last executing test programs:

6.047709002s ago: executing program 2 (id=1784):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
socket(0x18, 0x800, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, 0x0, 0x0)
syz_socket_connect_nvme_tcp()
pwrite64(r1, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0xf8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r3, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

5.047393983s ago: executing program 2 (id=1795):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, &(0x7f00000001c0)=0x9c)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0)
bind$tipc(r2, 0x0, 0x0)
sendmsg$tipc(r3, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
close(r2)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000280)=<r4=>0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_mr_vif\x00')
lseek(r5, 0x18000000000, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0xa)
r8 = fcntl$dupfd(r6, 0x406, r7)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r8, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x10, 0x1411, 0x300, 0x70bd25, 0x25dfdbfc}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x20040004)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x2, 0xef, &(0x7f00000003c0)=""/239, 0x40f00, 0xb, '\x00', r4, 0x25, r5, 0x8, &(0x7f0000000300)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x3, 0x4, 0x101, 0x8000}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000700)=[r8], &(0x7f0000000740)=[{0x5, 0x4, 0x7}, {0x1, 0x2, 0x7, 0xb}, {0x4, 0x2, 0xb}, {0x4, 0x4, 0x1}, {0x4, 0x3, 0x9, 0x2}], 0x10, 0x2}, 0x94)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSSOFTCAR(r9, 0x541a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

4.025821076s ago: executing program 2 (id=1808):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x10002}}, {@dioread_lock}, {@data_err_ignore}, {@mb_optimize_scan}, {@dioread_nolock}, {@nobarrier}, {@abort}, {@user_xattr}, {@norecovery}, {@errors_remount}]}, 0x1, 0x570, &(0x7f00000019c0)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, 0x0, 0x40000)
getxattr(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)=@known='system.posix_acl_access\x00', 0x0, 0x0)

3.951966011s ago: executing program 2 (id=1809):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108284, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r3, 0x0, 0x79)

3.911549205s ago: executing program 2 (id=1812):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r2, 0x0, 0x79)

3.827854731s ago: executing program 2 (id=1815):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

2.040756765s ago: executing program 1 (id=1838):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000380)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @remote}, @ipv4={'\x00', '\xff\xff', @loopback}, 0x2000000, 0x0, 0x8, 0x400, 0x0, 0x930310})
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000040)={@loopback, @local, @dev={0xfe, 0x80, '\x00', 0xf}, 0x1, 0x0, 0x40, 0x500, 0x209, 0x80810208})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
add_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000400)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000300)={[{@errors_remount}, {@noload}, {@nogrpid}, {@usrquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@acl}, {@resgid}], [], 0x3d}, 0x1, 0x51f, &(0x7f00000007c0)="$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")
mremap(&(0x7f0000a99000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f0000ff8000/0x2000)=nil)
socket$nl_route(0x10, 0x3, 0x0)
unshare(0x60000480)

1.346986011s ago: executing program 3 (id=1841):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
shmget(0x2, 0x2000, 0x20, &(0x7f0000ffd000/0x2000)=nil)

1.268187087s ago: executing program 3 (id=1842):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1fff}]})
fstat(r1, &(0x7f00000008c0))

1.267225717s ago: executing program 0 (id=1843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1fff}]})
fstat(r1, &(0x7f00000008c0))
newfstatat(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', &(0x7f0000000940), 0x0)

1.253114569s ago: executing program 3 (id=1844):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x606c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@stripe={'stripe', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@noinit_itable}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r5, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)

1.24372157s ago: executing program 0 (id=1845):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom1\x00', 0xc00, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000080), 0x9, 0x40a4c0)
ioctl$HIDIOCGDEVINFO(r2, 0x801c4803, &(0x7f00000000c0)=""/210)
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601060000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c000280"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

1.160407286s ago: executing program 0 (id=1848):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
shmctl$SHM_UNLOCK(0x0, 0xc)

1.074236124s ago: executing program 0 (id=1850):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7040000080000008500000078000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
faccessat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x3, 0x300)

1.072482193s ago: executing program 1 (id=1851):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {0x45c4}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2}, {}, {}, {}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x20, 0xffff}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x80}, {}, {0x0, 0x800000}, {0x0, 0x0, 0x0, 0x0, 0xb4d0}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x2000000}, {}, {}, {0x0, 0x0, 0x0, 0x2, 0xfffffff5}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, {0x3}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x8}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {0x8}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x2}, {0x400}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x16e}, {}, {}, {}, {0x0, 0x5}], [{0x2}, {0x3}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0)

1.052847295s ago: executing program 4 (id=1852):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
shmget(0x2, 0x2000, 0x20, &(0x7f0000ffd000/0x2000)=nil)

1.015428388s ago: executing program 1 (id=1853):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108284, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r3, 0x0, 0x79)

1.005740789s ago: executing program 0 (id=1854):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0xfcfa, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x0, 0x2d, 0x200, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4}}}, 0x24}}, 0x50)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

940.036934ms ago: executing program 4 (id=1855):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00"/11], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1fff}]})
fstat(r1, &(0x7f00000008c0))
newfstatat(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', &(0x7f0000000940), 0x0)

935.808894ms ago: executing program 1 (id=1856):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, &(0x7f00000001c0)=0x9c)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0)
bind$tipc(r2, 0x0, 0x0)
sendmsg$tipc(r3, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
close(r2)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000280)=<r5=>0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_mr_vif\x00')
lseek(r6, 0x18000000000, 0x0)
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0xa)
r9 = fcntl$dupfd(r7, 0x406, r8)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r9, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x10, 0x1411, 0x300, 0x70bd25, 0x25dfdbfc}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x20040004)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0xf, &(0x7f0000000880)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='GPL\x00', 0x2, 0xef, &(0x7f00000003c0)=""/239, 0x40f00, 0xb, '\x00', r5, 0x25, r6, 0x8, &(0x7f0000000300)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x3, 0x4, 0x101, 0x8000}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000700)=[r9], &(0x7f0000000740)=[{0x5, 0x4, 0x7}, {0x1, 0x2, 0x7, 0xb}, {0x4, 0x2, 0xb}, {0x4, 0x4, 0x1}, {0x4, 0x3, 0x9, 0x2}], 0x10, 0x2}, 0x94)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSSOFTCAR(r10, 0x541a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

935.393855ms ago: executing program 3 (id=1857):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

935.110455ms ago: executing program 4 (id=1858):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001b40)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in=@rand_addr=0x64010100, @in6=@ipv4={'\x00', '\xff\xff', @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0xa0}, {@in6=@dev={0xfe, 0x80, '\x00', 0x20}, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0xfffffffffffffff1, 0x3}, {0x0, 0x0, 0x2, 0xfffffffffffffffe}, {0x0, 0x0, 0x796}, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe55286f1921f74be}, 0x0, 0x1a0b1}}, 0xf8}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

916.503796ms ago: executing program 4 (id=1859):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001b40)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in=@rand_addr=0x64010100, @in6=@ipv4={'\x00', '\xff\xff', @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0xa0}, {@in6=@dev={0xfe, 0x80, '\x00', 0x20}, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0xfffffffffffffff1, 0x3}, {0x0, 0x0, 0x2, 0xfffffffffffffffe}, {0x0, 0x0, 0x796}, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe55286f1921f74be}, 0x0, 0x1a0b1}}, 0xf8}, 0x1, 0x0, 0x0, 0x40040}, 0x0) (fail_nth: 1)

649.097578ms ago: executing program 4 (id=1860):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r4=>r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000600142603600e1208000f0000000401a80016002000024006000200035c0461c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f0f49e119c849ea6e5a0fc55e4cde205a214d6102d6dcbf33fb5ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6cc", 0xd8}], 0x1}, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
timer_create(0x5, &(0x7f0000000040)={0x0, 0x32, 0x1, @tid=0xffffffffffffffff}, &(0x7f00000000c0))
getdents64(r7, &(0x7f0000000080)=""/34, 0x22)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="f80000001600010000000000000000006401010000000000000000000000000000000000000000000000ffff000000000000000000000009000080a000000000", @ANYRES8=r4, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000200000000033000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700000000000000fffffffffffffffff1ffffffffffffff03000000000000000000000000000000000000000000000000000000000000000200000000000000feffffffffffffff000000000000000096070000000000000000000000000002be0000000000000000000000b1a00100"], 0xf8}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

648.440948ms ago: executing program 3 (id=1861):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
write$UHID_INPUT(r2, &(0x7f00000005c0)={0x9, {"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", 0x1000}}, 0x1006)

389.866408ms ago: executing program 3 (id=1862):
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x4}}]}, 0x1, 0x50f, &(0x7f0000000140)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
socket(0x18, 0x800, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, 0x0, 0x0)
syz_socket_connect_nvme_tcp()
pwrite64(r1, &(0x7f0000000000)='2', 0x1, 0x4fed0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0xf8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r3, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

389.421828ms ago: executing program 4 (id=1863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r2, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b7", 0x23)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r2, 0x80083314, &(0x7f0000000200))
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x94eb2000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000008404000000000000850000005900000095"], 0x0, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7fffeffd)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r6, 0x0, 0xf}, 0x18)
setrlimit(0x9, &(0x7f0000000400)={0x0, 0x7})
io_setup(0x2004, &(0x7f0000000680))
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)

72.520074ms ago: executing program 1 (id=1864):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {0x45c4}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2}, {}, {}, {}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x20, 0xffff}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x80}, {}, {0x0, 0x800000}, {0x0, 0x0, 0x0, 0x0, 0xb4d0}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x2000000}, {}, {}, {0x0, 0x0, 0x0, 0x2, 0xfffffff5}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, {0x3}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x8}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {0x8}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x2}, {0x400}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x16e}, {}, {}, {}, {0x0, 0x5}], [{0x2}, {0x3}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0)

60.185495ms ago: executing program 0 (id=1865):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f0000000180), 0xffffffffffffffff)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='kmem_cache_free\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sysinfo(&(0x7f0000000140)=""/154)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000200)={'team0\x00', <r5=>0x0})
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000240)={<r6=>0x0, @multicast2, @empty}, &(0x7f0000000340)=0xc)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000400)={'ip6tnl0\x00', &(0x7f0000000380)={'ip6_vti0\x00', <r7=>0x0, 0x29, 0x1, 0x5, 0x5, 0x2, @private2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x8000, 0x2, 0x5}})
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x3, 0xff, 0x5e, 0x54, 0x0, 0x3, 0x89008, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x2, @perf_config_ext={0x10000, 0xfffffffffffffff9}, 0x1a, 0x81, 0x800, 0x6, 0x8, 0x4002}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
r8 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r8, &(0x7f0000000780)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x800}}, 0x120)
write$UHID_DESTROY(r8, &(0x7f0000000080), 0x4)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000580)={'ip_vti0\x00', &(0x7f0000000500)={'syztnl1\x00', <r9=>0x0, 0x20, 0x40, 0x1, 0x2, {{0xf, 0x4, 0x2, 0x6, 0x3c, 0x68, 0x0, 0x9, 0x4, 0x0, @broadcast, @private=0xa010102, {[@end, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @ssrr={0x89, 0x7, 0xb4, [@empty]}, @cipso={0x86, 0xc, 0x0, [{0x1, 0x6, "69cd9191"}]}, @timestamp_addr={0x44, 0xc, 0xc1, 0x1, 0xf, [{@multicast2, 0x8}]}]}}}}})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000980)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000940)={&(0x7f0000000680)={0x2b0, r3, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x170, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x3f9}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x81}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x98, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xa39}}}, {0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x6, 0xd, 0x36, 0x1}, {0x100, 0x0, 0x7e, 0x9}, {0x0, 0x60, 0x40, 0x5}, {0x2, 0x84, 0x9}, {0x7, 0x0, 0x80, 0x2}]}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffcbdb}}}]}}]}, 0x2b0}, 0x1, 0x0, 0x0, 0x4000044}, 0x80)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {0x45c4}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2}, {}, {}, {}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x20, 0xffff}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x80}, {}, {0x0, 0x800000}, {0x0, 0x0, 0x0, 0x0, 0xb4d0}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x2000000}, {}, {}, {0x0, 0x0, 0x0, 0x2, 0xfffffff5}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, {0x3}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x8}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {0x8}, {}, {}, {0x0, 0xffffffff}, {0x0, 0x2}, {0x400}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x16e}, {}, {}, {}, {0x0, 0x5}], [{0x2}, {0x3}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0)

0s ago: executing program 1 (id=1866):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108284, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r3, 0x0, 0x79)

kernel console output (not intermixed with test programs):

" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   88.542217][ T6319] rock: sig=0x3b10, size=4, remaining=3
[   88.563950][ T6319] netlink: 'syz.3.868': attribute type 27 has an invalid length.
[   88.601929][ T6320] netlink: 'syz.0.870': attribute type 1 has an invalid length.
[   88.602473][   T36] lo speed is unknown, defaulting to 1000
[   88.612162][ T6324] netlink: 'syz.4.871': attribute type 27 has an invalid length.
[   88.617318][   T36] syz2: Port: 1 Link DOWN
[   88.638231][ T6319] syz_tun: entered allmulticast mode
[   88.645750][ T6324] syz_tun: entered allmulticast mode
[   88.670750][ T6323] syz_tun: left allmulticast mode
[   88.801729][ T6318] syz_tun: left allmulticast mode
[   88.871993][ T6355] loop4: detected capacity change from 0 to 512
[   88.897327][ T6355] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.913965][ T6355] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.038658][ T6363] lo speed is unknown, defaulting to 1000
[   89.295318][ T6371] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   89.396611][ T6371] SELinux: failed to load policy
[   89.415794][ T6373] netlink: 'syz.2.883': attribute type 1 has an invalid length.
[   89.493607][ T6355] team_slave_0: entered promiscuous mode
[   89.502194][ T6355] team_slave_0: entered allmulticast mode
[   89.551935][ T6387] netlink: 'syz.2.889': attribute type 27 has an invalid length.
[   89.561801][ T6387] dummy0: left promiscuous mode
[   89.570748][ T6387] syz_tun: entered allmulticast mode
[   89.577921][ T6386] syz_tun: left allmulticast mode
[   89.617991][ T6390] FAULT_INJECTION: forcing a failure.
[   89.617991][ T6390] name failslab, interval 1, probability 0, space 0, times 0
[   89.631422][ T6390] CPU: 0 UID: 0 PID: 6390 Comm: syz.1.888 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[   89.631451][ T6390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.631464][ T6390] Call Trace:
[   89.631530][ T6390]  <TASK>
[   89.631539][ T6390]  __dump_stack+0x1d/0x30
[   89.631559][ T6390]  dump_stack_lvl+0xe8/0x140
[   89.631577][ T6390]  dump_stack+0x15/0x1b
[   89.631592][ T6390]  should_fail_ex+0x265/0x280
[   89.631616][ T6390]  should_failslab+0x8c/0xb0
[   89.631715][ T6390]  kmem_cache_alloc_node_noprof+0x57/0x320
[   89.631747][ T6390]  ? alloc_vmap_area+0x231/0xe50
[   89.631797][ T6390]  alloc_vmap_area+0x231/0xe50
[   89.631824][ T6390]  ? should_failslab+0x8c/0xb0
[   89.631845][ T6390]  ? __kmalloc_cache_node_noprof+0x18a/0x320
[   89.631928][ T6390]  __get_vm_area_node+0x173/0x1d0
[   89.631960][ T6390]  __vmalloc_node_range_noprof+0x273/0xe00
[   89.631989][ T6390]  ? bpf_prog_alloc_no_stats+0x47/0x3a0
[   89.632101][ T6390]  ? avc_has_perm_noaudit+0x1b1/0x200
[   89.632132][ T6390]  ? cred_has_capability+0x210/0x280
[   89.632157][ T6390]  ? bpf_prog_alloc_no_stats+0x47/0x3a0
[   89.632183][ T6390]  __vmalloc_noprof+0x83/0xc0
[   89.632261][ T6390]  ? bpf_prog_alloc_no_stats+0x47/0x3a0
[   89.632344][ T6390]  bpf_prog_alloc_no_stats+0x47/0x3a0
[   89.632373][ T6390]  ? bpf_prog_alloc+0x2a/0x150
[   89.632403][ T6390]  bpf_prog_alloc+0x3c/0x150
[   89.632492][ T6390]  bpf_prog_load+0x514/0x1070
[   89.632534][ T6390]  ? security_bpf+0x2b/0x90
[   89.632562][ T6390]  __sys_bpf+0x462/0x7b0
[   89.632666][ T6390]  __x64_sys_bpf+0x41/0x50
[   89.632695][ T6390]  x64_sys_call+0x2aea/0x2ff0
[   89.632720][ T6390]  do_syscall_64+0xd2/0x200
[   89.632747][ T6390]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.632798][ T6390]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.632825][ T6390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.632860][ T6390] RIP: 0033:0x7fb1f5b9ebe9
[   89.632875][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.632893][ T6390] RSP: 002b:00007fb1f45e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.632915][ T6390] RAX: ffffffffffffffda RBX: 00007fb1f5dc6090 RCX: 00007fb1f5b9ebe9
[   89.632929][ T6390] RDX: 0000000000000094 RSI: 0000200000000140 RDI: 0000000000000005
[   89.632944][ T6390] RBP: 00007fb1f45e6090 R08: 0000000000000000 R09: 0000000000000000
[   89.632956][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.633039][ T6390] R13: 00007fb1f5dc6128 R14: 00007fb1f5dc6090 R15: 00007fff80c30528
[   89.633061][ T6390]  </TASK>
[   89.633072][ T6390] syz.1.888: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[   89.637247][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.647177][ T6390] ,cpuset=
[   89.825876][ T6392] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[   89.825876][ T6392]    program syz.0.892 not setting count and/or reply_len properly
[   89.826219][ T6390] /,mems_allowed=0
[   90.170039][ T6390] CPU: 0 UID: 0 PID: 6390 Comm: syz.1.888 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[   90.170095][ T6390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.170106][ T6390] Call Trace:
[   90.170113][ T6390]  <TASK>
[   90.170122][ T6390]  __dump_stack+0x1d/0x30
[   90.170223][ T6390]  dump_stack_lvl+0xe8/0x140
[   90.170330][ T6390]  dump_stack+0x15/0x1b
[   90.170426][ T6390]  warn_alloc+0x12b/0x1a0
[   90.170461][ T6390]  __vmalloc_node_range_noprof+0x297/0xe00
[   90.170496][ T6390]  ? avc_has_perm_noaudit+0x1b1/0x200
[   90.170579][ T6390]  ? cred_has_capability+0x210/0x280
[   90.170605][ T6390]  ? bpf_prog_alloc_no_stats+0x47/0x3a0
[   90.170676][ T6390]  __vmalloc_noprof+0x83/0xc0
[   90.170706][ T6390]  ? bpf_prog_alloc_no_stats+0x47/0x3a0
[   90.170730][ T6390]  bpf_prog_alloc_no_stats+0x47/0x3a0
[   90.170804][ T6390]  ? bpf_prog_alloc+0x2a/0x150
[   90.170833][ T6390]  bpf_prog_alloc+0x3c/0x150
[   90.170857][ T6390]  bpf_prog_load+0x514/0x1070
[   90.170926][ T6390]  ? security_bpf+0x2b/0x90
[   90.170958][ T6390]  __sys_bpf+0x462/0x7b0
[   90.170996][ T6390]  __x64_sys_bpf+0x41/0x50
[   90.171099][ T6390]  x64_sys_call+0x2aea/0x2ff0
[   90.171121][ T6390]  do_syscall_64+0xd2/0x200
[   90.171149][ T6390]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.171178][ T6390]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.171262][ T6390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.171294][ T6390] RIP: 0033:0x7fb1f5b9ebe9
[   90.171312][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.171333][ T6390] RSP: 002b:00007fb1f45e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.171434][ T6390] RAX: ffffffffffffffda RBX: 00007fb1f5dc6090 RCX: 00007fb1f5b9ebe9
[   90.171449][ T6390] RDX: 0000000000000094 RSI: 0000200000000140 RDI: 0000000000000005
[   90.171462][ T6390] RBP: 00007fb1f45e6090 R08: 0000000000000000 R09: 0000000000000000
[   90.171476][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.171488][ T6390] R13: 00007fb1f5dc6128 R14: 00007fb1f5dc6090 R15: 00007fff80c30528
[   90.171505][ T6390]  </TASK>
[   90.171551][ T6390] Mem-Info:
[   90.838422][ T6390] active_anon:6922 inactive_anon:0 isolated_anon:0
[   90.838422][ T6390]  active_file:9995 inactive_file:15019 isolated_file:0
[   90.838422][ T6390]  unevictable:0 dirty:73 writeback:19
[   90.838422][ T6390]  slab_reclaimable:3290 slab_unreclaimable:58417
[   90.838422][ T6390]  mapped:31738 shmem:259 pagetables:1214
[   90.838422][ T6390]  sec_pagetables:0 bounce:0
[   90.838422][ T6390]  kernel_misc_reclaimable:0
[   90.838422][ T6390]  free:1841259 free_pcp:6982 free_cma:0
[   90.919440][ T6390] Node 0 active_anon:27688kB inactive_anon:0kB active_file:39980kB inactive_file:60076kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:126952kB dirty:292kB writeback:76kB shmem:1036kB kernel_stack:3488kB pagetables:4856kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   90.965430][ T6390] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   91.011080][ T6390] lowmem_reserve[]: 0 2883 7862 7862
[   91.019328][ T6390] Node 0 DMA32 free:2949316kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952848kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[   91.064175][ T6390] lowmem_reserve[]: 0 0 4978 4978
[   91.070416][ T6390] Node 0 Normal free:4400360kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:27688kB inactive_anon:0kB active_file:39980kB inactive_file:60076kB unevictable:0kB writepending:252kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:24428kB local_pcp:2764kB free_cma:0kB
[   91.105826][ T6390] lowmem_reserve[]: 0 0 0 0
[   91.110613][ T6390] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   91.124198][ T6390] Node 0 DMA32: 5*4kB (M) 4*8kB (M) 3*16kB (M) 3*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949316kB
[   91.142413][ T6390] Node 0 Normal: 53*4kB (UME) 862*8kB (UME) 605*16kB (UME) 368*32kB (UME) 255*64kB (UME) 115*128kB (UME) 108*256kB (UME) 62*512kB (UME) 41*1024kB (UME) 26*2048kB (UM) 1022*4096kB (UM) = 4400340kB
[   91.162111][ T6390] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   91.172031][ T6390] 25274 total pagecache pages
[   91.177749][ T6390] 5 pages in swap cache
[   91.182177][ T6390] Free swap  = 124976kB
[   91.186612][ T6390] Total swap = 124996kB
[   91.191149][ T6390] 2097051 pages RAM
[   91.195626][ T6390] 0 pages HighMem/MovableOnly
[   91.200455][ T6390] 80439 pages reserved
[   91.312657][ T6422] netlink: 'syz.0.901': attribute type 27 has an invalid length.
[   91.327388][ T6422] syz_tun: entered allmulticast mode
[   91.336443][ T6421] syz_tun: left allmulticast mode
[   91.365415][ T6428] __nla_validate_parse: 1 callbacks suppressed
[   91.365451][ T6428] netlink: 8 bytes leftover after parsing attributes in process `syz.0.904'.
[   91.373538][ T6425] netlink: 16 bytes leftover after parsing attributes in process `syz.4.903'.
[   91.411923][ T6431] tipc: Failed to remove unknown binding: 66,1,1/0:671675246/671675248
[   91.452109][ T6428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.904'.
[   91.515781][ T6441] tipc: Failed to remove unknown binding: 66,1,1/0:671675246/671675248
[   91.524733][ T6441] tipc: Failed to remove unknown binding: 66,1,1/0:671675246/671675248
[   91.599334][ T6454] loop4: detected capacity change from 0 to 736
[   91.676657][ T6454] rock: directory entry would overflow storage
[   91.683596][ T6454] rock: sig=0x3b10, size=4, remaining=3
[   91.690267][ T6446] lo speed is unknown, defaulting to 1000
[   91.706293][ T6454] team_slave_0: left promiscuous mode
[   91.712719][ T6454] team_slave_0: left allmulticast mode
[   91.722015][ T6454] syz_tun: entered allmulticast mode
[   91.758925][ T6453] syz_tun: left allmulticast mode
[   91.798832][ T6468] netlink: 56 bytes leftover after parsing attributes in process `syz.2.917'.
[   91.884669][ T6468] Falling back ldisc for ttyS3.
[   91.900143][ T6480] binfmt_misc: register: failed to install interpreter file ./file2
[   91.918997][ T6482] loop4: detected capacity change from 0 to 736
[   91.940004][ T6483] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.924'.
[   91.978797][ T6482] rock: directory entry would overflow storage
[   91.986182][ T6482] rock: sig=0x3b10, size=4, remaining=3
[   92.002899][ T6482] validate_nla: 4 callbacks suppressed
[   92.002920][ T6482] netlink: 'syz.4.926': attribute type 27 has an invalid length.
[   92.020389][ T6487] netlink: 8 bytes leftover after parsing attributes in process `syz.3.927'.
[   92.021085][ T6482] syz_tun: entered allmulticast mode
[   92.045109][ T6481] syz_tun: left allmulticast mode
[   92.121527][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.931'.
[   92.194078][ T6496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.931'.
[   92.248414][ T6516] netlink: 'syz.2.940': attribute type 27 has an invalid length.
[   92.260031][ T6516] syz_tun: entered allmulticast mode
[   92.271428][ T6515] syz_tun: left allmulticast mode
[   92.360287][ T6512] netlink: 16 bytes leftover after parsing attributes in process `syz.1.938'.
[   92.525735][ T6524] netlink: 'syz.1.942': attribute type 2 has an invalid length.
[   92.534520][ T6524] netlink: 'syz.1.942': attribute type 1 has an invalid length.
[   92.543299][ T6524] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.942'.
[   92.675109][ T6536] tipc: Failed to remove unknown binding: 66,1,1/0:2648053162/2648053164
[   92.737186][ T6537] tipc: Failed to remove unknown binding: 66,1,1/0:2648053162/2648053164
[   92.746656][ T6537] tipc: Failed to remove unknown binding: 66,1,1/0:2648053162/2648053164
[   92.822791][ T6541] loop3: detected capacity change from 0 to 164
[   92.831447][ T6541] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   92.861296][ T6543] loop3: detected capacity change from 0 to 512
[   92.888391][ T6543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.902303][ T6543] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.938755][ T6548] loop4: detected capacity change from 0 to 736
[   92.957786][ T6548] rock: directory entry would overflow storage
[   92.964634][ T6548] rock: sig=0x3b10, size=4, remaining=3
[   92.972980][ T6548] netlink: 'syz.4.951': attribute type 27 has an invalid length.
[   92.973287][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.982901][ T6548] syz_tun: entered allmulticast mode
[   93.013211][ T6547] syz_tun: left allmulticast mode
[   93.058569][ T6550] SELinux: failed to load policy
[   93.208174][ T6573] netlink: 'syz.2.963': attribute type 27 has an invalid length.
[   93.219162][ T6573] syz_tun: entered allmulticast mode
[   93.228958][ T6572] syz_tun: left allmulticast mode
[   93.269212][   T29] kauditd_printk_skb: 243 callbacks suppressed
[   93.269234][   T29] audit: type=1400 audit(1755090717.962:2161): avc:  granted  { setsecparam } for  pid=6572 comm="syz.2.963" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   93.488158][ T6582] lo speed is unknown, defaulting to 1000
[   93.870307][ T6581] lo speed is unknown, defaulting to 1000
[   93.937314][   T29] audit: type=1326 audit(1755090718.672:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   93.961651][   T29] audit: type=1326 audit(1755090718.672:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   93.999168][   T29] audit: type=1326 audit(1755090718.732:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.025598][   T29] audit: type=1326 audit(1755090718.732:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.053075][   T29] audit: type=1326 audit(1755090718.732:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.109469][   T29] audit: type=1326 audit(1755090718.732:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.135418][   T29] audit: type=1326 audit(1755090718.732:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.161497][   T29] audit: type=1326 audit(1755090718.732:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.188179][   T29] audit: type=1326 audit(1755090718.822:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[   94.264032][ T6596] Falling back ldisc for ttyS3.
[   94.425332][ T6602] Falling back ldisc for ttyS3.
[   94.455485][ T6585] bridge: RTM_NEWNEIGH with invalid ether address
[   94.524742][ T6628] SELinux: failed to load policy
[   94.524780][ T6638] tipc: Failed to remove unknown binding: 66,1,1/0:2273382698/2273382700
[   94.604470][ T6649] tipc: Failed to remove unknown binding: 66,1,1/0:2273382698/2273382700
[   94.614825][ T6649] tipc: Failed to remove unknown binding: 66,1,1/0:2273382698/2273382700
[   94.935296][ T6658] lo speed is unknown, defaulting to 1000
[   95.062187][ T6660] lo speed is unknown, defaulting to 1000
[   95.127692][ T6660] vlan3: entered allmulticast mode
[   95.133131][ T6660] dummy0: entered allmulticast mode
[   96.206707][ T6666] lo speed is unknown, defaulting to 1000
[   96.365591][ T6666] vlan2: entered allmulticast mode
[   96.371284][ T6666] dummy0: entered allmulticast mode
[   96.750438][ T6685] netlink: 'syz.1.993': attribute type 27 has an invalid length.
[   96.759001][ T6681] loop4: detected capacity change from 0 to 4096
[   96.788027][ T6685] syz_tun: entered allmulticast mode
[   96.795880][ T6684] syz_tun: left allmulticast mode
[   96.838102][ T6689] __nla_validate_parse: 2 callbacks suppressed
[   96.838125][ T6689] netlink: 56 bytes leftover after parsing attributes in process `syz.2.995'.
[   96.872441][ T6695] loop3: detected capacity change from 0 to 736
[   96.882690][ T6681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.894710][ T6681] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.945638][ T6689] Falling back ldisc for ttyS3.
[   96.968595][ T6695] rock: directory entry would overflow storage
[   96.968611][ T6695] rock: sig=0x3b10, size=4, remaining=3
[   96.973826][ T6695] netlink: 'syz.3.997': attribute type 27 has an invalid length.
[   96.989341][ T6695] syz_tun: entered allmulticast mode
[   96.992233][ T6694] syz_tun: left allmulticast mode
[   97.088758][ T6710] loop3: detected capacity change from 0 to 736
[   97.180674][ T6720] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6720 comm=syz.0.1003
[   97.183057][ T6710] rock: directory entry would overflow storage
[   97.201066][ T6710] rock: sig=0x3b10, size=4, remaining=3
[   97.215457][ T6720] netlink: 'syz.0.1003': attribute type 1 has an invalid length.
[   97.262748][ T6720] bond2: (slave bridge2): making interface the new active one
[   97.271285][ T6720] bond2: (slave bridge2): Enslaving as an active interface with an up link
[   97.306128][ T6710] netlink: 'syz.3.999': attribute type 27 has an invalid length.
[   97.316592][ T6710] syz_tun: entered allmulticast mode
[   97.348311][ T6724] SELinux:  policydb magic number 0x30386c6e does not match expected magic number 0xf97cff8c
[   97.371643][ T6736] netlink: 'syz.1.1007': attribute type 27 has an invalid length.
[   97.382330][ T6736] syz_tun: entered allmulticast mode
[   97.392838][ T6735] syz_tun: left allmulticast mode
[   97.404676][ T6724] SELinux: failed to load policy
[   97.421097][ T6709] syz_tun: left allmulticast mode
[   97.513575][ T6740] lo speed is unknown, defaulting to 1000
[   97.621457][ T6738] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6738 comm=syz.0.1008
[   97.797518][ T6747] netlink: 'syz.0.1008': attribute type 1 has an invalid length.
[   98.096205][ T6783] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1022'.
[   98.143068][ T6780] SELinux: failed to load policy
[   98.194064][ T6783] Falling back ldisc for ttyS3.
[   98.277784][   T29] kauditd_printk_skb: 202 callbacks suppressed
[   98.277805][   T29] audit: type=1326 audit(1755090723.012:2373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.330427][ T6805] FAULT_INJECTION: forcing a failure.
[   98.330427][ T6805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.345594][ T6805] CPU: 1 UID: 0 PID: 6805 Comm: syz.2.1030 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[   98.345629][ T6805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.345644][ T6805] Call Trace:
[   98.345653][ T6805]  <TASK>
[   98.345682][ T6805]  __dump_stack+0x1d/0x30
[   98.345707][ T6805]  dump_stack_lvl+0xe8/0x140
[   98.345729][ T6805]  dump_stack+0x15/0x1b
[   98.345747][ T6805]  should_fail_ex+0x265/0x280
[   98.345842][ T6805]  should_fail+0xb/0x20
[   98.345874][ T6805]  should_fail_usercopy+0x1a/0x20
[   98.345900][ T6805]  strncpy_from_user+0x25/0x230
[   98.346060][ T6805]  ? kmem_cache_alloc_noprof+0x186/0x310
[   98.346090][ T6805]  ? getname_flags+0x80/0x3b0
[   98.346121][ T6805]  getname_flags+0xae/0x3b0
[   98.346151][ T6805]  path_removexattrat+0xf5/0x570
[   98.346266][ T6805]  __x64_sys_removexattr+0x38/0x50
[   98.346336][ T6805]  x64_sys_call+0x242f/0x2ff0
[   98.346359][ T6805]  do_syscall_64+0xd2/0x200
[   98.346387][ T6805]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.346411][ T6805]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.346432][ T6805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.346532][ T6805] RIP: 0033:0x7f3ad836ebe9
[   98.346549][ T6805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.346569][ T6805] RSP: 002b:00007f3ad6dd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[   98.346627][ T6805] RAX: ffffffffffffffda RBX: 00007f3ad8595fa0 RCX: 00007f3ad836ebe9
[   98.346640][ T6805] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200
[   98.346654][ T6805] RBP: 00007f3ad6dd7090 R08: 0000000000000000 R09: 0000000000000000
[   98.346667][ T6805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.346678][ T6805] R13: 00007f3ad8596038 R14: 00007f3ad8595fa0 R15: 00007ffeecace358
[   98.346696][ T6805]  </TASK>
[   98.347588][   T29] audit: type=1326 audit(1755090723.042:2374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.349717][ T6806] loop4: detected capacity change from 0 to 512
[   98.361442][   T29] audit: type=1326 audit(1755090723.052:2375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.605072][   T29] audit: type=1326 audit(1755090723.052:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.629833][   T29] audit: type=1326 audit(1755090723.052:2377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.654280][   T29] audit: type=1326 audit(1755090723.052:2378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.656555][ T6806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.678565][   T29] audit: type=1326 audit(1755090723.052:2379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.678661][   T29] audit: type=1326 audit(1755090723.052:2380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6797 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[   98.770645][ T6817] netlink: 'syz.3.1035': attribute type 10 has an invalid length.
[   98.800379][ T6820] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1036'.
[   98.812045][ T6809] SELinux: failed to load policy
[   98.818103][ T6817] team0: Port device dummy0 added
[   98.843905][ T6806] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.885738][   T29] audit: type=1400 audit(1755090723.622:2381): avc:  denied  { compute_member } for  pid=6821 comm="syz.0.1037" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   98.909622][ T6820] Falling back ldisc for ttyS3.
[   98.954772][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.034586][ T6838] loop4: detected capacity change from 0 to 512
[   99.048315][ T6838] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.071490][ T6838] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.093160][   T29] audit: type=1400 audit(1755090723.802:2382): avc:  denied  { validate_trans } for  pid=6839 comm="syz.0.1044" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   99.236054][ T6848] SELinux: failed to load policy
[   99.246817][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.398699][ T6857] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1050'.
[   99.539058][ T6862] lo speed is unknown, defaulting to 1000
[   99.693108][ T6862] vlan2: entered allmulticast mode
[   99.698459][ T6862] dummy0: entered allmulticast mode
[   99.903813][ T6857] Falling back ldisc for ttyS3.
[   99.972177][ T6874] FAULT_INJECTION: forcing a failure.
[   99.972177][ T6874] name failslab, interval 1, probability 0, space 0, times 0
[   99.985771][ T6874] CPU: 0 UID: 0 PID: 6874 Comm: syz.1.1058 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[   99.985807][ T6874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.985873][ T6874] Call Trace:
[   99.985882][ T6874]  <TASK>
[   99.985892][ T6874]  __dump_stack+0x1d/0x30
[   99.985919][ T6874]  dump_stack_lvl+0xe8/0x140
[   99.985942][ T6874]  dump_stack+0x15/0x1b
[   99.985962][ T6874]  should_fail_ex+0x265/0x280
[   99.986033][ T6874]  should_failslab+0x8c/0xb0
[   99.986108][ T6874]  __kmalloc_noprof+0xa5/0x3e0
[   99.986216][ T6874]  ? sel_write_member+0x177/0x370
[   99.986257][ T6874]  sel_write_member+0x177/0x370
[   99.986288][ T6874]  selinux_transaction_write+0xc3/0x110
[   99.986377][ T6874]  ? __pfx_selinux_transaction_write+0x10/0x10
[   99.986407][ T6874]  vfs_write+0x269/0x960
[   99.986432][ T6874]  ? __rcu_read_unlock+0x4f/0x70
[   99.986457][ T6874]  ? __fget_files+0x184/0x1c0
[   99.986482][ T6874]  ksys_write+0xda/0x1a0
[   99.986580][ T6874]  __x64_sys_write+0x40/0x50
[   99.986678][ T6874]  x64_sys_call+0x27fe/0x2ff0
[   99.986701][ T6874]  do_syscall_64+0xd2/0x200
[   99.986725][ T6874]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.986749][ T6874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.986775][ T6874] RIP: 0033:0x7fb1f5b9ebe9
[   99.986801][ T6874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.986822][ T6874] RSP: 002b:00007fb1f4607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   99.986899][ T6874] RAX: ffffffffffffffda RBX: 00007fb1f5dc5fa0 RCX: 00007fb1f5b9ebe9
[   99.986914][ T6874] RDX: 000000000000005c RSI: 00002000000006c0 RDI: 0000000000000006
[   99.986929][ T6874] RBP: 00007fb1f4607090 R08: 0000000000000000 R09: 0000000000000000
[   99.986944][ T6874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.986958][ T6874] R13: 00007fb1f5dc6038 R14: 00007fb1f5dc5fa0 R15: 00007fff80c30528
[   99.986996][ T6874]  </TASK>
[  100.375030][ T6885] netlink: 'syz.4.1060': attribute type 10 has an invalid length.
[  100.389330][ T6885] team0: Port device dummy0 added
[  100.471352][ T6887] SELinux: failed to load policy
[  100.634965][ T6899] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1066'.
[  100.718082][ T6903] SELinux: failed to load policy
[  100.753939][ T6899] Falling back ldisc for ttyS3.
[  101.187830][ T6919] loop3: detected capacity change from 0 to 512
[  101.276568][ T6919] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1075: bg 0: block 131: padding at end of block bitmap is not set
[  101.292784][ T6927] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6927 comm=syz.1.1077
[  101.360129][ T6927] netlink: 'syz.1.1077': attribute type 1 has an invalid length.
[  101.373999][ T6919] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  101.387218][ T6931] SELinux: failed to load policy
[  101.399565][ T6944] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  101.399806][ T6919] EXT4-fs (loop3): 1 truncate cleaned up
[  101.409566][ T6944] SELinux: failed to load policy
[  101.475122][ T6919] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.690866][ T6955] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  101.690866][ T6955]    program syz.1.1085 not setting count and/or reply_len properly
[  102.010783][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.052076][ T6989] loop3: detected capacity change from 0 to 128
[  102.113724][ T6990] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1091'.
[  102.164520][ T6989] Falling back ldisc for ttyS3.
[  102.279074][ T6992] SELinux: failed to load policy
[  102.321652][ T6994] SELinux: failed to load policy
[  102.430171][ T7002] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1097'.
[  102.521859][ T7011] syz_tun: entered allmulticast mode
[  102.536580][ T7009] syz_tun: left allmulticast mode
[  102.548817][ T7015] loop3: detected capacity change from 0 to 128
[  102.595374][ T7019] SELinux: failed to load policy
[  102.640494][ T7030] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1103'.
[  102.694164][ T7015] Falling back ldisc for ttyS3.
[  102.780140][ T7024] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  102.780140][ T7024]    program syz.1.1105 not setting count and/or reply_len properly
[  102.820608][ T7041] loop3: detected capacity change from 0 to 256
[  102.839133][ T7041] FAT-fs (loop3): Directory bread(block 64) failed
[  102.846236][ T7041] FAT-fs (loop3): Directory bread(block 65) failed
[  102.853155][ T7041] FAT-fs (loop3): Directory bread(block 66) failed
[  102.861971][ T7041] FAT-fs (loop3): Directory bread(block 67) failed
[  102.868918][ T7041] FAT-fs (loop3): Directory bread(block 68) failed
[  102.877196][ T7041] FAT-fs (loop3): Directory bread(block 69) failed
[  102.884117][ T7041] FAT-fs (loop3): Directory bread(block 70) failed
[  102.890884][ T7041] FAT-fs (loop3): Directory bread(block 71) failed
[  102.898900][ T7041] FAT-fs (loop3): Directory bread(block 72) failed
[  102.907881][ T7042] FAULT_INJECTION: forcing a failure.
[  102.907881][ T7042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.921624][ T7042] CPU: 1 UID: 0 PID: 7042 Comm: syz.0.1111 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  102.921664][ T7042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  102.921678][ T7042] Call Trace:
[  102.921689][ T7042]  <TASK>
[  102.921699][ T7042]  __dump_stack+0x1d/0x30
[  102.921724][ T7042]  dump_stack_lvl+0xe8/0x140
[  102.921742][ T7042]  dump_stack+0x15/0x1b
[  102.921758][ T7042]  should_fail_ex+0x265/0x280
[  102.921813][ T7042]  should_fail+0xb/0x20
[  102.921833][ T7042]  should_fail_usercopy+0x1a/0x20
[  102.921857][ T7042]  _copy_to_user+0x20/0xa0
[  102.921942][ T7042]  simple_read_from_buffer+0xb5/0x130
[  102.921963][ T7042]  proc_fail_nth_read+0x10e/0x150
[  102.921989][ T7042]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  102.922012][ T7042]  vfs_read+0x1a8/0x770
[  102.922110][ T7042]  ? __rcu_read_unlock+0x4f/0x70
[  102.922135][ T7042]  ? __fget_files+0x184/0x1c0
[  102.922166][ T7042]  ksys_read+0xda/0x1a0
[  102.922196][ T7042]  __x64_sys_read+0x40/0x50
[  102.922266][ T7042]  x64_sys_call+0x27bc/0x2ff0
[  102.922286][ T7042]  do_syscall_64+0xd2/0x200
[  102.922399][ T7042]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  102.922422][ T7042]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  102.922448][ T7042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.922474][ T7042] RIP: 0033:0x7f940f62d5fc
[  102.922492][ T7042] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  102.922517][ T7042] RSP: 002b:00007f940e055030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  102.922538][ T7042] RAX: ffffffffffffffda RBX: 00007f940f856180 RCX: 00007f940f62d5fc
[  102.922551][ T7042] RDX: 000000000000000f RSI: 00007f940e0550a0 RDI: 0000000000000008
[  102.922562][ T7042] RBP: 00007f940e055090 R08: 0000000000000000 R09: 0000000000000000
[  102.922574][ T7042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.922588][ T7042] R13: 00007f940f856218 R14: 00007f940f856180 R15: 00007fff4520aa98
[  102.922666][ T7042]  </TASK>
[  103.136249][ T7041] FAT-fs (loop3): Directory bread(block 73) failed
[  103.487876][ T7055] syz_tun: entered allmulticast mode
[  103.497433][   T29] kauditd_printk_skb: 254 callbacks suppressed
[  103.497449][   T29] audit: type=1400 audit(1755090728.232:2637): avc:  granted  { setsecparam } for  pid=7054 comm="syz.1.1116" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  103.528896][ T7054] syz_tun: left allmulticast mode
[  103.566555][ T7059] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1117'.
[  103.605993][ T7059] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1117'.
[  103.645177][ T7066] loop4: detected capacity change from 0 to 164
[  103.677141][ T7066] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  103.717909][ T7068] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1121'.
[  103.770156][ T7074] loop3: detected capacity change from 0 to 512
[  103.794693][ T7068] Falling back ldisc for ttyS3.
[  103.881543][ T7074] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  103.881543][ T7074]    program syz.3.1124 not setting count and/or reply_len properly
[  104.118143][ T7086] syz_tun: entered allmulticast mode
[  104.124919][   T29] audit: type=1400 audit(1755090728.862:2638): avc:  granted  { setsecparam } for  pid=7085 comm="syz.0.1128" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  104.136090][ T7085] syz_tun: left allmulticast mode
[  104.161104][ T7088] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1129'.
[  104.193966][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1129'.
[  104.194188][ T7090] sel_write_load: 1 callbacks suppressed
[  104.194203][ T7090] SELinux: failed to load policy
[  104.269181][ T7102] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1135'.
[  104.287344][ T7104] netlink: 'syz.2.1136': attribute type 27 has an invalid length.
[  104.300099][ T7104] syz_tun: entered allmulticast mode
[  104.307290][ T7103] syz_tun: left allmulticast mode
[  104.324161][ T7102] Falling back ldisc for ttyS3.
[  104.487689][ T7142] syz_tun: entered allmulticast mode
[  104.493751][   T29] audit: type=1400 audit(1755090729.222:2639): avc:  granted  { setsecparam } for  pid=7141 comm="syz.1.1140" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  104.517626][ T7141] syz_tun: left allmulticast mode
[  104.537194][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1142'.
[  104.647028][ T7156] loop3: detected capacity change from 0 to 164
[  104.655046][ T7156] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  105.186431][ T7175] syz_tun: entered allmulticast mode
[  105.192522][   T29] audit: type=1400 audit(1755090729.922:2640): avc:  granted  { setsecparam } for  pid=7174 comm="syz.2.1152" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  105.208760][ T7174] syz_tun: left allmulticast mode
[  105.238206][ T7178] loop4: detected capacity change from 0 to 512
[  105.291741][ T7189] loop3: detected capacity change from 0 to 164
[  105.309236][ T7189] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  105.372123][ T7184] Falling back ldisc for ttyS3.
[  105.432326][   T29] audit: type=1326 audit(1755090730.162:2641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.450732][ T7207] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  105.450732][ T7207]    program syz.4.1155 not setting count and/or reply_len properly
[  105.458600][   T29] audit: type=1326 audit(1755090730.162:2642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.498655][   T29] audit: type=1326 audit(1755090730.162:2643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.522742][   T29] audit: type=1326 audit(1755090730.162:2644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.547190][   T29] audit: type=1326 audit(1755090730.162:2645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.571692][   T29] audit: type=1326 audit(1755090730.162:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7205 comm="syz.1.1165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  105.598151][ T7206] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7206 comm=syz.1.1165
[  105.612776][ T7206] netlink: 'syz.1.1165': attribute type 1 has an invalid length.
[  105.632534][ T7206] bond2: (slave bridge2): making interface the new active one
[  105.640539][ T7206] bond2: (slave bridge2): Enslaving as an active interface with an up link
[  105.703981][ T7208] lo speed is unknown, defaulting to 1000
[  105.725783][ T7214] tipc: Started in network mode
[  105.730999][ T7214] tipc: Node identity ac14140f, cluster identity 4711
[  105.739281][ T7214] tipc: New replicast peer: 255.255.255.83
[  105.746035][ T7214] tipc: Enabled bearer <udp:£>, priority 10
[  105.756508][ T7215] netlink: 'syz.0.1167': attribute type 27 has an invalid length.
[  105.767796][ T7215] syz_tun: entered allmulticast mode
[  105.774857][ T7213] syz_tun: left allmulticast mode
[  105.801104][ T7218] syz_tun: entered allmulticast mode
[  105.809428][ T7217] syz_tun: left allmulticast mode
[  105.892726][ T7222] SELinux: failed to load policy
[  106.104359][ T7226] lo speed is unknown, defaulting to 1000
[  106.169969][ T7226] vlan2: entered allmulticast mode
[  106.502917][ T7235] SELinux: failed to load policy
[  106.505251][ T7244] loop3: detected capacity change from 0 to 736
[  106.533277][ T7244] rock: directory entry would overflow storage
[  106.540390][ T7244] rock: sig=0x3b10, size=4, remaining=3
[  106.593143][ T7244] syz_tun: entered allmulticast mode
[  106.601696][ T7243] syz_tun: left allmulticast mode
[  106.656482][ T7256] loop3: detected capacity change from 0 to 512
[  106.726020][ T7262] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7262 comm=syz.0.1187
[  106.740740][ T7262] netlink: 'syz.0.1187': attribute type 1 has an invalid length.
[  106.772527][ T7256] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  106.772527][ T7256]    program syz.3.1185 not setting count and/or reply_len properly
[  106.845268][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.852906][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.861147][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.869324][ T3384] tipc: Node number set to 2886997007
[  106.875067][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.882779][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.891264][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.899310][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.906895][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.915610][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.923187][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  106.931699][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  107.000783][ T7274] fido_id[7274]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  107.041202][ T7289] netlink: 'syz.0.1197': attribute type 27 has an invalid length.
[  107.418597][   T10] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  107.441717][ T7296] fido_id[7296]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  107.504573][ T7298] loop3: detected capacity change from 0 to 128
[  107.515816][ T7298] __nla_validate_parse: 9 callbacks suppressed
[  107.515836][ T7298] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1200'.
[  107.557344][ T7302] loop4: detected capacity change from 0 to 736
[  107.577955][ T7302] rock: directory entry would overflow storage
[  107.584367][ T7302] rock: sig=0x3b10, size=4, remaining=3
[  107.634461][ T7298] Falling back ldisc for ttyS3.
[  107.977261][ T7338] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1217'.
[  108.049664][ T7338] Falling back ldisc for ttyS3.
[  108.105780][ T7343] SELinux: failed to load policy
[  108.430096][ T7359] vlan3: entered allmulticast mode
[  109.006810][ T7367] vlan2: entered allmulticast mode
[  109.191534][ T7365] lo speed is unknown, defaulting to 1000
[  109.452347][ T7373] loop3: detected capacity change from 0 to 512
[  109.459909][   T29] kauditd_printk_skb: 329 callbacks suppressed
[  109.459927][   T29] audit: type=1326 audit(1755090734.182:2976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.490535][   T29] audit: type=1326 audit(1755090734.192:2977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.514613][   T29] audit: type=1326 audit(1755090734.192:2978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.539107][   T29] audit: type=1326 audit(1755090734.192:2979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.564317][   T29] audit: type=1326 audit(1755090734.192:2980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.588816][   T29] audit: type=1326 audit(1755090734.192:2981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.613209][   T29] audit: type=1326 audit(1755090734.192:2982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.624425][   T36] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  109.638580][   T29] audit: type=1326 audit(1755090734.192:2983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f3ad836ebe9 code=0x7ffc0000
[  109.672407][   T29] audit: type=1326 audit(1755090734.192:2984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3ad8365ba7 code=0x7ffc0000
[  109.688656][ T7383] fido_id[7383]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  109.696682][   T29] audit: type=1326 audit(1755090734.192:2985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7375 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3ad830add9 code=0x7ffc0000
[  109.739946][ T7381] netlink: 'syz.2.1230': attribute type 6 has an invalid length.
[  109.755972][ T7385] loop4: detected capacity change from 0 to 512
[  109.769477][ T7373] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  109.798344][ T7373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.813961][ T7373] ext4 filesystem being mounted at /247/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.836710][ T7385] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.853807][ T7385] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.937614][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.130622][ T7399] loop4: detected capacity change from 0 to 128
[  110.179883][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.200602][ T7403] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1237'.
[  110.324506][ T7399] Falling back ldisc for ttyS3.
[  110.360022][ T7413] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7413 comm=syz.2.1243
[  110.377365][ T7413] netlink: 'syz.2.1243': attribute type 1 has an invalid length.
[  110.398475][ T7413] bond3: (slave bridge2): making interface the new active one
[  110.406669][ T7413] bond3: (slave bridge2): Enslaving as an active interface with an up link
[  110.431037][ T7419] loop4: detected capacity change from 0 to 256
[  110.440954][ T7419] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  110.474088][   T36] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  110.502040][ T7427] fido_id[7427]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  110.551709][   T10] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  110.575269][ T7429] fido_id[7429]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  111.001884][ T7434] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1249'.
[  111.063902][ T7434] Falling back ldisc for ttyS3.
[  111.091225][ T7441] loop3: detected capacity change from 0 to 512
[  111.152004][ T7441] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.214820][ T7441] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.374426][ T7456] mmap: syz.2.1252 (7456) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  111.418194][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.535483][   T10] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  111.578705][ T7499] fido_id[7499]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  112.270541][ T7523] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  112.290987][ T7523] SELinux: failed to load policy
[  112.339285][ T7536] SELinux: failed to load policy
[  112.558067][ T7550] loop4: detected capacity change from 0 to 256
[  112.576573][ T7550] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  112.720159][ T7552] SELinux: failed to load policy
[  112.750465][ T7554] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1282'.
[  112.824717][ T7554] Falling back ldisc for ttyS3.
[  112.912522][ T7558] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1284'.
[  112.974635][ T7558] Falling back ldisc for ttyS3.
[  113.192809][ T7569] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  113.205418][ T7575] loop4: detected capacity change from 0 to 164
[  113.226671][ T7575] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  113.237706][ T7569] SELinux: failed to load policy
[  113.265509][ T7583] tipc: Failed to remove unknown binding: 66,1,1/0:83070520/83070522
[  113.303542][ T7592] FAULT_INJECTION: forcing a failure.
[  113.303542][ T7592] name failslab, interval 1, probability 0, space 0, times 0
[  113.317283][ T7592] CPU: 0 UID: 0 PID: 7592 Comm: syz.2.1296 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  113.317320][ T7592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.317334][ T7592] Call Trace:
[  113.317352][ T7592]  <TASK>
[  113.317360][ T7592]  __dump_stack+0x1d/0x30
[  113.317398][ T7592]  dump_stack_lvl+0xe8/0x140
[  113.317492][ T7592]  dump_stack+0x15/0x1b
[  113.317510][ T7592]  should_fail_ex+0x265/0x280
[  113.317611][ T7592]  should_failslab+0x8c/0xb0
[  113.317640][ T7592]  __kvmalloc_node_noprof+0x123/0x4e0
[  113.317676][ T7592]  ? bpf_test_run_xdp_live+0xed/0xfe0
[  113.317708][ T7592]  bpf_test_run_xdp_live+0xed/0xfe0
[  113.317798][ T7592]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  113.317860][ T7592]  ? cpus_read_unlock+0x6e/0xc0
[  113.317883][ T7592]  ? __static_call_update+0x37c/0x3b0
[  113.318010][ T7592]  ? 0xffffffffa0205240
[  113.318027][ T7592]  ? synchronize_rcu+0x45/0x320
[  113.318060][ T7592]  ? 0xffffffffa0205240
[  113.318076][ T7592]  ? 0xffffffffa0205240
[  113.318091][ T7592]  ? bpf_dispatcher_change_prog+0x6ec/0x7f0
[  113.318155][ T7592]  ? 0xffffffffa0203090
[  113.318207][ T7592]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  113.318237][ T7592]  bpf_prog_test_run_xdp+0x4f5/0x910
[  113.318256][ T7592]  ? __rcu_read_unlock+0x4f/0x70
[  113.318279][ T7592]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  113.318296][ T7592]  bpf_prog_test_run+0x227/0x390
[  113.318384][ T7592]  __sys_bpf+0x4b9/0x7b0
[  113.318413][ T7592]  __x64_sys_bpf+0x41/0x50
[  113.318494][ T7592]  x64_sys_call+0x2aea/0x2ff0
[  113.318518][ T7592]  do_syscall_64+0xd2/0x200
[  113.318615][ T7592]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  113.318641][ T7592]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  113.318671][ T7592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.318697][ T7592] RIP: 0033:0x7f3ad836ebe9
[  113.318716][ T7592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.318736][ T7592] RSP: 002b:00007f3ad6dd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  113.318824][ T7592] RAX: ffffffffffffffda RBX: 00007f3ad8595fa0 RCX: 00007f3ad836ebe9
[  113.318839][ T7592] RDX: 0000000000000050 RSI: 0000200000000300 RDI: 000000000000000a
[  113.318853][ T7592] RBP: 00007f3ad6dd7090 R08: 0000000000000000 R09: 0000000000000000
[  113.318865][ T7592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.318876][ T7592] R13: 00007f3ad8596038 R14: 00007f3ad8595fa0 R15: 00007ffeecace358
[  113.318893][ T7592]  </TASK>
[  113.581734][ T7600] tipc: Failed to remove unknown binding: 66,1,1/0:83070520/83070522
[  113.590186][ T7600] tipc: Failed to remove unknown binding: 66,1,1/0:83070520/83070522
[  113.642452][   T10] hid_parser_main: 158 callbacks suppressed
[  113.642476][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.656172][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.664415][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.673961][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.682277][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.689948][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.698247][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.705806][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.713372][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.721324][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  113.733873][   T10] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  113.759235][ T7629] fido_id[7629]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  113.929428][ T7632] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  113.929428][ T7632]    program syz.1.1303 not setting count and/or reply_len properly
[  114.016367][ T7647] netlink: 'syz.3.1308': attribute type 27 has an invalid length.
[  114.511180][ T7668] loop3: detected capacity change from 0 to 512
[  114.517867][   T29] kauditd_printk_skb: 726 callbacks suppressed
[  114.517885][   T29] audit: type=1326 audit(1755090739.242:3710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.548878][   T29] audit: type=1326 audit(1755090739.242:3711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.590185][   T29] audit: type=1326 audit(1755090739.252:3712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.592056][   T10] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  114.614933][   T29] audit: type=1326 audit(1755090739.252:3713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.614971][   T29] audit: type=1326 audit(1755090739.252:3714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.615000][   T29] audit: type=1326 audit(1755090739.252:3715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.615036][   T29] audit: type=1326 audit(1755090739.252:3716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.615066][   T29] audit: type=1326 audit(1755090739.252:3717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.615094][   T29] audit: type=1326 audit(1755090739.252:3718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.615180][   T29] audit: type=1326 audit(1755090739.252:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7665 comm="syz.4.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645f93ebe9 code=0x7ffc0000
[  114.704556][ T7668] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  114.704556][ T7668]    program syz.3.1317 not setting count and/or reply_len properly
[  114.728441][ T7677] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1319'.
[  114.758637][ T7678] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1318'.
[  114.884064][ T7671] Falling back ldisc for ttyS3.
[  114.909189][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1318'.
[  114.939030][ T7686] tipc: Failed to remove unknown binding: 66,1,1/0:2177085036/2177085038
[  115.000118][ T7701] tipc: Failed to remove unknown binding: 66,1,1/0:2177085036/2177085038
[  115.008922][ T7701] tipc: Failed to remove unknown binding: 66,1,1/0:2177085036/2177085038
[  115.406871][ T7713] loop3: detected capacity change from 0 to 512
[  115.624088][ T7714] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  115.624088][ T7714]    program syz.3.1329 not setting count and/or reply_len properly
[  115.856096][ T7726] loop4: detected capacity change from 0 to 128
[  115.930289][ T7735] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1334'.
[  116.022711][ T7740] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1340'.
[  116.032942][ T7740] syz_tun: entered allmulticast mode
[  116.042043][ T7739] syz_tun: left allmulticast mode
[  116.047856][ T7735] Falling back ldisc for ttyS3.
[  116.210343][ T7746] lo speed is unknown, defaulting to 1000
[  116.564166][ T7760] netlink: 'syz.0.1341': attribute type 27 has an invalid length.
[  116.584657][   T10] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  116.650919][ T7768] fido_id[7768]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  116.791965][ T7782] FAULT_INJECTION: forcing a failure.
[  116.791965][ T7782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.805626][ T7782] CPU: 1 UID: 0 PID: 7782 Comm: syz.4.1349 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  116.805658][ T7782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  116.805670][ T7782] Call Trace:
[  116.805677][ T7782]  <TASK>
[  116.805685][ T7782]  __dump_stack+0x1d/0x30
[  116.805723][ T7782]  dump_stack_lvl+0xe8/0x140
[  116.805742][ T7782]  dump_stack+0x15/0x1b
[  116.805757][ T7782]  should_fail_ex+0x265/0x280
[  116.805833][ T7782]  should_fail+0xb/0x20
[  116.805848][ T7782]  should_fail_usercopy+0x1a/0x20
[  116.805868][ T7782]  _copy_from_user+0x1c/0xb0
[  116.805893][ T7782]  __sys_bpf+0x178/0x7b0
[  116.805930][ T7782]  __x64_sys_bpf+0x41/0x50
[  116.805951][ T7782]  x64_sys_call+0x2aea/0x2ff0
[  116.805970][ T7782]  do_syscall_64+0xd2/0x200
[  116.806030][ T7782]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  116.806053][ T7782]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  116.806074][ T7782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.806094][ T7782] RIP: 0033:0x7f645f93ebe9
[  116.806177][ T7782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.806194][ T7782] RSP: 002b:00007f645e39f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  116.806213][ T7782] RAX: ffffffffffffffda RBX: 00007f645fb65fa0 RCX: 00007f645f93ebe9
[  116.806225][ T7782] RDX: 0000000000000020 RSI: 0000200000000540 RDI: 0000000000000002
[  116.806237][ T7782] RBP: 00007f645e39f090 R08: 0000000000000000 R09: 0000000000000000
[  116.806248][ T7782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.806259][ T7782] R13: 00007f645fb66038 R14: 00007f645fb65fa0 R15: 00007ffd0c10b2f8
[  116.806287][ T7782]  </TASK>
[  117.061173][ T7806] netlink: 'syz.4.1356': attribute type 27 has an invalid length.
[  117.071825][ T7807] tipc: Failed to remove unknown binding: 66,1,1/0:2833827035/2833827037
[  117.134076][ T7816] tipc: Failed to remove unknown binding: 66,1,1/0:2833827035/2833827037
[  117.142861][ T7816] tipc: Failed to remove unknown binding: 66,1,1/0:2833827035/2833827037
[  117.178140][ T7821] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7821 comm=syz.3.1360
[  117.226920][ T7821] netlink: 'syz.3.1360': attribute type 1 has an invalid length.
[  117.368021][ T7832] bond3: (slave bridge1): making interface the new active one
[  117.403178][ T7839] netlink: 'syz.1.1368': attribute type 27 has an invalid length.
[  117.413537][ T7832] bond3: (slave bridge1): Enslaving as an active interface with an up link
[  117.585911][ T7853] loop3: detected capacity change from 0 to 512
[  117.753995][ T7861] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1378'.
[  117.810823][ T7864] FAULT_INJECTION: forcing a failure.
[  117.810823][ T7864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.824328][ T7864] CPU: 0 UID: 0 PID: 7864 Comm: syz.1.1380 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  117.824362][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.824374][ T7864] Call Trace:
[  117.824380][ T7864]  <TASK>
[  117.824397][ T7864]  __dump_stack+0x1d/0x30
[  117.824476][ T7864]  dump_stack_lvl+0xe8/0x140
[  117.824494][ T7864]  dump_stack+0x15/0x1b
[  117.824510][ T7864]  should_fail_ex+0x265/0x280
[  117.824538][ T7864]  should_fail+0xb/0x20
[  117.824560][ T7864]  should_fail_usercopy+0x1a/0x20
[  117.824586][ T7864]  _copy_to_user+0x20/0xa0
[  117.824612][ T7864]  put_itimerspec64+0xcd/0x110
[  117.824635][ T7864]  __x64_sys_timer_settime+0x11a/0x160
[  117.824670][ T7864]  x64_sys_call+0x17f0/0x2ff0
[  117.824693][ T7864]  do_syscall_64+0xd2/0x200
[  117.824782][ T7864]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.824853][ T7864]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.824942][ T7864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.824965][ T7864] RIP: 0033:0x7fb1f5b9ebe9
[  117.824982][ T7864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.825002][ T7864] RSP: 002b:00007fb1f4607038 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[  117.825026][ T7864] RAX: ffffffffffffffda RBX: 00007fb1f5dc5fa0 RCX: 00007fb1f5b9ebe9
[  117.825117][ T7864] RDX: 0000200000000940 RSI: 0000000000000001 RDI: 0000000000000000
[  117.825142][ T7864] RBP: 00007fb1f4607090 R08: 0000000000000000 R09: 0000000000000000
[  117.825155][ T7864] R10: 0000200000000a00 R11: 0000000000000246 R12: 0000000000000001
[  117.825170][ T7864] R13: 00007fb1f5dc6038 R14: 00007fb1f5dc5fa0 R15: 00007fff80c30528
[  117.825191][ T7864]  </TASK>
[  117.854269][ T7858] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  117.854269][ T7858]    program syz.3.1376 not setting count and/or reply_len properly
[  117.880537][ T7868] netlink: 'syz.1.1381': attribute type 27 has an invalid length.
[  118.066258][ T7875] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7875 comm=syz.0.1382
[  118.079344][ T7875] netlink: 'syz.0.1382': attribute type 1 has an invalid length.
[  118.106104][ T7875] bond4: (slave bridge4): making interface the new active one
[  118.114339][ T7875] bond4: (slave bridge4): Enslaving as an active interface with an up link
[  118.202406][ T7891] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1391'.
[  118.279749][ T7897] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1393'.
[  118.292282][ T7897] bond0: (slave bond_slave_0): Releasing backup interface
[  118.300288][ T7891] Falling back ldisc for ttyS3.
[  118.315199][ T7897] bond0: (slave bond_slave_1): Releasing backup interface
[  118.337051][ T7897] team0: Port device team_slave_0 removed
[  118.356247][ T7897] team0: Port device team_slave_1 removed
[  118.377039][ T7904] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  118.377039][ T7904]    program syz.1.1388 not setting count and/or reply_len properly
[  118.400754][ T7897] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.414312][ T7897] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.454817][ T7897] bond2: (slave bridge2): Releasing active interface
[  118.480971][ T7897] bond4: (slave bridge4): Releasing active interface
[  118.555589][ T7897] team0: Device veth1_vlan failed to register rx_handler
[  118.583546][ T7935] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7935 comm=syz.2.1400
[  118.619468][ T7935] netlink: 'syz.2.1400': attribute type 1 has an invalid length.
[  118.669185][ T7935] bond4: (slave bridge3): making interface the new active one
[  118.677328][ T7935] bond4: (slave bridge3): Enslaving as an active interface with an up link
[  118.838791][ T7956] netlink: 'syz.4.1398': attribute type 27 has an invalid length.
[  118.884369][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.893881][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.903352][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.923644][ T7965] tipc: Failed to remove unknown binding: 66,1,1/0:1597157434/1597157436
[  118.933332][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.942427][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.951666][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  118.987674][ T7963] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1409'.
[  119.023985][ T7971] tipc: Failed to remove unknown binding: 66,1,1/0:1597157434/1597157436
[  119.033025][ T7971] tipc: Failed to remove unknown binding: 66,1,1/0:1597157434/1597157436
[  119.103341][ T7968] lo speed is unknown, defaulting to 1000
[  119.150394][ T7980] SELinux: failed to load policy
[  119.185766][ T7985] loop3: detected capacity change from 0 to 1024
[  119.194548][ T7985] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  119.218050][ T7985] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.382185][ T7997] netlink: 'syz.4.1418': attribute type 27 has an invalid length.
[  119.530798][ T8000] lo speed is unknown, defaulting to 1000
[  119.657801][ T8000] lo speed is unknown, defaulting to 1000
[  119.732436][   T29] kauditd_printk_skb: 319 callbacks suppressed
[  119.732458][   T29] audit: type=1400 audit(1755090744.462:4039): avc:  denied  { write } for  pid=7984 comm="syz.3.1416" lport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  119.760322][   T29] audit: type=1400 audit(1755090744.462:4040): avc:  denied  { name_connect } for  pid=7984 comm="syz.3.1416" dest=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  119.836267][   T29] audit: type=1400 audit(1755090744.522:4041): avc:  granted  { setsecparam } for  pid=7996 comm="syz.4.1418" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  119.877859][   T29] audit: type=1326 audit(1755090744.592:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  119.879668][   T23] hid_parser_main: 74 callbacks suppressed
[  119.879688][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  119.902766][   T29] audit: type=1326 audit(1755090744.612:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  119.907971][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  119.907999][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  119.915724][ T8004] loop4: detected capacity change from 0 to 512
[  119.940360][   T29] audit: type=1326 audit(1755090744.612:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  119.950749][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  119.954957][   T29] audit: type=1326 audit(1755090744.612:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  119.961296][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  119.985510][   T29] audit: type=1326 audit(1755090744.612:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  119.992551][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  120.017331][   T29] audit: type=1326 audit(1755090744.612:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  120.024241][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  120.048830][   T29] audit: type=1326 audit(1755090744.612:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8002 comm="syz.1.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  120.055797][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  120.119726][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  120.127503][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  120.188208][   T23] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  120.210578][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.236814][ T8014] fido_id[8014]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  120.254026][ T8004] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  120.254026][ T8004]    program syz.4.1420 not setting count and/or reply_len properly
[  120.394413][ T8028] loop3: detected capacity change from 0 to 736
[  120.470068][ T8028] rock: directory entry would overflow storage
[  120.477173][ T8028] rock: sig=0x3b10, size=4, remaining=3
[  120.496013][ T8028] syz_tun: entered allmulticast mode
[  120.504106][ T8027] syz_tun: left allmulticast mode
[  120.685626][ T8031] vlan2: entered allmulticast mode
[  121.042009][ T8045] bridge: RTM_NEWNEIGH with invalid ether address
[  121.060716][ T8043] SELinux: failed to load policy
[  121.092646][ T8048] tipc: Started in network mode
[  121.098309][ T8048] tipc: Node identity ac14140f, cluster identity 4711
[  121.105510][ T8048] tipc: New replicast peer: 255.255.255.83
[  121.111452][ T8048] tipc: Enabled bearer <udp:£>, priority 10
[  121.182971][ T8050] vlan2: entered allmulticast mode
[  121.534345][ T8061] Falling back ldisc for ttyS3.
[  121.587177][ T8064] syz_tun: entered allmulticast mode
[  121.595659][ T8063] syz_tun: left allmulticast mode
[  121.900233][ T8094] tipc: Failed to remove unknown binding: 66,1,1/0:2752122191/2752122193
[  121.961248][ T8098] tipc: Failed to remove unknown binding: 66,1,1/0:2752122191/2752122193
[  121.971089][ T8098] tipc: Failed to remove unknown binding: 66,1,1/0:2752122191/2752122193
[  121.988375][ T8097] loop3: detected capacity change from 0 to 736
[  122.013927][ T8097] rock: directory entry would overflow storage
[  122.020444][ T8097] rock: sig=0x3b10, size=4, remaining=3
[  122.027456][ T8095] Falling back ldisc for ttyS3.
[  122.041843][ T8097] syz_tun: entered allmulticast mode
[  122.050436][ T8096] syz_tun: left allmulticast mode
[  122.144433][ T8107] SELinux: failed to load policy
[  122.197563][ T8118] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  122.216281][ T8118] SELinux: failed to load policy
[  122.231593][   T10] tipc: Node number set to 2886997007
[  122.425680][ T8159] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8159 comm=syz.1.1469
[  122.442283][ T8159] netlink: 'syz.1.1469': attribute type 1 has an invalid length.
[  122.453899][ T8157] Falling back ldisc for ttyS3.
[  122.457128][ T8161] SELinux: failed to load policy
[  122.470036][ T8159] bond3: (slave bridge3): making interface the new active one
[  122.479242][ T8159] bond3: (slave bridge3): Enslaving as an active interface with an up link
[  122.766295][   T36] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  122.840421][ T8188] fido_id[8188]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  122.889060][ T8192] SELinux: failed to load policy
[  122.894672][ T8193] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  122.905541][ T8193] SELinux: failed to load policy
[  122.908541][ T8187] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  122.908541][ T8187]    program syz.0.1481 not setting count and/or reply_len properly
[  122.984753][ T8200] loop4: detected capacity change from 0 to 512
[  123.017174][ T8200] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.030871][ T8200] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.055136][ T8205] __nla_validate_parse: 9 callbacks suppressed
[  123.055157][ T8205] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1484'.
[  123.091675][ T8210] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1489'.
[  123.166686][ T8213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1489'.
[  123.183533][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.314559][ T8202] Falling back ldisc for ttyS3.
[  123.452440][ T8250] SELinux: failed to load policy
[  123.492500][ T8253] vlan2: entered allmulticast mode
[  123.553460][ T8256] netlink: 'syz.3.1496': attribute type 27 has an invalid length.
[  123.925892][ T8273] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1503'.
[  124.017375][   T36] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  124.028604][ T8288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1503'.
[  124.093187][ T8291] fido_id[8291]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  124.200684][ T8296] vlan2: entered allmulticast mode
[  124.315870][ T8300] loop3: detected capacity change from 0 to 512
[  124.385414][ T8303] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1509'.
[  124.454053][ T8303] Falling back ldisc for ttyS3.
[  124.552790][ T8306] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  124.552790][ T8306]    program syz.3.1508 not setting count and/or reply_len properly
[  124.749559][ T8328] tipc: Failed to remove unknown binding: 66,1,1/0:3768046721/3768046723
[  124.814141][ T8330] tipc: Failed to remove unknown binding: 66,1,1/0:3768046721/3768046723
[  124.822822][ T8330] tipc: Failed to remove unknown binding: 66,1,1/0:3768046721/3768046723
[  124.882321][   T29] kauditd_printk_skb: 453 callbacks suppressed
[  124.882341][   T29] audit: type=1400 audit(1755090749.572:4502): avc:  denied  { write } for  pid=8326 comm="syz.0.1518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  125.033384][   T29] audit: type=1400 audit(1755090749.662:4503): avc:  denied  { ioctl } for  pid=8324 comm="syz.2.1517" path="socket:[20580]" dev="sockfs" ino=20580 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  125.058339][   T29] audit: type=1400 audit(1755090749.672:4504): avc:  denied  { write } for  pid=8324 comm="syz.2.1517" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  125.128681][ T8338] serio: Serial port ptm0
[  125.284788][   T29] audit: type=1400 audit(1755090749.822:4505): avc:  denied  { create } for  pid=8336 comm="syz.4.1521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  125.304792][   T29] audit: type=1400 audit(1755090749.842:4506): avc:  denied  { bind } for  pid=8336 comm="syz.4.1521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  125.324475][   T29] audit: type=1400 audit(1755090749.862:4507): avc:  denied  { create } for  pid=8336 comm="syz.4.1521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  125.344524][   T29] audit: type=1400 audit(1755090749.862:4508): avc:  denied  { read } for  pid=8336 comm="syz.4.1521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  125.364567][   T29] audit: type=1400 audit(1755090750.022:4509): avc:  denied  { write } for  pid=8336 comm="syz.4.1521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  125.387283][ T8340] SELinux: failed to load policy
[  125.627017][ T8362] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8362 comm=syz.2.1531
[  125.641568][ T8362] netlink: 'syz.2.1531': attribute type 1 has an invalid length.
[  125.663110][ T8364] loop3: detected capacity change from 0 to 512
[  125.709267][ T8366] bond5: (slave bridge4): making interface the new active one
[  125.718955][ T8366] bond5: (slave bridge4): Enslaving as an active interface with an up link
[  125.764006][   T29] audit: type=1400 audit(1755090750.502:4510): avc:  denied  { create } for  pid=8369 comm="syz.2.1533" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  125.786554][   T29] audit: type=1400 audit(1755090750.502:4511): avc:  denied  { mounton } for  pid=8369 comm="syz.2.1533" path="/331/file0" dev="tmpfs" ino=1774 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  125.871243][ T8372] vlan2: entered allmulticast mode
[  125.937457][ T8373] sg_write: data in/out 1928462476/117 bytes for SCSI command 0xf4-- guessing data in;
[  125.937457][ T8373]    program syz.3.1532 not setting count and/or reply_len properly
[  126.066710][ T8379] loop4: detected capacity change from 0 to 512
[  126.191505][ T8383] SELinux: failed to load policy
[  126.217106][ T8379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.247269][ T8379] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.335419][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.354324][ T8392] syz_tun: entered allmulticast mode
[  126.362894][ T8391] syz_tun: left allmulticast mode
[  126.551815][ T8408] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1545'.
[  126.616422][ T8411] loop4: detected capacity change from 0 to 512
[  126.623689][ T8411] EXT4-fs: Ignoring removed mblk_io_submit option
[  126.635701][ T8411] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  126.704384][ T8405] bridge: RTM_NEWNEIGH with invalid ether address
[  126.751408][ T8411] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  126.760050][ T8411] EXT4-fs (loop4): orphan cleanup on readonly fs
[  126.767855][ T8411] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.1540: Invalid block bitmap block 0 in block_group 0
[  126.783230][ T8411] EXT4-fs (loop4): Remounting filesystem read-only
[  126.790376][ T8411] EXT4-fs (loop4): 1 orphan inode deleted
[  126.863971][ T8408] Falling back ldisc for ttyS3.
[  126.979897][ T8411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  127.144783][ T8434] syz_tun: entered allmulticast mode
[  127.153186][ T8433] syz_tun: left allmulticast mode
[  127.166829][ T8428] vlan3: entered allmulticast mode
[  127.260402][ T8447] SELinux: failed to load policy
[  127.294047][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.360395][ T8464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8464 comm=syz.0.1561
[  127.389215][ T8464] netlink: 'syz.0.1561': attribute type 1 has an invalid length.
[  127.437779][ T8464] bond5: (slave bridge5): making interface the new active one
[  127.447459][ T8464] bond5: (slave bridge5): Enslaving as an active interface with an up link
[  127.460520][ T8478] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1562'.
[  127.506072][ T8483] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1564'.
[  127.515601][ T8473] Falling back ldisc for ttyS3.
[  127.524068][ T8483] syz_tun: entered allmulticast mode
[  127.536819][ T8482] syz_tun: left allmulticast mode
[  127.602539][ T8487] SELinux: failed to load policy
[  127.748104][ T8506] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1575'.
[  127.757026][ T8502] bridge: RTM_NEWNEIGH with invalid ether address
[  127.820507][ T8507] vlan2: entered allmulticast mode
[  128.043989][ T8506] Falling back ldisc for ttyS3.
[  128.064707][ T8511] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1577'.
[  128.082409][ T8513] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8513 comm=syz.3.1578
[  128.126884][ T8511] syz_tun: entered allmulticast mode
[  128.159370][ T8515] netlink: 'syz.3.1578': attribute type 1 has an invalid length.
[  128.169080][ T8510] syz_tun: left allmulticast mode
[  128.215419][   T23] hid_parser_main: 74 callbacks suppressed
[  128.215443][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.226730][ T8519] serio: Serial port ptm0
[  128.228966][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.239622][ T8513] bond4: (slave bridge2): making interface the new active one
[  128.240774][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.256066][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.258541][ T8513] bond4: (slave bridge2): Enslaving as an active interface with an up link
[  128.263897][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.263926][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.263950][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.295998][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.303537][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.311050][   T23] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  128.319853][   T23] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  128.353894][ T8527] fido_id[8527]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  128.511653][ T8542] loop3: detected capacity change from 0 to 736
[  128.536028][ T8542] rock: directory entry would overflow storage
[  128.542362][ T8542] rock: sig=0x3b10, size=4, remaining=3
[  128.560158][ T8542] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1590'.
[  128.570171][ T8542] syz_tun: entered allmulticast mode
[  128.578746][ T8541] syz_tun: left allmulticast mode
[  128.671208][ T8560] tipc: Failed to remove unknown binding: 66,1,1/0:1971741561/1971741563
[  128.696827][ T8561] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1596'.
[  128.732116][ T8563] tipc: Failed to remove unknown binding: 66,1,1/0:1971741561/1971741563
[  128.740979][ T8563] tipc: Failed to remove unknown binding: 66,1,1/0:1971741561/1971741563
[  128.750883][ T8558] Falling back ldisc for ttyS3.
[  128.853458][ T8582] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8582 comm=syz.0.1598
[  128.867957][ T8582] netlink: 'syz.0.1598': attribute type 1 has an invalid length.
[  128.894348][ T8582] bond6: (slave bridge6): making interface the new active one
[  128.902568][ T8582] bond6: (slave bridge6): Enslaving as an active interface with an up link
[  129.082246][ T8609] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1605'.
[  129.092544][ T8609] syz_tun: entered allmulticast mode
[  129.100139][ T8608] syz_tun: left allmulticast mode
[  129.122313][ T8611] SELinux: failed to load policy
[  129.147482][ T8617] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8617 comm=syz.2.1609
[  129.161742][ T8617] netlink: 'syz.2.1609': attribute type 1 has an invalid length.
[  129.189243][ T8617] bond6: (slave bridge5): making interface the new active one
[  129.197599][ T8617] bond6: (slave bridge5): Enslaving as an active interface with an up link
[  129.336665][ T8633] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1617'.
[  129.352920][ T8633] syz_tun: entered allmulticast mode
[  129.361401][ T8636] loop4: detected capacity change from 0 to 512
[  129.362639][ T8632] syz_tun: left allmulticast mode
[  129.399207][ T8636] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.414109][ T8636] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.551501][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.705526][ T8662] lo speed is unknown, defaulting to 1000
[  129.818574][ T8666] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1629'.
[  129.849866][ T8665] SELinux: failed to load policy
[  129.873941][ T8666] Falling back ldisc for ttyS3.
[  129.982137][ T8668] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1631'.
[  130.003877][ T8668] syz_tun: entered allmulticast mode
[  130.014343][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  130.014359][   T29] audit: type=1400 audit(1755090754.752:4731): avc:  granted  { setsecparam } for  pid=8667 comm="syz.1.1631" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  130.042334][ T8667] syz_tun: left allmulticast mode
[  130.066832][ T8670] SELinux: failed to load policy
[  130.129709][   T29] audit: type=1326 audit(1755090754.862:4732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8677 comm="syz.1.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  130.172829][   T29] audit: type=1326 audit(1755090754.892:4733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8677 comm="syz.1.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  130.197565][   T29] audit: type=1326 audit(1755090754.892:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8677 comm="syz.1.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  130.356587][ T8684] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1638'.
[  130.360299][ T8692] bridge: RTM_NEWNEIGH with invalid ether address
[  130.386742][   T29] audit: type=1400 audit(1755090755.102:4735): avc:  granted  { setsecparam } for  pid=8689 comm="syz.4.1641" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  130.534391][ T8699] lo speed is unknown, defaulting to 1000
[  130.715873][ T8694] loop4: detected capacity change from 0 to 736
[  130.860918][   T29] audit: type=1326 audit(1755090755.182:4736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8697 comm="syz.0.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[  130.885010][   T29] audit: type=1326 audit(1755090755.182:4737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8697 comm="syz.0.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[  130.906376][ T8694] rock: directory entry would overflow storage
[  130.908728][   T29] audit: type=1326 audit(1755090755.182:4738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8697 comm="syz.0.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[  130.915538][ T8694] rock: sig=0x3b10, size=4, remaining=3
[  130.938536][   T29] audit: type=1400 audit(1755090755.442:4739): avc:  denied  { tracepoint } for  pid=8697 comm="syz.0.1644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  130.953454][ T8694] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1642'.
[  130.964425][   T29] audit: type=1326 audit(1755090755.442:4740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8697 comm="syz.0.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f940f62ebe9 code=0x7ffc0000
[  131.002124][ T8694] syz_tun: entered allmulticast mode
[  131.018467][ T8693] syz_tun: left allmulticast mode
[  131.128109][ T8708] SELinux: failed to load policy
[  131.181328][ T8721] bridge: RTM_NEWNEIGH with invalid ether address
[  131.212917][ T8727] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1656'.
[  131.273548][ T8733] loop4: detected capacity change from 0 to 736
[  131.291474][ T8733] rock: directory entry would overflow storage
[  131.298125][ T8733] rock: sig=0x3b10, size=4, remaining=3
[  131.311572][ T8733] syz_tun: entered allmulticast mode
[  131.349446][ T8732] syz_tun: left allmulticast mode
[  131.358901][ T8725] Falling back ldisc for ttyS3.
[  131.442527][ T8744] SELinux: failed to load policy
[  131.507560][ T8750] SELinux: failed to load policy
[  131.577279][ T8754] bridge: RTM_NEWNEIGH with invalid ether address
[  131.711173][ T8758] loop4: detected capacity change from 0 to 512
[  131.773257][ T8752] SELinux: failed to load policy
[  131.799919][ T8756] serio: Serial port ptm0
[  131.863322][ T8758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.909810][ T8758] ext4 filesystem being mounted at /263/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.935517][ T8768] syz_tun: entered allmulticast mode
[  131.950389][ T8767] syz_tun: left allmulticast mode
[  131.958732][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.996774][ T8777] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=8777 comm=syz.1.1677
[  132.027833][ T8775] SELinux: failed to load policy
[  132.089803][ T8783] SELinux: failed to load policy
[  132.202356][ T8790] loop3: detected capacity change from 0 to 1024
[  132.212081][ T8790] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  132.223821][ T8790] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  132.241046][ T8790] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #32: comm syz.3.1681: iget: special inode unallocated
[  132.255283][ T8790] EXT4-fs (loop3): Remounting filesystem read-only
[  132.261955][ T8790] EXT4-fs (loop3): no journal found
[  132.268082][ T8790] EXT4-fs (loop3): can't get journal size
[  132.276143][ T8790] EXT4-fs (loop3): filesystem is read-only
[  132.283200][ T8790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  132.297338][ T8790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.392284][ T8805] loop3: detected capacity change from 0 to 512
[  132.408107][ T8805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.421945][ T8805] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.483025][ T8810] syz_tun: entered allmulticast mode
[  132.492040][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.505715][ T8809] syz_tun: left allmulticast mode
[  132.552706][ T8812] SELinux: failed to load policy
[  132.564225][ T8817] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8817 comm=syz.0.1690
[  132.566090][ T8818] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  132.578305][ T8817] netlink: 'syz.0.1690': attribute type 1 has an invalid length.
[  132.588055][ T8818] SELinux: failed to load policy
[  132.645480][ T8817] bond7: (slave bridge7): making interface the new active one
[  132.655456][ T8817] bond7: (slave bridge7): Enslaving as an active interface with an up link
[  132.801536][ T8839] loop3: detected capacity change from 0 to 512
[  132.957940][ T8839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.065908][ T8839] ext4 filesystem being mounted at /323/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.394135][ T8853] loop4: detected capacity change from 0 to 512
[  133.401157][ T8853] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.415932][ T8853] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  133.458872][ T8850] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  133.585784][ T8853] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  133.594343][ T8853] EXT4-fs (loop4): orphan cleanup on readonly fs
[  133.633586][ T8850] SELinux: failed to load policy
[  133.639521][ T8859] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  133.654196][ T8853] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.1701: Invalid block bitmap block 0 in block_group 0
[  133.669135][ T8853] EXT4-fs (loop4): Remounting filesystem read-only
[  133.676008][ T8853] EXT4-fs (loop4): 1 orphan inode deleted
[  133.731118][ T8853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.751998][ T8859] SELinux: failed to load policy
[  133.776709][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.803247][ T8868] usb usb7: usbfs: process 8868 (syz.1.1708) did not claim interface 0 before use
[  133.939766][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.965183][ T8883] serio: Serial port ptm0
[  134.071477][ T8884] syzkaller1: entered promiscuous mode
[  134.077297][ T8884] syzkaller1: entered allmulticast mode
[  134.102810][   T10] hid_parser_main: 18 callbacks suppressed
[  134.102834][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.117460][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.125047][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.132556][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.140239][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.148561][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.156380][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.163937][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x4
[  134.171835][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.180045][   T10] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  134.333044][ T8896] __nla_validate_parse: 7 callbacks suppressed
[  134.333068][ T8896] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1717'.
[  134.404564][ T8896] Falling back ldisc for ttyS3.
[  134.756985][ T8898] loop3: detected capacity change from 0 to 128
[  134.860024][ T8900] netlink: 'syz.1.1719': attribute type 27 has an invalid length.
[  134.871373][ T8900] syz_tun: entered allmulticast mode
[  134.879493][ T8900] syz_tun: left allmulticast mode
[  134.947774][ T8906] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1718'.
[  135.035828][ T8906] Falling back ldisc for ttyS3.
[  135.076037][   T10] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  135.112863][ T8916] fido_id[8916]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  135.157409][   T29] kauditd_printk_skb: 242 callbacks suppressed
[  135.157503][   T29] audit: type=1400 audit(1755090759.892:4980): avc:  denied  { search } for  pid=8917 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  135.187368][   T29] audit: type=1400 audit(1755090759.892:4981): avc:  denied  { search } for  pid=8917 comm="dhcpcd-run-hook" name="dhcpcd" dev="tmpfs" ino=477 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  135.210702][   T29] audit: type=1400 audit(1755090759.892:4982): avc:  denied  { search } for  pid=8917 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=481 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  135.234757][   T29] audit: type=1400 audit(1755090759.892:4983): avc:  denied  { search } for  pid=8917 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  135.266507][   T29] audit: type=1400 audit(1755090759.902:4984): avc:  denied  { create } for  pid=8920 comm="syz.0.1724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  135.287856][   T29] audit: type=1400 audit(1755090759.902:4985): avc:  denied  { write } for  pid=8920 comm="syz.0.1724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  135.308884][   T29] audit: type=1400 audit(1755090759.902:4986): avc:  denied  { read } for  pid=8920 comm="syz.0.1724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  135.329909][   T29] audit: type=1400 audit(1755090759.902:4987): avc:  granted  { setsecparam } for  pid=8918 comm="syz.2.1726" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  135.350475][   T29] audit: type=1400 audit(1755090759.902:4988): avc:  denied  { prog_load } for  pid=8918 comm="syz.2.1726" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  135.370432][   T29] audit: type=1400 audit(1755090759.902:4989): avc:  denied  { bpf } for  pid=8918 comm="syz.2.1726" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  135.516530][ T8952] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  135.520470][ T8949] loop3: detected capacity change from 0 to 736
[  135.537284][ T8930] loop4: detected capacity change from 0 to 1024
[  135.546794][ T8930] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  135.567293][ T8930] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  135.587575][ T8949] rock: directory entry would overflow storage
[  135.592482][ T8930] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: inode #32: comm syz.4.1725: iget: special inode unallocated
[  135.594052][ T8949] rock: sig=0x3b10, size=4, remaining=3
[  135.623923][ T8930] EXT4-fs (loop4): Remounting filesystem read-only
[  135.628249][ T8949] netlink: 'syz.3.1730': attribute type 27 has an invalid length.
[  135.630895][ T8930] EXT4-fs (loop4): no journal found
[  135.643278][ T8949] syz_tun: entered allmulticast mode
[  135.645371][ T8930] EXT4-fs (loop4): can't get journal size
[  135.653511][ T8949] syz_tun: left allmulticast mode
[  135.674412][ T8930] EXT4-fs (loop4): filesystem is read-only
[  135.680956][ T8930] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  135.717934][ T8930] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.798055][ T8968] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1735'.
[  135.865538][ T8968] Falling back ldisc for ttyS3.
[  136.061142][ T8979] loop3: detected capacity change from 0 to 512
[  136.077006][ T8975] loop4: detected capacity change from 0 to 512
[  136.086593][ T8975] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  136.103028][ T8979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.118382][ T8979] ext4 filesystem being mounted at /330/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.132964][ T8975] EXT4-fs (loop4): 1 truncate cleaned up
[  136.141775][ T8975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.274901][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.344910][ T8988] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  136.355280][ T8988] sel_write_load: 6 callbacks suppressed
[  136.355300][ T8988] SELinux: failed to load policy
[  136.391730][ T8989] netlink: 'syz.1.1742': attribute type 27 has an invalid length.
[  136.428691][ T8989] syz_tun: entered allmulticast mode
[  136.445784][ T8989] syz_tun: left allmulticast mode
[  136.453189][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.520156][ T9003] loop4: detected capacity change from 0 to 512
[  136.581524][ T9003] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.671250][ T9003] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.686945][ T9023] SELinux: failed to load policy
[  136.737786][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.751710][ T9019] vlan2: entered allmulticast mode
[  136.812768][ T9033] SELinux: failed to load policy
[  136.821318][ T9033] loop4: detected capacity change from 0 to 512
[  136.830433][ T9033] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  136.834390][ T9035] netlink: 'syz.0.1759': attribute type 27 has an invalid length.
[  136.851382][ T9035] veth1_vlan: left promiscuous mode
[  136.858421][ T9033] EXT4-fs (loop4): 1 truncate cleaned up
[  136.865359][ T9033] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.871414][ T9037] usb usb7: usbfs: process 9037 (syz.2.1760) did not claim interface 0 before use
[  136.944497][ T9042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9042 comm=syz.2.1762
[  136.958805][ T9042] netlink: 'syz.2.1762': attribute type 1 has an invalid length.
[  136.996998][ T9042] bond7: (slave bridge6): making interface the new active one
[  137.006791][ T9042] bond7: (slave bridge6): Enslaving as an active interface with an up link
[  137.045531][ T9046] FAULT_INJECTION: forcing a failure.
[  137.045531][ T9046] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.059114][ T9046] CPU: 1 UID: 0 PID: 9046 Comm: syz.2.1763 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  137.059213][ T9046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  137.059236][ T9046] Call Trace:
[  137.059241][ T9046]  <TASK>
[  137.059250][ T9046]  __dump_stack+0x1d/0x30
[  137.059278][ T9046]  dump_stack_lvl+0xe8/0x140
[  137.059297][ T9046]  dump_stack+0x15/0x1b
[  137.059315][ T9046]  should_fail_ex+0x265/0x280
[  137.059393][ T9046]  should_fail+0xb/0x20
[  137.059410][ T9046]  should_fail_usercopy+0x1a/0x20
[  137.059432][ T9046]  _copy_from_user+0x1c/0xb0
[  137.059537][ T9046]  ___sys_sendmsg+0xc1/0x1d0
[  137.059568][ T9046]  __x64_sys_sendmsg+0xd4/0x160
[  137.059592][ T9046]  x64_sys_call+0x191e/0x2ff0
[  137.059614][ T9046]  do_syscall_64+0xd2/0x200
[  137.059642][ T9046]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.059734][ T9046]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  137.059761][ T9046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.059784][ T9046] RIP: 0033:0x7f3ad836ebe9
[  137.059802][ T9046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.059863][ T9046] RSP: 002b:00007f3ad6dd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.059886][ T9046] RAX: ffffffffffffffda RBX: 00007f3ad8595fa0 RCX: 00007f3ad836ebe9
[  137.059901][ T9046] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  137.059914][ T9046] RBP: 00007f3ad6dd7090 R08: 0000000000000000 R09: 0000000000000000
[  137.059927][ T9046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.060003][ T9046] R13: 00007f3ad8596038 R14: 00007f3ad8595fa0 R15: 00007ffeecace358
[  137.060023][ T9046]  </TASK>
[  137.256136][ T9048] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  137.266548][ T9048] SELinux: failed to load policy
[  137.395740][ T9049] lo speed is unknown, defaulting to 1000
[  137.776019][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.898747][ T9068] netlink: 'syz.2.1771': attribute type 27 has an invalid length.
[  137.989307][ T9080] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1775'.
[  137.990067][ T9078] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1774'.
[  138.125069][ T9080] Falling back ldisc for ttyS3.
[  138.412595][ T9089] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  138.447717][ T9089] SELinux: failed to load policy
[  138.477148][ T9093] FAULT_INJECTION: forcing a failure.
[  138.477148][ T9093] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.490500][ T9093] CPU: 1 UID: 0 PID: 9093 Comm: syz.0.1779 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  138.490535][ T9093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  138.490581][ T9093] Call Trace:
[  138.490588][ T9093]  <TASK>
[  138.490598][ T9093]  __dump_stack+0x1d/0x30
[  138.490624][ T9093]  dump_stack_lvl+0xe8/0x140
[  138.490646][ T9093]  dump_stack+0x15/0x1b
[  138.490664][ T9093]  should_fail_ex+0x265/0x280
[  138.490689][ T9093]  should_fail+0xb/0x20
[  138.490771][ T9093]  should_fail_usercopy+0x1a/0x20
[  138.490825][ T9093]  _copy_from_iter+0xcf/0xe40
[  138.490880][ T9093]  ? obj_cgroup_charge_account+0xba/0x1a0
[  138.490913][ T9093]  ? should_fail_ex+0x30/0x280
[  138.490931][ T9093]  ? ___slab_alloc+0x11b/0x900
[  138.491031][ T9093]  copy_page_from_iter+0x178/0x2a0
[  138.491058][ T9093]  rds_message_copy_from_user+0x2a6/0x710
[  138.491142][ T9093]  ? sg_init_table+0x3e/0x50
[  138.491168][ T9093]  rds_sendmsg+0xa2b/0x14a0
[  138.491197][ T9093]  ? __pfx_rds_sendmsg+0x10/0x10
[  138.491222][ T9093]  __sock_sendmsg+0x145/0x180
[  138.491253][ T9093]  ____sys_sendmsg+0x31e/0x4e0
[  138.491313][ T9093]  ___sys_sendmsg+0x17b/0x1d0
[  138.491349][ T9093]  __x64_sys_sendmsg+0xd4/0x160
[  138.491373][ T9093]  x64_sys_call+0x191e/0x2ff0
[  138.491393][ T9093]  do_syscall_64+0xd2/0x200
[  138.491434][ T9093]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.491462][ T9093]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  138.491504][ T9093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.491527][ T9093] RIP: 0033:0x7f940f62ebe9
[  138.491546][ T9093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.491566][ T9093] RSP: 002b:00007f940e097038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.491669][ T9093] RAX: ffffffffffffffda RBX: 00007f940f855fa0 RCX: 00007f940f62ebe9
[  138.491682][ T9093] RDX: 0000000000000040 RSI: 00002000000001c0 RDI: 0000000000000005
[  138.491753][ T9093] RBP: 00007f940e097090 R08: 0000000000000000 R09: 0000000000000000
[  138.491766][ T9093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.491777][ T9093] R13: 00007f940f856038 R14: 00007f940f855fa0 R15: 00007fff4520aa98
[  138.491829][ T9093]  </TASK>
[  138.827440][ T9106] netlink: 'syz.0.1783': attribute type 27 has an invalid length.
[  138.859553][ T9110] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1787'.
[  138.909544][ T9112] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1788'.
[  139.156749][ T9117] lo speed is unknown, defaulting to 1000
[  139.330552][ T9118] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1788'.
[  139.366979][ T9116] loop3: detected capacity change from 0 to 1024
[  139.453447][ T9116] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  139.510802][ T9116] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  139.538187][ T9116] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #32: comm syz.3.1785: iget: special inode unallocated
[  139.553411][ T9116] EXT4-fs (loop3): Remounting filesystem read-only
[  139.560132][ T9116] EXT4-fs (loop3): no journal found
[  139.565490][ T9116] EXT4-fs (loop3): can't get journal size
[  139.577403][ T9122] SELinux: failed to load policy
[  139.577606][ T9116] EXT4-fs (loop3): filesystem is read-only
[  139.629109][ T9116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  139.642666][ T9116] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.855537][ T9140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1798'.
[  139.929990][ T9143] loop4: detected capacity change from 0 to 512
[  139.937100][ T9143] EXT4-fs: Ignoring removed mblk_io_submit option
[  139.964278][ T9143] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  140.004390][ T9143] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  140.012629][ T9143] EXT4-fs (loop4): orphan cleanup on readonly fs
[  140.020453][ T9143] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.1794: Invalid block bitmap block 0 in block_group 0
[  140.036299][ T9143] EXT4-fs (loop4): Remounting filesystem read-only
[  140.043357][ T9143] EXT4-fs (loop4): 1 orphan inode deleted
[  140.247509][ T9157] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  140.280625][ T9143] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.305573][ T9157] SELinux: failed to load policy
[  140.374034][ T9161] lo speed is unknown, defaulting to 1000
[  140.417204][   T29] kauditd_printk_skb: 239 callbacks suppressed
[  140.417244][   T29] audit: type=1400 audit(1755090765.152:5226): avc:  denied  { create } for  pid=9159 comm="syz.1.1803" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  140.451598][ T9160] capability: warning: `syz.1.1803' uses deprecated v2 capabilities in a way that may be insecure
[  140.475899][   T29] audit: type=1400 audit(1755090765.182:5227): avc:  denied  { compute_member } for  pid=9159 comm="syz.1.1803" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  140.497852][   T29] audit: type=1326 audit(1755090765.182:5228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.521925][   T29] audit: type=1326 audit(1755090765.182:5229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.545956][   T29] audit: type=1326 audit(1755090765.202:5230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.570696][   T29] audit: type=1326 audit(1755090765.202:5231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.595860][   T29] audit: type=1326 audit(1755090765.202:5232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb1f5b9d550 code=0x7ffc0000
[  140.620005][   T29] audit: type=1326 audit(1755090765.202:5233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb1f5b9d550 code=0x7ffc0000
[  140.644032][   T29] audit: type=1326 audit(1755090765.202:5234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.668227][   T29] audit: type=1326 audit(1755090765.202:5235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9159 comm="syz.1.1803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f5b9ebe9 code=0x7ffc0000
[  140.761015][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.801219][ T9171] loop4: detected capacity change from 0 to 512
[  140.832800][ T9169] SELinux: failed to load policy
[  140.842186][ T9171] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.865628][ T9171] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.968461][ T9187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1811'.
[  140.985430][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.032418][ T9196] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1813'.
[  141.174189][ T9189] Falling back ldisc for ttyS3.
[  141.340068][ T9203] loop3: detected capacity change from 0 to 512
[  141.347410][ T9203] EXT4-fs: Ignoring removed mblk_io_submit option
[  141.420342][ T9203] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  141.431539][ T9203] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  141.439693][ T9203] EXT4-fs (loop3): orphan cleanup on readonly fs
[  141.448060][ T9203] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1817: Invalid block bitmap block 0 in block_group 0
[  141.463198][ T9203] EXT4-fs (loop3): Remounting filesystem read-only
[  141.470149][ T9203] EXT4-fs (loop3): 1 orphan inode deleted
[  141.659502][ T9203] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.754288][ T9202] lo speed is unknown, defaulting to 1000
[  141.789565][ T9215] SELinux: failed to load policy
[  141.955216][ T9218] vlan2: entered allmulticast mode
[  142.000818][ T9222] loop4: detected capacity change from 0 to 1024
[  142.004257][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.027414][ T9222] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.056767][ T9222] FAULT_INJECTION: forcing a failure.
[  142.056767][ T9222] name failslab, interval 1, probability 0, space 0, times 0
[  142.069920][ T9222] CPU: 1 UID: 0 PID: 9222 Comm: syz.4.1825 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  142.069973][ T9222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  142.070006][ T9222] Call Trace:
[  142.070014][ T9222]  <TASK>
[  142.070023][ T9222]  __dump_stack+0x1d/0x30
[  142.070051][ T9222]  dump_stack_lvl+0xe8/0x140
[  142.070074][ T9222]  dump_stack+0x15/0x1b
[  142.070093][ T9222]  should_fail_ex+0x265/0x280
[  142.070117][ T9222]  should_failslab+0x8c/0xb0
[  142.070162][ T9222]  kmem_cache_alloc_noprof+0x50/0x310
[  142.070194][ T9222]  ? getname_flags+0x80/0x3b0
[  142.070224][ T9222]  getname_flags+0x80/0x3b0
[  142.070319][ T9222]  __x64_sys_getxattr+0xfd/0x140
[  142.070358][ T9222]  x64_sys_call+0x2f41/0x2ff0
[  142.070382][ T9222]  do_syscall_64+0xd2/0x200
[  142.070406][ T9222]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.070479][ T9222]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  142.070507][ T9222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.070533][ T9222] RIP: 0033:0x7f645f93ebe9
[  142.070551][ T9222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.070581][ T9222] RSP: 002b:00007f645e39f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bf
[  142.070605][ T9222] RAX: ffffffffffffffda RBX: 00007f645fb65fa0 RCX: 00007f645f93ebe9
[  142.070620][ T9222] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000200000000200
[  142.070709][ T9222] RBP: 00007f645e39f090 R08: 0000000000000000 R09: 0000000000000000
[  142.070723][ T9222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.070736][ T9222] R13: 00007f645fb66038 R14: 00007f645fb65fa0 R15: 00007ffd0c10b2f8
[  142.070757][ T9222]  </TASK>
[  142.271475][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.345503][ T9233] loop3: detected capacity change from 0 to 512
[  142.352577][ T9233] EXT4-fs: Ignoring removed mblk_io_submit option
[  142.370242][ T9232] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1828'.
[  142.395237][ T9233] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  142.427963][ T9233] EXT4-fs (loop3): 1 truncate cleaned up
[  142.450324][ T9233] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.573266][ T9241] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1831'.
[  142.699433][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.768860][ T9260] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1834'.
[  142.771924][   T23] hid_parser_main: 31 callbacks suppressed
[  142.771944][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.791690][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.799360][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.810246][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.817882][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.825721][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.833677][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.841269][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.848944][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.856724][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  142.959502][   T23] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  143.025520][ T9279] fido_id[9279]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  143.034053][ T9260] Falling back ldisc for ttyS3.
[  143.195390][ T9283] lo speed is unknown, defaulting to 1000
[  143.452783][ T9286] 9pnet_fd: Insufficient options for proto=fd
[  143.668232][ T9301] SELinux: failed to load policy
[  143.737508][ T9301] loop3: detected capacity change from 0 to 512
[  143.748333][ T9301] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  143.785970][ T9301] EXT4-fs (loop3): 1 truncate cleaned up
[  143.795889][ T9301] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.935888][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.948403][ T9337] FAULT_INJECTION: forcing a failure.
[  143.948403][ T9337] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.966398][ T9337] CPU: 0 UID: 0 PID: 9337 Comm: syz.4.1859 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  143.966433][ T9337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  143.966447][ T9337] Call Trace:
[  143.966456][ T9337]  <TASK>
[  143.966466][ T9337]  __dump_stack+0x1d/0x30
[  143.966492][ T9337]  dump_stack_lvl+0xe8/0x140
[  143.966513][ T9337]  dump_stack+0x15/0x1b
[  143.966543][ T9337]  should_fail_ex+0x265/0x280
[  143.966566][ T9337]  should_fail+0xb/0x20
[  143.966585][ T9337]  should_fail_usercopy+0x1a/0x20
[  143.966683][ T9337]  _copy_from_user+0x1c/0xb0
[  143.966712][ T9337]  ___sys_sendmsg+0xc1/0x1d0
[  143.966745][ T9337]  __x64_sys_sendmsg+0xd4/0x160
[  143.966770][ T9337]  x64_sys_call+0x191e/0x2ff0
[  143.966793][ T9337]  do_syscall_64+0xd2/0x200
[  143.966899][ T9337]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  143.966945][ T9337]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  143.967023][ T9337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.967046][ T9337] RIP: 0033:0x7f645f93ebe9
[  143.967066][ T9337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.967086][ T9337] RSP: 002b:00007f645e39f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.967110][ T9337] RAX: ffffffffffffffda RBX: 00007f645fb65fa0 RCX: 00007f645f93ebe9
[  143.967124][ T9337] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  143.967171][ T9337] RBP: 00007f645e39f090 R08: 0000000000000000 R09: 0000000000000000
[  143.967184][ T9337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.967230][ T9337] R13: 00007f645fb66038 R14: 00007f645fb65fa0 R15: 00007ffd0c10b2f8
[  143.967249][ T9337]  </TASK>
[  144.238817][ T9343] netlink: 'syz.4.1860': attribute type 21 has an invalid length.
[  144.273988][ T9346] vlan2: entered allmulticast mode
[  144.326240][ T9343] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1860'.
[  144.422188][ T9349] loop3: detected capacity change from 0 to 512
[  144.446465][ T9351] loop4: detected capacity change from 0 to 512
[  144.509817][ T9349] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.542981][ T9351] EXT4-fs: Ignoring removed mblk_io_submit option
[  144.569410][ T9349] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.581524][ T9351] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  144.605100][ T9351] EXT4-fs (loop4): 1 truncate cleaned up
[  144.631678][ T9351] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.809836][   T10] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  144.830033][ T9351] ==================================================================
[  144.838214][ T9351] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[  144.846535][ T9351] 
[  144.849141][ T9351] write to 0xffff8881073e93ec of 4 bytes by task 9362 on cpu 0:
[  144.857134][ T9351]  xas_set_mark+0x12b/0x140
[  144.861840][ T9351]  __folio_start_writeback+0x1dd/0x440
[  144.867600][ T9351]  ext4_bio_write_folio+0x5ad/0x9f0
[  144.872841][ T9351]  mpage_process_page_bufs+0x4a1/0x620
[  144.878351][ T9351]  mpage_prepare_extent_to_map+0x786/0xc00
[  144.884351][ T9351]  ext4_do_writepages+0xa05/0x2750
[  144.889481][ T9351]  ext4_writepages+0x176/0x300
[  144.894285][ T9351]  do_writepages+0x1c3/0x310
[  144.898980][ T9351]  file_write_and_wait_range+0x156/0x2c0
[  144.904639][ T9351]  generic_buffers_fsync_noflush+0x45/0x120
[  144.910640][ T9351]  ext4_sync_file+0x1ab/0x690
[  144.915428][ T9351]  vfs_fsync_range+0x10d/0x130
[  144.920295][ T9351]  ext4_buffered_write_iter+0x34f/0x3c0
[  144.926213][ T9351]  ext4_file_write_iter+0xdbf/0xf00
[  144.931435][ T9351]  iter_file_splice_write+0x666/0x9e0
[  144.936814][ T9351]  direct_splice_actor+0x153/0x2a0
[  144.942285][ T9351]  splice_direct_to_actor+0x30f/0x680
[  144.947763][ T9351]  do_splice_direct+0xda/0x150
[  144.952575][ T9351]  do_sendfile+0x380/0x650
[  144.957020][ T9351]  __x64_sys_sendfile64+0x105/0x150
[  144.962420][ T9351]  x64_sys_call+0x2bb0/0x2ff0
[  144.967303][ T9351]  do_syscall_64+0xd2/0x200
[  144.972210][ T9351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.978291][ T9351] 
[  144.980624][ T9351] read to 0xffff8881073e93ec of 4 bytes by task 9351 on cpu 1:
[  144.988297][ T9351]  filemap_write_and_wait_range+0xfc/0x340
[  144.994462][ T9351]  ext4_file_write_iter+0xe04/0xf00
[  144.999864][ T9351]  iter_file_splice_write+0x666/0x9e0
[  145.005606][ T9351]  direct_splice_actor+0x153/0x2a0
[  145.011003][ T9351]  splice_direct_to_actor+0x30f/0x680
[  145.016652][ T9351]  do_splice_direct+0xda/0x150
[  145.021859][ T9351]  do_sendfile+0x380/0x650
[  145.026557][ T9351]  __x64_sys_sendfile64+0x105/0x150
[  145.032397][ T9351]  x64_sys_call+0x2bb0/0x2ff0
[  145.037434][ T9351]  do_syscall_64+0xd2/0x200
[  145.042328][ T9351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.048692][ T9351] 
[  145.051032][ T9351] value changed: 0x0a000021 -> 0x04000021
[  145.057116][ T9351] 
[  145.059541][ T9351] Reported by Kernel Concurrency Sanitizer on:
[  145.065970][ T9351] CPU: 1 UID: 0 PID: 9351 Comm: syz.4.1863 Not tainted 6.17.0-rc1-syzkaller-00016-g8742b2d8935f #0 PREEMPT(voluntary) 
[  145.079136][ T9351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  145.089598][ T9351] ==================================================================
[  145.116540][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.117502][ T9363] fido_id[9363]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  145.315521][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.