last executing test programs: 3.763057863s ago: executing program 3 (id=1599): inotify_init1(0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) r1 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r1, 0x47f8, 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x77359400}, 0x0) 2.582777791s ago: executing program 3 (id=1617): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in6=@ipv4={'\x00', '\xff\xff', @remote}, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xfffd, 0x0, 0x1, 0x0, 0x0, 0x80, 0xa0}, {@in6=@remote, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff1, 0x3}, {0x7, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x796}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x1a0b1}}, 0xf8}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0) 2.581844071s ago: executing program 3 (id=1618): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000005c0), 0x4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x4, 0x8040000000000000}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYRESHEX=r1, @ANYRESHEX=0x0, @ANYRES8=r0, @ANYRESOCT=r3, @ANYRESDEC, @ANYRESDEC=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1a, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r4}, 0x10) syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000540)='./file1\x00', 0x0, &(0x7f0000000000)={[{@min_batch_time={'min_batch_time', 0x3d, 0xa04d}}, {@errors_continue}]}, 0xdf, 0x52e, &(0x7f0000000e00)="$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") r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3) ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000240)={0x3920e, r5, 0x18, 0x8, 0x3}) r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000580), 0x4080, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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") syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000018, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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") futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) add_key$keyring(0x0, &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0) ioprio_set$uid(0x3, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f00000001c0)={'batadv_slave_0\x00'}) 2.251400876s ago: executing program 2 (id=1628): inotify_init1(0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) r1 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r1, 0x47f8, 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x77359400}, 0x0) 1.586623726s ago: executing program 0 (id=1640): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x4, &(0x7f0000000280)=0x0) io_submit(r2, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x80800) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002f80)={0xffffffffffffffff}) splice(r3, 0x0, r4, 0x0, 0x9, 0x3) sendmmsg(r4, &(0x7f0000003540)=[{{&(0x7f0000000380)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e22, @multicast2}, 0x1, 0x1, 0x4}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000580)="efc04aac7c4fff7aad0fe6350f018f4fc75bfef7245be0cde634cb70b67c6057b485780a2aef3484b23420af2f599e4120d724ba2d10f92abf7c91e05643232fcca600e75775375b08972049d0aabbb7e3966f8b9208f17c1653beb874e8c5b184e6f69c71ca41498ec7a3b4c1e1c3a7e0812bc677a13791c63ea0d662226271ae7f4f88e519783d24cdfdeed9edc98f34e98b53252b28af98c51614876dd9", 0x9f}, {&(0x7f0000000640)="b518b64dc61b58cb45612fd940a102f3f3a8f46b2acf62a4e5ee3ab8a918bd597f18abdb5fdb1640536af9bb2935de938dbc635f557991873afc57e013e0563a6cda6bb80f18ef67709b968f417f61ba9f37ddb550c79f85c1c9dbcb61cb71b41f17336e47f99a838768f09f9d6a33cb3d0258e6f96ade7396d24119012cef90c8922eaba8304c3642628b1a", 0x8c}, {&(0x7f0000000400)="05e5debb19ae96491de581925a4d51b2fd5377ce564bb76dd7a9f13055ccff8870b01086a9851c4373ad8186d1aa7d76bc8d62e361266a7161836846e5a65dbf2eea0beb6714affbc42188bb96d3f74bcd191f0bedb92b1c188c679808e9c133c7afa2c78805b8094ca4cfad", 0x6c}, {&(0x7f0000000700)="4487b6ed2da36f7ec30a9093b4817045fefd1690199390c7d8f5689f098ede165247c7cba9cf33fee90668481519115b177a62bae0ccfadd9f3640edd2306608fc4f89d8848fc647fc9c5a22c0392a7c42055dfe424a5f7f5f6a5455258576dd2855753284359ea98924854a37344149a30be3650cb3eeea6c06b13273dd2b86bbe3feb101f16ad408fcb0225fe647c67c6f312fad96e9319a9d620cdab4629b2c4899527885b297c7c6bb9067ab", 0xae}], 0x4, &(0x7f00000007c0)=[{0xd0, 0x138, 0x7, "82152072d875b3b2bdc42f0d9e3dd139e4a63c5ae2373914fb20ebc6e31c7450e159d8f4ce6f87462f041878a8adf9e2aabc37b66834ae0718fee40d4f2a95747969801b44b41349f51f1f85d282c3057c7933f52cf59a885a5adc1e8e7baa2981cc35be977d0e3e6de061fa3d89ddcb6a778ac0db660248d3580a1eab9c251adb9bbf9bf287a2af03ad3e5f0d12b1e28f99f11f08f81e144b0965b74ba5cb832f662679d01bfe699daf04004e6e13c003e14cfea322238f416c8e05"}, {0x60, 0x1, 0x8, "a06111576afb5b43f8080372c69e01e84a9de8bdaed8990a38f89c1c33c456cc7f7608c94d511c8990965bc876dbdc2d87a43e28fb06d26365b88d2a232887fcd576145aef03a6c2fc"}], 0x130}}, {{&(0x7f0000000900)=@rxrpc=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e22, 0x3, @local, 0x9}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000001cc0)="06ab2eab8af221e7569c7bbb854f529e2a3877bbbf26184534b19e1b2880fcab1b4624e6f6d7d217f7ab1c8990e755ea0aea22d7f224160186ef6e0ad8e3af0465c055c4808cb09d192b260b7d13c9f175d35439bd878b09cad1d810146a506bd2e313490423a975d052722c02699ea5656300dfef1d", 0x76}, {&(0x7f0000001d80)="43db54a50f59a32225f1d79f6697b666b9412def09a45ee68de7473c0e43ed605d7d13fa5c19cbfe03aca672d775a2d4c7ca9d1219e6c09394582d13680c8396d996b9b0df0c85aed7677e2ef8ff57e45bd01e4bbd7f34cfb47848978f1aa6ee7a11b70c36f1f91b8e7ae0417efc9f5905b21457b8f963f2c95808ca988218402be32d327a924446a5bad5d1475229b92e316696be6c8b84d5bbdb2928cdb98fcfb1277dba2a5d2afca6db35eef4", 0xae}], 0x2, &(0x7f0000001e40)=[{0x1010, 0x107, 0x2, "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"}, {0x108, 0x6, 0x2, "d86bd7d773e553ef328e7e3cbd7b835cdd56028f05d288bfe64c15fa67f4a355581261bcff8cdc35b99caf8ecf7890a52b851f3cec9fa4bd9e46bf92b2f5ad9018d6ba06208a2f6b7c4eceb77df89eb6075e623dc50a4a7d54272750371f13ebe21330f39ed698450458e0468c2463810eb4535d3e9454f0725985b90728dc3be0b602d9336864ef53a75c7f71a3af95837f0f2d8519bd8704a049a8c4026e25bb91685d6ab0b0abd041054a9ffaf5dda21ae693ca5235ae0f4da9e2f5722bf7f61345a84363a8cd8569ce622ea733910e4e7643542631606c7a546007d1c30cdecb91f49bf6a6758237b8e39b768163d69315"}], 0x1118}}, {{&(0x7f0000002f80)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, 0x80, &(0x7f0000000240)=[{&(0x7f0000003000)="b36727a266dcb9693c83d2cce1717ba0e869c6c266b0147fb01fcd66ef0a614b71feaf61f7ba8d495d5f51f14013a8581defe4a290f48d2c39b2ad5f29c9276e420d830769306e381625152a399d766bafca3826dc7c87855268e2a351b507aa45f212c7485696548205268d2a89714ab72e04d4c948284c47aad9efabbf7af9", 0x80}, {&(0x7f0000003080)="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", 0xfd}], 0x2, &(0x7f0000003180)=[{0xf0, 0x10d, 0x200, "b6e6e278bb607ce35f78fda9cd572f7f17e9ac88c3fc7c6c6e4807072a4409f02e4e0d64c17b1af725d74f9a76a13ce97824956d834757fa0cd781ffd9b029e012ea333b54ed3750ecc4ee53ca0160d1f2df66cd9b300c5e346ce72060e7ebb79352aad62828eb4090b27db609530c9a3b8f21fa773098045599d28640ef9205d116c865d4f47736fe5a746233d6b65a0eeab0e958f9fcfdbe944d0c7bcef46863832b763e12001a47321043c2fa6c679e3217d73f5f165cf0b1859825a7c82a17ed78f1f7e426c5a2e57cc5ec61d60e9ff169b59b36c8ec7397076c8b7a"}, {0xc0, 0x0, 0xfffffffb, "e21033db48e3f329965f78728c3bdfc9f00c69e8908e95081e2ee69b2d1b923169c91f644742a021c469eae1ebceb5fa848e28e26acd9a2ee222d3643f8302bed72aab58e04cb3352061d4ad17126f7a2bfedcc4001386a0a7286a36cb6fa441b6b170ab982a2323e6e7f57177bafd57e7002cab8e1329f34c37e5fb39e7d76d9ce024caeed874baad95d1caf9fd8b71173d3cdfc1d8925910cd64fa91f5e362f0f173fbcda33ea4b879"}, {0x100, 0x84, 0x100, "615878968d4f5aaef7422f5fb1772334c1f97c234fc035faee958f16a8bef4d891d8e9fe762e3e6911348113d21144e514a047135c1b84008bc7d8215c6702c87d5bdf7cdc48cb922e924b81c6137d99ad4ba1954bde4ac097282b972cd4b1f379145a603c58169951eee1b1de9efd6ca7088641cb124c4f2bee657353e6f233cbe134fac3f86423e2ea9a2e972b88df1b79c3004a2ccf3946448bc3682d0098e3644c9b32824283a32af1d47ac201eb42d0e4b161f79cc426c001f1308bdc77e109055ea355ee5b19765590cd83da0e2b13a0d5fbe178a5551f75a40a69d4df07c2c711564de4f12362c0b1b4de1bab"}, {0x100, 0x1, 0x89, "cb2425aeb629d7f4cd307bef12f7e9c7b3976cd3e340bf4631bd5cb9e3642a4fc09862dbc813a3534c77ab768ba012451ffccb8e1421fae476a6c643beab060854c1a449b62a68ade85092bafee63c3b54331e5cd6680bc9d5d544c951c3df58fd9508e6fc307617d35edf6408ca396e5a26401992ac2c319f9b6f7289027379d78667278395807838b03812f1106a2a5fb5bd00d2bd4ae996fac050977af107b911a9cd3cd31e1a842399b9e42854bf9fb110f3c17ac3c50ebfbe214d94375abd0b5196f460ffcb4c8f132ef58f8a205677cd7c98a573f0408f23a4559d047d733851743c0d35733a3b657b632d4a20"}], 0x3b0}}], 0x3, 0x800) write(r0, 0x0, 0x0) connect$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) 1.514806867s ago: executing program 3 (id=1642): r0 = inotify_init1(0x0) r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r3}, 0x10) timer_create(0x0, &(0x7f00000002c0)={0x0, 0x12}, &(0x7f00009b1ffc)) r4 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r4, 0x47f8, 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x77359400}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r6 = gettid() tkill(r6, 0x13) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$TOKEN_CREATE(0x24, &(0x7f0000000140), 0x8) r9 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IMADDTIMER(r9, 0x80044940, &(0x7f0000000280)=0x14) read(r9, &(0x7f00000019c0)=""/4097, 0x1001) r10 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400) r11 = dup(r0) inotify_rm_watch(r11, r10) 1.465501488s ago: executing program 0 (id=1644): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) write$selinux_load(0xffffffffffffffff, 0x0, 0x2000) pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=j', @ANYBLOB=',']) 1.419215509s ago: executing program 2 (id=1647): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a0063e18c46edacd83ba80ee36d960000050000", @ANYRES32=0x1, @ANYBLOB="008000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x0, 0xc, &(0x7f0000000900)=ANY=[@ANYBLOB="18800600000000000000000000000000180100022be74535198420ae11b1d8c2e8359500", @ANYRES32=r0, @ANYRESOCT=0x0], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r1}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff734ef2118fba86dd608a37f900142c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa06000005", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000000), 0x1, 0x503, &(0x7f0000000140)="$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") r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES8=r4, @ANYRES32=r5, @ANYRES8=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$phonet(0x23, 0x2, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r5}, &(0x7f0000000080), &(0x7f0000000200)=r6}, 0x20) r7 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e20, 0x5, @local, 0x1}, 0x1c) write$binfmt_aout(r7, 0x0, 0x28) quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000002b80)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000780)={0x5, 0x0, 0x100, 0x0, 0x400000000000000, 0x3, 0x10000, 0x0, 0xffffff05}) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00') syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x21e}, &(0x7f00000001c0), &(0x7f0000000040)) lseek(r8, 0x1000000, 0x0) write$binfmt_misc(r8, &(0x7f0000000b40)="a6d3ecb8e296e12caa10cb432c7bb958ceec76ab70d7bb715edaaf17398bf336ae163df4df262fdbcf18b70d779d3f95c9a4a95b931e4bc35bf518768666694d8c9956c87573bb022cff8a4050dc9c9a8acd236cb9bdcc4c162ba7d614bae43a8f00720e3fdfbec6a074c47795cd6a3133626f3baca12b2623f572d4c683d7627b", 0x81) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000e6ff030000000500000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10) r11 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000000008010100000000000000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x0) 1.418663249s ago: executing program 0 (id=1648): r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=0x0, &(0x7f0000000280)) io_uring_enter(r0, 0x5418, 0x95f2, 0x10, &(0x7f00000004c0)={[0x8a]}, 0x8) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r2, 0x5) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00'}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r4, 0x2) 1.33869462s ago: executing program 4 (id=1650): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000280)="96", 0x1, 0x1, &(0x7f0000000240)={0xa, 0x0, 0x0, @private2}, 0x1c) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000)=0x6, 0x4) socket$netlink(0x10, 0x3, 0x0) ioctl$TCFLSH(0xffffffffffffffff, 0x40045436, 0x3) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x70bd25, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4040) r4 = socket$kcm(0x10, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10) sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7, 0xffffffffffffffff}, 0x4) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r9}, 0x10) 1.219507732s ago: executing program 2 (id=1653): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r1, 0x2) 955.560206ms ago: executing program 4 (id=1657): openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0) open(&(0x7f0000000280)='.\x00', 0x0, 0x0) socket$netlink(0x10, 0x3, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x1000000100}, 0x18) symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00') socket$inet6(0xa, 0x6, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) socket(0x10, 0x803, 0x0) socket$inet(0x2, 0x4000000805, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fcfc0000080011000000000008000e00800000000800", @ANYRES64=r2], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 937.625396ms ago: executing program 4 (id=1658): inotify_init1(0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) r1 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r1, 0x47f8, 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x77359400}, 0x0) 564.000622ms ago: executing program 3 (id=1661): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x1}, 0x1c) r2 = socket$inet(0x2, 0x1, 0x7) setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f00000001c0)={{0x33, @dev={0xac, 0x14, 0x14, 0x43}, 0x4e22, 0x2, 'none\x00', 0x11, 0x3, 0x2e}, {@rand_addr=0x64010102, 0x4e21, 0x2, 0x9b24, 0x0, 0x1}}, 0x44) connect$inet6(r1, &(0x7f0000000000)={0xa, 0xfffe, 0x4000000, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffd}, 0x1c) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0x401, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xffffffffffffffa2}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0) 539.990822ms ago: executing program 0 (id=1662): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa, @void, @value}, 0x94) clock_nanosleep(0x2, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) io_submit(0x0, 0x0, 0x0) 493.847813ms ago: executing program 1 (id=1663): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r0, 0x0, 0x20000000}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000b00000005"], 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r1}, &(0x7f0000000380), &(0x7f0000000440)}, 0x20) io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x80) 410.312814ms ago: executing program 1 (id=1664): socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0x94) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000180)=0x7d) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f00000004c0)=0xb) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000}, 0x18) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) r3 = socket$inet_udplite(0x2, 0x2, 0x88) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x8020) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'tunl0\x00', 0x0}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x6, 0x0, 0x0, 0xffffff81}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x40}}, 0x0) 355.581285ms ago: executing program 3 (id=1665): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$smc(&(0x7f00000001c0), r1) sendmsg$nl_route(r0, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x64, 0x24, 0xe0b, 0x2, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x8000, 0x9, 0x0, 0xfffffc00}}]}]}}}]}, 0x64}}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) r3 = socket$netlink(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, 0x0, 0x300) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) r6 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r6, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r7}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840) 355.094485ms ago: executing program 2 (id=1666): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18) r1 = openat(0xffffffffffffff9c, 0x0, 0x8042, 0x0) fsetxattr$security_selinux(r1, &(0x7f0000000400), &(0x7f0000000440)='system_u:object_r:semanage_exec_t:s0\x00', 0x25, 0x3) 285.541806ms ago: executing program 2 (id=1667): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) 284.935296ms ago: executing program 2 (id=1668): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@ipv6_newrule={0x44, 0x20, 0x1, 0x70bd2c, 0x0, {0xa, 0x10, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2}, [@FRA_SRC={0x14, 0x2, @private2}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x44}}, 0x40000) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x80}}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0) pwritev2(r1, &(0x7f0000000040)=[{&(0x7f0000000140)="0b7080aab166672823b91db6ba1271e2b7274aa55ee4dcf0ff865c6904796621e365dacf90c0e630b336d2eed2ec100eda96f75c0b4b9421ce5014cfaa6caf09bd470315b87b18bed529f9e01582de23a8853ceda531598fd8aedead0bec9936141d0c3c68474f10107e64d314d3ea3196fa151233ad61d1ee49d2c42321c5b1f42db9f461676c5e1262a42dbea80558b9f085ee1d7963fe144d07a427e4f1b8c29270d5329db9fe4e52", 0xaa}], 0x1, 0x8, 0x100, 0x12) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_IMMEDIATE_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000b40)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f0000000540)={{0x0, 0x80000000, 0x1, 0xf331, 0x7, 0x612, 0x7, 0x1, 0x5, 0x80000000, 0xd61c, 0x4, 0x4, 0xe, 0xffffffffffff0000}, 0x40, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000d40)={r4, r5, "beb1e389f7588f23f0d1fa3b40a2b3e0858c1f908943c5fff1822d0bb83fe8b1a80e46e9f7ea6d786dbb36316a044a33473ab7ea56087a95e493700f4312b4871ab192272ce33d01c00ac5ca36a6df4c4541ef0a9d0e67d04f23d36015caf2572e977a333e8dbf88d3805d4db5309ee2eefdcf63d9518609cf5a4a95fb3fc4006e38928ed2ac393b3c8b32eff065252900928e6727bad9260e478dded49477ea5df6d9694453a50a8db3532355933e6dc5178864ea251d1335d54472c6754cfd9e9ed96ec70a32b4d68eb2aae17ee9004d380ec958a75b4d518a6088709c1e77bf6a099b8227ed82e80d65a1fc045a9e8fac1364443b3c45e9b8f6c2f0a8ec1f", "6f91d1a11249a4ee16f8b9eb58ee79c3556caf7fdac94fb5d62b4028104a890585b26da99fcf8143143b6c75ba9f7bfa56f7d18064d57807cb5339555e02f2a766f314507eaa9d0f88cd193bae673034704ad46879ef653c1f5a0e54befa502d8941b22b740db86a23702648562a426b6565d587d49a072ebf1ea37970a7121f9414cd7e40fe30c1b6f40ea1692d2de198e68b9dbe29590495ed05b22dce28767f1fea4d4afc41e547dd23e61cdef773ff13417b7c17db72fa195c61220ae57b0cd322d06972b6b17b75753b43ddb716e06a26541701b30c72e3edaaf2efb2b1d9dd1cf73dcd2d4261dfb7e8eb25580c6d0b2006ac65c1e7fd42179ecd67f6cff724950cda47b8d0ff0151514b85d031eb7f2b75c9512995264bc0b7088d36b723d817b7a265c387850f9c6aa07d006ee93fcf454b6878cd87133fdc3cc99badc281c61faa01c3a6c279796c496650d96d9785b243065a6da5ba0851fa5f4bba2cc8daf8594ae9a07cc10defda4a1ae1b7cd07b11cf63ac3236259d7f164702c634fd24df58fd13899c468d6c1ab5efd759d8f6363d36e3f05c8a895bb1abf540d7b248d5ec9ef243b3bcd52f76ebd32148d87bb9c6ecfa1fa11cf7a14b4582bb18cd2c94ffc7428282bb73e501fd949555d592c9fc4bc4cadbb3a75aa7c7045e88da36191a333a2fdd70817ab857d1ad993b74305855b0b17f656a245e2fec250c1b02b9460b9e53d90808564e4ef5bb91c41a942b08c2b96744e4ff0ea5e3ff8f5b2df4c5803d376a435c004409cff10ca3365082dc54bf8212d132a0a869cf1102c512e59ce1aca8b6dde6ce8ddfff1febd0b0863f886976b6698755dbfc06b3e3898fce7f471655fa660407322a026db48b5c1a800c0ccbde91e3963509f932476a7809e394fff90d813776c5fc62335cf37236d969c8bd219c7d9b352c4f089ee0d0e01e2f70d1e0456fdec4f309fe1e49d7cc4050e7e4a908b4c489c4774c6b9fbc854d9f211205926a45720bd908614a763562b3447cba528e5633e6e5d23dc9a2ad0857240bb5ca3a3d75d092c742a628beaa8c88f038a35e6d3fcfc39c3e1023f466aa2e93adc73803d56fed5923c2c426fd2b4fe99f2a28f4a60fc2edcedab1bf96108a00cb0912da7013faa1e49cae0ff6476b6644f28afb7f175dc2cc27032366f272baf0a19398217f4a71216d8b7f040cb5ce2293b4562b7d423870a9853c133f787e9bdb21e468faa3f96b402ea267c1abc2616aeee772b46783e92eb1a842f85d06827899b3ad239df6269c210f96cc0623e6c14dd121a2247ea547a38e6145916043e632e298cbf5c763c3113686e88b21570feb648a67bf979da3de8666482cf8c396ad6662953147b78d6f10318fd556af74b8b1583830c63d40937348fc4f8afa266d34460b40ced86406d99108b3be95018bd632b6a845001882c7a0fe3045c5581a3a406118ac17f7d700fe864b3b8b5f128d969088aa85b8c29b798fadfb6d743c26993b65a88088c6fd8450ec3da815a0d9eede9cc4e80da6d14a1624ebf7cfaad2dd1ca09946fc7f68e42871d815150fc384468b5583daa3870d57d5cdc678e2035bd71f065304c48dfecca6cd538ad9d7d86879ff275005aedf9f3bff1e71bee8a763b11aba39b18dfd028a7fe7c529422d6c3490bb4981bde14364bcf1dd9fdba120c2005f65dde316cabc57c9db4c1ede9f8fe950f381908d9d4e85976b172d9e9cd56412e9ce6e827313fb9ab73ce2606bc778a23f9742b52178d2d7e6fb8ebdca7b9dc9af777ced11a9612777b192509503efafa944150911eaa40404e040d93ca4c69ee7e4d32888e2d94e8a2ca40eb7ad844bd47d24a02fa850ddf5a494896fa8e9e4fbfe254ecdfc684debca600d7f1d93722335df54b85c9207e25326aa7195df7b00bc515dc3165d8f462cdaa2a0b8eea96ae0e60312bc1faf5d28e52361afaf285801a0b24d4164e7ff7d88032ec4dde114c46aae88dd61c6666549ebc30a6e9bc5600bf64b0580e1996d3e0005367d31cd6d18806fbd7b117b5d4ac167dd660e46b885baa7018750a623bb48e35942b9e491e1228f495822fbcfb5097298eb297f95e962396fbff0764289d1f610be92d4820166ef79a674346ada060e51fe14c33f3e0ebb455fa425c81d30d23920d57d3de8b27e71fd576a5a5a6e465c77a2c0efcb0d943341b3ff697ab898d4426a6d6e4b1b4581b66ffbe09f393fff6501aaf4aea4757657c596a6fcdcba35d63a887f47219e48f69eab10106b5e4de5f778fcc6d81866e1a383c885dd52b6a5f80dd85d5f9e08ebb599806d3bbb5cd0d6807bef6c5e5e477ec1dabf75ac0c2567eaf37b306048aed9141606b378c74556a81258bb9ab68587774044187887e26c4296ba222b26fd508c7c4a5ab09e8d79b1265130f247d290213ed1914ccd6130b1cdc5ed9064d80032a98f9267f9bc578e7290add94c9cd2fcc3981d7371c04b3f2e7588ae287e21af6ef9fd9310daf854628f13e15f516bad8688364a9f1d37a68120716378472d33f1694df2d29886a36044b37ec64bd8a37928f9ee3fad6b34616d685c19daaccb1cf8078e0cf73c28dbf0ce3f411c6dacde510b00b8a194a8eda9d01d485e3ec11554b748580f85b1f55c58daff706e504d70a57f3ded8f4b9e05e8b2bc7af683d491c28219559ddcd0f0e632675765d24d8f24e93f98a553a51c0f14af2c3d1356542f1e95f121561042392cd8869aa3742385c10c49688c776701182cbe67da9deab5be57f2f318a3f47d3878a6437d571eeb039f47e86a973963fd11e72fc906624330ebe5c9326280132ef54cc77dcabcae5745dac11be911198b3b13033846af5b27e20d85bb3b24b09e2f0a179eed6eff341042a8557cf2fec15c70dcc8e847f013a0ad53f02c4bc782fac8fd50ef4a5c97359c7d189482d3fcc6e937985872ab82d9591d012dc396c80c0a40ef54fefe284c9fcbbe3a32d037e5c550c876e45f6d0edd74d3d6ec65157cec83f6ee4626f0692d8cb3aaa7cacac856eac8aabbc6f1e6e0be7f16ab9a2bf4606a5ffe9d2a96c483b2fc27fc3677e8d743466176cf144e4133aa024981756c74c2d400231e54e4d079a09d31d082236731aab3ef71c3b6f3c265535f8f7809d04220607b3d7c644ff0cb75f38286143e4fc3ea92da37e475c8644a0397b23480a90a787c1e5f6643d0bcbd92f05bddde60ed748e35759cac82e364a4abc000c28a438c5f27d30a5e502c655d4fd79b8f8693d9382f9db189f3cea6bde54693fc921baa7984bd84e15f21b609dc2c6b0b0ba6e071b256538d1aefb9325c1099a9e60b2065f61d5314984b86b661bf462db9bfe952820f0334f42e4d4e142f994162d750bd3eee7a3673f5f4585fdd6caa1075602c490988efd0ed085e269106a0fa53f1a499f69f52151fdc7ef7b3f6913b7758061b278df0ac9eece62b8794467421976c8777c5e2ea2153d266d9d3ab45d838c77b66646a826efce60cd00291c78f1b595ebfb1464f506b3c023be2f06416c222fd56c1f22cc1bc5c25f9ed7a008d531f8c19d099c96d80492846de61940f6e978aa44097a9e10ee6cfc8e26871e5010a5f31bf05390a4a75bcd88e78ad283e321d8fd60d66f420e295c88deefcedb2c44bbed5a9f49b080aab072dc3b5a87dedba70934e23b1b1d938c1793278d6639ed8f82124a90400c2bd97339ce22caa8b9dd82ad8dfd360374490b95dbca72ed8969251ab9a61214c0f60a0661a5b2f40c0ef8bde269031bbeb5a965a0b0fcfccc38ea60608657fdc5aed8a4e3942c69d37735fbc6342d37346f3be37809076462e67c749bee6c1cd2e015ce51eeb15e6d986453ac6c11db8f7d3c65792242e6fb7e493e12e2d16b7b0d526ed5a723ad25b45906fb5560c0567f6ac4d4052a3ecb9c1da84fe44cdf2d40ec130c072041233da5b0433dbb711ce84cba145a4227cfc7f74ca383722df78e330241335c482ce0635817a8c59c9edb6b8c0990da36bbe81dfd6c8ece7b368b9f6cdb2e7808d0c20349e1e3eaeafccef97d6ce2e148c3d20c4640ad154a225069fea1ffd5499147594b4081da8bc92ce69cdd06e8bd26ea8267b053530a01ee0104ff195df4e76482c557a312f1682a36d4271b4d4a40e55d0eb0fecaa0de84655a1f0eb817213170bb0f5b1a7dbfce497604969b8ccba8a97e7f7e9f945328d2177f769f30855219cbb780c24d5ecb752bfcc6fa854d543ccb920bb297d86548dd6dd0240677940d474de368b4d58c77621315c16d4d8eaa7b57f91c4f3b95e97d7c4a858cf1447c28713db3ae98a6855455267ee8b99f9bd452587ae1deba22001798e6bade350ea0739252d2faf7b8507a32e9f23328f4c74e1e5c86c05c0b71cd75b3090c27073fca885490dad5623f74b05f70c96dcba0e0b9e87c6e69b512be62cc5af308db86e5509c8147b177f11cf10f7a3cac37acdce52835585113706e61ea0a96234a59d6f2627c6689ccf1d2da45a1afd4bf210f0724bda1da06722eaefa28f249193f4acb1b5e2df6178de78547a5a6a443bb4c4f68465632071799cf3e54694d56367bb58214de5fbeaee2f164289aab6cd272c994834469d1d6d1aebb069346111e359627704d81cae88e6accf03e61f46dcda4e02d62ad305bf7407e94e4828971b0843051bf7779628784afe8726eb81816dd59858fad74d6430784eb811ef247416433095f1a209c235a7ee1382873218245fecee04d668df79de00ea78d2eef1caedeb2062a21df76f8b47ea629d05624166881d1c6e86f4795f283ad6f1d0fdd9b2a0565bb24ca6d018a9b22ea557f0a577d930f7ab3b825793a3c5b9f054f54a181c611c3dd1d014898a5f2b320b7e7a56d990705f5a7204ae21563b31ea005faf2208b9a58735510f7befbfe9059ec5f163eae96f4b98cbccfd8ecffef833c26da31723dcee51d818c643fecb5068acec08303df63bdc73fe54b8d1c70c47685bafcae7a3df8f21ef8fbebf054c21dff3706f5b3dceaf74681ed22af1d04c9e721a0fbac2434f292cc493c8d0109ef4f198379928ff8d926b4343b8c3a7098d92ab85005d9709d3d8cd240bde98553f3fb0b6fa7f88d6c4761f676456fc004ebf9d45a58af7aa2b80b2e9c520985e839fe1948efa89d2afc84a6c322514194d8c50027561b3e95c57dab2249437067587d09bf87bb3b6253bb69d0308ac8125d2a788bc8ca2eeb0e6c6d644f67536db12842231c34ab92b452a4cdf9f3eb3f3c36476e6a456a5880baac822f53fe5aed77608a41ad17d6216beac7d78576a989e05def268810aa9c370b8524abcc68655c338286ad3d46078c228889458cf9ec4b260dd0d135980ce195204c3e80cc9b425cd7b5ec6ca7ed47eb450530"}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x1000000000000}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x4c0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f0, 0xffffffff, 0xffffffff, 0x3f0, 0xffffffff, 0xb, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x1c8, 0x230, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@set2={{0x28}, {{0x0, 0x40}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x2000000, 0x0, 'queue1\x00'}) close_range(r7, 0xffffffffffffffff, 0x0) close_range(r0, 0xffffffffffffffff, 0x200000000000000) 194.569118ms ago: executing program 1 (id=1669): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x4, &(0x7f0000000280)=0x0) io_submit(r2, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x80800) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002f80)={0xffffffffffffffff}) splice(r3, 0x0, r4, 0x0, 0x9, 0x3) sendmmsg(r4, &(0x7f0000003540)=[{{&(0x7f0000000380)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e22, @multicast2}, 0x1, 0x1, 0x4}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000580)="efc04aac7c4fff7aad0fe6350f018f4fc75bfef7245be0cde634cb70b67c6057b485780a2aef3484b23420af2f599e4120d724ba2d10f92abf7c91e05643232fcca600e75775375b08972049d0aabbb7e3966f8b9208f17c1653beb874e8c5b184e6f69c71ca41498ec7a3b4c1e1c3a7e0812bc677a13791c63ea0d662226271ae7f4f88e519783d24cdfdeed9edc98f34e98b53252b28af98c51614876dd9", 0x9f}, {&(0x7f0000000640)="b518b64dc61b58cb45612fd940a102f3f3a8f46b2acf62a4e5ee3ab8a918bd597f18abdb5fdb1640536af9bb2935de938dbc635f557991873afc57e013e0563a6cda6bb80f18ef67709b968f417f61ba9f37ddb550c79f85c1c9dbcb61cb71b41f17336e47f99a838768f09f9d6a33cb3d0258e6f96ade7396d24119012cef90c8922eaba8304c3642628b1a", 0x8c}, {&(0x7f0000000400)="05e5debb19ae96491de581925a4d51b2fd5377ce564bb76dd7a9f13055ccff8870b01086a9851c4373ad8186d1aa7d76bc8d62e361266a7161836846e5a65dbf2eea0beb6714affbc42188bb96d3f74bcd191f0bedb92b1c188c679808e9c133c7afa2c78805b8094ca4cfad", 0x6c}, {&(0x7f0000000700)="4487b6ed2da36f7ec30a9093b4817045fefd1690199390c7d8f5689f098ede165247c7cba9cf33fee90668481519115b177a62bae0ccfadd9f3640edd2306608fc4f89d8848fc647fc9c5a22c0392a7c42055dfe424a5f7f5f6a5455258576dd2855753284359ea98924854a37344149a30be3650cb3eeea6c06b13273dd2b86bbe3feb101f16ad408fcb0225fe647c67c6f312fad96e9319a9d620cdab4629b2c4899527885b297c7c6bb9067ab", 0xae}], 0x4, &(0x7f00000007c0)=[{0xd0, 0x138, 0x7, "82152072d875b3b2bdc42f0d9e3dd139e4a63c5ae2373914fb20ebc6e31c7450e159d8f4ce6f87462f041878a8adf9e2aabc37b66834ae0718fee40d4f2a95747969801b44b41349f51f1f85d282c3057c7933f52cf59a885a5adc1e8e7baa2981cc35be977d0e3e6de061fa3d89ddcb6a778ac0db660248d3580a1eab9c251adb9bbf9bf287a2af03ad3e5f0d12b1e28f99f11f08f81e144b0965b74ba5cb832f662679d01bfe699daf04004e6e13c003e14cfea322238f416c8e05"}, {0x60, 0x1, 0x8, "a06111576afb5b43f8080372c69e01e84a9de8bdaed8990a38f89c1c33c456cc7f7608c94d511c8990965bc876dbdc2d87a43e28fb06d26365b88d2a232887fcd576145aef03a6c2fc"}], 0x130}}, {{&(0x7f0000000900)=@rxrpc=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e22, 0x3, @local, 0x9}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000001cc0)="06ab2eab8af221e7569c7bbb854f529e2a3877bbbf26184534b19e1b2880fcab1b4624e6f6d7d217f7ab1c8990e755ea0aea22d7f224160186ef6e0ad8e3af0465c055c4808cb09d192b260b7d13c9f175d35439bd878b09cad1d810146a506bd2e313490423a975d052722c02699ea5656300dfef1d1f8837a7dbd03eacb444d5110e7c78c198e7a739", 0x8a}, {&(0x7f0000001d80)="43db54a50f59a32225f1d79f6697b666b9412def09a45ee68de7473c0e43ed605d7d13fa5c19cbfe03aca672d775a2d4c7ca9d1219e6c09394582d13680c8396d996b9b0df0c85aed7677e2ef8ff57e45bd01e4bbd7f34cfb47848978f1aa6ee7a11b70c36f1f91b8e7ae0417efc9f5905b21457b8f963f2c95808ca988218402be32d327a924446a5bad5d1475229b92e316696be6c8b84d5bbdb2928cdb98fcfb1277dba2a5d2afca6db35eef4", 0xae}], 0x2, &(0x7f0000001e40)=[{0x1010, 0x107, 0x2, "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"}, {0x108, 0x6, 0x2, "d86bd7d773e553ef328e7e3cbd7b835cdd56028f05d288bfe64c15fa67f4a355581261bcff8cdc35b99caf8ecf7890a52b851f3cec9fa4bd9e46bf92b2f5ad9018d6ba06208a2f6b7c4eceb77df89eb6075e623dc50a4a7d54272750371f13ebe21330f39ed698450458e0468c2463810eb4535d3e9454f0725985b90728dc3be0b602d9336864ef53a75c7f71a3af95837f0f2d8519bd8704a049a8c4026e25bb91685d6ab0b0abd041054a9ffaf5dda21ae693ca5235ae0f4da9e2f5722bf7f61345a84363a8cd8569ce622ea733910e4e7643542631606c7a546007d1c30cdecb91f49bf6a6758237b8e39b768163d69315"}], 0x1118}}, {{&(0x7f0000002f80)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, 0x80, &(0x7f0000000240)=[{&(0x7f0000003000)="b36727a266dcb9693c83d2cce1717ba0e869c6c266b0147fb01fcd66ef0a614b71feaf61f7ba8d495d5f51f14013a8581defe4a290f48d2c39b2ad5f29c9276e420d830769306e381625152a399d766bafca3826dc7c87855268e2a351b507aa45f212c7485696548205268d2a89714ab72e04d4c948284c47aad9efabbf7af9", 0x80}, {&(0x7f0000003080)="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", 0xfd}], 0x2, &(0x7f0000003180)=[{0xf0, 0x10d, 0x200, "b6e6e278bb607ce35f78fda9cd572f7f17e9ac88c3fc7c6c6e4807072a4409f02e4e0d64c17b1af725d74f9a76a13ce97824956d834757fa0cd781ffd9b029e012ea333b54ed3750ecc4ee53ca0160d1f2df66cd9b300c5e346ce72060e7ebb79352aad62828eb4090b27db609530c9a3b8f21fa773098045599d28640ef9205d116c865d4f47736fe5a746233d6b65a0eeab0e958f9fcfdbe944d0c7bcef46863832b763e12001a47321043c2fa6c679e3217d73f5f165cf0b1859825a7c82a17ed78f1f7e426c5a2e57cc5ec61d60e9ff169b59b36c8ec7397076c8b7a"}, {0xc0, 0x0, 0xfffffffb, "e21033db48e3f329965f78728c3bdfc9f00c69e8908e95081e2ee69b2d1b923169c91f644742a021c469eae1ebceb5fa848e28e26acd9a2ee222d3643f8302bed72aab58e04cb3352061d4ad17126f7a2bfedcc4001386a0a7286a36cb6fa441b6b170ab982a2323e6e7f57177bafd57e7002cab8e1329f34c37e5fb39e7d76d9ce024caeed874baad95d1caf9fd8b71173d3cdfc1d8925910cd64fa91f5e362f0f173fbcda33ea4b879"}, {0x100, 0x84, 0x100, "615878968d4f5aaef7422f5fb1772334c1f97c234fc035faee958f16a8bef4d891d8e9fe762e3e6911348113d21144e514a047135c1b84008bc7d8215c6702c87d5bdf7cdc48cb922e924b81c6137d99ad4ba1954bde4ac097282b972cd4b1f379145a603c58169951eee1b1de9efd6ca7088641cb124c4f2bee657353e6f233cbe134fac3f86423e2ea9a2e972b88df1b79c3004a2ccf3946448bc3682d0098e3644c9b32824283a32af1d47ac201eb42d0e4b161f79cc426c001f1308bdc77e109055ea355ee5b19765590cd83da0e2b13a0d5fbe178a5551f75a40a69d4df07c2c711564de4f12362c0b1b4de1bab"}, {0x100, 0x1, 0x89, "cb2425aeb629d7f4cd307bef12f7e9c7b3976cd3e340bf4631bd5cb9e3642a4fc09862dbc813a3534c77ab768ba012451ffccb8e1421fae476a6c643beab060854c1a449b62a68ade85092bafee63c3b54331e5cd6680bc9d5d544c951c3df58fd9508e6fc307617d35edf6408ca396e5a26401992ac2c319f9b6f7289027379d78667278395807838b03812f1106a2a5fb5bd00d2bd4ae996fac050977af107b911a9cd3cd31e1a842399b9e42854bf9fb110f3c17ac3c50ebfbe214d94375abd0b5196f460ffcb4c8f132ef58f8a205677cd7c98a573f0408f23a4559d047d733851743c0d35733a3b657b632d4a20"}], 0x3b0}}], 0x3, 0x800) write(r0, 0x0, 0x0) connect$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) 191.350498ms ago: executing program 0 (id=1670): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20) r1 = socket$packet(0x11, 0xa, 0x300) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0xa54a9d76e5e2e84, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYRES64=r4], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000040085000000890000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r10 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r10, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) bind$inet(r10, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r10, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r10, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r11, 0x0, 0x80000}, 0x18) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000603000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1c0000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) 129.614019ms ago: executing program 0 (id=1671): r0 = inotify_init1(0x0) r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r3}, 0x10) timer_create(0x0, &(0x7f00000002c0)={0x0, 0x12}, &(0x7f00009b1ffc)) r4 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=0x0, &(0x7f0000000340)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r4, 0x47f8, 0x0, 0x0, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x77359400}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r6 = gettid() tkill(r6, 0x13) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$TOKEN_CREATE(0x24, &(0x7f0000000140), 0x8) r9 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IMADDTIMER(r9, 0x80044940, &(0x7f0000000280)=0x14) read(r9, &(0x7f00000019c0)=""/4097, 0x1001) r10 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400) r11 = dup(r0) inotify_rm_watch(r11, r10) 77.953689ms ago: executing program 1 (id=1672): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_pidfd_open(0x0, 0x0) pidfd_send_signal(r0, 0x8, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0400000004000000"], 0x48) open(&(0x7f0000000000)='./file0\x00', 0xe0841, 0x85) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0) 72.083849ms ago: executing program 1 (id=1673): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000008385000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530) 70.228379ms ago: executing program 4 (id=1674): syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0) 51.68809ms ago: executing program 4 (id=1675): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r0, 0x0, 0x20000000}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000b00000005"], 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r1}, &(0x7f0000000380), &(0x7f0000000440)}, 0x20) io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x80) 27.6334ms ago: executing program 1 (id=1676): r0 = socket$inet(0x2, 0x3, 0x8) setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4) r1 = socket$inet(0x2, 0x3, 0x6) r2 = dup3(r0, r1, 0x0) setsockopt$inet_int(r2, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0) sendmmsg(r4, &(0x7f0000000000), 0x4000000000001f2, 0x0) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r2) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000280)={'syztnl1\x00', &(0x7f0000000240)={'gre0\x00', 0x0, 0x80, 0x7, 0x8, 0x3, {{0x6, 0x4, 0x2, 0x8, 0x18, 0x68, 0x0, 0xa2, 0x2f, 0x0, @local, @remote, {[@ra={0x94, 0x4}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000380)={'ip6gre0\x00', 0x0, 0x2f, 0x7, 0x7, 0x5, 0x2e, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, 0x7, 0x7, 0x5, 0xf}}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000440)={'vxcan0\x00', 0x0}) r10 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r10) getsockname$packet(r10, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, r11, 0x0, 0x20040}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r11, 0x225, 0x68020}}}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000580)={0xec, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x1}, 0x6a17cdf771fa0605) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000300)={[{@nombcache}, {@orlov}, {@nouid32}, {@journal_path={'journal_path', 0x3d, './file0'}}, {@grpjquota}], [{@defcontext={'defcontext', 0x3d, 'system_u'}}]}, 0x1, 0x457, &(0x7f0000000700)="$eJzs3MtvG0UYAPBvbSdt+iChKo8+gECLqHgkTVpKD1xAgDiAhASHcgxOWpW6DWqCRKsKCkLliCpxRxyR+As4wQUBJySucEeVKtRLCyejtXdrx7GTtHHsEv9+0rYzsxPNfJ4de3YnTgADazz9J4nYERF/RMRoPbu0wnj9v1s3LpX/uXGpnES1+vbfSa3ezRuXynnV/Oe255lSROHzJPa1aXfhwsUzM5XK3PksP7l49oPJhQsXnzt9dubU3Km5c9PHjx89MvXCsennsxpb1xVnGtfNvR/P79/z+rtX3yyfuPreL98lefwtcXTJ+Eonn6xWu9xcf+1sSielPnaEO1KsT9MYqs3/0ShGY/BG49XP+to5YENVq9Xqg51PX64Cm1gSbQpLBxtvD8AmlX/Qp/e/+dGLdce94vpL9RugNO5b2VE/U4pCVmeo5f62m8Yj4sTlf79Oj1j9OcSWDeoGADBAfkjXP8+2W/8Vovm50H3ZHspYRNwfEbsi4lhE7I6IByJqdR+KiIfvsP3WTZLl65/CtbsKbI3S9d+L2d7W0vVfvvqLsWKW21mLfyg5eboydzh7TQ7F0JY0P7VCGz++8vuXnc41r//SI20/Xwtm/bhWaln1zc4szqwn5mbXP43YW2oXf3J7JyCJiD0Rsfcu2zj99Lf7O51bPf4VdGGfqfpNxFP18b8cLfHnkpX3Jye3RmXu8GR+VSz3629X3urU/rri74J0/Le1vf5vxz+WNO/XLqRFw3fUxpU/vyg3ptNSd3v9DyfvLCn7aGZx8fxUxHDyRr3TzeXTLfWmG/XT+A8daD//d0XjldgXEelF/EhEPBoRj2V9fzwinoiIAyvE//PLB9/vdO52/CNZQR/Gf7bd+L/WafwbieFoLWmfKJ756fsljY41kmsb/6O11KGsZC3vf2vpV341AwAAwGZXiIgdxaQwkaejUJiYqP8O/+7YVqjMLyw+c3L+w3Oz9e8IjMVQIX/SNdr0PHQqu63P89Mt+SPZc+OviiO1/ER5vjLb7+BhwG2vzfnl8z/1V7HfvQM23Or7aLt60g+g93xfEwaX+Q+Dy/yHwdVm/o/0ox9A77X7/P+kD/0Aeq9l/tv2gwHi/h8Gl/kPg8v8h4G0MBKrf0leQmJZIgr3RDf+z4lqsvY/VNHzRL/fmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrjvwAAAP//n1HZTw==") 0s ago: executing program 4 (id=1677): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r1, 0x2) kernel console output (not intermixed with test programs): me+0x77/0x7f [ 83.223779][ T6250] RIP: 0033:0x7f64d27bd169 [ 83.223830][ T6250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 83.223852][ T6250] RSP: 002b:00007f64d0e27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 83.223876][ T6250] RAX: ffffffffffffffda RBX: 00007f64d29d5fa0 RCX: 00007f64d27bd169 [ 83.223890][ T6250] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003 [ 83.223905][ T6250] RBP: 00007f64d0e27090 R08: 0000000000000000 R09: 0000000000000000 [ 83.223999][ T6250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 83.224013][ T6250] R13: 0000000000000000 R14: 00007f64d29d5fa0 R15: 00007ffd9a6322a8 [ 83.224036][ T6250] [ 83.241993][ T6252] loop4: detected capacity change from 0 to 128 [ 83.253271][ T6240] System zones: 0-2, 18-18, 34-34 [ 83.443031][ T6240] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 83.465841][ T6240] EXT4-fs (loop3): 1 truncate cleaned up [ 83.496672][ T6259] netlink: 'syz.1.1008': attribute type 12 has an invalid length. [ 83.549046][ T6265] wireguard0: entered promiscuous mode [ 83.554721][ T6265] wireguard0: entered allmulticast mode [ 83.596471][ T6276] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.647022][ T6284] netlink: 'syz.4.1017': attribute type 10 has an invalid length. [ 83.655202][ T6284] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1017'. [ 83.665531][ T6284] team0: Failed to send port change of device geneve1 via netlink (err -105) [ 83.675905][ T6286] loop3: detected capacity change from 0 to 512 [ 83.683049][ T6286] EXT4-fs: Ignoring removed nobh option [ 83.683744][ T6276] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.718726][ T6286] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1020: corrupted inode contents [ 83.734110][ T6286] EXT4-fs (loop3): Remounting filesystem read-only [ 83.746777][ T6276] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.758162][ T6286] EXT4-fs (loop3): 1 truncate cleaned up [ 83.764410][ T6286] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.775243][ T410] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 83.785860][ T410] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 83.801972][ T410] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 83.815485][ T6276] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.982531][ T6310] netlink: 'syz.3.1029': attribute type 10 has an invalid length. [ 83.990447][ T6310] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1029'. [ 84.015917][ T6312] loop3: detected capacity change from 0 to 128 [ 84.044823][ T6314] wireguard0: entered promiscuous mode [ 84.050347][ T6314] wireguard0: entered allmulticast mode [ 84.522178][ T6319] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1032'. [ 84.552920][ T6321] loop1: detected capacity change from 0 to 512 [ 84.576885][ T6321] EXT4-fs (loop1): 1 orphan inode deleted [ 84.591974][ T6321] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.602677][ T1301] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1 [ 84.674337][ T6331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1035'. [ 84.683980][ T6327] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1035'. [ 84.772095][ T6333] loop1: detected capacity change from 0 to 512 [ 84.798244][ T6335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'. [ 84.808298][ T6331] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 84.834698][ T6331] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 84.839921][ T6340] loop0: detected capacity change from 0 to 512 [ 84.849339][ T6333] EXT4-fs (loop1): 1 orphan inode deleted [ 84.860233][ T6333] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.874871][ T109] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1 [ 84.889520][ T6340] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 84.898654][ T6340] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 84.920212][ T6340] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 84.936334][ T6340] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 84.944443][ T6340] System zones: 0-2, 18-18, 34-34 [ 84.951025][ T6340] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 84.972728][ T6340] EXT4-fs (loop0): 1 truncate cleaned up [ 84.986259][ T6349] netlink: 'syz.1.1041': attribute type 10 has an invalid length. [ 84.996171][ T6349] team0: entered promiscuous mode [ 85.001253][ T6349] team_slave_0: entered promiscuous mode [ 85.007388][ T6349] team_slave_1: entered promiscuous mode [ 85.037143][ T6351] loop1: detected capacity change from 0 to 512 [ 85.047217][ T6351] EXT4-fs (loop1): 1 orphan inode deleted [ 85.053497][ T6351] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.065044][ T109] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1 [ 85.829337][ T6389] loop3: detected capacity change from 0 to 128 [ 85.866969][ T6391] loop3: detected capacity change from 0 to 512 [ 85.887587][ T6391] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.060297][ T6415] __nla_validate_parse: 4 callbacks suppressed [ 86.060310][ T6415] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1067'. [ 86.093260][ T6417] loop1: detected capacity change from 0 to 512 [ 86.100251][ T6417] EXT4-fs: Ignoring removed nobh option [ 86.107378][ T6417] EXT4-fs: Mount option(s) incompatible with ext2 [ 86.117116][ T6417] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 86.125873][ T6417] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.457143][ T6438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1076'. [ 86.568751][ T6442] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1078'. [ 86.791589][ T6457] wireguard0: entered promiscuous mode [ 86.797227][ T6457] wireguard0: entered allmulticast mode [ 86.894403][ T6463] loop0: detected capacity change from 0 to 512 [ 86.907619][ T6463] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.946677][ T6463] netlink: 'syz.0.1087': attribute type 1 has an invalid length. [ 86.953969][ T6469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1089'. [ 86.984385][ T6471] loop3: detected capacity change from 0 to 512 [ 86.988202][ T6473] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1091'. [ 87.000055][ T6471] EXT4-fs: Ignoring removed nobh option [ 87.006398][ T6471] EXT4-fs: Mount option(s) incompatible with ext2 [ 87.018174][ T6471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.027384][ T6471] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 87.078945][ T6477] loop0: detected capacity change from 0 to 512 [ 87.097002][ T6477] EXT4-fs (loop0): 1 orphan inode deleted [ 87.103212][ T6477] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.113846][ T109] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1 [ 87.161046][ T6276] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.173307][ T6276] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.186286][ T6276] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.199415][ T6482] loop0: detected capacity change from 0 to 512 [ 87.208628][ T6276] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.222750][ T6482] EXT4-fs: Ignoring removed nobh option [ 87.248251][ T6482] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.1094: corrupted inode contents [ 87.260813][ T6486] loop4: detected capacity change from 0 to 512 [ 87.267005][ T6482] EXT4-fs (loop0): Remounting filesystem read-only [ 87.274298][ T6482] EXT4-fs (loop0): 1 truncate cleaned up [ 87.281409][ T6482] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.282823][ T6492] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1098'. [ 87.301082][ T410] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.311686][ T410] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.325700][ T6486] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.339840][ T410] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 87.379129][ T6499] loop4: detected capacity change from 0 to 512 [ 87.385770][ T6499] EXT4-fs: Ignoring removed nobh option [ 87.388386][ T6497] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1099'. [ 87.402329][ T6501] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1101'. [ 87.424454][ T6499] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.1100: corrupted inode contents [ 87.439356][ T6505] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.450286][ T6499] EXT4-fs (loop4): Remounting filesystem read-only [ 87.458144][ T6499] EXT4-fs (loop4): 1 truncate cleaned up [ 87.464707][ T6499] ext4 filesystem being mounted at /226/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.475388][ T38] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.486029][ T38] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.522287][ T6510] netlink: 'syz.2.1102': attribute type 10 has an invalid length. [ 87.530218][ T6510] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1102'. [ 87.548296][ T38] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 87.567261][ T6505] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.586003][ T6510] geneve1: entered promiscuous mode [ 87.591486][ T6510] geneve1: entered allmulticast mode [ 87.597264][ T6510] team0: Failed to send port change of device geneve1 via netlink (err -105) [ 87.606441][ T6510] team0: Failed to send options change via netlink (err -105) [ 87.614017][ T6510] team0: Port device geneve1 added [ 87.658649][ T6505] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.699820][ T6514] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.711817][ T6505] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.728220][ T29] kauditd_printk_skb: 1890 callbacks suppressed [ 87.728237][ T29] audit: type=1326 audit(1743683291.442:9687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.762303][ T6528] netlink: 'syz.3.1106': attribute type 10 has an invalid length. [ 87.770266][ T6528] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1106'. [ 87.773476][ T29] audit: type=1326 audit(1743683291.442:9688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.802923][ T29] audit: type=1326 audit(1743683291.442:9689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.826512][ T29] audit: type=1326 audit(1743683291.442:9690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.850035][ T29] audit: type=1326 audit(1743683291.442:9691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.873544][ T29] audit: type=1326 audit(1743683291.442:9692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.897163][ T29] audit: type=1326 audit(1743683291.442:9693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.920723][ T29] audit: type=1326 audit(1743683291.442:9694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.944013][ T29] audit: type=1326 audit(1743683291.442:9695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.967492][ T29] audit: type=1326 audit(1743683291.442:9696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6525 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 87.998992][ T6533] netlink: 'syz.0.1113': attribute type 10 has an invalid length. [ 88.000621][ T6534] loop1: detected capacity change from 0 to 512 [ 88.017383][ T6514] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.030759][ T6534] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.049914][ T6505] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.078299][ T6505] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.088191][ T6514] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.104408][ T6505] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.112799][ T6544] loop0: detected capacity change from 0 to 512 [ 88.117565][ T6505] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.129485][ T6514] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.140678][ T6544] EXT4-fs (loop0): 1 orphan inode deleted [ 88.147563][ T6544] ext4 filesystem being mounted at /236/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.186774][ T6514] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.200015][ T6514] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.226521][ T6514] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.240497][ T6514] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.354989][ T6558] loop3: detected capacity change from 0 to 512 [ 88.368639][ T6560] netlink: 'syz.0.1124': attribute type 10 has an invalid length. [ 88.387722][ T6558] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.426910][ T6558] netlink: 'syz.3.1123': attribute type 1 has an invalid length. [ 88.429738][ T6570] loop0: detected capacity change from 0 to 512 [ 88.436367][ T6569] FAULT_INJECTION: forcing a failure. [ 88.436367][ T6569] name failslab, interval 1, probability 0, space 0, times 0 [ 88.453587][ T6569] CPU: 0 UID: 0 PID: 6569 Comm: syz.2.1128 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 88.453625][ T6569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 88.453637][ T6569] Call Trace: [ 88.453642][ T6569] [ 88.453650][ T6569] dump_stack_lvl+0xf6/0x150 [ 88.453677][ T6569] dump_stack+0x15/0x1a [ 88.453698][ T6569] should_fail_ex+0x261/0x270 [ 88.453728][ T6569] should_failslab+0x8f/0xb0 [ 88.453806][ T6569] kmem_cache_alloc_lru_noprof+0x5e/0x330 [ 88.453834][ T6569] ? shmem_alloc_inode+0x34/0x50 [ 88.453853][ T6569] shmem_alloc_inode+0x34/0x50 [ 88.453904][ T6569] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 88.453930][ T6569] alloc_inode+0x40/0x170 [ 88.453967][ T6569] new_inode+0x1e/0xe0 [ 88.453988][ T6569] shmem_get_inode+0x24e/0x730 [ 88.454030][ T6569] __shmem_file_setup+0x127/0x1f0 [ 88.454105][ T6569] shmem_file_setup+0x3b/0x50 [ 88.454137][ T6569] __se_sys_memfd_create+0x2e1/0x5a0 [ 88.454168][ T6569] __x64_sys_memfd_create+0x31/0x40 [ 88.454232][ T6569] x64_sys_call+0x1163/0x2e10 [ 88.454258][ T6569] do_syscall_64+0xc9/0x1c0 [ 88.454347][ T6569] ? clear_bhb_loop+0x25/0x80 [ 88.454373][ T6569] ? clear_bhb_loop+0x25/0x80 [ 88.454430][ T6569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.454451][ T6569] RIP: 0033:0x7f16b292d169 [ 88.454468][ T6569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.454489][ T6569] RSP: 002b:00007f16b0f96e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f [ 88.454510][ T6569] RAX: ffffffffffffffda RBX: 0000000000000789 RCX: 00007f16b292d169 [ 88.454525][ T6569] RDX: 00007f16b0f96ef0 RSI: 0000000000000000 RDI: 00007f16b29aec3c [ 88.454544][ T6569] RBP: 0000200000001240 R08: 00007f16b0f96bb7 R09: 00007f16b0f96e40 [ 88.454578][ T6569] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000007c0 [ 88.454591][ T6569] R13: 00007f16b0f96ef0 R14: 00007f16b0f96eb0 R15: 00002000000021c0 [ 88.454608][ T6569] [ 88.688450][ T6570] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.700148][ T6574] loop4: detected capacity change from 0 to 2048 [ 88.735661][ T6574] sg_write: data in/out 122/14 bytes for SCSI command 0x0-- guessing data in; [ 88.735661][ T6574] program syz.4.1129 not setting count and/or reply_len properly [ 88.739239][ T6583] loop2: detected capacity change from 0 to 512 [ 88.776339][ T6583] EXT4-fs: Ignoring removed oldalloc option [ 88.786954][ T6589] netlink: 'syz.4.1136': attribute type 10 has an invalid length. [ 88.814650][ T6583] EXT4-fs (loop2): orphan cleanup on readonly fs [ 88.821411][ T6583] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters [ 88.837237][ T6583] EXT4-fs (loop2): Remounting filesystem read-only [ 88.843843][ T6583] EXT4-fs (loop2): 1 truncate cleaned up [ 88.878336][ T6596] loop0: detected capacity change from 0 to 512 [ 88.902057][ T6598] loop3: detected capacity change from 0 to 512 [ 88.908646][ T6598] EXT4-fs: Ignoring removed nobh option [ 88.916510][ T6596] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.939440][ T6598] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1140: corrupted inode contents [ 88.961825][ T6598] EXT4-fs (loop3): Remounting filesystem read-only [ 88.969284][ T6598] EXT4-fs (loop3): 1 truncate cleaned up [ 88.976909][ T410] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.987567][ T410] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.999904][ T6598] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.010459][ T410] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 89.080993][ T6612] loop0: detected capacity change from 0 to 512 [ 89.118220][ T6612] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.194109][ T6637] loop4: detected capacity change from 0 to 512 [ 89.203405][ T6637] EXT4-fs: Ignoring removed nobh option [ 89.233682][ T6637] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.1156: corrupted inode contents [ 89.252103][ T6637] EXT4-fs (loop4): Remounting filesystem read-only [ 89.259083][ T6637] EXT4-fs (loop4): 1 truncate cleaned up [ 89.268259][ T6637] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.278903][ T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 89.289490][ T31] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 89.301165][ T31] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 89.416325][ T6658] wireguard0: entered promiscuous mode [ 89.421832][ T6658] wireguard0: entered allmulticast mode [ 89.455799][ T6666] FAULT_INJECTION: forcing a failure. [ 89.455799][ T6666] name failslab, interval 1, probability 0, space 0, times 0 [ 89.468640][ T6666] CPU: 0 UID: 0 PID: 6666 Comm: syz.4.1166 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 89.468674][ T6666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 89.468764][ T6666] Call Trace: [ 89.468772][ T6666] [ 89.468780][ T6666] dump_stack_lvl+0xf6/0x150 [ 89.468808][ T6666] dump_stack+0x15/0x1a [ 89.468829][ T6666] should_fail_ex+0x261/0x270 [ 89.468862][ T6666] should_failslab+0x8f/0xb0 [ 89.468982][ T6666] __kmalloc_cache_noprof+0x55/0x320 [ 89.469010][ T6666] ? rtnl_newlink+0x5f/0x12d0 [ 89.469047][ T6666] rtnl_newlink+0x5f/0x12d0 [ 89.469077][ T6666] ? enqueue_hrtimer+0x8d/0x180 [ 89.469136][ T6666] ? xas_load+0x3ba/0x3d0 [ 89.469188][ T6666] ? xas_load+0x3ba/0x3d0 [ 89.469219][ T6666] ? __rcu_read_unlock+0x4e/0x70 [ 89.469247][ T6666] ? xa_load+0xbd/0xe0 [ 89.469348][ T6666] ? memcg_list_lru_alloc+0xe1/0x530 [ 89.469446][ T6666] ? obj_cgroup_charge+0xc9/0x170 [ 89.469551][ T6666] ? mod_objcg_state+0x3f9/0x530 [ 89.469586][ T6666] ? skb_release_data+0x611/0x630 [ 89.469613][ T6666] ? __rcu_read_unlock+0x4e/0x70 [ 89.469642][ T6666] ? avc_has_perm_noaudit+0x1cc/0x210 [ 89.469732][ T6666] ? selinux_capable+0x1f9/0x260 [ 89.469761][ T6666] ? security_capable+0x81/0x90 [ 89.469784][ T6666] ? ns_capable+0x7d/0xb0 [ 89.469805][ T6666] ? __pfx_rtnl_newlink+0x10/0x10 [ 89.469912][ T6666] rtnetlink_rcv_msg+0x65a/0x740 [ 89.469938][ T6666] ? should_fail_ex+0xd7/0x270 [ 89.469959][ T6666] ? ref_tracker_free+0x3b8/0x420 [ 89.470054][ T6666] ? sysvec_apic_timer_interrupt+0x44/0x80 [ 89.470084][ T6666] netlink_rcv_skb+0x12f/0x230 [ 89.470106][ T6666] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 89.470140][ T6666] rtnetlink_rcv+0x1c/0x30 [ 89.470191][ T6666] netlink_unicast+0x605/0x6c0 [ 89.470284][ T6666] netlink_sendmsg+0x609/0x720 [ 89.470380][ T6666] ? __pfx_netlink_sendmsg+0x10/0x10 [ 89.470403][ T6666] __sock_sendmsg+0x140/0x180 [ 89.470444][ T6666] ____sys_sendmsg+0x350/0x4e0 [ 89.470478][ T6666] __sys_sendmsg+0x1a0/0x240 [ 89.470555][ T6666] __x64_sys_sendmsg+0x46/0x50 [ 89.470579][ T6666] x64_sys_call+0x26f3/0x2e10 [ 89.470665][ T6666] do_syscall_64+0xc9/0x1c0 [ 89.470694][ T6666] ? clear_bhb_loop+0x25/0x80 [ 89.470718][ T6666] ? clear_bhb_loop+0x25/0x80 [ 89.470737][ T6666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.470755][ T6666] RIP: 0033:0x7f64d27bd169 [ 89.470824][ T6666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 89.470844][ T6666] RSP: 002b:00007f64d0e27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 89.470864][ T6666] RAX: ffffffffffffffda RBX: 00007f64d29d5fa0 RCX: 00007f64d27bd169 [ 89.470876][ T6666] RDX: 0000000000008000 RSI: 0000200000000840 RDI: 0000000000000005 [ 89.470887][ T6666] RBP: 00007f64d0e27090 R08: 0000000000000000 R09: 0000000000000000 [ 89.470954][ T6666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 89.470967][ T6666] R13: 0000000000000000 R14: 00007f64d29d5fa0 R15: 00007ffd9a6322a8 [ 89.470987][ T6666] [ 90.086291][ T6694] loop2: detected capacity change from 0 to 512 [ 90.093364][ T6694] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 90.102484][ T6694] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 90.122616][ T6694] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 90.131951][ T6694] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 90.141199][ T6694] System zones: 0-2, 18-18, 34-34 [ 90.155574][ T6694] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 90.185194][ T6694] EXT4-fs (loop2): 1 truncate cleaned up [ 90.260639][ T6701] loop0: detected capacity change from 0 to 512 [ 90.267498][ T6701] EXT4-fs: Ignoring removed nobh option [ 90.278244][ T6701] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.1180: corrupted inode contents [ 90.290707][ T6701] EXT4-fs (loop0): Remounting filesystem read-only [ 90.298728][ T6701] EXT4-fs (loop0): 1 truncate cleaned up [ 90.305061][ T6701] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.316141][ T38] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 90.326757][ T38] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 90.338740][ T38] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 90.402335][ T6710] wireguard0: entered promiscuous mode [ 90.407926][ T6710] wireguard0: entered allmulticast mode [ 90.539926][ T6730] loop2: detected capacity change from 0 to 512 [ 90.557020][ T6730] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.583384][ T6730] netlink: 'syz.2.1191': attribute type 1 has an invalid length. [ 90.693514][ T6738] wireguard0: entered promiscuous mode [ 90.699091][ T6738] wireguard0: entered allmulticast mode [ 90.811067][ T6756] loop3: detected capacity change from 0 to 512 [ 90.819607][ T6756] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 90.820842][ T6759] loop2: detected capacity change from 0 to 512 [ 90.828743][ T6756] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 90.840473][ T6756] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 90.854089][ T6756] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 90.863195][ T6756] System zones: 0-2, 18-18, 34-34 [ 90.868943][ T6756] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 90.883856][ T6756] EXT4-fs (loop3): 1 truncate cleaned up [ 90.903828][ T6759] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.928665][ T6759] netlink: 'syz.2.1202': attribute type 1 has an invalid length. [ 91.077642][ T6780] __nla_validate_parse: 15 callbacks suppressed [ 91.077658][ T6780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1209'. [ 91.094828][ T6779] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1209'. [ 91.281749][ T6783] 9pnet_fd: Insufficient options for proto=fd [ 91.313203][ T6787] wireguard0: entered promiscuous mode [ 91.318716][ T6787] wireguard0: entered allmulticast mode [ 91.436238][ T6791] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1212'. [ 91.520064][ T6798] loop1: detected capacity change from 0 to 512 [ 91.546705][ T6798] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.569761][ T6798] netlink: 'syz.1.1215': attribute type 1 has an invalid length. [ 91.638056][ T6808] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1219'. [ 91.864169][ T6822] wireguard0: entered promiscuous mode [ 91.869736][ T6822] wireguard0: entered allmulticast mode [ 92.594029][ T6835] loop3: detected capacity change from 0 to 512 [ 92.600956][ T6835] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 92.610067][ T6835] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 92.619323][ T6835] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 92.628354][ T6835] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 92.636536][ T6835] System zones: 0-2, 18-18, 34-34 [ 92.642177][ T6835] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 92.657212][ T6835] EXT4-fs (loop3): 1 truncate cleaned up [ 92.731120][ T6841] loop4: detected capacity change from 0 to 512 [ 92.737597][ T29] kauditd_printk_skb: 966 callbacks suppressed [ 92.737614][ T29] audit: type=1326 audit(1743683296.454:10645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f64d27bbdca code=0x7ffc0000 [ 92.768615][ T29] audit: type=1326 audit(1743683296.454:10646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f64d27bbdca code=0x7ffc0000 [ 92.769833][ T6841] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.792079][ T29] audit: type=1326 audit(1743683296.454:10647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f64d27bb9d7 code=0x7ffc0000 [ 92.820033][ T6841] netlink: 'syz.4.1227': attribute type 1 has an invalid length. [ 92.825917][ T29] audit: type=1326 audit(1743683296.454:10648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f64d27be90a code=0x7ffc0000 [ 92.859033][ T29] audit: type=1326 audit(1743683296.514:10649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f64d27bbad0 code=0x7ffc0000 [ 92.882582][ T29] audit: type=1326 audit(1743683296.514:10650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f64d27bbeb7 code=0x7ffc0000 [ 92.906028][ T29] audit: type=1326 audit(1743683296.514:10651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f64d27bbad0 code=0x7ffc0000 [ 92.929543][ T29] audit: type=1326 audit(1743683296.514:10652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d27bd169 code=0x7ffc0000 [ 92.953237][ T29] audit: type=1326 audit(1743683296.514:10653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d27bd169 code=0x7ffc0000 [ 92.977017][ T29] audit: type=1326 audit(1743683296.514:10654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6840 comm="syz.4.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f64d27bd169 code=0x7ffc0000 [ 93.030673][ T6848] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1229'. [ 93.198846][ T6852] 9p: Unknown access argument j: -22 [ 94.053191][ T6863] loop4: detected capacity change from 0 to 512 [ 94.096100][ T6863] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.231754][ T6874] loop4: detected capacity change from 0 to 512 [ 94.238720][ T6874] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 94.247869][ T6874] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 94.265684][ T6874] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 94.278300][ T6874] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 94.305883][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1242'. [ 94.319281][ T6883] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1243'. [ 94.331919][ T6874] System zones: 0-2, 18-18, 34-34 [ 94.337549][ T6874] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 94.354851][ T6874] EXT4-fs (loop4): 1 truncate cleaned up [ 94.368852][ T6887] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1245'. [ 94.402089][ T6891] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1247'. [ 94.576461][ T6902] loop0: detected capacity change from 0 to 512 [ 94.583732][ T6902] EXT4-fs: Ignoring removed nobh option [ 94.593722][ T6902] EXT4-fs: Mount option(s) incompatible with ext2 [ 94.599641][ T6904] loop4: detected capacity change from 0 to 512 [ 94.607252][ T6904] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 94.608415][ T6902] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.616435][ T6904] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 94.624929][ T6902] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.641222][ T6904] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 94.655933][ T6904] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 94.664030][ T6904] System zones: 0-2, 18-18, 34-34 [ 94.671021][ T6904] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 94.693319][ T6904] EXT4-fs (loop4): 1 truncate cleaned up [ 94.813597][ T6919] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1256'. [ 94.971671][ T6930] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.016408][ T6930] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.027234][ T6933] netlink: 'syz.3.1259': attribute type 10 has an invalid length. [ 95.066483][ T6930] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.126325][ T6930] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.199530][ T6930] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.211421][ T6930] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.215315][ T6930] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.232449][ T6930] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.438561][ T6958] loop3: detected capacity change from 0 to 512 [ 95.445568][ T6958] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 95.445587][ T6958] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 95.455805][ T6958] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 95.501297][ T6958] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 95.519614][ T6958] System zones: 0-2, 18-18, 34-34 [ 95.521511][ T6962] loop0: detected capacity change from 0 to 512 [ 95.531908][ T6958] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 95.546685][ T6958] EXT4-fs (loop3): 1 truncate cleaned up [ 95.568369][ T6962] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 95.610618][ T6966] loop0: detected capacity change from 0 to 512 [ 95.610985][ T6966] EXT4-fs: Ignoring removed nobh option [ 95.623512][ T6966] EXT4-fs: Mount option(s) incompatible with ext2 [ 95.634379][ T6966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 95.634496][ T6966] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.773800][ T6972] loop4: detected capacity change from 0 to 128 [ 96.071015][ T6982] loop2: detected capacity change from 0 to 512 [ 96.122739][ T6982] EXT4-fs (loop2): 1 orphan inode deleted [ 96.130045][ T6982] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.143574][ T1301] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1 [ 96.200421][ T6993] loop0: detected capacity change from 0 to 512 [ 96.206813][ T6992] wireguard0: entered promiscuous mode [ 96.212314][ T6992] wireguard0: entered allmulticast mode [ 96.223084][ T6993] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.345466][ T7008] __nla_validate_parse: 3 callbacks suppressed [ 96.345481][ T7008] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1287'. [ 96.407822][ T7010] loop2: detected capacity change from 0 to 1024 [ 96.449476][ T7010] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 96.468619][ T7010] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 51 with max blocks 1 with error 28 [ 96.480993][ T7010] EXT4-fs (loop2): This should not happen!! Data will be lost [ 96.480993][ T7010] [ 96.490686][ T7010] EXT4-fs (loop2): Total free blocks count 0 [ 96.496698][ T7010] EXT4-fs (loop2): Free/Dirty block details [ 96.502616][ T7010] EXT4-fs (loop2): free_blocks=68451041280 [ 96.508457][ T7010] EXT4-fs (loop2): dirty_blocks=16 [ 96.513608][ T7010] EXT4-fs (loop2): Block reservation details [ 96.519623][ T7010] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 96.541181][ T7016] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 36 with error 28 [ 96.553716][ T7016] EXT4-fs (loop2): This should not happen!! Data will be lost [ 96.553716][ T7016] [ 96.618608][ T7010] syz.2.1288 (7010) used greatest stack depth: 9592 bytes left [ 96.630824][ T7020] loop0: detected capacity change from 0 to 512 [ 96.659158][ T7020] EXT4-fs (loop0): 1 orphan inode deleted [ 96.669711][ T7020] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.681894][ T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1 [ 96.774095][ T7036] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.775718][ T7038] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1298'. [ 96.824167][ T7041] netlink: 'syz.3.1299': attribute type 10 has an invalid length. [ 96.832120][ T7041] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1299'. [ 96.846761][ T7036] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.882593][ T7043] wireguard0: entered promiscuous mode [ 96.888242][ T7043] wireguard0: entered allmulticast mode [ 96.901015][ T7036] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.937059][ T7036] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.049772][ T7055] netlink: 'syz.0.1306': attribute type 10 has an invalid length. [ 97.057738][ T7055] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1306'. [ 97.125060][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1307'. [ 97.134837][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1307'. [ 97.151625][ T7063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1309'. [ 97.161403][ T7061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1309'. [ 97.248282][ T7070] wireguard0: entered promiscuous mode [ 97.253811][ T7070] wireguard0: entered allmulticast mode [ 97.268261][ T7073] FAULT_INJECTION: forcing a failure. [ 97.268261][ T7073] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.281586][ T7073] CPU: 1 UID: 0 PID: 7073 Comm: syz.0.1313 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 97.281651][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 97.281662][ T7073] Call Trace: [ 97.281667][ T7073] [ 97.281674][ T7073] dump_stack_lvl+0xf6/0x150 [ 97.281695][ T7073] dump_stack+0x15/0x1a [ 97.281708][ T7073] should_fail_ex+0x261/0x270 [ 97.281772][ T7073] should_fail_alloc_page+0xfd/0x110 [ 97.281800][ T7073] __alloc_frozen_pages_noprof+0x11d/0x360 [ 97.281851][ T7073] alloc_pages_mpol+0xb6/0x260 [ 97.281872][ T7073] vma_alloc_folio_noprof+0x19c/0x300 [ 97.281988][ T7073] handle_mm_fault+0xdda/0x2e80 [ 97.282029][ T7073] exc_page_fault+0x296/0x6a0 [ 97.282053][ T7073] asm_exc_page_fault+0x26/0x30 [ 97.282071][ T7073] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 97.282155][ T7073] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 97.282171][ T7073] RSP: 0018:ffffc90000ee3cc8 EFLAGS: 00050246 [ 97.282183][ T7073] RAX: ffff888107f72b98 RBX: 0000200000033ac0 RCX: 0000000000000040 [ 97.282262][ T7073] RDX: 0000000000000000 RSI: ffffc90000ee3d20 RDI: 0000200000033a80 [ 97.282278][ T7073] RBP: ffffc90000ee3da0 R08: 0000000080000000 R09: 0000000000000000 [ 97.282293][ T7073] R10: 0001c90000ee3d20 R11: 0001c90000ee3d5f R12: 0000000000000040 [ 97.282308][ T7073] R13: 00007ffffffff000 R14: 0000200000033a80 R15: ffffc90000ee3d20 [ 97.282332][ T7073] _copy_to_user+0x7c/0xa0 [ 97.282447][ T7073] rng_dev_read+0x3f4/0x720 [ 97.282476][ T7073] vfs_readv+0x3e5/0x660 [ 97.282505][ T7073] ? __pfx_rng_dev_read+0x10/0x10 [ 97.282564][ T7073] __x64_sys_preadv+0xf9/0x1c0 [ 97.282594][ T7073] x64_sys_call+0x1410/0x2e10 [ 97.282620][ T7073] do_syscall_64+0xc9/0x1c0 [ 97.282654][ T7073] ? clear_bhb_loop+0x25/0x80 [ 97.282686][ T7073] ? clear_bhb_loop+0x25/0x80 [ 97.282704][ T7073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.282721][ T7073] RIP: 0033:0x7fd78034d169 [ 97.282732][ T7073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 97.282747][ T7073] RSP: 002b:00007fd77e9af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 97.282802][ T7073] RAX: ffffffffffffffda RBX: 00007fd780565fa0 RCX: 00007fd78034d169 [ 97.282812][ T7073] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003 [ 97.282822][ T7073] RBP: 00007fd77e9af090 R08: 0000000000000000 R09: 0000000000000000 [ 97.282837][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 97.282847][ T7073] R13: 0000000000000000 R14: 00007fd780565fa0 R15: 00007fff6bbabd58 [ 97.282864][ T7073] [ 97.627179][ T7082] wireguard0: entered promiscuous mode [ 97.632696][ T7082] wireguard0: entered allmulticast mode [ 97.660242][ T7087] netlink: 'syz.0.1319': attribute type 10 has an invalid length. [ 97.668196][ T7087] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1319'. [ 97.697311][ T7094] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1322'. [ 97.717289][ T7092] loop4: detected capacity change from 0 to 8192 [ 97.756118][ T29] kauditd_printk_skb: 436 callbacks suppressed [ 97.756130][ T29] audit: type=1326 audit(1743683301.474:11089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.796682][ T29] audit: type=1326 audit(1743683301.474:11090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.820268][ T29] audit: type=1326 audit(1743683301.474:11091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.825592][ T7092] loop4: p1 < > p3 p4 < > [ 97.843799][ T29] audit: type=1326 audit(1743683301.474:11092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.871851][ T29] audit: type=1326 audit(1743683301.474:11093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.895338][ T29] audit: type=1326 audit(1743683301.474:11094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.918944][ T29] audit: type=1326 audit(1743683301.474:11095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.942542][ T29] audit: type=1326 audit(1743683301.474:11096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.953582][ T7092] loop4: p3 size 132352 extends beyond EOD, [ 97.966088][ T29] audit: type=1326 audit(1743683301.474:11097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 97.966121][ T29] audit: type=1326 audit(1743683301.474:11098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7097 comm="syz.0.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 98.019403][ T7092] truncated [ 98.039226][ T7109] FAULT_INJECTION: forcing a failure. [ 98.039226][ T7109] name failslab, interval 1, probability 0, space 0, times 0 [ 98.051939][ T7109] CPU: 1 UID: 0 PID: 7109 Comm: syz.2.1329 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 98.051962][ T7109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 98.051973][ T7109] Call Trace: [ 98.051979][ T7109] [ 98.051985][ T7109] dump_stack_lvl+0xf6/0x150 [ 98.052012][ T7109] dump_stack+0x15/0x1a [ 98.052026][ T7109] should_fail_ex+0x261/0x270 [ 98.052123][ T7109] should_failslab+0x8f/0xb0 [ 98.052148][ T7109] kmem_cache_alloc_noprof+0x59/0x340 [ 98.052166][ T7109] ? audit_log_start+0x37f/0x6e0 [ 98.052186][ T7109] audit_log_start+0x37f/0x6e0 [ 98.052205][ T7109] ? kstrtouint+0x7b/0xc0 [ 98.052288][ T7109] audit_seccomp+0x4b/0x130 [ 98.052305][ T7109] __seccomp_filter+0x694/0x10e0 [ 98.052330][ T7109] ? vfs_write+0x669/0x950 [ 98.052353][ T7109] ? putname+0xe1/0x100 [ 98.052421][ T7109] __secure_computing+0x7e/0x160 [ 98.052445][ T7109] syscall_trace_enter+0xcf/0x1f0 [ 98.052470][ T7109] ? fpregs_assert_state_consistent+0x83/0xa0 [ 98.052501][ T7109] do_syscall_64+0xaa/0x1c0 [ 98.052526][ T7109] ? clear_bhb_loop+0x25/0x80 [ 98.052568][ T7109] ? clear_bhb_loop+0x25/0x80 [ 98.052599][ T7109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.052617][ T7109] RIP: 0033:0x7f16b292d169 [ 98.052629][ T7109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 98.052643][ T7109] RSP: 002b:00007f16b0f97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 98.052659][ T7109] RAX: ffffffffffffffda RBX: 00007f16b2b45fa0 RCX: 00007f16b292d169 [ 98.052669][ T7109] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff [ 98.052699][ T7109] RBP: 00007f16b0f97090 R08: 0000000000000006 R09: 0000000000000000 [ 98.052708][ T7109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 98.052718][ T7109] R13: 0000000000000000 R14: 00007f16b2b45fa0 R15: 00007fff651de5e8 [ 98.052734][ T7109] [ 98.411176][ T7117] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.421463][ T7117] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.457309][ T7132] loop1: detected capacity change from 0 to 128 [ 98.886448][ T7145] ip6erspan0: entered promiscuous mode [ 99.122724][ T7036] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.137217][ T7036] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.149857][ T7036] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.162066][ T7036] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.193282][ T7166] loop3: detected capacity change from 0 to 512 [ 99.206887][ T7166] EXT4-fs (loop3): 1 orphan inode deleted [ 99.213166][ T7166] EXT4-fs mount: 87 callbacks suppressed [ 99.213181][ T7166] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.231561][ T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1 [ 99.231697][ T7166] ext4 filesystem being mounted at /296/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.274421][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.294170][ T7176] netlink: 'syz.3.1356': attribute type 10 has an invalid length. [ 99.381919][ T7188] loop4: detected capacity change from 0 to 512 [ 99.389791][ T7188] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 99.399010][ T7188] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 99.408240][ T7188] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 99.417338][ T7188] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 99.425750][ T7188] System zones: 0-2, 18-18, 34-34 [ 99.431439][ T7191] loop1: detected capacity change from 0 to 512 [ 99.438670][ T7188] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 99.453740][ T7188] EXT4-fs (loop4): 1 truncate cleaned up [ 99.459973][ T7188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.490473][ T7191] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.503220][ T7191] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.541176][ T7191] netlink: 'syz.1.1361': attribute type 1 has an invalid length. [ 99.580855][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.643504][ T7204] wireguard0: entered promiscuous mode [ 99.649104][ T7204] wireguard0: entered allmulticast mode [ 99.667046][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.685079][ T7207] FAULT_INJECTION: forcing a failure. [ 99.685079][ T7207] name failslab, interval 1, probability 0, space 0, times 0 [ 99.697782][ T7207] CPU: 0 UID: 0 PID: 7207 Comm: syz.3.1367 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 99.697821][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 99.697836][ T7207] Call Trace: [ 99.697842][ T7207] [ 99.697848][ T7207] dump_stack_lvl+0xf6/0x150 [ 99.697939][ T7207] dump_stack+0x15/0x1a [ 99.697960][ T7207] should_fail_ex+0x261/0x270 [ 99.697993][ T7207] should_failslab+0x8f/0xb0 [ 99.698025][ T7207] __kmalloc_noprof+0xad/0x410 [ 99.698090][ T7207] ? io_cache_alloc_new+0x2b/0xa0 [ 99.698116][ T7207] io_cache_alloc_new+0x2b/0xa0 [ 99.698137][ T7207] io_msg_alloc_async+0xf5/0x190 [ 99.698231][ T7207] io_send_zc_prep+0x31c/0x720 [ 99.698344][ T7207] io_submit_sqes+0x607/0x1050 [ 99.698386][ T7207] __se_sys_io_uring_enter+0x1ce/0x1c00 [ 99.698441][ T7207] ? 0xffffffff81000000 [ 99.698457][ T7207] ? get_pid_task+0x94/0xd0 [ 99.698485][ T7207] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 99.698505][ T7207] ? vfs_write+0x669/0x950 [ 99.698553][ T7207] ? __rcu_read_unlock+0x4e/0x70 [ 99.698587][ T7207] ? bpf_trace_run2+0x12c/0x1d0 [ 99.698628][ T7207] ? __bpf_trace_sys_enter+0x10/0x30 [ 99.698730][ T7207] ? trace_sys_enter+0xcd/0x110 [ 99.698767][ T7207] __x64_sys_io_uring_enter+0x78/0x90 [ 99.698797][ T7207] x64_sys_call+0x26cb/0x2e10 [ 99.698818][ T7207] do_syscall_64+0xc9/0x1c0 [ 99.698879][ T7207] ? clear_bhb_loop+0x25/0x80 [ 99.698905][ T7207] ? clear_bhb_loop+0x25/0x80 [ 99.698931][ T7207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.699036][ T7207] RIP: 0033:0x7f6dcc27d169 [ 99.699050][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 99.699068][ T7207] RSP: 002b:00007f6dca8df038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 99.699086][ T7207] RAX: ffffffffffffffda RBX: 00007f6dcc495fa0 RCX: 00007f6dcc27d169 [ 99.699100][ T7207] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000005 [ 99.699114][ T7207] RBP: 00007f6dca8df090 R08: 0000000000000000 R09: 0000000000000000 [ 99.699128][ T7207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 99.699142][ T7207] R13: 0000000000000000 R14: 00007f6dcc495fa0 R15: 00007fff6a924ac8 [ 99.699193][ T7207] [ 99.955060][ T7213] netlink: 'syz.4.1368': attribute type 10 has an invalid length. [ 99.964008][ T7209] loop0: detected capacity change from 0 to 512 [ 99.971507][ T7209] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 99.980633][ T7209] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 100.000666][ T7209] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 100.018345][ T7209] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 100.020443][ T7218] loop3: detected capacity change from 0 to 2048 [ 100.026609][ T7220] FAULT_INJECTION: forcing a failure. [ 100.026609][ T7220] name failslab, interval 1, probability 0, space 0, times 0 [ 100.033231][ T7209] System zones: [ 100.045462][ T7220] CPU: 1 UID: 0 PID: 7220 Comm: syz.4.1371 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 100.045496][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 100.045509][ T7220] Call Trace: [ 100.045515][ T7220] [ 100.045523][ T7220] dump_stack_lvl+0xf6/0x150 [ 100.045630][ T7220] dump_stack+0x15/0x1a [ 100.045653][ T7220] should_fail_ex+0x261/0x270 [ 100.045688][ T7220] should_failslab+0x8f/0xb0 [ 100.045805][ T7220] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 100.045835][ T7220] ? __alloc_skb+0x10d/0x320 [ 100.045940][ T7220] __alloc_skb+0x10d/0x320 [ 100.045965][ T7220] ? audit_log_start+0x37f/0x6e0 [ 100.045996][ T7220] audit_log_start+0x39a/0x6e0 [ 100.046066][ T7220] ? kstrtouint+0x7b/0xc0 [ 100.046098][ T7220] audit_seccomp+0x4b/0x130 [ 100.046123][ T7220] __seccomp_filter+0x694/0x10e0 [ 100.046162][ T7220] ? vfs_write+0x669/0x950 [ 100.046205][ T7220] __secure_computing+0x7e/0x160 [ 100.046273][ T7220] syscall_trace_enter+0xcf/0x1f0 [ 100.046319][ T7220] do_syscall_64+0xaa/0x1c0 [ 100.046355][ T7220] ? clear_bhb_loop+0x25/0x80 [ 100.046382][ T7220] ? clear_bhb_loop+0x25/0x80 [ 100.046409][ T7220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.046479][ T7220] RIP: 0033:0x7f64d27bd169 [ 100.046499][ T7220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.046522][ T7220] RSP: 002b:00007f64d0e27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000105 [ 100.046545][ T7220] RAX: ffffffffffffffda RBX: 00007f64d29d5fa0 RCX: 00007f64d27bd169 [ 100.046560][ T7220] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff [ 100.046576][ T7220] RBP: 00007f64d0e27090 R08: 0000000000000000 R09: 0000000000000000 [ 100.046657][ T7220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 100.046672][ T7220] R13: 0000000000000000 R14: 00007f64d29d5fa0 R15: 00007ffd9a6322a8 [ 100.046696][ T7220] [ 100.077401][ T7218] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.077638][ T7209] 0-2, 18-18, 34-34 [ 100.261036][ T7209] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 100.277429][ T7209] EXT4-fs (loop0): 1 truncate cleaned up [ 100.283665][ T7209] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.297741][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.344219][ T7233] loop2: detected capacity change from 0 to 512 [ 100.372019][ T7233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.388691][ T7233] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.439804][ T7233] netlink: 'syz.2.1375': attribute type 1 has an invalid length. [ 100.509122][ T7247] FAULT_INJECTION: forcing a failure. [ 100.509122][ T7247] name failslab, interval 1, probability 0, space 0, times 0 [ 100.521838][ T7247] CPU: 1 UID: 0 PID: 7247 Comm: syz.3.1378 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 100.521871][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 100.521886][ T7247] Call Trace: [ 100.521894][ T7247] [ 100.521956][ T7247] dump_stack_lvl+0xf6/0x150 [ 100.521986][ T7247] dump_stack+0x15/0x1a [ 100.522007][ T7247] should_fail_ex+0x261/0x270 [ 100.522060][ T7247] should_failslab+0x8f/0xb0 [ 100.522091][ T7247] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 100.522118][ T7247] ? __alloc_skb+0x10d/0x320 [ 100.522147][ T7247] __alloc_skb+0x10d/0x320 [ 100.522171][ T7247] ? audit_log_start+0x37f/0x6e0 [ 100.522239][ T7247] audit_log_start+0x39a/0x6e0 [ 100.522267][ T7247] ? kstrtouint+0x7b/0xc0 [ 100.522354][ T7247] audit_seccomp+0x4b/0x130 [ 100.522378][ T7247] __seccomp_filter+0x694/0x10e0 [ 100.522473][ T7247] ? vfs_write+0x669/0x950 [ 100.522507][ T7247] __secure_computing+0x7e/0x160 [ 100.522606][ T7247] syscall_trace_enter+0xcf/0x1f0 [ 100.522646][ T7247] ? fpregs_assert_state_consistent+0x83/0xa0 [ 100.522708][ T7247] do_syscall_64+0xaa/0x1c0 [ 100.522772][ T7247] ? clear_bhb_loop+0x25/0x80 [ 100.522795][ T7247] ? clear_bhb_loop+0x25/0x80 [ 100.522819][ T7247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.522844][ T7247] RIP: 0033:0x7f6dcc27d169 [ 100.522858][ T7247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.522912][ T7247] RSP: 002b:00007f6dca8df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 100.522930][ T7247] RAX: ffffffffffffffda RBX: 00007f6dcc495fa0 RCX: 00007f6dcc27d169 [ 100.522942][ T7247] RDX: 0000200000000080 RSI: 000000000000890b RDI: 0000000000000005 [ 100.522954][ T7247] RBP: 00007f6dca8df090 R08: 0000000000000000 R09: 0000000000000000 [ 100.522968][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 100.522983][ T7247] R13: 0000000000000000 R14: 00007f6dcc495fa0 R15: 00007fff6a924ac8 [ 100.523007][ T7247] [ 100.759175][ T7247] loop3: detected capacity change from 0 to 2048 [ 100.848835][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.868001][ T7247] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002] [ 100.876214][ T7247] System zones: 0-4 [ 100.880583][ T7247] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.893041][ T7247] ext4 filesystem being mounted at /308/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 100.947646][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.980222][ T7258] FAULT_INJECTION: forcing a failure. [ 100.980222][ T7258] name failslab, interval 1, probability 0, space 0, times 0 [ 100.993036][ T7258] CPU: 1 UID: 0 PID: 7258 Comm: syz.2.1381 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 100.993095][ T7258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 100.993107][ T7258] Call Trace: [ 100.993113][ T7258] [ 100.993119][ T7258] dump_stack_lvl+0xf6/0x150 [ 100.993143][ T7258] dump_stack+0x15/0x1a [ 100.993163][ T7258] should_fail_ex+0x261/0x270 [ 100.993190][ T7258] should_failslab+0x8f/0xb0 [ 100.993305][ T7258] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 100.993333][ T7258] ? __alloc_skb+0x10d/0x320 [ 100.993359][ T7258] ? should_fail_ex+0x31/0x270 [ 100.993390][ T7258] __alloc_skb+0x10d/0x320 [ 100.993450][ T7258] ? avc_has_perm_noaudit+0x1cc/0x210 [ 100.993485][ T7258] tipc_msg_build+0xc4/0x870 [ 100.993526][ T7258] ? __rcu_read_unlock+0x4e/0x70 [ 100.993563][ T7258] __tipc_sendmsg+0x150d/0x1c90 [ 100.993637][ T7258] ? selinux_socket_sendmsg+0x18a/0x1c0 [ 100.993669][ T7258] ? __pfx_woken_wake_function+0x10/0x10 [ 100.993789][ T7258] ? lock_sock_nested+0x114/0x140 [ 100.993833][ T7258] ? __pfx_tipc_sendmsg+0x10/0x10 [ 100.993868][ T7258] tipc_sendmsg+0x3e/0x60 [ 100.993944][ T7258] __sock_sendmsg+0x140/0x180 [ 100.993976][ T7258] ____sys_sendmsg+0x350/0x4e0 [ 100.994115][ T7258] __sys_sendmsg+0x1a0/0x240 [ 100.994205][ T7258] __x64_sys_sendmsg+0x46/0x50 [ 100.994271][ T7258] x64_sys_call+0x26f3/0x2e10 [ 100.994297][ T7258] do_syscall_64+0xc9/0x1c0 [ 100.994370][ T7258] ? clear_bhb_loop+0x25/0x80 [ 100.994425][ T7258] ? clear_bhb_loop+0x25/0x80 [ 100.994503][ T7258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.994527][ T7258] RIP: 0033:0x7f16b292d169 [ 100.994549][ T7258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.994615][ T7258] RSP: 002b:00007f16b0f97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 100.994637][ T7258] RAX: ffffffffffffffda RBX: 00007f16b2b45fa0 RCX: 00007f16b292d169 [ 100.994648][ T7258] RDX: 0000000024008000 RSI: 0000200000000200 RDI: 0000000000000006 [ 100.994660][ T7258] RBP: 00007f16b0f97090 R08: 0000000000000000 R09: 0000000000000000 [ 100.994673][ T7258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 100.994687][ T7258] R13: 0000000000000000 R14: 00007f16b2b45fa0 R15: 00007fff651de5e8 [ 100.994767][ T7258] [ 101.384616][ T7277] __nla_validate_parse: 16 callbacks suppressed [ 101.384632][ T7277] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1390'. [ 101.539006][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.559875][ T7284] loop2: detected capacity change from 0 to 512 [ 101.564253][ T7287] loop0: detected capacity change from 0 to 512 [ 101.573002][ T7284] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 101.582103][ T7284] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 101.588335][ T7287] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.603097][ T7287] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.603130][ T7284] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 101.603254][ T7284] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 101.630898][ T7284] System zones: 0-2, 18-18, 34-34 [ 101.647746][ T7284] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 101.663213][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.674768][ T7284] EXT4-fs (loop2): 1 truncate cleaned up [ 101.680808][ T7284] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.745900][ T7299] wireguard0: entered promiscuous mode [ 101.751424][ T7299] wireguard0: entered allmulticast mode [ 101.873419][ T7312] loop0: detected capacity change from 0 to 128 [ 101.873557][ T7310] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.902677][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.921394][ T7317] netlink: 'syz.1.1400': attribute type 10 has an invalid length. [ 101.929409][ T7317] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1400'. [ 101.942744][ T7310] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.959908][ T7317] geneve1: entered promiscuous mode [ 101.965922][ T7317] team0: Failed to send port change of device geneve1 via netlink (err -105) [ 101.975690][ T7317] team0: Failed to send options change via netlink (err -105) [ 101.983193][ T7317] team0: Port device geneve1 added [ 102.007220][ T7322] FAULT_INJECTION: forcing a failure. [ 102.007220][ T7322] name failslab, interval 1, probability 0, space 0, times 0 [ 102.020032][ T7322] CPU: 0 UID: 0 PID: 7322 Comm: syz.0.1405 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 102.020071][ T7322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 102.020086][ T7322] Call Trace: [ 102.020093][ T7322] [ 102.020102][ T7322] dump_stack_lvl+0xf6/0x150 [ 102.020126][ T7322] dump_stack+0x15/0x1a [ 102.020142][ T7322] should_fail_ex+0x261/0x270 [ 102.020170][ T7322] should_failslab+0x8f/0xb0 [ 102.020286][ T7322] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 102.020317][ T7322] ? __alloc_skb+0x10d/0x320 [ 102.020364][ T7322] ? selinux_file_open+0x356/0x3c0 [ 102.020489][ T7322] __alloc_skb+0x10d/0x320 [ 102.020516][ T7322] alloc_skb_with_frags+0x80/0x460 [ 102.020547][ T7322] ? avc_has_perm_noaudit+0x1cc/0x210 [ 102.020582][ T7322] sock_alloc_send_pskb+0x437/0x500 [ 102.020681][ T7322] ? selinux_socket_sendmsg+0x18a/0x1c0 [ 102.020730][ T7322] hci_sock_sendmsg+0x11d/0x960 [ 102.020765][ T7322] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 102.020835][ T7322] __sock_sendmsg+0x140/0x180 [ 102.020875][ T7322] sock_write_iter+0x186/0x1c0 [ 102.021027][ T7322] vfs_write+0x79b/0x950 [ 102.021118][ T7322] ? __pfx_sock_write_iter+0x10/0x10 [ 102.021158][ T7322] ksys_write+0xeb/0x1b0 [ 102.021268][ T7322] __x64_sys_write+0x42/0x50 [ 102.021300][ T7322] x64_sys_call+0x2a45/0x2e10 [ 102.021327][ T7322] do_syscall_64+0xc9/0x1c0 [ 102.021409][ T7322] ? clear_bhb_loop+0x25/0x80 [ 102.021429][ T7322] ? clear_bhb_loop+0x25/0x80 [ 102.021495][ T7322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.021516][ T7322] RIP: 0033:0x7fd78034d169 [ 102.021534][ T7322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.021555][ T7322] RSP: 002b:00007fd77e9af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 102.021573][ T7322] RAX: ffffffffffffffda RBX: 00007fd780565fa0 RCX: 00007fd78034d169 [ 102.021620][ T7322] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 0000000000000008 [ 102.021634][ T7322] RBP: 00007fd77e9af090 R08: 0000000000000000 R09: 0000000000000000 [ 102.021648][ T7322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.021662][ T7322] R13: 0000000000000000 R14: 00007fd780565fa0 R15: 00007fff6bbabd58 [ 102.021684][ T7322] [ 102.295841][ T7310] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.332083][ T7333] wireguard0: entered promiscuous mode [ 102.337704][ T7333] wireguard0: entered allmulticast mode [ 102.361560][ T7310] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.416798][ T7349] loop3: detected capacity change from 0 to 128 [ 102.454269][ T7310] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.467724][ T7310] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.479299][ T7310] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.490844][ T7310] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.540629][ T7361] FAULT_INJECTION: forcing a failure. [ 102.540629][ T7361] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 102.553846][ T7361] CPU: 0 UID: 0 PID: 7361 Comm: syz.4.1421 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 102.553881][ T7361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 102.553926][ T7361] Call Trace: [ 102.553932][ T7361] [ 102.553938][ T7361] dump_stack_lvl+0xf6/0x150 [ 102.553962][ T7361] dump_stack+0x15/0x1a [ 102.553979][ T7361] should_fail_ex+0x261/0x270 [ 102.554012][ T7361] should_fail+0xb/0x10 [ 102.554109][ T7361] should_fail_usercopy+0x1a/0x20 [ 102.554141][ T7361] _copy_from_user+0x1c/0xa0 [ 102.554191][ T7361] copy_msghdr_from_user+0x54/0x2b0 [ 102.554232][ T7361] ? __fget_files+0x186/0x1c0 [ 102.554324][ T7361] __sys_sendmsg+0x141/0x240 [ 102.554374][ T7361] __x64_sys_sendmsg+0x46/0x50 [ 102.554478][ T7361] x64_sys_call+0x26f3/0x2e10 [ 102.554516][ T7361] do_syscall_64+0xc9/0x1c0 [ 102.554552][ T7361] ? clear_bhb_loop+0x25/0x80 [ 102.554578][ T7361] ? clear_bhb_loop+0x25/0x80 [ 102.554603][ T7361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.554630][ T7361] RIP: 0033:0x7f64d27bd169 [ 102.554706][ T7361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.554727][ T7361] RSP: 002b:00007f64d0e27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 102.554749][ T7361] RAX: ffffffffffffffda RBX: 00007f64d29d5fa0 RCX: 00007f64d27bd169 [ 102.554843][ T7361] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000005 [ 102.554857][ T7361] RBP: 00007f64d0e27090 R08: 0000000000000000 R09: 0000000000000000 [ 102.554871][ T7361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 102.554885][ T7361] R13: 0000000000000000 R14: 00007f64d29d5fa0 R15: 00007ffd9a6322a8 [ 102.554907][ T7361] [ 102.765255][ T29] kauditd_printk_skb: 1480 callbacks suppressed [ 102.765273][ T29] audit: type=1326 audit(1743683306.474:12572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6dcc274127 code=0x7ffc0000 [ 102.775454][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1424'. [ 102.795261][ T29] audit: type=1326 audit(1743683306.474:12573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6dcc219359 code=0x7ffc0000 [ 102.827589][ T29] audit: type=1326 audit(1743683306.474:12574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f6dcc27d169 code=0x7ffc0000 [ 102.855039][ T29] audit: type=1326 audit(1743683306.484:12575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7345 comm="syz.0.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd780344127 code=0x7ffc0000 [ 102.878506][ T29] audit: type=1326 audit(1743683306.484:12576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7345 comm="syz.0.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd7802e9359 code=0x7ffc0000 [ 102.901993][ T29] audit: type=1326 audit(1743683306.484:12577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7345 comm="syz.0.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 102.925470][ T29] audit: type=1326 audit(1743683306.484:12578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6dcc274127 code=0x7ffc0000 [ 102.948922][ T29] audit: type=1326 audit(1743683306.484:12579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6dcc219359 code=0x7ffc0000 [ 102.972456][ T29] audit: type=1326 audit(1743683306.484:12580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f6dcc27d169 code=0x7ffc0000 [ 102.995931][ T29] audit: type=1326 audit(1743683306.524:12581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7345 comm="syz.0.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd780344127 code=0x7ffc0000 [ 103.111676][ T7384] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.145820][ T7384] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.162362][ T7386] netlink: 'syz.4.1431': attribute type 10 has an invalid length. [ 103.170310][ T7386] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1431'. [ 103.206027][ T7384] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.256123][ T7384] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.290565][ T7398] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1435'. [ 103.313222][ T7384] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.325946][ T7384] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.339464][ T7384] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.353731][ T7402] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1437'. [ 103.355590][ T7384] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.410541][ T7409] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1440'. [ 103.500531][ T7419] loop3: detected capacity change from 0 to 512 [ 103.509007][ T7419] EXT4-fs: Ignoring removed nobh option [ 103.515356][ T7419] EXT4-fs: Mount option(s) incompatible with ext2 [ 103.526069][ T7419] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 103.536743][ T7419] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 103.598564][ T7427] loop1: detected capacity change from 0 to 512 [ 103.605847][ T7427] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 103.615401][ T7427] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 103.625733][ T7427] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 103.645205][ T7427] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 103.653371][ T7427] System zones: 0-2, 18-18, 34-34 [ 103.659208][ T7427] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 103.676096][ T7427] EXT4-fs (loop1): 1 truncate cleaned up [ 103.682468][ T7427] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.394875][ T7447] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.443354][ T7448] netlink: 'syz.4.1453': attribute type 10 has an invalid length. [ 104.451359][ T7448] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1453'. [ 104.473274][ T7447] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.489781][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.513619][ T7452] loop1: detected capacity change from 0 to 512 [ 104.520623][ T7452] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 104.556603][ T7452] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.569147][ T7452] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.581092][ T7447] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.680213][ T7447] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.691487][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.409761][ T7472] loop0: detected capacity change from 0 to 512 [ 105.416490][ T7472] EXT4-fs: Ignoring removed nobh option [ 105.422524][ T7472] EXT4-fs: Mount option(s) incompatible with ext2 [ 105.434200][ T7472] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 105.442856][ T7472] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 105.994875][ T7486] loop0: detected capacity change from 0 to 512 [ 106.001978][ T7486] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 106.011118][ T7486] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 106.030412][ T7486] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 106.039509][ T7486] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 106.048087][ T7486] System zones: 0-2, 18-18, 34-34 [ 106.053704][ T7486] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 106.069011][ T7486] EXT4-fs (loop0): 1 truncate cleaned up [ 106.075172][ T7486] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.393544][ T7493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1465'. [ 106.661461][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.815114][ T7519] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1474'. [ 106.862990][ T7521] wireguard0: entered promiscuous mode [ 106.868528][ T7521] wireguard0: entered allmulticast mode [ 107.442517][ T7540] loop1: detected capacity change from 0 to 512 [ 107.456671][ T7540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.469540][ T7540] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.494734][ T7540] netlink: 'syz.1.1481': attribute type 1 has an invalid length. [ 107.513176][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.537345][ T7546] loop1: detected capacity change from 0 to 512 [ 107.544345][ T7546] EXT4-fs: Ignoring removed nobh option [ 107.553385][ T7546] EXT4-fs: Mount option(s) incompatible with ext2 [ 107.568897][ T7546] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 107.583038][ T7546] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 107.624157][ T7551] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1485'. [ 107.641821][ T7553] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'. [ 107.710193][ T7447] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.721191][ T7447] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.724271][ T7559] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1488'. [ 107.741621][ T7447] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.755883][ T7447] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.777816][ T29] kauditd_printk_skb: 1361 callbacks suppressed [ 107.777834][ T29] audit: type=1326 audit(1743683311.494:13943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16b2924127 code=0x7ffc0000 [ 107.807653][ T29] audit: type=1326 audit(1743683311.494:13944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16b28c9359 code=0x7ffc0000 [ 107.818527][ T7564] tipc: Started in network mode [ 107.831202][ T29] audit: type=1326 audit(1743683311.494:13945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f16b292d169 code=0x7ffc0000 [ 107.836090][ T7564] tipc: Node identity fa9b8abc329a, cluster identity 4711 [ 107.866848][ T7564] tipc: Enabled bearer , priority 0 [ 107.884655][ T29] audit: type=1326 audit(1743683311.524:13946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16b2924127 code=0x7ffc0000 [ 107.908390][ T29] audit: type=1326 audit(1743683311.524:13947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16b28c9359 code=0x7ffc0000 [ 107.931895][ T29] audit: type=1326 audit(1743683311.524:13948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f16b292d169 code=0x7ffc0000 [ 107.955386][ T29] audit: type=1326 audit(1743683311.524:13949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16b2924127 code=0x7ffc0000 [ 107.978923][ T29] audit: type=1326 audit(1743683311.524:13950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f16b28c9359 code=0x7ffc0000 [ 108.002484][ T29] audit: type=1326 audit(1743683311.524:13951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f16b292d169 code=0x7ffc0000 [ 108.026186][ T29] audit: type=1326 audit(1743683311.584:13952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7543 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f16b2924127 code=0x7ffc0000 [ 108.041647][ T7566] syzkaller0: entered promiscuous mode [ 108.055235][ T7566] syzkaller0: entered allmulticast mode [ 108.065304][ T7566] tipc: Resetting bearer [ 108.071525][ T7564] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1489'. [ 108.080650][ T7564] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1489'. [ 108.084786][ T7578] loop0: detected capacity change from 0 to 512 [ 108.089821][ T7564] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1489'. [ 108.115787][ T7562] tipc: Resetting bearer [ 108.122911][ T7578] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.136893][ T7578] ext4 filesystem being mounted at /327/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 108.160853][ T7578] netlink: 'syz.0.1493': attribute type 1 has an invalid length. [ 108.180856][ T7562] tipc: Disabling bearer [ 108.201943][ T7582] loop1: detected capacity change from 0 to 512 [ 108.213210][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.222243][ T7582] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 108.222263][ T7582] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 108.240147][ T7582] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 108.251707][ T7582] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 108.263109][ T7582] System zones: 0-2, 18-18, 34-34 [ 108.285179][ T7592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1498'. [ 108.348680][ T7594] wireguard0: entered promiscuous mode [ 108.354236][ T7594] wireguard0: entered allmulticast mode [ 108.363118][ T7582] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 108.393180][ T7600] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1500'. [ 108.424099][ T7582] EXT4-fs (loop1): 1 truncate cleaned up [ 108.430503][ T7582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.473939][ T7605] loop0: detected capacity change from 0 to 512 [ 108.484430][ T7611] loop3: detected capacity change from 0 to 512 [ 108.491497][ T7605] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 108.492223][ T7611] EXT4-fs: Ignoring removed nobh option [ 108.500674][ T7605] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 108.515598][ T7611] EXT4-fs: Mount option(s) incompatible with ext2 [ 108.536425][ T7611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 108.545160][ T7611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 108.545649][ T7618] FAULT_INJECTION: forcing a failure. [ 108.545649][ T7618] name failslab, interval 1, probability 0, space 0, times 0 [ 108.555627][ T7605] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 108.565560][ T7618] CPU: 1 UID: 0 PID: 7618 Comm: syz.4.1505 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 108.565597][ T7618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 108.565613][ T7618] Call Trace: [ 108.565621][ T7618] [ 108.565631][ T7618] dump_stack_lvl+0xf6/0x150 [ 108.565660][ T7618] dump_stack+0x15/0x1a [ 108.565682][ T7618] should_fail_ex+0x261/0x270 [ 108.565772][ T7618] should_failslab+0x8f/0xb0 [ 108.565811][ T7618] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 108.565894][ T7618] ? __alloc_skb+0x10d/0x320 [ 108.565924][ T7618] __alloc_skb+0x10d/0x320 [ 108.566006][ T7618] netlink_alloc_large_skb+0xad/0xe0 [ 108.566032][ T7618] netlink_sendmsg+0x3da/0x720 [ 108.566067][ T7618] ? __pfx_netlink_sendmsg+0x10/0x10 [ 108.566096][ T7618] __sock_sendmsg+0x140/0x180 [ 108.566141][ T7618] ____sys_sendmsg+0x350/0x4e0 [ 108.566178][ T7618] __sys_sendmmsg+0x22a/0x4b0 [ 108.566236][ T7618] __x64_sys_sendmmsg+0x57/0x70 [ 108.566318][ T7618] x64_sys_call+0x2b53/0x2e10 [ 108.566345][ T7618] do_syscall_64+0xc9/0x1c0 [ 108.566381][ T7618] ? clear_bhb_loop+0x25/0x80 [ 108.566408][ T7618] ? clear_bhb_loop+0x25/0x80 [ 108.566449][ T7618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.566476][ T7618] RIP: 0033:0x7f64d27bd169 [ 108.566494][ T7618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.566516][ T7618] RSP: 002b:00007f64d0e27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 108.566540][ T7618] RAX: ffffffffffffffda RBX: 00007f64d29d5fa0 RCX: 00007f64d27bd169 [ 108.566555][ T7618] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003 [ 108.566647][ T7618] RBP: 00007f64d0e27090 R08: 0000000000000000 R09: 0000000000000000 [ 108.566704][ T7618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 108.566719][ T7618] R13: 0000000000000000 R14: 00007f64d29d5fa0 R15: 00007ffd9a6322a8 [ 108.566765][ T7618] [ 108.637071][ T7621] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1507'. [ 108.662879][ T7605] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 108.787728][ T7605] System zones: 0-2, 18-18, 34-34 [ 108.788725][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.801917][ T7605] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 108.817076][ T7605] EXT4-fs (loop0): 1 truncate cleaned up [ 108.823205][ T7605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.923158][ T7635] loop4: detected capacity change from 0 to 512 [ 108.960641][ T7635] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.974701][ T7635] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.003204][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.035780][ T7647] loop2: detected capacity change from 0 to 512 [ 109.043928][ T7647] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 109.044417][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.053192][ T7647] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 109.083003][ T7647] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 109.093930][ T7657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 109.103517][ T7647] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 109.112728][ T7647] System zones: 0-2, 18-18, 34-34 [ 109.118464][ T7647] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 109.134885][ T7657] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 109.135170][ T7659] xt_hashlimit: max too large, truncated to 1048576 [ 109.150389][ T7647] EXT4-fs (loop2): 1 truncate cleaned up [ 109.150768][ T7647] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.154785][ T7662] loop3: detected capacity change from 0 to 512 [ 109.156370][ T7662] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 109.156390][ T7662] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 109.179615][ T7662] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 109.207422][ T7662] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 109.207468][ T7662] System zones: 0-2, 18-18, 34-34 [ 109.220874][ T7662] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 109.221436][ T7662] EXT4-fs (loop3): 1 truncate cleaned up [ 109.241498][ T7662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.284657][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.305902][ T7672] netlink: 'syz.2.1523': attribute type 10 has an invalid length. [ 109.332130][ T7675] wireguard0: entered promiscuous mode [ 109.337973][ T7675] wireguard0: entered allmulticast mode [ 109.350454][ T7678] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.390469][ T7681] netlink: 'syz.2.1525': attribute type 10 has an invalid length. [ 109.399432][ T7681] team0: Failed to send port change of device geneve1 via netlink (err -105) [ 109.446418][ T7678] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.498662][ T7678] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.603155][ T7688] loop0: detected capacity change from 0 to 512 [ 109.610686][ T7678] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.626430][ T7688] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.641039][ T7688] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.663029][ T7678] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.670687][ T7688] netlink: 'syz.0.1528': attribute type 1 has an invalid length. [ 109.675362][ T7678] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.690891][ T7678] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.702739][ T7678] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.721747][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.798918][ T7699] loop0: detected capacity change from 0 to 128 [ 109.847287][ T7703] FAULT_INJECTION: forcing a failure. [ 109.847287][ T7703] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 109.860456][ T7703] CPU: 1 UID: 0 PID: 7703 Comm: syz.2.1533 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 109.860484][ T7703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 109.860496][ T7703] Call Trace: [ 109.860554][ T7703] [ 109.860563][ T7703] dump_stack_lvl+0xf6/0x150 [ 109.860592][ T7703] dump_stack+0x15/0x1a [ 109.860610][ T7703] should_fail_ex+0x261/0x270 [ 109.860637][ T7703] should_fail+0xb/0x10 [ 109.860675][ T7703] should_fail_usercopy+0x1a/0x20 [ 109.860709][ T7703] _copy_from_user+0x1c/0xa0 [ 109.860776][ T7703] copy_msghdr_from_user+0x54/0x2b0 [ 109.860810][ T7703] ? __fget_files+0x186/0x1c0 [ 109.860836][ T7703] __sys_sendmsg+0x141/0x240 [ 109.860929][ T7703] __x64_sys_sendmsg+0x46/0x50 [ 109.860962][ T7703] x64_sys_call+0x26f3/0x2e10 [ 109.861012][ T7703] do_syscall_64+0xc9/0x1c0 [ 109.861047][ T7703] ? clear_bhb_loop+0x25/0x80 [ 109.861068][ T7703] ? clear_bhb_loop+0x25/0x80 [ 109.861093][ T7703] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.861131][ T7703] RIP: 0033:0x7f16b292d169 [ 109.861171][ T7703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.861253][ T7703] RSP: 002b:00007f16b0f97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 109.861276][ T7703] RAX: ffffffffffffffda RBX: 00007f16b2b45fa0 RCX: 00007f16b292d169 [ 109.861291][ T7703] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003 [ 109.861304][ T7703] RBP: 00007f16b0f97090 R08: 0000000000000000 R09: 0000000000000000 [ 109.861315][ T7703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.861327][ T7703] R13: 0000000000000000 R14: 00007f16b2b45fa0 R15: 00007fff651de5e8 [ 109.861414][ T7703] [ 110.067020][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.085229][ T7713] rdma_op ffff88811eb6d980 conn xmit_rdma 0000000000000000 [ 110.089584][ T7710] bond1: entered promiscuous mode [ 110.097582][ T7710] bond1: entered allmulticast mode [ 110.104458][ T7710] 8021q: adding VLAN 0 to HW filter on device bond1 [ 110.124737][ T7708] netlink: 'syz.2.1535': attribute type 10 has an invalid length. [ 110.141610][ T7710] bond1 (unregistering): Released all slaves [ 110.181591][ T7717] infiniband syz0: set active [ 110.186360][ T7717] infiniband syz0: added bond0 [ 110.190029][ T7721] bond1: entered promiscuous mode [ 110.196254][ T7721] bond1: entered allmulticast mode [ 110.200804][ T7717] RDS/IB: syz0: added [ 110.203008][ T7721] 8021q: adding VLAN 0 to HW filter on device bond1 [ 110.206508][ T7717] smc: adding ib device syz0 with port count 1 [ 110.218321][ T7717] smc: ib device syz0 port 1 has pnetid [ 110.226800][ T7721] bond1 (unregistering): Released all slaves [ 110.228298][ T7726] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 110.241292][ T7726] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 110.257258][ T7723] loop3: detected capacity change from 0 to 512 [ 110.276507][ T7728] syzkaller0: entered allmulticast mode [ 110.283244][ T7728] syzkaller0: entered promiscuous mode [ 110.305249][ T7728] syzkaller0 (unregistering): left promiscuous mode [ 110.312053][ T7728] syzkaller0 (unregistering): left allmulticast mode [ 110.324283][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.1536: corrupted inode contents [ 110.337767][ T7723] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #3: comm syz.3.1536: mark_inode_dirty error [ 110.349518][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.1536: corrupted inode contents [ 110.361971][ T7723] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #3: comm syz.3.1536: mark_inode_dirty error [ 110.373975][ T7723] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1536: Failed to acquire dquot type 0 [ 110.386119][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1536: corrupted inode contents [ 110.397773][ T7733] syz.0.1542 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 110.398422][ T7723] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.1536: mark_inode_dirty error [ 110.420024][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1536: corrupted inode contents [ 110.432139][ T7723] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.1536: mark_inode_dirty error [ 110.444970][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1536: corrupted inode contents [ 110.457697][ T7723] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 110.467053][ T7723] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.1536: corrupted inode contents [ 110.496848][ T7723] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.1536: mark_inode_dirty error [ 110.508753][ T7723] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 110.518572][ T7723] EXT4-fs (loop3): 1 truncate cleaned up [ 110.525091][ T7723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.537686][ T7723] ext4 filesystem being mounted at /334/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 110.552343][ T7737] 9pnet_fd: Insufficient options for proto=fd [ 110.591872][ T7717] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1536: corrupted xattr block 19: invalid ea_ino [ 110.606096][ T7717] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 110.615255][ T7717] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1536: corrupted xattr block 19: invalid ea_ino [ 110.629777][ T7717] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 110.639489][ T7717] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #15: comm syz.3.1536: corrupted xattr block 19: invalid ea_ino [ 110.701852][ T7717] xt_hashlimit: max too large, truncated to 1048576 [ 110.714738][ T7717] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 111.113572][ T7753] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 111.178403][ T7759] loop2: detected capacity change from 0 to 512 [ 111.214978][ T7759] EXT4-fs: Ignoring removed nobh option [ 111.222060][ T7759] EXT4-fs: Mount option(s) incompatible with ext2 [ 111.240446][ T7759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 111.249780][ T7759] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 111.286935][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.296405][ T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1 [ 111.323509][ T7765] 9pnet_fd: Insufficient options for proto=fd [ 111.409036][ T7771] wireguard0: entered promiscuous mode [ 111.414736][ T7771] wireguard0: entered allmulticast mode [ 111.519897][ T7778] FAULT_INJECTION: forcing a failure. [ 111.519897][ T7778] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.533022][ T7778] CPU: 1 UID: 0 PID: 7778 Comm: syz.0.1561 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 111.533049][ T7778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 111.533063][ T7778] Call Trace: [ 111.533118][ T7778] [ 111.533126][ T7778] dump_stack_lvl+0xf6/0x150 [ 111.533154][ T7778] dump_stack+0x15/0x1a [ 111.533169][ T7778] should_fail_ex+0x261/0x270 [ 111.533192][ T7778] should_fail+0xb/0x10 [ 111.533211][ T7778] should_fail_usercopy+0x1a/0x20 [ 111.533272][ T7778] _copy_from_user+0x1c/0xa0 [ 111.533299][ T7778] copy_msghdr_from_user+0x54/0x2b0 [ 111.533327][ T7778] ? __fget_files+0x186/0x1c0 [ 111.533357][ T7778] __sys_sendmsg+0x141/0x240 [ 111.533392][ T7778] __x64_sys_sendmsg+0x46/0x50 [ 111.533414][ T7778] x64_sys_call+0x26f3/0x2e10 [ 111.533433][ T7778] do_syscall_64+0xc9/0x1c0 [ 111.533577][ T7778] ? clear_bhb_loop+0x25/0x80 [ 111.533596][ T7778] ? clear_bhb_loop+0x25/0x80 [ 111.533614][ T7778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.533631][ T7778] RIP: 0033:0x7fd78034d169 [ 111.533644][ T7778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.533659][ T7778] RSP: 002b:00007fd77e9af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 111.533703][ T7778] RAX: ffffffffffffffda RBX: 00007fd780565fa0 RCX: 00007fd78034d169 [ 111.533713][ T7778] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000003 [ 111.533723][ T7778] RBP: 00007fd77e9af090 R08: 0000000000000000 R09: 0000000000000000 [ 111.533733][ T7778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.533743][ T7778] R13: 0000000000000000 R14: 00007fd780565fa0 R15: 00007fff6bbabd58 [ 111.533778][ T7778] [ 111.781712][ T7793] loop1: detected capacity change from 0 to 512 [ 111.789757][ T7793] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 111.798981][ T7793] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 111.819953][ T7793] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 111.830425][ T7793] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 111.845346][ T7793] System zones: 0-2, 18-18, 34-34 [ 111.851282][ T7793] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 111.866618][ T7793] EXT4-fs (loop1): 1 truncate cleaned up [ 111.872650][ T7793] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 112.054488][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.072164][ T7813] unsupported nla_type 52263 [ 112.077415][ T7813] netlink: 'syz.1.1574': attribute type 10 has an invalid length. [ 112.085368][ T7813] __nla_validate_parse: 9 callbacks suppressed [ 112.085382][ T7813] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1574'. [ 112.100801][ T7813] batadv0: entered promiscuous mode [ 112.106167][ T7813] batadv0: entered allmulticast mode [ 112.113288][ T7813] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 112.129807][ T7814] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 112.138664][ T7814] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 112.198932][ T7814] batman_adv: batadv0: Adding interface: dummy0 [ 112.205255][ T7814] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 112.231427][ T7814] batman_adv: batadv0: Interface activated: dummy0 [ 112.244067][ T7814] batadv0: mtu less than device minimum [ 112.250117][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.260918][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.271624][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.282408][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.293037][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.303850][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.314678][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.325453][ T7814] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 112.370804][ T7816] loop3: detected capacity change from 0 to 512 [ 112.379110][ T7816] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1575: bg 0: block 35: padding at end of block bitmap is not set [ 112.393691][ T7816] EXT4-fs (loop3): Remounting filesystem read-only [ 112.400434][ T7816] EXT4-fs (loop3): 1 truncate cleaned up [ 112.406607][ T7816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 112.430461][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.628328][ T7835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1582'. [ 112.798978][ T7841] loop3: detected capacity change from 0 to 512 [ 112.841100][ T7841] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 112.850290][ T7841] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 112.861871][ T7841] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 112.876119][ T7841] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 112.884147][ T7841] System zones: 0-2, 18-18, 34-34 [ 112.893916][ T7841] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 113.172222][ T7841] EXT4-fs (loop3): 1 truncate cleaned up [ 113.199686][ T7841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.374032][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.397692][ T7852] loop3: detected capacity change from 0 to 2048 [ 113.416579][ T7852] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.430697][ T7852] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.1586: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 113.502762][ T29] kauditd_printk_skb: 1010 callbacks suppressed [ 113.502781][ T29] audit: type=1400 audit(1743683317.214:14960): avc: denied { name_bind } for pid=7851 comm="syz.3.1586" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 113.539671][ T29] audit: type=1400 audit(1743683317.254:14961): avc: denied { mounton } for pid=7851 comm="syz.3.1586" path="/proc/855/cgroup" dev="proc" ino=20391 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1 [ 113.658798][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1589'. [ 113.690804][ T7865] wireguard0: entered promiscuous mode [ 113.696603][ T7865] wireguard0: entered allmulticast mode [ 113.717739][ T29] audit: type=1326 audit(1743683317.434:14962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.741369][ T29] audit: type=1326 audit(1743683317.434:14963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.765327][ T29] audit: type=1326 audit(1743683317.454:14964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.789101][ T29] audit: type=1326 audit(1743683317.454:14965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.812676][ T29] audit: type=1326 audit(1743683317.454:14966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.836233][ T29] audit: type=1326 audit(1743683317.454:14967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.859770][ T29] audit: type=1326 audit(1743683317.454:14968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.883349][ T29] audit: type=1326 audit(1743683317.454:14969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7867 comm="syz.0.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78034d169 code=0x7ffc0000 [ 113.938472][ T7873] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1593'. [ 113.966943][ T7875] FAULT_INJECTION: forcing a failure. [ 113.966943][ T7875] name failslab, interval 1, probability 0, space 0, times 0 [ 113.979700][ T7875] CPU: 1 UID: 0 PID: 7875 Comm: syz.0.1594 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 113.979731][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 113.979743][ T7875] Call Trace: [ 113.979748][ T7875] [ 113.979755][ T7875] dump_stack_lvl+0xf6/0x150 [ 113.979842][ T7875] dump_stack+0x15/0x1a [ 113.979863][ T7875] should_fail_ex+0x261/0x270 [ 113.979892][ T7875] should_failslab+0x8f/0xb0 [ 113.979956][ T7875] kmem_cache_alloc_node_noprof+0x5c/0x340 [ 113.979979][ T7875] ? __alloc_skb+0x10d/0x320 [ 113.980002][ T7875] __alloc_skb+0x10d/0x320 [ 113.980024][ T7875] netlink_alloc_large_skb+0xad/0xe0 [ 113.980045][ T7875] netlink_sendmsg+0x3da/0x720 [ 113.980112][ T7875] ? __pfx_netlink_sendmsg+0x10/0x10 [ 113.980134][ T7875] __sock_sendmsg+0x140/0x180 [ 113.980167][ T7875] ____sys_sendmsg+0x350/0x4e0 [ 113.980274][ T7875] __sys_sendmmsg+0x22a/0x4b0 [ 113.980324][ T7875] __x64_sys_sendmmsg+0x57/0x70 [ 113.980350][ T7875] x64_sys_call+0x2b53/0x2e10 [ 113.980439][ T7875] do_syscall_64+0xc9/0x1c0 [ 113.980467][ T7875] ? clear_bhb_loop+0x25/0x80 [ 113.980488][ T7875] ? clear_bhb_loop+0x25/0x80 [ 113.980509][ T7875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.980538][ T7875] RIP: 0033:0x7fd78034d169 [ 113.980553][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.980602][ T7875] RSP: 002b:00007fd77e9af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 113.980627][ T7875] RAX: ffffffffffffffda RBX: 00007fd780565fa0 RCX: 00007fd78034d169 [ 113.980638][ T7875] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000003 [ 113.980650][ T7875] RBP: 00007fd77e9af090 R08: 0000000000000000 R09: 0000000000000000 [ 113.980662][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.980676][ T7875] R13: 0000000000000000 R14: 00007fd780565fa0 R15: 00007fff6bbabd58 [ 113.980695][ T7875] [ 114.210896][ T7879] loop0: detected capacity change from 0 to 512 [ 114.218037][ T7879] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 114.227355][ T7879] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 114.246323][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.255688][ T7879] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 114.256758][ T7884] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1595'. [ 114.266366][ T7879] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 114.281976][ T7879] System zones: 0-2, 18-18, 34-34 [ 114.288507][ T7879] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 114.303980][ T7879] EXT4-fs (loop0): 1 truncate cleaned up [ 114.311259][ T7879] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.692712][ T7908] loop2: detected capacity change from 0 to 512 [ 114.718339][ T7908] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.1604: Failed to acquire dquot type 1 [ 114.754457][ T7908] EXT4-fs (loop2): 1 truncate cleaned up [ 114.772320][ T7908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.806388][ T7908] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.066550][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.130491][ T7915] wireguard0: entered promiscuous mode [ 115.136035][ T7915] wireguard0: entered allmulticast mode [ 115.167464][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.215954][ T7922] FAULT_INJECTION: forcing a failure. [ 115.215954][ T7922] name failslab, interval 1, probability 0, space 0, times 0 [ 115.228677][ T7922] CPU: 1 UID: 0 PID: 7922 Comm: syz.0.1608 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 115.228708][ T7922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 115.228720][ T7922] Call Trace: [ 115.228725][ T7922] [ 115.228732][ T7922] dump_stack_lvl+0xf6/0x150 [ 115.228785][ T7922] dump_stack+0x15/0x1a [ 115.228806][ T7922] should_fail_ex+0x261/0x270 [ 115.228836][ T7922] should_failslab+0x8f/0xb0 [ 115.228868][ T7922] __kmalloc_cache_noprof+0x55/0x320 [ 115.228927][ T7922] ? __se_sys_memfd_create+0x1ea/0x5a0 [ 115.228961][ T7922] __se_sys_memfd_create+0x1ea/0x5a0 [ 115.228987][ T7922] __x64_sys_memfd_create+0x31/0x40 [ 115.229012][ T7922] x64_sys_call+0x1163/0x2e10 [ 115.229033][ T7922] do_syscall_64+0xc9/0x1c0 [ 115.229160][ T7922] ? clear_bhb_loop+0x25/0x80 [ 115.229181][ T7922] ? clear_bhb_loop+0x25/0x80 [ 115.229201][ T7922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.229225][ T7922] RIP: 0033:0x7fd78034d169 [ 115.229292][ T7922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.229313][ T7922] RSP: 002b:00007fd77e9af038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 115.229334][ T7922] RAX: ffffffffffffffda RBX: 00007fd780565fa0 RCX: 00007fd78034d169 [ 115.229349][ T7922] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000 [ 115.229363][ T7922] RBP: 00007fd77e9af090 R08: 0000000000000000 R09: 0000000000000000 [ 115.229376][ T7922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 115.229390][ T7922] R13: 0000000000000000 R14: 00007fd780565fa0 R15: 00007fff6bbabd58 [ 115.229412][ T7922] [ 115.521423][ T7942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1617'. [ 115.578566][ T7944] loop3: detected capacity change from 0 to 512 [ 115.591986][ T7944] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 115.601193][ T7944] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 115.633964][ T7944] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 115.662460][ T7944] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 115.675590][ T7944] System zones: 0-2, 18-18, 34-34 [ 115.688418][ T7944] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 115.713454][ T7955] wireguard0: entered promiscuous mode [ 115.718977][ T7955] wireguard0: entered allmulticast mode [ 115.749230][ T7944] EXT4-fs (loop3): 1 truncate cleaned up [ 115.755761][ T7944] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.774850][ T7961] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1624'. [ 115.783903][ T7961] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1624'. [ 116.001207][ T7985] loop0: detected capacity change from 0 to 512 [ 116.065810][ T7985] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.110513][ T7985] ext4 filesystem being mounted at /369/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 116.123330][ T7994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1634'. [ 116.203219][ T7985] netlink: 'syz.0.1631': attribute type 1 has an invalid length. [ 116.270773][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.300817][ T8000] loop1: detected capacity change from 0 to 512 [ 116.308664][ T8000] EXT4-fs: quotafile must be on filesystem root [ 116.336111][ T8002] wireguard0: entered promiscuous mode [ 116.341631][ T8002] wireguard0: entered allmulticast mode [ 116.393917][ T8000] infiniband syz!: set active [ 116.398728][ T8000] infiniband syz!: added team_slave_0 [ 116.407663][ T8008] wireguard0: entered promiscuous mode [ 116.413169][ T8008] wireguard0: entered allmulticast mode [ 116.424297][ T8000] RDS/IB: syz!: added [ 116.431035][ T8000] smc: adding ib device syz! with port count 1 [ 116.447029][ T8000] smc: ib device syz! port 1 has pnetid [ 116.609744][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.647774][ T8025] 9pnet_fd: Insufficient options for proto=fd [ 116.681802][ T8028] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1645'. [ 116.725225][ T8032] loop2: detected capacity change from 0 to 512 [ 116.744396][ T8032] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.805953][ T8042] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.822624][ T8032] ext4 filesystem being mounted at /296/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 116.845373][ T8049] netlink: 'syz.4.1650': attribute type 10 has an invalid length. [ 116.847159][ T8032] netlink: 'syz.2.1647': attribute type 1 has an invalid length. [ 116.863706][ T8047] wireguard0: entered promiscuous mode [ 116.869262][ T8047] wireguard0: entered allmulticast mode [ 116.882680][ T8042] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.904491][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.946093][ T8042] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.986035][ T8042] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.016376][ T8056] loop1: detected capacity change from 0 to 1024 [ 117.023539][ T8056] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 117.033628][ T8056] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 117.043646][ T8056] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 117.056360][ T8056] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.1655: unexpected bad inode w/o EXT4_IGET_BAD [ 117.061358][ T8042] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.070464][ T8056] EXT4-fs (loop1): no journal found [ 117.082716][ T8042] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.083145][ T8056] EXT4-fs (loop1): can't get journal size [ 117.096041][ T8042] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.098953][ T8056] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 117.110205][ T8042] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.134628][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.246075][ T8065] 9pnet_fd: Insufficient options for proto=fd [ 117.283919][ T8068] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.333624][ T8069] netlink: 'syz.1.1660': attribute type 10 has an invalid length. [ 117.341523][ T8069] __nla_validate_parse: 1 callbacks suppressed [ 117.341539][ T8069] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1660'. [ 117.357635][ T8068] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.369855][ T8069] team0: Failed to send port change of device geneve1 via netlink (err -105) [ 117.416419][ T8068] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.466733][ T8068] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.537667][ T8068] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.551020][ T8068] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.562642][ T8068] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.574316][ T8068] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.605833][ T8071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1661'. [ 117.617979][ T8071] bridge0: entered promiscuous mode [ 117.623354][ T8071] macvlan2: entered promiscuous mode [ 117.629842][ T8071] bridge0: port 4(macvlan2) entered blocking state [ 117.636577][ T8071] bridge0: port 4(macvlan2) entered disabled state [ 117.644191][ T8078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1662'. [ 117.644330][ T8077] netlink: 'syz.1.1663': attribute type 10 has an invalid length. [ 117.661082][ T8077] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1663'. [ 117.666553][ T8071] macvlan2: entered allmulticast mode [ 117.675409][ T8071] bridge0: entered allmulticast mode [ 117.681326][ T8071] macvlan2: left allmulticast mode [ 117.686572][ T8071] bridge0: left allmulticast mode [ 117.692273][ T8071] bridge0: left promiscuous mode [ 117.737703][ T8081] wireguard0: entered promiscuous mode [ 117.743302][ T8081] wireguard0: entered allmulticast mode [ 117.746223][ T8084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1665'. [ 117.767915][ T8084] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.827870][ T8084] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.887978][ T8084] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.905252][ T8096] set match dimension is over the limit! [ 117.969810][ T8084] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.040538][ T8084] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.082406][ T8112] netlink: 'syz.4.1675': attribute type 10 has an invalid length. [ 118.090371][ T8112] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1675'. [ 118.104251][ T8084] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.142119][ T8084] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.177709][ T8084] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.177747][ T8114] loop1: detected capacity change from 0 to 512 [ 118.177846][ T8084] ================================================================== [ 118.177876][ T8084] BUG: KCSAN: data-race in data_push_tail / string [ 118.177907][ T8084] [ 118.177916][ T8084] write to 0xffffffff88e5ea72 of 1 bytes by task 8114 on cpu 1: [ 118.177934][ T8084] string+0x17d/0x210 [ 118.177953][ T8084] vsnprintf+0x539/0x8a0 [ 118.177971][ T8084] vscnprintf+0x42/0x90 [ 118.177994][ T8084] printk_sprint+0x30/0x2d0 [ 118.178022][ T8084] vprintk_store+0x583/0x860 [ 118.178047][ T8084] vprintk_emit+0x1a0/0x6c0 [ 118.178072][ T8114] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 118.178074][ T8084] vprintk_default+0x26/0x30 [ 118.178108][ T8084] vprintk+0x1d/0x30 [ 118.178148][ T8084] _printk+0x7f/0xb0 [ 118.178173][ T8084] set_capacity_and_notify+0x155/0x200 [ 118.178206][ T8084] loop_set_size+0x2e/0x70 [ 118.178240][ T8084] loop_configure+0x89c/0xa30 [ 118.178283][ T8084] lo_ioctl+0x5fa/0x1570 [ 118.178315][ T8084] blkdev_ioctl+0x35b/0x450 [ 118.178350][ T8084] __se_sys_ioctl+0xc9/0x140 [ 118.178383][ T8084] __x64_sys_ioctl+0x43/0x50 [ 118.178409][ T8084] x64_sys_call+0x168d/0x2e10 [ 118.178433][ T8084] do_syscall_64+0xc9/0x1c0 [ 118.178468][ T8084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.178497][ T8084] [ 118.178507][ T8084] read to 0xffffffff88e5ea70 of 8 bytes by task 8084 on cpu 0: [ 118.178531][ T8084] data_push_tail+0x107/0x440 [ 118.178559][ T8084] data_alloc+0xbd/0x2c0 [ 118.178579][ T8084] prb_reserve+0x86a/0xb80 [ 118.178600][ T8084] vprintk_store+0x552/0x860 [ 118.178631][ T8084] vprintk_emit+0x1a0/0x6c0 [ 118.178661][ T8084] dev_vprintk_emit+0x24a/0x2a0 [ 118.178693][ T8084] dev_printk_emit+0x84/0xb0 [ 118.178732][ T8084] __netdev_printk+0x352/0x3e0 [ 118.178768][ T8084] netdev_info+0x9e/0xd0 [ 118.178809][ T8084] nsim_udp_tunnel_set_port+0x175/0x190 [ 118.178846][ T8084] __udp_tunnel_nic_device_sync+0x594/0xa00 [ 118.178881][ T8084] __udp_tunnel_nic_add_port+0x68a/0x700 [ 118.178918][ T8084] udp_tunnel_push_rx_port+0xee/0x120 [ 118.178956][ T8084] geneve_netdevice_event+0x169/0x1c0 [ 118.178987][ T8084] raw_notifier_call_chain+0x6f/0x1d0 [ 118.179013][ T8084] call_netdevice_notifiers_info+0xae/0x100 [ 118.179056][ T8084] call_netdevice_notifiers+0x4e/0x70 [ 118.179097][ T8084] udp_tunnel_nic_netdevice_event+0xa4a/0xc80 [ 118.179136][ T8084] raw_notifier_call_chain+0x6f/0x1d0 [ 118.179168][ T8084] call_netdevice_notifiers_info+0xae/0x100 [ 118.179209][ T8084] register_netdevice+0xd0b/0xed0 [ 118.179234][ T8084] nsim_create+0x598/0x700 [ 118.179269][ T8084] __nsim_dev_port_add+0x4aa/0x670 [ 118.179310][ T8084] nsim_dev_reload_up+0x439/0x510 [ 118.179346][ T8084] devlink_reload+0x326/0x5b0 [ 118.179370][ T8084] devlink_nl_reload_doit+0x4da/0x930 [ 118.179394][ T8084] genl_rcv_msg+0x69b/0x6f0 [ 118.179431][ T8084] netlink_rcv_skb+0x12f/0x230 [ 118.179458][ T8084] genl_rcv+0x28/0x40 [ 118.179488][ T8084] netlink_unicast+0x605/0x6c0 [ 118.179508][ T8084] netlink_sendmsg+0x609/0x720 [ 118.179533][ T8084] __sock_sendmsg+0x140/0x180 [ 118.179573][ T8084] ____sys_sendmsg+0x350/0x4e0 [ 118.179604][ T8084] __sys_sendmsg+0x1a0/0x240 [ 118.179632][ T8084] __x64_sys_sendmsg+0x46/0x50 [ 118.179664][ T8084] x64_sys_call+0x26f3/0x2e10 [ 118.179691][ T8084] do_syscall_64+0xc9/0x1c0 [ 118.179720][ T8084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.179742][ T8084] [ 118.179748][ T8084] value changed: 0x00000000ffffe827 -> 0x64203a31706f6f6c [ 118.179762][ T8084] [ 118.179769][ T8084] Reported by Kernel Concurrency Sanitizer on: [ 118.179785][ T8084] CPU: 0 UID: 0 PID: 8084 Comm: syz.3.1665 Not tainted 6.14.0-syzkaller-12886-ga1b5bd45d4ee #0 PREEMPT(voluntary) [ 118.179818][ T8084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 118.179833][ T8084] ================================================================== [ 118.583520][ T8084] syz.3.1665 (8084) used greatest stack depth: 8176 bytes left