539610][ T5033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.644645][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.691132][ T5046] loop3: detected capacity change from 0 to 512
[   62.699575][ T5046] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   62.711261][ T5046] EXT4-fs (loop3): 1 truncate cleaned up
[   62.718716][ T5046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.811887][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.154877][ T5073] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5073 comm=syz.2.630
[   63.171801][ T5073] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.216476][ T5073] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.256000][ T5073] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.304136][ T5078] syz_tun: entered allmulticast mode
[   63.313708][ T5078] dvmrp1: entered allmulticast mode
[   63.320415][ T5073] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.331533][ T5077] syz_tun: left allmulticast mode
[   63.336730][ T5077] dvmrp1: left allmulticast mode
[   63.382409][ T5073] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.396213][ T5073] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.407901][ T5073] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.420654][ T5073] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.643100][ T5099] loop1: detected capacity change from 0 to 512
[   63.650209][ T5099] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   63.676416][ T5099] EXT4-fs (loop1): 1 truncate cleaned up
[   63.682890][ T5099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.809114][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.850067][ T5111] gtp0: entered promiscuous mode
[   63.936301][ T5116] loop4: detected capacity change from 0 to 512
[   63.943332][ T5116] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   63.955372][ T5116] EXT4-fs (loop4): 1 truncate cleaned up
[   63.961366][ T5116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.082675][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.179648][ T5130] netlink: 20 bytes leftover after parsing attributes in process `syz.0.650'.
[   64.602611][ T5157] loop2: detected capacity change from 0 to 512
[   64.624618][ T5157] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   64.649498][ T5157] EXT4-fs (loop2): 1 truncate cleaned up
[   64.650723][ T5166] loop4: detected capacity change from 0 to 512
[   64.667250][ T5166] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   64.689213][ T5166] EXT4-fs (loop4): 1 truncate cleaned up
[   64.695687][ T5157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.719724][ T5166] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.732274][   T29] kauditd_printk_skb: 404 callbacks suppressed
[   64.732288][   T29] audit: type=1326 audit(1743702062.091:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.761917][   T29] audit: type=1326 audit(1743702062.091:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.850374][   T29] audit: type=1326 audit(1743702062.091:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.873837][   T29] audit: type=1326 audit(1743702062.091:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.873864][   T29] audit: type=1326 audit(1743702062.091:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.873892][   T29] audit: type=1326 audit(1743702062.101:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.873921][   T29] audit: type=1326 audit(1743702062.101:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.874013][   T29] audit: type=1326 audit(1743702062.101:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   64.874042][   T29] audit: type=1326 audit(1743702062.151:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0a923d169 code=0x7ffc0000
[   65.014765][   T29] audit: type=1326 audit(1743702062.151:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5156 comm="syz.2.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa0a923bad0 code=0x7ffc0000
[   65.062069][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.073058][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.299939][ T5208] loop4: detected capacity change from 0 to 512
[   65.307069][ T5208] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   65.320089][ T5208] EXT4-fs (loop4): 1 truncate cleaned up
[   65.334459][ T5208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.431346][ T5215] rdma_rxe: rxe_newlink: failed to add syz_tun
[   65.476544][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.959388][ T5240] netlink: 24 bytes leftover after parsing attributes in process `syz.3.694'.
[   65.980329][ T5240] netlink: 4 bytes leftover after parsing attributes in process `syz.3.694'.
[   66.181324][ T5248] syz1: rxe_newlink: already configured on syz_tun
[   66.312575][ T5245] random: crng reseeded on system resumption
[   66.596049][ T5265] rdma_rxe: rxe_newlink: failed to add syz_tun
[   66.609480][ T5266] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.723025][ T5266] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.803154][ T5266] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.867336][ T5266] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.089382][ T5266] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.172869][ T5266] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.236923][ T5266] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.286379][ T5266] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.711095][ T5297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5297 comm=syz.4.717
[   67.723877][ T5297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5297 comm=syz.4.717
[   67.736337][ T5297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5297 comm=syz.4.717
[   67.750279][ T5297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5297 comm=syz.4.717
[   67.832446][ T5304] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.935828][ T5322] loop3: detected capacity change from 0 to 512
[   67.946596][ T5304] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.017011][ T5322] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   68.029121][ T5304] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.045014][ T5322] EXT4-fs (loop3): 1 truncate cleaned up
[   68.051482][ T5322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.172364][ T5304] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.815062][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.968295][ T5342] netlink: 12 bytes leftover after parsing attributes in process `syz.3.736'.
[   69.063045][ T5352] syz1: rxe_newlink: already configured on syz_tun
[   69.161090][ T5362] rdma_rxe: rxe_newlink: failed to add syz_tun
[   69.230217][ T5368] loop1: detected capacity change from 0 to 512
[   69.238703][ T5368] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   69.251249][ T5368] EXT4-fs (loop1): 1 truncate cleaned up
[   69.258128][ T5368] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.392008][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.427206][ T5381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.753'.
[   69.436158][ T5381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.753'.
[   69.456665][ T5383] loop3: detected capacity change from 0 to 512
[   69.463626][ T5383] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   69.480349][ T5383] EXT4-fs (loop3): 1 truncate cleaned up
[   69.486997][ T5383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.593474][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.025338][ T5406] random: crng reseeded on system resumption
[   70.427809][ T5415] syz1: rxe_newlink: already configured on syz_tun
[   70.529959][ T5422] netlink: 24 bytes leftover after parsing attributes in process `syz.1.768'.
[   70.573447][   T29] kauditd_printk_skb: 272 callbacks suppressed
[   70.573464][   T29] audit: type=1326 audit(1743702067.931:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.603998][   T29] audit: type=1326 audit(1743702067.931:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.627441][   T29] audit: type=1326 audit(1743702067.941:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.651078][   T29] audit: type=1326 audit(1743702067.941:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.674457][   T29] audit: type=1326 audit(1743702067.941:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.698047][   T29] audit: type=1326 audit(1743702067.941:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.721477][   T29] audit: type=1326 audit(1743702067.941:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.744867][   T29] audit: type=1326 audit(1743702067.941:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.768254][   T29] audit: type=1326 audit(1743702067.941:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.791658][   T29] audit: type=1326 audit(1743702067.941:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5428 comm="syz.1.770" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   70.876197][ T5438] FAULT_INJECTION: forcing a failure.
[   70.876197][ T5438] name failslab, interval 1, probability 0, space 0, times 1
[   70.888919][ T5438] CPU: 0 UID: 0 PID: 5438 Comm: syz.0.775 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   70.888951][ T5438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   70.889018][ T5438] Call Trace:
[   70.889024][ T5438]  <TASK>
[   70.889030][ T5438]  dump_stack_lvl+0xf6/0x150
[   70.889051][ T5438]  dump_stack+0x15/0x1a
[   70.889111][ T5438]  should_fail_ex+0x261/0x270
[   70.889134][ T5438]  should_failslab+0x8f/0xb0
[   70.889165][ T5438]  kmem_cache_alloc_noprof+0x59/0x340
[   70.889185][ T5438]  ? audit_log_start+0x37f/0x6e0
[   70.889253][ T5438]  audit_log_start+0x37f/0x6e0
[   70.889283][ T5438]  ? kstrtouint+0x7b/0xc0
[   70.889306][ T5438]  audit_seccomp+0x4b/0x130
[   70.889322][ T5438]  __seccomp_filter+0x694/0x10e0
[   70.889357][ T5438]  ? update_load_avg+0x204/0x810
[   70.889372][ T5438]  ? __list_add_valid_or_report+0x38/0xe0
[   70.889402][ T5438]  ? switch_ldt+0x7f/0x140
[   70.889424][ T5438]  ? __set_next_task_fair+0x5e/0x160
[   70.889456][ T5438]  ? __switch_to+0x476/0x9f0
[   70.889482][ T5438]  ? _raw_spin_unlock+0x26/0x50
[   70.889536][ T5438]  __secure_computing+0x7e/0x160
[   70.889561][ T5438]  syscall_trace_enter+0xcf/0x1f0
[   70.889588][ T5438]  do_syscall_64+0xaa/0x1c0
[   70.889681][ T5438]  ? clear_bhb_loop+0x25/0x80
[   70.889700][ T5438]  ? clear_bhb_loop+0x25/0x80
[   70.889718][ T5438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.889742][ T5438] RIP: 0033:0x7f821637d169
[   70.889758][ T5438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.889788][ T5438] RSP: 002b:00007f82149df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[   70.889803][ T5438] RAX: ffffffffffffffda RBX: 00007f8216595fa0 RCX: 00007f821637d169
[   70.889813][ T5438] RDX: 0000000000000003 RSI: 0000000000000003 RDI: 0000000000000000
[   70.889885][ T5438] RBP: 00007f82149df090 R08: 0000000000000000 R09: 0000000000000000
[   70.889895][ T5438] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[   70.889905][ T5438] R13: 0000000000000000 R14: 00007f8216595fa0 R15: 00007ffd2d03e098
[   70.889923][ T5438]  </TASK>
[   71.183746][ T5448] loop1: detected capacity change from 0 to 256
[   71.343816][ T5451] loop3: detected capacity change from 0 to 4096
[   71.353796][ T5451] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.377903][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.450131][ T5304] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.461051][ T5304] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.471932][ T5304] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.483047][ T5304] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.720104][ T5470] IPv6: NLM_F_CREATE should be specified when creating new route
[   71.803061][ T5475] FAULT_INJECTION: forcing a failure.
[   71.803061][ T5475] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   71.816361][ T5475] CPU: 0 UID: 0 PID: 5475 Comm: syz.0.788 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   71.816387][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   71.816398][ T5475] Call Trace:
[   71.816404][ T5475]  <TASK>
[   71.816411][ T5475]  dump_stack_lvl+0xf6/0x150
[   71.816435][ T5475]  dump_stack+0x15/0x1a
[   71.816452][ T5475]  should_fail_ex+0x261/0x270
[   71.816508][ T5475]  should_fail+0xb/0x10
[   71.816534][ T5475]  should_fail_usercopy+0x1a/0x20
[   71.816566][ T5475]  _copy_from_user+0x1c/0xa0
[   71.816642][ T5475]  copy_msghdr_from_user+0x54/0x2b0
[   71.816677][ T5475]  ? __fget_files+0x186/0x1c0
[   71.816702][ T5475]  do_recvmmsg+0x24d/0x6e0
[   71.816749][ T5475]  __x64_sys_recvmmsg+0xe4/0x170
[   71.816780][ T5475]  x64_sys_call+0x1b90/0x2e10
[   71.816873][ T5475]  do_syscall_64+0xc9/0x1c0
[   71.816900][ T5475]  ? clear_bhb_loop+0x25/0x80
[   71.817067][ T5475]  ? clear_bhb_loop+0x25/0x80
[   71.817088][ T5475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.817159][ T5475] RIP: 0033:0x7f821637d169
[   71.817176][ T5475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.817197][ T5475] RSP: 002b:00007f82149df038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   71.817219][ T5475] RAX: ffffffffffffffda RBX: 00007f8216595fa0 RCX: 00007f821637d169
[   71.817231][ T5475] RDX: 0000000000000001 RSI: 0000200000000200 RDI: 0000000000000003
[   71.817242][ T5475] RBP: 00007f82149df090 R08: 0000000000000000 R09: 0000000000000000
[   71.817253][ T5475] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   71.817267][ T5475] R13: 0000000000000000 R14: 00007f8216595fa0 R15: 00007ffd2d03e098
[   71.817341][ T5475]  </TASK>
[   72.214021][ T5495] netlink: 268 bytes leftover after parsing attributes in process `syz.0.795'.
[   72.376246][ T5494] random: crng reseeded on system resumption
[   72.402697][ T5504] rdma_rxe: rxe_newlink: failed to add syz_tun
[   72.963075][ T5525] loop2: detected capacity change from 0 to 1024
[   72.976314][ T5525] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.993422][ T5525] mmap: syz.2.807 (5525) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   73.072369][ T5525] netlink: 12 bytes leftover after parsing attributes in process `syz.2.807'.
[   73.098283][ T5525] netlink: 176 bytes leftover after parsing attributes in process `syz.2.807'.
[   73.187655][ T5536] EXT4-fs (loop2): shut down requested (0)
[   73.938732][   T59] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   73.966994][   T59] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   73.979506][   T59] EXT4-fs (loop2): This should not happen!! Data will be lost
[   73.979506][   T59] 
[   73.989268][   T59] EXT4-fs (loop2): Total free blocks count 0
[   73.995288][   T59] EXT4-fs (loop2): Free/Dirty block details
[   74.001217][   T59] EXT4-fs (loop2): free_blocks=68451041280
[   74.007060][   T59] EXT4-fs (loop2): dirty_blocks=3664
[   74.012350][   T59] EXT4-fs (loop2): Block reservation details
[   74.013042][ T5544] netlink: 12 bytes leftover after parsing attributes in process `syz.3.810'.
[   74.018370][   T59] EXT4-fs (loop2): i_reserved_data_blocks=229
[   74.073725][ T5547] netlink: 'syz.3.810': attribute type 16 has an invalid length.
[   74.081568][ T5547] netlink: 'syz.3.810': attribute type 17 has an invalid length.
[   74.098381][ T5544] vlan3: entered promiscuous mode
[   74.103457][ T5544] batadv0: entered promiscuous mode
[   74.141649][ T5550] loop1: detected capacity change from 0 to 2048
[   74.212647][ T5550]  loop1: p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[   74.239206][ T5560] xt_CT: You must specify a L4 protocol and not use inversions on it
[   75.142779][ T3499] udevd[3499]: inotify_add_watch(7, /dev/loop1p16, 10) failed: No such file or directory
[   75.155320][ T3665] udevd[3665]: inotify_add_watch(7, /dev/loop1p19, 10) failed: No such file or directory
[   75.167234][ T3296] udevd[3296]: inotify_add_watch(7, /dev/loop1p22, 10) failed: No such file or directory
[   75.179687][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop1p25, 10) failed: No such file or directory
[   75.195957][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p15, 10) failed: No such file or directory
[   75.209298][ T5593] udevd[5593]: inotify_add_watch(7, /dev/loop1p26, 10) failed: No such file or directory
[   75.222188][ T5591] udevd[5591]: inotify_add_watch(7, /dev/loop1p23, 10) failed: No such file or directory
[   75.225819][ T5589] udevd[5589]: inotify_add_watch(7, /dev/loop1p21, 10) failed: No such file or directory
[   75.243413][ T5587] udevd[5587]: inotify_add_watch(7, /dev/loop1p20, 10) failed: No such file or directory
[   75.254636][ T5590] udevd[5590]: inotify_add_watch(7, /dev/loop1p17, 10) failed: No such file or directory
[   75.729994][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.738837][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.766914][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.829989][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.838880][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.890978][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.929045][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.938024][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   75.947276][ T5604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.828'.
[   76.101399][   T29] kauditd_printk_skb: 246 callbacks suppressed
[   76.101413][   T29] audit: type=1400 audit(1743702073.461:1870): avc:  denied  { create } for  pid=5621 comm="syz.0.836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   76.128276][ T5622] FAULT_INJECTION: forcing a failure.
[   76.128276][ T5622] name failslab, interval 1, probability 0, space 0, times 0
[   76.140944][ T5622] CPU: 0 UID: 0 PID: 5622 Comm: syz.0.836 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   76.140974][ T5622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   76.140986][ T5622] Call Trace:
[   76.141011][ T5622]  <TASK>
[   76.141017][ T5622]  dump_stack_lvl+0xf6/0x150
[   76.141046][ T5622]  dump_stack+0x15/0x1a
[   76.141067][ T5622]  should_fail_ex+0x261/0x270
[   76.141093][ T5622]  should_failslab+0x8f/0xb0
[   76.141174][ T5622]  __kvmalloc_node_noprof+0x12c/0x520
[   76.141203][ T5622]  ? traverse+0x9f/0x3c0
[   76.141235][ T5622]  traverse+0x9f/0x3c0
[   76.141259][ T5622]  ? terminate_walk+0x271/0x290
[   76.141292][ T5622]  seq_read_iter+0x89f/0x970
[   76.141383][ T5622]  seq_read+0x1fa/0x240
[   76.141410][ T5622]  ? __pfx_seq_read+0x10/0x10
[   76.141432][ T5622]  proc_reg_read+0x13f/0x1d0
[   76.141456][ T5622]  vfs_readv+0x3e5/0x660
[   76.141480][ T5622]  ? __pfx_proc_reg_read+0x10/0x10
[   76.141526][ T5622]  __x64_sys_preadv+0xf9/0x1c0
[   76.141562][ T5622]  x64_sys_call+0x1410/0x2e10
[   76.141586][ T5622]  do_syscall_64+0xc9/0x1c0
[   76.141663][ T5622]  ? clear_bhb_loop+0x25/0x80
[   76.141688][ T5622]  ? clear_bhb_loop+0x25/0x80
[   76.141751][ T5622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.141777][ T5622] RIP: 0033:0x7f821637d169
[   76.141791][ T5622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.141808][ T5622] RSP: 002b:00007f82149df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   76.141825][ T5622] RAX: ffffffffffffffda RBX: 00007f8216595fa0 RCX: 00007f821637d169
[   76.141836][ T5622] RDX: 0000000000000001 RSI: 0000200000000700 RDI: 0000000000000004
[   76.141870][ T5622] RBP: 00007f82149df090 R08: 0000000000000000 R09: 0000000000000000
[   76.141884][ T5622] R10: 0000000000000181 R11: 0000000000000246 R12: 0000000000000001
[   76.141898][ T5622] R13: 0000000000000000 R14: 00007f8216595fa0 R15: 00007ffd2d03e098
[   76.141920][ T5622]  </TASK>
[   76.154563][   T29] audit: type=1400 audit(1743702073.491:1871): avc:  denied  { write } for  pid=5621 comm="syz.0.836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   76.243502][ T5630] FAULT_INJECTION: forcing a failure.
[   76.243502][ T5630] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.246584][   T29] audit: type=1400 audit(1743702073.491:1872): avc:  denied  { write } for  pid=5621 comm="syz.0.836" name="kcm" dev="proc" ino=4026532618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   76.269668][   T29] audit: type=1326 audit(1743702073.571:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.270924][ T5630] CPU: 0 UID: 0 PID: 5630 Comm: syz.3.840 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   76.270956][ T5630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   76.270971][ T5630] Call Trace:
[   76.270980][ T5630]  <TASK>
[   76.271066][ T5630]  dump_stack_lvl+0xf6/0x150
[   76.271095][ T5630]  dump_stack+0x15/0x1a
[   76.271116][ T5630]  should_fail_ex+0x261/0x270
[   76.271150][ T5630]  should_fail+0xb/0x10
[   76.271178][ T5630]  should_fail_usercopy+0x1a/0x20
[   76.271286][ T5630]  _copy_from_user+0x1c/0xa0
[   76.271325][ T5630]  __sys_bpf+0x16a/0x800
[   76.271430][ T5630]  __x64_sys_bpf+0x43/0x50
[   76.271452][ T5630]  x64_sys_call+0x23da/0x2e10
[   76.271478][ T5630]  do_syscall_64+0xc9/0x1c0
[   76.271551][ T5630]  ? clear_bhb_loop+0x25/0x80
[   76.271577][ T5630]  ? clear_bhb_loop+0x25/0x80
[   76.271603][ T5630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.271637][ T5630] RIP: 0033:0x7f9dafe1d169
[   76.271656][ T5630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.271678][ T5630] RSP: 002b:00007f9dae487038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   76.271767][ T5630] RAX: ffffffffffffffda RBX: 00007f9db0035fa0 RCX: 00007f9dafe1d169
[   76.271782][ T5630] RDX: 0000000000000094 RSI: 00002000000002c0 RDI: 0000000000000005
[   76.271796][ T5630] RBP: 00007f9dae487090 R08: 0000000000000000 R09: 0000000000000000
[   76.271877][ T5630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.271891][ T5630] R13: 0000000000000000 R14: 00007f9db0035fa0 R15: 00007ffd6a9b6908
[   76.271912][ T5630]  </TASK>
[   76.401608][ T5637] netlink: 8 bytes leftover after parsing attributes in process `syz.2.841'.
[   76.420078][   T29] audit: type=1326 audit(1743702073.571:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.616701][   T29] audit: type=1326 audit(1743702073.591:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.640090][   T29] audit: type=1326 audit(1743702073.591:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.663427][   T29] audit: type=1326 audit(1743702073.591:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.686795][   T29] audit: type=1326 audit(1743702073.591:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.710097][   T29] audit: type=1326 audit(1743702073.591:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   76.744625][ T5653] netlink: 'syz.2.849': attribute type 30 has an invalid length.
[   76.762948][ T5655] loop3: detected capacity change from 0 to 512
[   76.773871][ T5655] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   76.777347][ T5657] 9pnet_fd: Insufficient options for proto=fd
[   76.810201][ T5655] EXT4-fs (loop3): 1 truncate cleaned up
[   76.816306][ T5655] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.911288][ T5672] IPv6: NLM_F_CREATE should be specified when creating new route
[   76.930426][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.036743][ T5687] loop2: detected capacity change from 0 to 1024
[   77.043292][ T5687] =======================================================
[   77.043292][ T5687] WARNING: The mand mount option has been deprecated and
[   77.043292][ T5687]          and is ignored by this kernel. Remove the mand
[   77.043292][ T5687]          option from the mount to silence this warning.
[   77.043292][ T5687] =======================================================
[   77.088762][ T5687] EXT4-fs: Ignoring removed bh option
[   77.094258][ T5687] EXT4-fs: inline encryption not supported
[   77.100172][ T5687] EXT4-fs: Ignoring removed i_version option
[   77.115252][ T5687] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.129219][ T5693] 9pnet_fd: Insufficient options for proto=fd
[   77.137288][ T5687] EXT4-fs error (device loop2): ext4_map_blocks:674: inode #3: block 2: comm syz.2.860: lblock 2 mapped to illegal pblock 2 (length 1)
[   77.155857][ T5687] EXT4-fs error (device loop2): ext4_map_blocks:674: inode #3: block 48: comm syz.2.860: lblock 0 mapped to illegal pblock 48 (length 1)
[   77.178780][ T5687] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.860: Failed to acquire dquot type 0
[   77.195232][ T5687] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem
[   77.217188][ T5687] EXT4-fs error (device loop2): ext4_evict_inode:259: inode #11: comm syz.2.860: mark_inode_dirty error
[   77.228650][ T5687] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[   77.238984][ T5687] EXT4-fs (loop2): 1 orphan inode deleted
[   77.245294][ T5687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.260683][ T5700] loop4: detected capacity change from 0 to 512
[   77.261026][  T415] EXT4-fs error (device loop2): ext4_map_blocks:674: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   77.269881][ T5700] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   77.291652][  T415] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 0
[   77.292557][ T5700] EXT4-fs (loop4): 1 truncate cleaned up
[   77.304756][ T5687] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.309407][ T5700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.323798][ T5687] EXT4-fs error (device loop2): __ext4_get_inode_loc:4449: comm syz.2.860: Invalid inode table block 1 in block_group 0
[   77.349984][ T5687] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem
[   77.360515][ T5687] EXT4-fs error (device loop2): ext4_quota_off:7219: inode #3: comm syz.2.860: mark_inode_dirty error
[   77.428021][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.450643][ T5709] SELinux:  policydb version 0 does not match my version range 15-34
[   77.459709][ T5709] SELinux: failed to load policy
[   77.487254][ T5717] rdma_rxe: rxe_newlink: failed to add syz_tun
[   77.728150][ T5747] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=5747 comm=syz.0.881
[   77.904425][ T5769] FAULT_INJECTION: forcing a failure.
[   77.904425][ T5769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.917570][ T5769] CPU: 1 UID: 0 PID: 5769 Comm: syz.1.893 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   77.917603][ T5769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   77.917618][ T5769] Call Trace:
[   77.917625][ T5769]  <TASK>
[   77.917633][ T5769]  dump_stack_lvl+0xf6/0x150
[   77.917663][ T5769]  dump_stack+0x15/0x1a
[   77.917759][ T5769]  should_fail_ex+0x261/0x270
[   77.917792][ T5769]  should_fail+0xb/0x10
[   77.917820][ T5769]  should_fail_usercopy+0x1a/0x20
[   77.917855][ T5769]  strncpy_from_user+0x25/0x230
[   77.917952][ T5769]  ? getname_flags+0x81/0x3b0
[   77.917978][ T5769]  getname_flags+0xb0/0x3b0
[   77.918003][ T5769]  user_path_at+0x26/0x140
[   77.918070][ T5769]  __se_sys_mount+0x25e/0x2e0
[   77.918115][ T5769]  __x64_sys_mount+0x67/0x80
[   77.918191][ T5769]  x64_sys_call+0xd11/0x2e10
[   77.918218][ T5769]  do_syscall_64+0xc9/0x1c0
[   77.918253][ T5769]  ? clear_bhb_loop+0x25/0x80
[   77.918280][ T5769]  ? clear_bhb_loop+0x25/0x80
[   77.918306][ T5769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.918390][ T5769] RIP: 0033:0x7fef7e9dd169
[   77.918408][ T5769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.918429][ T5769] RSP: 002b:00007fef7d047038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   77.918451][ T5769] RAX: ffffffffffffffda RBX: 00007fef7ebf5fa0 RCX: 00007fef7e9dd169
[   77.918465][ T5769] RDX: 0000200000000080 RSI: 0000200000000000 RDI: 0000000000000000
[   77.918479][ T5769] RBP: 00007fef7d047090 R08: 0000200000000500 R09: 0000000000000000
[   77.918559][ T5769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.918712][ T5769] R13: 0000000000000000 R14: 00007fef7ebf5fa0 R15: 00007fff4ff19fb8
[   77.918735][ T5769]  </TASK>
[   78.336633][ T5777] 9pnet_fd: Insufficient options for proto=fd
[   78.594505][ T5781] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   78.631857][ T5784] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[   78.785871][ T5808] 9pnet_fd: Insufficient options for proto=fd
[   78.824994][ T5813] xt_hashlimit: max too large, truncated to 1048576
[   78.867285][ T5817] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   78.869196][ T5591] printk: udevd: 233 output lines suppressed due to ratelimiting
[   78.942981][ T5826] loop2: detected capacity change from 0 to 512
[   78.954846][ T5817] syz.3.912 (5817) used greatest stack depth: 10208 bytes left
[   78.975739][ T5826] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   79.004539][ T5828] infiniband syz!: set active
[   79.009259][ T5828] infiniband syz!: added team_slave_0
[   79.039928][ T5826] EXT4-fs (loop2): 1 truncate cleaned up
[   79.046111][ T5826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.062649][ T5828] RDS/IB: syz!: added
[   79.066849][ T5828] smc: adding ib device syz! with port count 1
[   79.151148][ T5828] smc:    ib device syz! port 1 has pnetid 
[   79.168898][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.353012][ T5855] x_tables: duplicate underflow at hook 3
[   79.504680][ T5877] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.654386][ T5877] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.686140][ T5912] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   79.693845][ T5914] loop1: detected capacity change from 0 to 128
[   79.704296][ T5914] EXT4-fs (loop1): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   79.742561][ T5919] FAULT_INJECTION: forcing a failure.
[   79.742561][ T5919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.755899][ T5919] CPU: 0 UID: 0 PID: 5919 Comm: syz.0.956 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   79.755930][ T5919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.755944][ T5919] Call Trace:
[   79.755951][ T5919]  <TASK>
[   79.755959][ T5919]  dump_stack_lvl+0xf6/0x150
[   79.756080][ T5919]  dump_stack+0x15/0x1a
[   79.756100][ T5919]  should_fail_ex+0x261/0x270
[   79.756128][ T5919]  should_fail+0xb/0x10
[   79.756155][ T5919]  should_fail_usercopy+0x1a/0x20
[   79.756238][ T5919]  _copy_from_user+0x1c/0xa0
[   79.756289][ T5919]  copy_msghdr_from_user+0x54/0x2b0
[   79.756385][ T5919]  ? __fget_files+0x186/0x1c0
[   79.756411][ T5919]  __sys_sendmsg+0x141/0x240
[   79.756455][ T5919]  __x64_sys_sendmsg+0x46/0x50
[   79.756507][ T5919]  x64_sys_call+0x26f3/0x2e10
[   79.756534][ T5919]  do_syscall_64+0xc9/0x1c0
[   79.756563][ T5919]  ? clear_bhb_loop+0x25/0x80
[   79.756583][ T5919]  ? clear_bhb_loop+0x25/0x80
[   79.756678][ T5919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.756735][ T5919] RIP: 0033:0x7f821637d169
[   79.756748][ T5919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.756764][ T5919] RSP: 002b:00007f82149df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.756783][ T5919] RAX: ffffffffffffffda RBX: 00007f8216595fa0 RCX: 00007f821637d169
[   79.756797][ T5919] RDX: 0000000000040000 RSI: 0000200000000280 RDI: 0000000000000003
[   79.756811][ T5919] RBP: 00007f82149df090 R08: 0000000000000000 R09: 0000000000000000
[   79.756824][ T5919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.756885][ T5919] R13: 0000000000000000 R14: 00007f8216595fa0 R15: 00007ffd2d03e098
[   79.756902][ T5919]  </TASK>
[   79.963523][ T5877] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.291327][ T5877] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.461378][ T5877] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.508065][ T5877] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.560988][ T5949] loop2: detected capacity change from 0 to 1024
[   80.571221][ T5949] EXT4-fs: Ignoring removed nobh option
[   80.576848][ T5949] EXT4-fs: Ignoring removed bh option
[   80.584086][ T5877] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.596324][ T5877] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.627433][ T5949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.654063][ T5949] process 'syz.2.968' launched '/dev/fd/7' with NULL argv: empty string added
[   80.680318][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.800764][ T5964] tmpfs: Bad value for 'nr_inodes'
[   80.841896][ T5972] __nla_validate_parse: 14 callbacks suppressed
[   80.841910][ T5972] netlink: 12 bytes leftover after parsing attributes in process `syz.0.978'.
[   80.860651][ T5972] bridge0: port 3(batadv1) entered blocking state
[   80.867228][ T5972] bridge0: port 3(batadv1) entered disabled state
[   80.878736][ T5972] batadv1: entered allmulticast mode
[   80.884693][ T5972] batadv1: entered promiscuous mode
[   80.922335][ T3381] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   80.924159][ T5978] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   80.929787][ T3381] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   80.944223][ T3381] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   80.955649][ T3381] hid-generic 0000:0004:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   80.971756][ T5982] loop1: detected capacity change from 0 to 512
[   80.980957][ T5982] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   81.002783][ T5982] EXT4-fs error (device loop1): xattr_find_entry:333: inode #15: comm syz.1.983: corrupted xattr entries
[   81.017560][ T5982] EXT4-fs (loop1): Remounting filesystem read-only
[   81.024557][ T5982] EXT4-fs (loop1): 1 truncate cleaned up
[   81.035087][ T5982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.059640][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.168270][   T29] kauditd_printk_skb: 460 callbacks suppressed
[   81.168287][   T29] audit: type=1400 audit(1743702078.501:2337): avc:  denied  { write } for  pid=5989 comm="syz.0.986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   81.203164][   T29] audit: type=1400 audit(1743702078.561:2338): avc:  denied  { listen } for  pid=5989 comm="syz.0.986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   81.314309][   T29] audit: type=1400 audit(1743702078.671:2339): avc:  denied  { cpu } for  pid=5989 comm="syz.0.986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   81.346550][ T6001] usb usb1: check_ctrlrecip: process 6001 (syz.0.986) requesting ep 01 but needs 81
[   81.364721][   T12] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[   81.374051][   T12] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[   81.386777][   T29] audit: type=1400 audit(1743702078.751:2340): avc:  denied  { read write } for  pid=6005 comm="syz.3.991" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   81.396290][ T6001] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   81.410471][   T29] audit: type=1400 audit(1743702078.751:2341): avc:  denied  { open } for  pid=6005 comm="syz.3.991" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   81.465997][   T29] audit: type=1400 audit(1743702078.811:2342): avc:  denied  { create } for  pid=6005 comm="syz.3.991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   81.485538][   T29] audit: type=1400 audit(1743702078.811:2343): avc:  denied  { read } for  pid=6005 comm="syz.3.991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   81.504729][   T29] audit: type=1400 audit(1743702078.811:2344): avc:  denied  { mount } for  pid=6005 comm="syz.3.991" name="/" dev="ramfs" ino=13636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   81.554027][ T6012] FAULT_INJECTION: forcing a failure.
[   81.554027][ T6012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.567293][ T6012] CPU: 0 UID: 0 PID: 6012 Comm: syz.4.992 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   81.567319][ T6012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   81.567330][ T6012] Call Trace:
[   81.567335][ T6012]  <TASK>
[   81.567347][ T6012]  dump_stack_lvl+0xf6/0x150
[   81.567413][ T6012]  dump_stack+0x15/0x1a
[   81.567432][ T6012]  should_fail_ex+0x261/0x270
[   81.567461][ T6012]  should_fail+0xb/0x10
[   81.567498][ T6012]  should_fail_usercopy+0x1a/0x20
[   81.567523][ T6012]  _copy_from_user+0x1c/0xa0
[   81.567558][ T6012]  copy_msghdr_from_user+0x54/0x2b0
[   81.567713][ T6012]  ? __fget_files+0x186/0x1c0
[   81.567738][ T6012]  __sys_sendmsg+0x141/0x240
[   81.567785][ T6012]  __x64_sys_sendmsg+0x46/0x50
[   81.567815][ T6012]  x64_sys_call+0x26f3/0x2e10
[   81.567835][ T6012]  do_syscall_64+0xc9/0x1c0
[   81.567933][ T6012]  ? clear_bhb_loop+0x25/0x80
[   81.567957][ T6012]  ? clear_bhb_loop+0x25/0x80
[   81.567998][ T6012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.568016][ T6012] RIP: 0033:0x7fe57c97d169
[   81.568033][ T6012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.568052][ T6012] RSP: 002b:00007fe57afe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.568072][ T6012] RAX: ffffffffffffffda RBX: 00007fe57cb95fa0 RCX: 00007fe57c97d169
[   81.568161][ T6012] RDX: 0000000000000000 RSI: 0000200000000740 RDI: 0000000000000003
[   81.568224][ T6012] RBP: 00007fe57afe7090 R08: 0000000000000000 R09: 0000000000000000
[   81.568238][ T6012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.568252][ T6012] R13: 0000000000000000 R14: 00007fe57cb95fa0 R15: 00007fffc47cdda8
[   81.568274][ T6012]  </TASK>
[   81.825750][   T29] audit: type=1400 audit(1743702079.191:2345): avc:  denied  { bind } for  pid=6016 comm="syz.4.994" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   81.856152][   T29] audit: type=1400 audit(1743702079.221:2346): avc:  denied  { write } for  pid=6020 comm="syz.3.995" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   82.051323][ T6036] x_tables: duplicate underflow at hook 1
[   82.114909][ T6036] Falling back ldisc for ttyS3.
[   82.251919][ T6047] 9pnet_fd: Insufficient options for proto=fd
[   83.067066][ T6088] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1025'.
[   83.105382][ T6088] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1025'.
[   83.136554][ T6092] netlink: 4 bytes leftover after parsing attributes in process `wg1'.
[   83.242115][ T6100] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[   83.263307][ T6100] 9pnet_virtio: no channels available for device 
[   83.492666][ T6122] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6122 comm=syz.1.1042
[   83.531610][ T6122] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6122 comm=syz.1.1042
[   83.562185][ T6129] vlan3: entered allmulticast mode
[   83.567459][ T6129] bond0: entered allmulticast mode
[   83.572603][ T6129] bond_slave_0: entered allmulticast mode
[   83.578363][ T6129] bond_slave_1: entered allmulticast mode
[   83.591627][ T6128] loop4: detected capacity change from 0 to 512
[   83.601017][ T6128] ext4: Unknown parameter 'noacl'
[   83.638074][ T6130] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.666118][ T6137] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[   83.716118][ T6130] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.739021][ T6137] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1047'.
[   83.765963][ T6130] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.833057][ T6130] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.892190][ T6154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1054'.
[   83.927496][ T6130] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.941470][ T6130] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.952673][ T6157] dummy0: entered promiscuous mode
[   83.958578][ T6157] macsec1: entered allmulticast mode
[   83.958660][ T6158] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1054'.
[   83.963918][ T6157] dummy0: entered allmulticast mode
[   83.979286][ T6157] dummy0: left allmulticast mode
[   83.984388][ T6157] dummy0: left promiscuous mode
[   83.994744][ T6130] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.009302][ T6130] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.145664][ T6162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1056'.
[   84.180219][ T6164] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1057'.
[   84.216680][ T6166] netlink: 'syz.2.1058': attribute type 12 has an invalid length.
[   84.455001][ T6181] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   84.466048][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1065'.
[   84.475172][ T6181] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073072017408)
[   84.485510][ T6181] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647
[   84.800607][ T6203] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6203 comm=syz.0.1074
[   84.813300][ T6203] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6203 comm=syz.0.1074
[   84.825998][ T6203] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6203 comm=syz.0.1074
[   84.838776][ T6203] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6203 comm=syz.0.1074
[   84.856685][ T6204] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.907309][ T6204] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.947021][ T6204] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.986144][ T6204] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.050948][ T6204] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.062544][ T6204] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.073833][ T6204] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.084823][ T6204] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.097218][ T6208] loop1: detected capacity change from 0 to 512
[   85.104374][ T6208] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   85.116180][ T6208] EXT4-fs (loop1): 1 truncate cleaned up
[   85.122284][ T6208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.295131][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.436298][ T6229] loop1: detected capacity change from 0 to 512
[   85.443355][ T6229] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   85.455634][ T6229] EXT4-fs (loop1): 1 truncate cleaned up
[   85.462059][ T6229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.588507][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.160933][ T6270] loop4: detected capacity change from 0 to 512
[   86.177699][ T6270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.190663][ T6270] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.201317][   T29] kauditd_printk_skb: 304 callbacks suppressed
[   86.201333][   T29] audit: type=1400 audit(1743702083.561:2651): avc:  denied  { mount } for  pid=6268 comm="syz.4.1101" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   86.232362][   T29] audit: type=1326 audit(1743702083.591:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   86.255909][   T29] audit: type=1326 audit(1743702083.591:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   86.279699][   T29] audit: type=1400 audit(1743702083.591:2654): avc:  denied  { read } for  pid=6268 comm="syz.4.1101" dev="nsfs" ino=4026532886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   86.280500][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.300933][   T29] audit: type=1400 audit(1743702083.591:2655): avc:  denied  { open } for  pid=6268 comm="syz.4.1101" path="net:[4026532886]" dev="nsfs" ino=4026532886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   86.300962][   T29] audit: type=1400 audit(1743702083.591:2656): avc:  denied  { create } for  pid=6268 comm="syz.4.1101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   86.301060][   T29] audit: type=1400 audit(1743702083.601:2657): avc:  denied  { create } for  pid=6268 comm="syz.4.1101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   86.314778][ T6235] dccp_close: ABORT with 88 bytes unread
[   86.333226][   T29] audit: type=1400 audit(1743702083.601:2658): avc:  denied  { ioctl } for  pid=6268 comm="syz.4.1101" path="socket:[14276]" dev="sockfs" ino=14276 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   86.403758][   T29] audit: type=1400 audit(1743702083.621:2659): avc:  denied  { unmount } for  pid=3303 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   86.423506][   T29] audit: type=1326 audit(1743702083.621:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   86.452548][ T6279] loop3: detected capacity change from 0 to 512
[   86.454321][ T6280] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[   86.470126][ T6279] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   86.487131][ T6280] loop1: detected capacity change from 0 to 1024
[   86.489812][ T6279] EXT4-fs (loop3): 1 truncate cleaned up
[   86.499913][ T6279] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.543998][ T6280] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.557287][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.584981][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.615972][ T6293] loop1: detected capacity change from 0 to 512
[   86.625874][ T6293] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   86.639346][ T6293] EXT4-fs (loop1): 1 truncate cleaned up
[   86.645585][ T6293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.684246][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.776111][ T6313] loop1: detected capacity change from 0 to 512
[   86.782900][ T6313] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   86.794469][ T6313] EXT4-fs (loop1): 1 truncate cleaned up
[   86.800495][ T6313] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.840336][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.875196][ T6320] program syz.1.1121 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.923147][ T6325] loop1: detected capacity change from 0 to 512
[   86.929966][ T6325] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   86.951808][ T6325] EXT4-fs (loop1): 1 truncate cleaned up
[   86.957948][ T6325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.058022][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.236728][ T6350] FAULT_INJECTION: forcing a failure.
[   87.236728][ T6350] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   87.250230][ T6350] CPU: 0 UID: 0 PID: 6350 Comm: syz.1.1133 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   87.250260][ T6350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   87.250273][ T6350] Call Trace:
[   87.250280][ T6350]  <TASK>
[   87.250287][ T6350]  dump_stack_lvl+0xf6/0x150
[   87.250313][ T6350]  dump_stack+0x15/0x1a
[   87.250331][ T6350]  should_fail_ex+0x261/0x270
[   87.250435][ T6350]  should_fail_alloc_page+0xfd/0x110
[   87.250466][ T6350]  __alloc_frozen_pages_noprof+0x11d/0x360
[   87.250501][ T6350]  alloc_pages_mpol+0xb6/0x260
[   87.250525][ T6350]  alloc_pages_noprof+0xe8/0x130
[   87.250617][ T6350]  get_free_pages_noprof+0xc/0x30
[   87.250646][ T6350]  __pollwait+0xc4/0x260
[   87.250703][ T6350]  ? __pfx___pollwait+0x10/0x10
[   87.250737][ T6350]  pipe_poll+0x107/0x270
[   87.250771][ T6350]  ? __pfx_pipe_poll+0x10/0x10
[   87.250856][ T6350]  do_sys_poll+0x683/0xc80
[   87.250892][ T6350]  ? __pfx___pollwait+0x10/0x10
[   87.250980][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251000][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251020][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251041][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251061][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251125][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251141][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251208][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251224][ T6350]  ? __pfx_pollwake+0x10/0x10
[   87.251244][ T6350]  __se_sys_poll+0xe3/0x200
[   87.251279][ T6350]  __x64_sys_poll+0x43/0x50
[   87.251313][ T6350]  x64_sys_call+0x2c39/0x2e10
[   87.251395][ T6350]  do_syscall_64+0xc9/0x1c0
[   87.251427][ T6350]  ? clear_bhb_loop+0x25/0x80
[   87.251453][ T6350]  ? clear_bhb_loop+0x25/0x80
[   87.251476][ T6350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.251493][ T6350] RIP: 0033:0x7fef7e9dd169
[   87.251584][ T6350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.251651][ T6350] RSP: 002b:00007fef7d047038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[   87.251666][ T6350] RAX: ffffffffffffffda RBX: 00007fef7ebf5fa0 RCX: 00007fef7e9dd169
[   87.251676][ T6350] RDX: ffffffffffbffff8 RSI: 000000000000002c RDI: 0000200000b2c000
[   87.251686][ T6350] RBP: 00007fef7d047090 R08: 0000000000000000 R09: 0000000000000000
[   87.251723][ T6350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.251733][ T6350] R13: 0000000000000000 R14: 00007fef7ebf5fa0 R15: 00007fff4ff19fb8
[   87.251797][ T6350]  </TASK>
[   87.522999][ T6353] loop3: detected capacity change from 0 to 512
[   87.529961][ T6353] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   87.542964][ T6353] EXT4-fs (loop3): 1 truncate cleaned up
[   87.548999][ T6353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.567241][ T6359] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1137'.
[   87.578227][ T6359] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1137'.
[   87.640661][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.732432][ T6371] loop2: detected capacity change from 0 to 512
[   87.739271][ T6371] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.750744][ T6371] EXT4-fs (loop2): 1 truncate cleaned up
[   87.756934][ T6371] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.793064][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.588379][ T6386] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1148'.
[   88.598796][ T6386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1148'.
[   88.684693][ T6393] netlink: 336 bytes leftover after parsing attributes in process `syz.3.1151'.
[   88.780110][ T6399] FAULT_INJECTION: forcing a failure.
[   88.780110][ T6399] name failslab, interval 1, probability 0, space 0, times 0
[   88.793108][ T6399] CPU: 1 UID: 0 PID: 6399 Comm: syz.2.1153 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   88.793158][ T6399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   88.793169][ T6399] Call Trace:
[   88.793173][ T6399]  <TASK>
[   88.793179][ T6399]  dump_stack_lvl+0xf6/0x150
[   88.793199][ T6399]  dump_stack+0x15/0x1a
[   88.793215][ T6399]  should_fail_ex+0x261/0x270
[   88.793237][ T6399]  should_failslab+0x8f/0xb0
[   88.793264][ T6399]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   88.793285][ T6399]  ? sidtab_sid2str_get+0xb8/0x140
[   88.793359][ T6399]  ? vsnprintf+0x84d/0x8a0
[   88.793376][ T6399]  kmemdup_noprof+0x2b/0x70
[   88.793396][ T6399]  sidtab_sid2str_get+0xb8/0x140
[   88.793416][ T6399]  security_sid_to_context_core+0x1eb/0x2f0
[   88.793451][ T6399]  security_sid_to_context+0x27/0x30
[   88.793468][ T6399]  selinux_lsmprop_to_secctx+0x6c/0xf0
[   88.793489][ T6399]  security_lsmprop_to_secctx+0x40/0x80
[   88.793519][ T6399]  audit_log_task_context+0x7a/0x180
[   88.793541][ T6399]  audit_log_task+0xfb/0x250
[   88.793561][ T6399]  audit_seccomp+0x68/0x130
[   88.793650][ T6399]  __seccomp_filter+0x694/0x10e0
[   88.793676][ T6399]  ? vfs_write+0x669/0x950
[   88.793778][ T6399]  ? putname+0xe1/0x100
[   88.793798][ T6399]  __secure_computing+0x7e/0x160
[   88.793826][ T6399]  syscall_trace_enter+0xcf/0x1f0
[   88.793849][ T6399]  ? fpregs_assert_state_consistent+0x83/0xa0
[   88.793877][ T6399]  do_syscall_64+0xaa/0x1c0
[   88.793931][ T6399]  ? clear_bhb_loop+0x25/0x80
[   88.793954][ T6399]  ? clear_bhb_loop+0x25/0x80
[   88.793972][ T6399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.794006][ T6399] RIP: 0033:0x7fa0a923d169
[   88.794073][ T6399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.794087][ T6399] RSP: 002b:00007fa0a78a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[   88.794102][ T6399] RAX: ffffffffffffffda RBX: 00007fa0a9455fa0 RCX: 00007fa0a923d169
[   88.794112][ T6399] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000004
[   88.794126][ T6399] RBP: 00007fa0a78a7090 R08: 0000000000000000 R09: 0000000000000000
[   88.794140][ T6399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.794154][ T6399] R13: 0000000000000000 R14: 00007fa0a9455fa0 R15: 00007fff96737de8
[   88.794177][ T6399]  </TASK>
[   89.167418][ T6403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6403 comm=syz.2.1155
[   89.179941][ T6403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6403 comm=syz.2.1155
[   89.192563][ T6403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6403 comm=syz.2.1155
[   89.205037][ T6403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6403 comm=syz.2.1155
[   89.223021][ T6404] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.266492][ T6404] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.316866][ T6404] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.366920][ T6404] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.421641][ T6404] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.432999][ T6404] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.444042][ T6404] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455624][ T6404] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.667176][ T6423] SELinux: failed to load policy
[   89.778656][ T6443] FAULT_INJECTION: forcing a failure.
[   89.778656][ T6443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.791936][ T6443] CPU: 1 UID: 0 PID: 6443 Comm: syz.4.1172 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   89.791965][ T6443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   89.791977][ T6443] Call Trace:
[   89.791982][ T6443]  <TASK>
[   89.791990][ T6443]  dump_stack_lvl+0xf6/0x150
[   89.792033][ T6443]  dump_stack+0x15/0x1a
[   89.792053][ T6443]  should_fail_ex+0x261/0x270
[   89.792085][ T6443]  should_fail+0xb/0x10
[   89.792109][ T6443]  should_fail_usercopy+0x1a/0x20
[   89.792181][ T6443]  _copy_from_user+0x1c/0xa0
[   89.792355][ T6443]  do_semtimedop+0x15a/0x220
[   89.792422][ T6443]  __x64_sys_semtimedop+0xd0/0x100
[   89.792509][ T6443]  x64_sys_call+0x2c11/0x2e10
[   89.792585][ T6443]  do_syscall_64+0xc9/0x1c0
[   89.792614][ T6443]  ? clear_bhb_loop+0x25/0x80
[   89.792635][ T6443]  ? clear_bhb_loop+0x25/0x80
[   89.792659][ T6443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.792749][ T6443] RIP: 0033:0x7fe57c97d169
[   89.792764][ T6443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.792781][ T6443] RSP: 002b:00007fe57afe7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[   89.792798][ T6443] RAX: ffffffffffffffda RBX: 00007fe57cb95fa0 RCX: 00007fe57c97d169
[   89.792809][ T6443] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000000
[   89.792820][ T6443] RBP: 00007fe57afe7090 R08: 0000000000000000 R09: 0000000000000000
[   89.792831][ T6443] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[   89.792842][ T6443] R13: 0000000000000000 R14: 00007fe57cb95fa0 R15: 00007fffc47cdda8
[   89.792891][ T6443]  </TASK>
[   90.043557][ T6460] 9pnet_fd: Insufficient options for proto=fd
[   90.079664][ T6464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6464 comm=syz.2.1180
[   90.096944][ T6464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6464 comm=syz.2.1180
[   90.109702][ T6464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6464 comm=syz.2.1180
[   90.125029][ T6464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6464 comm=syz.2.1180
[   90.138430][ T6464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6464 comm=syz.2.1180
[   90.145889][ T6474] 9pnet_fd: Insufficient options for proto=fd
[   90.158002][ T6475] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.216420][ T6475] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.276675][ T6475] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.310620][ T6493] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1190'.
[   90.336426][ T6475] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.961111][ T6517] veth1_to_batadv: entered promiscuous mode
[   90.967202][ T6517] macsec1: entered allmulticast mode
[   90.972571][ T6517] veth1_to_batadv: entered allmulticast mode
[   90.980338][ T6517] veth1_to_batadv: left allmulticast mode
[   90.986142][ T6517] veth1_to_batadv: left promiscuous mode
[   91.113987][ T6525] loop1: detected capacity change from 0 to 512
[   91.121136][ T6525] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   91.134049][ T6525] EXT4-fs (loop1): 1 truncate cleaned up
[   91.141607][ T6525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.256527][   T29] kauditd_printk_skb: 773 callbacks suppressed
[   91.256544][   T29] audit: type=1326 audit(1743702088.621:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6524 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   91.286415][   T29] audit: type=1326 audit(1743702088.621:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6524 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7e9dd169 code=0x7ffc0000
[   91.320003][   T29] audit: type=1400 audit(1743702088.681:3435): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   91.321181][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.349030][   T29] audit: type=1326 audit(1743702088.721:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6496 comm="syz.0.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.374132][   T29] audit: type=1326 audit(1743702088.731:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6496 comm="syz.0.1194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.427470][   T29] audit: type=1326 audit(1743702088.791:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.0.1211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.452585][   T29] audit: type=1326 audit(1743702088.791:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.0.1211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.459208][ T6544] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1212'.
[   91.476136][   T29] audit: type=1326 audit(1743702088.791:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.0.1211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.489970][ T6544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1212'.
[   91.508618][   T29] audit: type=1326 audit(1743702088.791:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.0.1211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.541110][   T29] audit: type=1326 audit(1743702088.791:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.0.1211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[   91.692332][ T6562] 9pnet_fd: Insufficient options for proto=fd
[   91.798054][ T6569] 9pnet_fd: Insufficient options for proto=fd
[   92.008385][ T6575] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[   92.280582][ T6598] netlink: 336 bytes leftover after parsing attributes in process `syz.3.1233'.
[   92.451623][ T6602] 
: renamed from bond0 (while UP)
[   92.485384][ T6602] loop4: detected capacity change from 0 to 8192
[   92.506890][ T6602] syz.4.1234: attempt to access beyond end of device
[   92.506890][ T6602] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   92.520395][ T6602] Buffer I/O error on dev loop4, logical block 57847, async page read
[   92.528845][ T6602] syz.4.1234: attempt to access beyond end of device
[   92.528845][ T6602] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   92.542381][ T6602] Buffer I/O error on dev loop4, logical block 57847, async page read
[   92.550929][ T6602] syz.4.1234: attempt to access beyond end of device
[   92.550929][ T6602] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   92.564425][ T6602] Buffer I/O error on dev loop4, logical block 57847, async page read
[   92.573290][ T6602] syz.4.1234: attempt to access beyond end of device
[   92.573290][ T6602] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   92.586799][ T6602] Buffer I/O error on dev loop4, logical block 57847, async page read
[   92.732891][ T6626] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1244'.
[   92.749737][ T6626] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1244'.
[   92.852405][ T6635] pimreg: entered allmulticast mode
[   93.025907][ T6647] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.034331][ T6647] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.419244][ T6475] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.444376][ T6475] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.460860][ T6475] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.481589][ T6475] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.556282][ T6700] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6700 comm=syz.1.1274
[   93.618735][ T6706] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.666905][ T6706] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.716549][ T6706] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.756086][ T6706] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.802545][ T6706] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.834361][ T6706] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.863785][ T6706] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.883580][ T6706] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.012185][ T6743] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.020907][ T6743] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.030474][ T6743] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.039468][ T6743] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.523972][ T6753] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1295'.
[   94.595065][ T6753] SELinux: syz.1.1295 (6753) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   94.876257][ T6768] loop3: detected capacity change from 0 to 512
[   94.885322][ T6768] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #15: comm syz.3.1302: casefold flag without casefold feature
[   94.898180][ T6768] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.1302: couldn't read orphan inode 15 (err -117)
[   94.910673][ T6768] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.938856][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.993534][ T6776] loop2: detected capacity change from 0 to 128
[   95.002715][ T6776] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   95.015074][ T6776] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.087859][ T6783] selinux_netlink_send: 4 callbacks suppressed
[   95.087878][ T6783] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6783 comm=syz.3.1308
[   95.879270][ T3309] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.075040][ T6811] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1318'.
[   96.110802][ T6811] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1318'.
[   96.182770][ T6813] loop3: detected capacity change from 0 to 512
[   96.190285][ T6813] ext2: Unknown parameter 'fsname'
[   96.588090][   T29] kauditd_printk_skb: 596 callbacks suppressed
[   96.588107][   T29] audit: type=1326 audit(1743702093.951:4039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.618254][   T29] audit: type=1326 audit(1743702093.951:4040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.641717][   T29] audit: type=1326 audit(1743702093.951:4041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.665137][   T29] audit: type=1326 audit(1743702093.951:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.688667][   T29] audit: type=1326 audit(1743702093.951:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.712402][   T29] audit: type=1326 audit(1743702093.951:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.735911][   T29] audit: type=1326 audit(1743702093.951:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.759621][   T29] audit: type=1326 audit(1743702093.951:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.783078][   T29] audit: type=1326 audit(1743702093.951:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   96.806746][   T29] audit: type=1326 audit(1743702093.951:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe57c97d169 code=0x7ffc0000
[   97.031086][ T6839] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1332'.
[   97.048665][ T6839] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1332'.
[   97.102977][ T6848] loop4: detected capacity change from 0 to 512
[   97.110677][ T6848] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   97.124565][ T6848] EXT4-fs (loop4): 1 truncate cleaned up
[   97.130938][ T6848] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.237113][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.283337][ T6870] 9pnet_fd: Insufficient options for proto=fd
[   98.047386][ T6886] IPv6: NLM_F_CREATE should be specified when creating new route
[   98.216890][ T6908] IPv6: NLM_F_CREATE should be specified when creating new route
[   98.259622][ T6914] vlan2: entered allmulticast mode
[   98.264821][ T6914] veth0_to_batadv: entered allmulticast mode
[   98.272169][ T6914] bridge0: port 3(vlan2) entered blocking state
[   98.278478][ T6914] bridge0: port 3(vlan2) entered disabled state
[   98.287348][ T6914] vlan2: entered promiscuous mode
[   98.292429][ T6914] veth0_to_batadv: entered promiscuous mode
[   98.300141][ T6914] bridge0: port 3(vlan2) entered blocking state
[   98.306441][ T6914] bridge0: port 3(vlan2) entered forwarding state
[   98.433884][ T6941] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1377'.
[   98.452776][ T6941] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1377'.
[   98.462564][ T6943] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1381'.
[   98.485818][ T6943] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1381'.
[   98.619385][ T6968] loop1: detected capacity change from 0 to 512
[   98.628274][ T6968] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   98.646879][ T6975] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1395'.
[   98.656852][ T6968] EXT4-fs (loop1): 1 truncate cleaned up
[   98.663026][ T6968] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.692137][ T6975] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1395'.
[   98.773127][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.790182][ T6986] FAULT_INJECTION: forcing a failure.
[   98.790182][ T6986] name failslab, interval 1, probability 0, space 0, times 0
[   98.802978][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.0.1401 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[   98.803006][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.803025][ T6986] Call Trace:
[   98.803032][ T6986]  <TASK>
[   98.803039][ T6986]  dump_stack_lvl+0xf6/0x150
[   98.803066][ T6986]  dump_stack+0x15/0x1a
[   98.803101][ T6986]  should_fail_ex+0x261/0x270
[   98.803208][ T6986]  should_failslab+0x8f/0xb0
[   98.803244][ T6986]  __kvmalloc_node_noprof+0x12c/0x520
[   98.803267][ T6986]  ? alloc_fdtable+0xa5/0x1b0
[   98.803302][ T6986]  ? __kmalloc_cache_noprof+0x22b/0x320
[   98.803407][ T6986]  alloc_fdtable+0xa5/0x1b0
[   98.803441][ T6986]  dup_fd+0x508/0x580
[   98.803473][ T6986]  copy_files+0x98/0xe0
[   98.803554][ T6986]  copy_process+0xc60/0x1f60
[   98.803593][ T6986]  kernel_clone+0x168/0x5d0
[   98.803621][ T6986]  ? __rcu_read_unlock+0x4e/0x70
[   98.803715][ T6986]  __x64_sys_clone+0xe9/0x120
[   98.803748][ T6986]  x64_sys_call+0x2dc9/0x2e10
[   98.803767][ T6986]  do_syscall_64+0xc9/0x1c0
[   98.803795][ T6986]  ? clear_bhb_loop+0x25/0x80
[   98.803814][ T6986]  ? clear_bhb_loop+0x25/0x80
[   98.803938][ T6986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.803961][ T6986] RIP: 0033:0x7f821637d169
[   98.803977][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.803995][ T6986] RSP: 002b:00007f82149defe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   98.804012][ T6986] RAX: ffffffffffffffda RBX: 00007f8216595fa0 RCX: 00007f821637d169
[   98.804022][ T6986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000084004000
[   98.804099][ T6986] RBP: 00007f82149df090 R08: 0000000000000000 R09: 0000000000000000
[   98.804112][ T6986] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   98.804125][ T6986] R13: 0000000000000000 R14: 00007f8216595fa0 R15: 00007ffd2d03e098
[   98.804144][ T6986]  </TASK>
[   99.101036][ T7010] loop4: detected capacity change from 0 to 512
[   99.108883][ T7010] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   99.136410][ T7017] IPv6: NLM_F_CREATE should be specified when creating new route
[   99.146374][ T7010] EXT4-fs (loop4): 1 truncate cleaned up
[   99.152383][ T7010] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.310868][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.994466][ T7047] loop2: detected capacity change from 0 to 2048
[  100.006792][ T7047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.019455][ T7047] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.034698][ T7047] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1422'.
[  100.043649][ T7047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1422'.
[  100.061236][ T7054] netlink: 336 bytes leftover after parsing attributes in process `syz.0.1423'.
[  100.082435][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.103762][ T7056] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1424'.
[  100.240002][ T7067] IPv6: NLM_F_CREATE should be specified when creating new route
[  100.273568][ T7073] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7073 comm=syz.1.1430
[  100.322292][ T7076] loop4: detected capacity change from 0 to 8192
[  100.329820][ T7076] vfat: Unknown parameter '�m�E7�Ż��h��Ѩ>}��T"��|���)�uvOMk��hq�	�wߖ�7��
l�u%�Բ�'
[  100.754333][ T7103] FAULT_INJECTION: forcing a failure.
[  100.754333][ T7103] name failslab, interval 1, probability 0, space 0, times 0
[  100.767640][ T7103] CPU: 1 UID: 0 PID: 7103 Comm: syz.4.1445 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[  100.767719][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.767733][ T7103] Call Trace:
[  100.767739][ T7103]  <TASK>
[  100.767746][ T7103]  dump_stack_lvl+0xf6/0x150
[  100.767770][ T7103]  dump_stack+0x15/0x1a
[  100.767790][ T7103]  should_fail_ex+0x261/0x270
[  100.767828][ T7103]  should_failslab+0x8f/0xb0
[  100.767857][ T7103]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[  100.767886][ T7103]  ? sidtab_sid2str_get+0xb8/0x140
[  100.767912][ T7103]  ? vsnprintf+0x84d/0x8a0
[  100.767979][ T7103]  kmemdup_noprof+0x2b/0x70
[  100.768013][ T7103]  sidtab_sid2str_get+0xb8/0x140
[  100.768041][ T7103]  security_sid_to_context_core+0x1eb/0x2f0
[  100.768068][ T7103]  security_sid_to_context+0x27/0x30
[  100.768092][ T7103]  selinux_lsmprop_to_secctx+0x6c/0xf0
[  100.768147][ T7103]  security_lsmprop_to_secctx+0x40/0x80
[  100.768174][ T7103]  audit_log_task_context+0x7a/0x180
[  100.768196][ T7103]  audit_log_task+0xfb/0x250
[  100.768214][ T7103]  audit_seccomp+0x68/0x130
[  100.768230][ T7103]  __seccomp_filter+0x694/0x10e0
[  100.768322][ T7103]  ? vfs_write+0x669/0x950
[  100.768345][ T7103]  ? putname+0xe1/0x100
[  100.768411][ T7103]  __secure_computing+0x7e/0x160
[  100.768435][ T7103]  syscall_trace_enter+0xcf/0x1f0
[  100.768489][ T7103]  ? fpregs_assert_state_consistent+0x83/0xa0
[  100.768518][ T7103]  do_syscall_64+0xaa/0x1c0
[  100.768608][ T7103]  ? clear_bhb_loop+0x25/0x80
[  100.768626][ T7103]  ? clear_bhb_loop+0x25/0x80
[  100.768644][ T7103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.768703][ T7103] RIP: 0033:0x7fe57c97d169
[  100.768715][ T7103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.768729][ T7103] RSP: 002b:00007fe57afe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000096
[  100.768744][ T7103] RAX: ffffffffffffffda RBX: 00007fe57cb95fa0 RCX: 00007fe57c97d169
[  100.768754][ T7103] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000005000
[  100.768763][ T7103] RBP: 00007fe57afe7090 R08: 0000000000000000 R09: 0000000000000000
[  100.768836][ T7103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.768845][ T7103] R13: 0000000000000000 R14: 00007fe57cb95fa0 R15: 00007fffc47cdda8
[  100.768913][ T7103]  </TASK>
[  101.286820][ T7140] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7140 comm=syz.0.1462
[  101.313537][ T7144] FAULT_INJECTION: forcing a failure.
[  101.313537][ T7144] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.326707][ T7144] CPU: 1 UID: 0 PID: 7144 Comm: syz.2.1463 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[  101.326751][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.326793][ T7144] Call Trace:
[  101.326799][ T7144]  <TASK>
[  101.326807][ T7144]  dump_stack_lvl+0xf6/0x150
[  101.326833][ T7144]  dump_stack+0x15/0x1a
[  101.326899][ T7144]  should_fail_ex+0x261/0x270
[  101.326957][ T7144]  should_fail+0xb/0x10
[  101.327110][ T7144]  should_fail_usercopy+0x1a/0x20
[  101.327140][ T7144]  _copy_from_user+0x1c/0xa0
[  101.327177][ T7144]  copy_msghdr_from_user+0x54/0x2b0
[  101.327248][ T7144]  ? __fget_files+0x186/0x1c0
[  101.327339][ T7144]  __sys_sendmsg+0x141/0x240
[  101.327381][ T7144]  __x64_sys_sendmsg+0x46/0x50
[  101.327412][ T7144]  x64_sys_call+0x26f3/0x2e10
[  101.327486][ T7144]  do_syscall_64+0xc9/0x1c0
[  101.327512][ T7144]  ? clear_bhb_loop+0x25/0x80
[  101.327535][ T7144]  ? clear_bhb_loop+0x25/0x80
[  101.327561][ T7144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.327599][ T7144] RIP: 0033:0x7fa0a923d169
[  101.327617][ T7144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.327637][ T7144] RSP: 002b:00007fa0a78a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.327686][ T7144] RAX: ffffffffffffffda RBX: 00007fa0a9455fa0 RCX: 00007fa0a923d169
[  101.327699][ T7144] RDX: 0000000000040000 RSI: 0000200000000280 RDI: 0000000000000003
[  101.327713][ T7144] RBP: 00007fa0a78a7090 R08: 0000000000000000 R09: 0000000000000000
[  101.327784][ T7144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.327795][ T7144] R13: 0000000000000000 R14: 00007fa0a9455fa0 R15: 00007fff96737de8
[  101.327812][ T7144]  </TASK>
[  101.987826][ T7120] dccp_close: ABORT with 32 bytes unread
[  102.013392][   T29] kauditd_printk_skb: 850 callbacks suppressed
[  102.013409][   T29] audit: type=1400 audit(1743702099.371:4896): avc:  denied  { tracepoint } for  pid=7148 comm="syz.1.1465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  102.056042][   T29] audit: type=1400 audit(1743702099.421:4897): avc:  denied  { read } for  pid=7148 comm="syz.1.1465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  102.084725][   T29] audit: type=1400 audit(1743702099.421:4898): avc:  denied  { create } for  pid=7148 comm="syz.1.1465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  102.104258][   T29] audit: type=1400 audit(1743702099.421:4899): avc:  denied  { bind } for  pid=7148 comm="syz.1.1465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  102.123551][   T29] audit: type=1400 audit(1743702099.421:4900): avc:  denied  { write } for  pid=7148 comm="syz.1.1465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  102.164747][   T29] audit: type=1326 audit(1743702099.531:4901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7157 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[  102.188289][   T29] audit: type=1326 audit(1743702099.531:4902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7157 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[  102.229418][   T29] audit: type=1326 audit(1743702099.561:4903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7157 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[  102.253079][   T29] audit: type=1326 audit(1743702099.561:4904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7157 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[  102.277007][   T29] audit: type=1326 audit(1743702099.561:4905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7157 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f821637d169 code=0x7ffc0000
[  102.489948][ T7186] loop4: detected capacity change from 0 to 512
[  102.644761][ T7207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7207 comm=syz.1.1489
[  102.658656][ T7207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7207 comm=syz.1.1489
[  102.671533][ T7207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7207 comm=syz.1.1489
[  102.689155][ T7207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7207 comm=syz.1.1489
[  102.701896][ T7207] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7207 comm=syz.1.1489
[  102.722082][ T7216] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.731976][ T7186] loop4: detected capacity change from 0 to 2048
[  102.786101][ T7216] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.798119][ T7186] Alternate GPT is invalid, using primary GPT.
[  102.804573][ T7186]  loop4: p1 p2 p3
[  102.836924][ T7216] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.931673][ T7216] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.998113][ T7216] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.014657][ T7216] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.028123][ T7216] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.064609][ T7246] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  103.077916][ T7249] tipc: Started in network mode
[  103.082835][ T7249] tipc: Node identity ac14140f, cluster identity 4711
[  103.094296][ T7246] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.102941][ T7246] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.139385][ T7249] tipc: New replicast peer: 255.255.255.255
[  103.145509][ T7249] tipc: Enabled bearer <udp:syz2>, priority 10
[  103.153855][ T7216] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.171640][ T7258] tipc: Disabling bearer <udp:syz2>
[  103.277191][ T7263] ==================================================================
[  103.285310][ T7263] BUG: KCSAN: data-race in getrusage / try_to_unmap_one
[  103.292295][ T7263] 
[  103.294617][ T7263] write to 0xffff88810753f480 of 8 bytes by task 7267 on cpu 1:
[  103.302247][ T7263]  try_to_unmap_one+0xebb/0x1f60
[  103.307208][ T7263]  rmap_walk_anon+0x290/0x440
[  103.311899][ T7263]  try_to_unmap+0x144/0x1e0
[  103.316416][ T7263]  shrink_folio_list+0x11f6/0x2670
[  103.321558][ T7263]  reclaim_folio_list+0x83/0x2f0
[  103.326512][ T7263]  reclaim_pages+0x218/0x280
[  103.331112][ T7263]  madvise_cold_or_pageout_pte_range+0xd4f/0xdb0
[  103.337444][ T7263]  walk_pgd_range+0x7e5/0x1120
[  103.342210][ T7263]  __walk_page_range+0xed/0x350
[  103.347068][ T7263]  walk_page_range_mm+0x369/0x4c0
[  103.352099][ T7263]  walk_page_range+0x56/0x70
[  103.356699][ T7263]  madvise_do_behavior+0x1aeb/0x2530
[  103.361986][ T7263]  __x64_sys_madvise+0xcb/0x100
[  103.366843][ T7263]  x64_sys_call+0x23b8/0x2e10
[  103.371538][ T7263]  do_syscall_64+0xc9/0x1c0
[  103.376054][ T7263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.381951][ T7263] 
[  103.384275][ T7263] read to 0xffff88810753f480 of 8 bytes by task 7263 on cpu 0:
[  103.391844][ T7263]  getrusage+0xa17/0xb70
[  103.396114][ T7263]  io_sq_thread+0x5e0/0x1140
[  103.400797][ T7263]  ret_from_fork+0x4b/0x60
[  103.405219][ T7263]  ret_from_fork_asm+0x1a/0x30
[  103.409988][ T7263] 
[  103.412309][ T7263] value changed: 0x00000000000014df -> 0x00000000000016e9
[  103.419413][ T7263] 
[  103.421740][ T7263] Reported by Kernel Concurrency Sanitizer on:
[  103.427890][ T7263] CPU: 0 UID: 0 PID: 7263 Comm: iou-sqp-7262 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) 
[  103.440132][ T7263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.450193][ T7263] ==================================================================