last executing test programs:

1.748302667s ago: executing program 2 (id=3318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
syz_io_uring_setup(0x5bd1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289, 0x0, r4}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811b849", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)

1.633240778s ago: executing program 2 (id=3319):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
syz_io_uring_setup(0x5bd1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289, 0x0, r3}, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)

1.580683419s ago: executing program 4 (id=3321):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_clone3(&(0x7f00000002c0)={0x8000080, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0xffffffffffffffff], 0x1}, 0x58)

1.579701689s ago: executing program 2 (id=3331):
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r6}, 0x18)
r7 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r7, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffd, 0x0, 0x10000000, 0x5, 0x4}, 0x1, r8}}]}, {0x4, 0xa}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = dup(r1)
r10 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
fsetxattr$trusted_overlay_nlink(r10, &(0x7f0000000040), &(0x7f0000000080)={'U+'}, 0x16, 0x2)
sendfile(r9, r10, 0x0, 0x8000fffffffe)

1.389924482s ago: executing program 4 (id=3323):
unshare(0x6a040000)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, &(0x7f0000002100)=""/4096}, 0x20)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000380)=ANY=[@ANYBLOB="12011003000000482505a8a440000102030109021b00010109c0000904007f01070103b409050102ff03090909b0e242713650d1e782"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r0, 0x0, r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000280), &(0x7f0000000840)=r1}, 0x20)
modify_ldt$write(0x1, &(0x7f0000000080)={0x5, 0x0, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x220c2b, &(0x7f0000000000)=ANY=[@ANYRES8=0x0], 0x9, 0x2bf, &(0x7f0000000a00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x268, 0xffffff7a, 0xffffffff, 0x268, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x41}, 0x6, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x2, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)

1.026894577s ago: executing program 1 (id=3327):
syz_emit_ethernet(0x4e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004b0000400000000000059078ac1e00010a010100441407030000000000000000ac141426000040008302000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c000000d07800007b18a361827b94dbbae811e0d41d46f80890d2676b8ddc1076c13457e4952099f4ffeb3af3c76c89864de89ea29f14c40afd27588a4211d437a4d72af1df"], 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x1, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setfsuid(0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000180a05000000000000000000020000000900010077797a30000000001400000011000100000000000000000003000004"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
mmap(&(0x7f00003f5000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffd000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)}}], 0x48}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})

985.175427ms ago: executing program 1 (id=3328):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x48, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1c, 0x3, 0x0, 0x1, [{0x18, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0xc, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "0d93"}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x90}}, 0x0)

937.047768ms ago: executing program 1 (id=3329):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
ustat(0x3, &(0x7f0000000000))

880.150668ms ago: executing program 1 (id=3330):
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
write$tun(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="000086dd000311000400000000006eec00be10a42f01fe8000000000000000000000000000aaff020000000000000000000000000001"], 0x10da)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

868.815499ms ago: executing program 0 (id=3333):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
syz_io_uring_setup(0x5bd1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289, 0x0, r3}, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)

679.043121ms ago: executing program 4 (id=3335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sched_getattr(0x0, &(0x7f00000010c0)={0x38}, 0xbe, 0x0)

666.365011ms ago: executing program 2 (id=3336):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r0)
r1 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00'}, 0x78)
socket$xdp(0x2c, 0x3, 0x0)
ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0x8008551c, &(0x7f0000000300)=ANY=[@ANYBLOB="3057000001"])
keyctl$search(0xa, r0, &(0x7f0000000400)='logon\x00', &(0x7f0000000440)={'syz', 0x2}, r1)
r2 = syz_open_dev$vcsn(&(0x7f0000000180), 0x1, 0x521042)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400003e00fb00"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$rds(0x15, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
read$eventfd(r2, &(0x7f0000000080), 0x8)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x30410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30c3a0e4, 0x1, @perf_config_ext={0x20000000000000, 0x1}, 0x11d08, 0x2, 0x0, 0x2, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = io_uring_setup(0x503e, &(0x7f0000000f40)={0x0, 0x698c, 0x100, 0x2, 0xfffffffe})
io_uring_register$IORING_REGISTER_BUFFERS2(r4, 0xf, &(0x7f0000000140)={0x5b, 0x0, 0x0, 0x0, 0x0}, 0x20)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x40, 0x2, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x4}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfffffffc}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
socket(0xb, 0xc, 0x101)

620.365132ms ago: executing program 0 (id=3337):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getuid()

613.890112ms ago: executing program 4 (id=3338):
syz_emit_ethernet(0x4e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004b0000400000000000059078ac1e00010a010100441407030000000000000000ac141426000040008302000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c000000d07800007b18a361827b94dbbae811e0d41d46f80890d2676b8ddc1076c13457e4952099f4ffeb3af3c76c89864de89ea29f14c40afd27588a4211d437a4d72af1df"], 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x1, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setfsuid(0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000180a05000000000000000000020000000900010077797a30000000001400000011000100000000000000000003000004"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
mmap(&(0x7f00003f5000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffd000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, 0x0)

598.678642ms ago: executing program 3 (id=3339):
syz_emit_ethernet(0x4e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004b0000400000000000059078ac1e00010a010100441407030000000000000000ac141426000040008302000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c000000d07800007b18a361827b94dbbae811e0d41d46f80890d2676b8ddc1076c13457e4952099f4ffeb3af3c76c89864de89ea29f14c40afd27588a4211d437a4d72af1df"], 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x1, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setfsuid(0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000180a05000000000000000000020000000900010077797a30000000001400000011000100000000000000000003000004"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
mmap(&(0x7f00003f5000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffd000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})

581.694992ms ago: executing program 0 (id=3340):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x3c}}, 0x0)

541.159733ms ago: executing program 3 (id=3341):
syz_emit_ethernet(0x4e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004b0000400000000000059078ac1e00010a010100441407030000000000000000ac141426000040008302000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c000000d07800007b18a361827b94dbbae811e0d41d46f80890d2676b8ddc1076c13457e4952099f4ffeb3af3c76c89864de89ea29f14c40afd27588a4211d437a4d72af1df"], 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x1, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setfsuid(0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000180a05000000000000000000020000000900010077797a30000000001400000011000100000000000000000003000004"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
mmap(&(0x7f00003f5000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffd000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{0x0}], 0x1}}], 0x48}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})

534.639073ms ago: executing program 2 (id=3342):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYRES32=r1, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17c)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140))
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x2040400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x28ae81, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0xcd, 0x1, 0xf6, 0x1, 0x3, 0x3, 0x80000000, 0x3a9, 0x40, 0x35f, 0x2, 0x1, 0x38, 0x1, 0x7, 0x5, 0x1b}, [{0x5, 0x80000000, 0x400, 0x1000, 0x100000000, 0x3, 0x3, 0x973}], "c5487cadd076c2d5493cbdef5ffc67516c1c908272a7c250253c46932fc731401694b05d974d5f4233e870a346", ['\x00']}, 0x1a5)
syz_io_uring_setup(0x109, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r6=>0x0})
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
sendmsg$IPVS_CMD_ZERO(r4, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20000041}, 0x20000000)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r6], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)

476.156774ms ago: executing program 2 (id=3343):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfe58}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140))
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x50)
preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)=""/4094, 0xffe}], 0x1, 0x33, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_connect$uac1(0x3, 0xa4, &(0x7f0000000740)=ANY=[], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001140)={<r3=>0x0, @multicast1, @remote}, &(0x7f0000001180)=0xc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0xc, 0x1, &(0x7f0000001200)=@raw=[@ldst={0x0, 0x3, 0x0, 0x3, 0x1, 0xfffffffffffffff0, 0x10}], &(0x7f0000001240)='syzkaller\x00', 0x6, 0x15, &(0x7f0000001280)=""/21, 0x41000, 0x30, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x8, &(0x7f00000012c0)={0x2, 0x1}, 0x8, 0x10, &(0x7f0000001300)={0x5, 0x4, 0x47275f9e, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xcef0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001480)={0x13, 0x4, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, @map_fd={0x18, 0x6}], &(0x7f0000001080)='GPL\x00', 0x800, 0x3c, &(0x7f0000001100)=""/60, 0x0, 0x24, '\x00', r3, @fallback=0x27, 0xffffffffffffffff, 0x8, &(0x7f00000011c0)={0x0, 0x2}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, r4, 0x5, 0x0, &(0x7f0000001400)=[{0x3, 0x4, 0xe, 0x9}, {0x1, 0x3, 0xf, 0xc}, {0x3, 0x1, 0x2}, {0x4, 0x5, 0x5, 0x8}, {0xfad, 0x4, 0x8, 0x8}], 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170007000000000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
time(0x0)

475.623584ms ago: executing program 3 (id=3344):
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_clone3(&(0x7f00000002c0)={0x8000080, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0xffffffffffffffff], 0x1}, 0x58)

451.367424ms ago: executing program 1 (id=3345):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000040000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
fsetxattr(0xffffffffffffffff, &(0x7f0000000180)=@random={'system.', '{\x00'}, &(0x7f0000000200)='\x00', 0x1, 0x1)

441.082515ms ago: executing program 4 (id=3346):
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r6}, 0x18)
r7 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r7, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffd, 0x0, 0x10000000, 0x5, 0x4}, 0x1, r8}}]}, {0x4, 0xa}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = dup(r1)
r10 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
fsetxattr$trusted_overlay_nlink(r10, &(0x7f0000000040), &(0x7f0000000080)={'U+'}, 0x16, 0x2)
sendfile(r9, r10, 0x0, 0x8000fffffffe)

424.042604ms ago: executing program 1 (id=3347):
unshare(0x6a040000)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, &(0x7f0000002100)=""/4096}, 0x20)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000380)=ANY=[@ANYBLOB="12011003000000482505a8a440000102030109021b00010109c0000904007f01070103b409050102ff03090909b0e242713650d1e782"], 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000280), &(0x7f0000000840)=r1}, 0x20)
modify_ldt$write(0x1, &(0x7f0000000080)={0x5, 0x0, 0x400, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x220c2b, &(0x7f0000000000)=ANY=[@ANYRES8=0x0], 0x9, 0x2bf, &(0x7f0000000a00)="$eJzs3UFPE2sUxvED5dJSAu1Nbm5yb6Ke6EY3E6gfQBsDibGJBilRFyaDTLXp2JKZBlNjpBvj1g/hiujOnYm6dMPGuHHvjpiYuGFhHONMB1ooOMAUEP6/hMxpz/swL2UgpyS0Kzee3a+UXKNk1qU/pdIv0pRVkeyvqqWvdez360Fp15Rzw98+nbh+89aVfKEwMaU6mZ8+n1PV0VNvHjx6cfpdfXjm1ejrpCxnb698zX1e/nf5v5Uf0/fKrpZdrdbqaupsrVY3Z21L58puxVC9Zluma2m56lpOR79k1+bnG2pW50bS847lumpWG1qxGlqvad1pqHnXLFfVMAwdScvxNhBhTXFpasrMb9n2ErHuCD031O1Ox8k3uzeLS/uwJwAAcMhsP/8Hs/7W839hJjhGmv9fPheJNv+LxDn/9+3rA3rINTtu/Wb+x5HgOHkz3fr57cT8DwAAAAAAAAAAAAAAAAAAAADAn2DV8zKe52XCY/iRFJGUiIS3D3qf6I1dfv8vHNB2EbO2f9xLidhPF4oLxeAY9PMlKYstloxJRr7710NLUE9eLkyMqS8rb+3FVn5xoZiQZJgPZbvlT/49HuS1M/+XpNvPn5OM/NP9/Lmu+UE5e6Ytb0hGPtyRmtgy51/X6/nH46qXrhY25If8dQAAAAAAHAWGrtn0/N3v+wtSsrkf5Hfw94ENz68H5P8oL1EJAAAAAAD2zG08rJi2bTm7KJIisof4Dgqvr+eniK9ISByfJx3zxi6KyOF4fPalSIlIcI/uJv5lLR4p5UVYMyAie/26UrFcWtGKg/7NBAAAACBu60P/DkIfn/RwRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHD9RXw8sXL+pFTa2ibedLiHv194eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADh2fgYAAP//+Wwl6Q==")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x268, 0xffffff7a, 0xffffffff, 0x268, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x41}, 0x6, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x2, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)

423.831984ms ago: executing program 0 (id=3348):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r3 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)

365.571125ms ago: executing program 3 (id=3349):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="05000000040000000800000008"], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)

285.955737ms ago: executing program 0 (id=3350):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17c)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140))
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

262.128867ms ago: executing program 3 (id=3351):
syz_emit_ethernet(0x4e, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004b0000400000000000059078ac1e00010a010100441407030000000000000000ac141426000040008302000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c000000d07800007b18a361827b94dbbae811e0d41d46f80890d2676b8ddc1076c13457e4952099f4ffeb3af3c76c89864de89ea29f14c40afd27588a4211d437a4d72af1df"], 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x1, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setfsuid(0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b700000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000180a05000000000000000000020000000900010077797a30000000001400000011000100000000000000000003000004"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
mmap(&(0x7f00003f5000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffd000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mlock(&(0x7f0000a53000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})

197.177578ms ago: executing program 3 (id=3352):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'ip_vti0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newlink={0x30, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @vti={{0x8}, {0x4}}}]}, 0x30}}, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00'}, 0x18)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r6)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, r8, 0x20, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x81)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000002300)=ANY=[@ANYBLOB="53067f11ca4a5259c5d49c95e64a11e217fdb07a1079aecee39fe07cc566e8bc803d2f602de4e13f9c0b658d413c3f6ff7bd874d7a04753e640f8ec8e21ac2c149d328bf1ed5752275416211ab27871dd6ef3f68b0b21035308bf3d93b0b11079a731a635b0aed76146d0d8351bdfbb0c9c27ccfd5d9306302099dbc77a0e43ef51814036a444e68b38797ba48222e144a57b4496c1a260a9db8fa73a0173fad923f91be6124d97d", @ANYBLOB="99babd9e106979a400d302d2275e90879b616172a19e5cbfc3df7e64bbd048d91bfdf87fd19e21973b17715b190412411a1a67d16b8d67a1ad51b8b49c7e2b824395a16f6bb05c91a42b271c3624d01a8229e81b22ed51f12e560e3a6637690bca561e7b5e6969932cc92f37b385cf4c76fce2b76ca50c6b982e59e8a6ee3cb08a4e9d094cdfb2234ef3c921a801c1fd29839d4aeed4a2fc52a7c9a4add77eff093c0fd52612c312125195bfed0a", @ANYRESHEX=r4, @ANYRESHEX, @ANYRES16=r5, @ANYRES64=r3, @ANYBLOB="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", @ANYRES8=r6, @ANYRES64, @ANYRESHEX=r0])

184.177788ms ago: executing program 4 (id=3353):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r0)
r1 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00'}, 0x78)
socket$xdp(0x2c, 0x3, 0x0)
ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0x8008551c, &(0x7f0000000300)=ANY=[@ANYBLOB="3057000001"])
keyctl$search(0xa, r0, &(0x7f0000000400)='logon\x00', &(0x7f0000000440)={'syz', 0x2}, r1)
r2 = syz_open_dev$vcsn(&(0x7f0000000180), 0x1, 0x521042)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400003e00fb00"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$rds(0x15, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
read$eventfd(r2, &(0x7f0000000080), 0x8)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x30410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30c3a0e4, 0x1, @perf_config_ext={0x20000000000000, 0x1}, 0x11d08, 0x2, 0x0, 0x2, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = io_uring_setup(0x503e, &(0x7f0000000f40)={0x0, 0x698c, 0x100, 0x2, 0xfffffffe})
io_uring_register$IORING_REGISTER_BUFFERS2(r4, 0xf, &(0x7f0000000140)={0x5b, 0x0, 0x0, 0x0, 0x0}, 0x20)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x40, 0x2, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x4}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfffffffc}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
socket(0xb, 0xc, 0x101)

0s ago: executing program 0 (id=3354):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x17c)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140))
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x2040400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x28ae81, 0x0)
write$binfmt_elf64(r4, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0xcd, 0x1, 0xf6, 0x1, 0x3, 0x3, 0x80000000, 0x3a9, 0x40, 0x35f, 0x2, 0x1, 0x38, 0x1, 0x7, 0x5, 0x1b}, [{0x5, 0x80000000, 0x400, 0x1000, 0x100000000, 0x3, 0x3, 0x973}], "c5487cadd076c2d5493cbdef5ffc67516c1c908272a7c250253c46932fc731401694b05d974d5f4233e870a346", ['\x00']}, 0x1a5)
syz_io_uring_setup(0x109, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r6=>0x0})
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
sendmsg$IPVS_CMD_ZERO(r4, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20000041}, 0x20000000)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r6], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)

kernel console output (not intermixed with test programs):

2908: mark_inode_dirty error
[  420.496090][T15031] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #18: comm syz.2.2908: corrupted inode contents
[  420.508326][T15031] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.2908: mark_inode_dirty error
[  420.544852][T15051] FAULT_INJECTION: forcing a failure.
[  420.544852][T15051] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.558194][T15051] CPU: 0 UID: 0 PID: 15051 Comm: syz.3.2915 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  420.558229][T15051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  420.558243][T15051] Call Trace:
[  420.558323][T15051]  <TASK>
[  420.558333][T15051]  __dump_stack+0x1d/0x30
[  420.558376][T15051]  dump_stack_lvl+0xe8/0x140
[  420.558401][T15051]  dump_stack+0x15/0x1b
[  420.558422][T15051]  should_fail_ex+0x265/0x280
[  420.558457][T15051]  should_fail+0xb/0x20
[  420.558494][T15051]  should_fail_usercopy+0x1a/0x20
[  420.558601][T15051]  strncpy_from_user+0x25/0x230
[  420.558643][T15051]  ? __kmalloc_cache_noprof+0x189/0x320
[  420.558676][T15051]  __se_sys_memfd_create+0x1ff/0x590
[  420.558715][T15051]  __x64_sys_memfd_create+0x31/0x40
[  420.558748][T15051]  x64_sys_call+0x122f/0x2fb0
[  420.558836][T15051]  do_syscall_64+0xd0/0x1a0
[  420.558869][T15051]  ? clear_bhb_loop+0x40/0x90
[  420.558946][T15051]  ? clear_bhb_loop+0x40/0x90
[  420.558967][T15051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.558993][T15051] RIP: 0033:0x7f6304a5e969
[  420.559012][T15051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.559076][T15051] RSP: 002b:00007f63030c6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  420.559102][T15051] RAX: ffffffffffffffda RBX: 00000000000002c4 RCX: 00007f6304a5e969
[  420.559119][T15051] RDX: 00007f63030c6ef0 RSI: 0000000000000000 RDI: 00007f6304ae1444
[  420.559136][T15051] RBP: 00002000000003c0 R08: 00007f63030c6bb7 R09: 00007f63030c6e40
[  420.559168][T15051] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000340
[  420.559180][T15051] R13: 00007f63030c6ef0 R14: 00007f63030c6eb0 R15: 0000200000000380
[  420.559198][T15051]  </TASK>
[  420.561595][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.562036][T15031] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.2908: mark inode dirty (error -117)
[  420.593588][T15055] loop3: detected capacity change from 0 to 512
[  420.600116][T15031] EXT4-fs warning (device loop2): ext4_evict_inode:279: xattr delete (err -117)
[  420.626154][T15055] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  420.787464][T15055] ext4 filesystem being mounted at /552/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  420.806565][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.828781][T15055] EXT4-fs error (device loop3): ext4_empty_dir:3077: inode #12: comm syz.3.2916: invalid size
[  420.840328][T15065] FAULT_INJECTION: forcing a failure.
[  420.840328][T15065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.853611][T15065] CPU: 1 UID: 0 PID: 15065 Comm: syz.0.2918 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  420.853642][T15065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  420.853655][T15065] Call Trace:
[  420.853661][T15065]  <TASK>
[  420.853669][T15065]  __dump_stack+0x1d/0x30
[  420.853742][T15065]  dump_stack_lvl+0xe8/0x140
[  420.853762][T15065]  dump_stack+0x15/0x1b
[  420.853794][T15065]  should_fail_ex+0x265/0x280
[  420.853843][T15065]  should_fail+0xb/0x20
[  420.853949][T15065]  should_fail_usercopy+0x1a/0x20
[  420.854046][T15065]  strncpy_from_user+0x25/0x230
[  420.854073][T15065]  ? __kmalloc_cache_noprof+0x189/0x320
[  420.854098][T15065]  __se_sys_memfd_create+0x1ff/0x590
[  420.854128][T15065]  __x64_sys_memfd_create+0x31/0x40
[  420.854153][T15065]  x64_sys_call+0x122f/0x2fb0
[  420.854217][T15065]  do_syscall_64+0xd0/0x1a0
[  420.854297][T15065]  ? clear_bhb_loop+0x40/0x90
[  420.854324][T15065]  ? clear_bhb_loop+0x40/0x90
[  420.854346][T15065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.854441][T15065] RIP: 0033:0x7fbe2c93e969
[  420.854461][T15065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.854480][T15065] RSP: 002b:00007fbe2afa6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  420.854504][T15065] RAX: ffffffffffffffda RBX: 0000000000008130 RCX: 00007fbe2c93e969
[  420.854566][T15065] RDX: 00007fbe2afa6ef0 RSI: 0000000000000000 RDI: 00007fbe2c9c1444
[  420.854584][T15065] RBP: 0000200000008200 R08: 00007fbe2afa6bb7 R09: 00007fbe2afa6e40
[  420.854661][T15065] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000008180
[  420.854673][T15065] R13: 00007fbe2afa6ef0 R14: 00007fbe2afa6eb0 R15: 00002000000081c0
[  420.854694][T15065]  </TASK>
[  420.858185][T15055] EXT4-fs (loop3): Remounting filesystem read-only
[  420.937687][T15070] loop0: detected capacity change from 0 to 512
[  421.045018][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.070121][   T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  421.080709][T15074] loop4: detected capacity change from 0 to 512
[  421.087268][T15078] loop0: detected capacity change from 0 to 736
[  421.111387][T15083] FAULT_INJECTION: forcing a failure.
[  421.111387][T15083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  421.124604][T15083] CPU: 1 UID: 0 PID: 15083 Comm: syz.3.2924 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  421.124635][T15083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  421.124652][T15083] Call Trace:
[  421.124660][T15083]  <TASK>
[  421.124670][T15083]  __dump_stack+0x1d/0x30
[  421.124747][T15083]  dump_stack_lvl+0xe8/0x140
[  421.124767][T15083]  dump_stack+0x15/0x1b
[  421.124784][T15083]  should_fail_ex+0x265/0x280
[  421.124838][T15083]  should_fail+0xb/0x20
[  421.124916][T15083]  should_fail_usercopy+0x1a/0x20
[  421.124936][T15083]  strncpy_from_user+0x25/0x230
[  421.124965][T15083]  ? __kmalloc_cache_noprof+0x189/0x320
[  421.125061][T15083]  __se_sys_memfd_create+0x1ff/0x590
[  421.125088][T15083]  __x64_sys_memfd_create+0x31/0x40
[  421.125120][T15083]  x64_sys_call+0x122f/0x2fb0
[  421.125225][T15083]  do_syscall_64+0xd0/0x1a0
[  421.125307][T15083]  ? clear_bhb_loop+0x40/0x90
[  421.125335][T15083]  ? clear_bhb_loop+0x40/0x90
[  421.125363][T15083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.125461][T15083] RIP: 0033:0x7f6304a5e969
[  421.125480][T15083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.125503][T15083] RSP: 002b:00007f63030c6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  421.125523][T15083] RAX: ffffffffffffffda RBX: 00000000000002de RCX: 00007f6304a5e969
[  421.125536][T15083] RDX: 00007f63030c6ef0 RSI: 0000000000000000 RDI: 00007f6304ae1444
[  421.125616][T15083] RBP: 00002000000003c0 R08: 00007f63030c6bb7 R09: 00007f63030c6e40
[  421.125631][T15083] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000340
[  421.125648][T15083] R13: 00007f63030c6ef0 R14: 00007f63030c6eb0 R15: 0000200000000380
[  421.125672][T15083]  </TASK>
[  421.333692][T15088] loop3: detected capacity change from 0 to 512
[  421.347976][T15092] FAULT_INJECTION: forcing a failure.
[  421.347976][T15092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  421.361193][T15092] CPU: 1 UID: 0 PID: 15092 Comm: syz.0.2930 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  421.361295][T15092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  421.361313][T15092] Call Trace:
[  421.361321][T15092]  <TASK>
[  421.361331][T15092]  __dump_stack+0x1d/0x30
[  421.361374][T15092]  dump_stack_lvl+0xe8/0x140
[  421.361401][T15092]  dump_stack+0x15/0x1b
[  421.361425][T15092]  should_fail_ex+0x265/0x280
[  421.361469][T15092]  should_fail+0xb/0x20
[  421.361518][T15092]  should_fail_usercopy+0x1a/0x20
[  421.361622][T15092]  strncpy_from_user+0x25/0x230
[  421.361653][T15092]  ? __kmalloc_cache_noprof+0x189/0x320
[  421.361757][T15092]  __se_sys_memfd_create+0x1ff/0x590
[  421.361869][T15092]  __x64_sys_memfd_create+0x31/0x40
[  421.361972][T15092]  x64_sys_call+0x122f/0x2fb0
[  421.362005][T15092]  do_syscall_64+0xd0/0x1a0
[  421.362033][T15092]  ? clear_bhb_loop+0x40/0x90
[  421.362062][T15092]  ? clear_bhb_loop+0x40/0x90
[  421.362160][T15092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.362191][T15092] RIP: 0033:0x7fbe2c93e969
[  421.362212][T15092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.362236][T15092] RSP: 002b:00007fbe2afa6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  421.362372][T15092] RAX: ffffffffffffffda RBX: 0000000000000921 RCX: 00007fbe2c93e969
[  421.362385][T15092] RDX: 00007fbe2afa6ef0 RSI: 0000000000000000 RDI: 00007fbe2c9c1444
[  421.362398][T15092] RBP: 0000200000000a00 R08: 00007fbe2afa6bb7 R09: 00007fbe2afa6e40
[  421.362455][T15092] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000980
[  421.362468][T15092] R13: 00007fbe2afa6ef0 R14: 00007fbe2afa6eb0 R15: 00002000000009c0
[  421.362489][T15092]  </TASK>
[  421.541772][T15088] EXT4-fs (loop3): 1 orphan inode deleted
[  421.547975][T15088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.550951][T15098] loop2: detected capacity change from 0 to 1764
[  421.560688][   T58] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  421.587842][T15088] ext4 filesystem being mounted at /554/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.601219][T15088] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.2928: corrupted inode contents
[  421.613449][T15088] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.2928: mark_inode_dirty error
[  421.625221][T15088] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.2928: corrupted inode contents
[  421.637324][T15088] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.2928: mark_inode_dirty error
[  421.649759][T15088] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.2928: mark inode dirty (error -117)
[  421.665583][T15088] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  421.690281][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.741091][T15111] team0: Port device bond1 removed
[  421.747334][T15111] team0: Port device bond2 removed
[  421.753647][T15111] team0: Port device bond3 removed
[  421.760457][T15111] team0: Port device bond4 removed
[  421.766922][T15111] team0: Port device bond5 removed
[  421.773337][T15111] team0: Port device bond6 removed
[  421.779619][T15111] team0: Port device bond7 removed
[  421.785850][T15111] team0: Port device bond8 removed
[  421.792203][T15111] team0: Port device bond9 removed
[  421.798582][T15111] team0: Port device bond10 removed
[  421.805260][T15111] team0: Port device bond11 removed
[  421.811378][T15111] team0: Port device bond12 removed
[  421.817978][T15111] team0: Port device bond13 removed
[  421.825813][T15111] team0: Port device bond14 removed
[  421.832214][T15111] team0: Port device bond15 removed
[  421.838310][T15111] team0: Port device bond16 removed
[  421.845063][T15111] team0: Port device bond17 removed
[  421.851689][T15111] team0: Port device bond18 removed
[  421.857927][T15111] team0: Port device bond19 removed
[  421.865367][T15111] team0: Port device bond20 removed
[  421.872179][T15125] loop3: detected capacity change from 0 to 736
[  421.872387][T15111] team0: Port device bond21 removed
[  421.885691][T15111] team0: Port device bond22 removed
[  421.892674][T15111] team0: Port device bond23 removed
[  421.948824][T15131] FAULT_INJECTION: forcing a failure.
[  421.948824][T15131] name failslab, interval 1, probability 0, space 0, times 0
[  421.961618][T15131] CPU: 1 UID: 0 PID: 15131 Comm: syz.1.2944 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  421.961688][T15131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  421.961706][T15131] Call Trace:
[  421.961714][T15131]  <TASK>
[  421.961722][T15131]  __dump_stack+0x1d/0x30
[  421.961751][T15131]  dump_stack_lvl+0xe8/0x140
[  421.961782][T15131]  dump_stack+0x15/0x1b
[  421.961824][T15131]  should_fail_ex+0x265/0x280
[  421.961949][T15131]  should_failslab+0x8c/0xb0
[  421.961990][T15131]  kmem_cache_alloc_node_noprof+0x57/0x320
[  421.962020][T15131]  ? __alloc_skb+0x101/0x320
[  421.962128][T15131]  __alloc_skb+0x101/0x320
[  421.962163][T15131]  netlink_alloc_large_skb+0xba/0xf0
[  421.962207][T15131]  netlink_sendmsg+0x3cf/0x6b0
[  421.962280][T15131]  ? __pfx_netlink_sendmsg+0x10/0x10
[  421.962308][T15131]  __sock_sendmsg+0x145/0x180
[  421.962339][T15131]  ____sys_sendmsg+0x31e/0x4e0
[  421.962370][T15131]  ___sys_sendmsg+0x17b/0x1d0
[  421.962458][T15131]  __x64_sys_sendmsg+0xd4/0x160
[  421.962531][T15131]  x64_sys_call+0x2999/0x2fb0
[  421.962554][T15131]  do_syscall_64+0xd0/0x1a0
[  421.962579][T15131]  ? clear_bhb_loop+0x40/0x90
[  421.962601][T15131]  ? clear_bhb_loop+0x40/0x90
[  421.962668][T15131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.962690][T15131] RIP: 0033:0x7f747393e969
[  421.962706][T15131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.962732][T15131] RSP: 002b:00007f7471fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  421.962822][T15131] RAX: ffffffffffffffda RBX: 00007f7473b65fa0 RCX: 00007f747393e969
[  421.962835][T15131] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  421.962852][T15131] RBP: 00007f7471fa7090 R08: 0000000000000000 R09: 0000000000000000
[  421.962869][T15131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.962886][T15131] R13: 0000000000000000 R14: 00007f7473b65fa0 R15: 00007ffcf37b5058
[  421.962911][T15131]  </TASK>
[  422.215357][T15138] loop1: detected capacity change from 0 to 512
[  422.232711][T15138] EXT4-fs (loop1): 1 orphan inode deleted
[  422.239089][T15138] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.241193][T15145] loop3: detected capacity change from 0 to 512
[  422.258344][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  422.271257][T15138] ext4 filesystem being mounted at /588/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.310992][T15147] SELinux:  Context Ü is not valid (left unmapped).
[  422.322026][T15147] syz.4.2942: attempt to access beyond end of device
[  422.322026][T15147] loop9: rw=0, sector=0, nr_sectors = 1 limit=0
[  422.334998][T15147] FAT-fs (loop9): unable to read boot sector
[  422.379255][T15145] EXT4-fs (loop3): 1 orphan inode deleted
[  422.397734][T15138] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2945: corrupted inode contents
[  422.410056][ T3413] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  422.448150][T15145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.473105][T15138] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.2945: mark_inode_dirty error
[  422.539460][T15145] ext4 filesystem being mounted at /561/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.556076][T15138] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2945: corrupted inode contents
[  422.625967][T15145] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #18: comm syz.3.2949: corrupted inode contents
[  422.647464][T15138] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.2945: mark_inode_dirty error
[  422.705750][T15138] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.2945: mark inode dirty (error -117)
[  422.707157][T15145] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #18: comm syz.3.2949: mark_inode_dirty error
[  422.731151][T15145] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #18: comm syz.3.2949: corrupted inode contents
[  422.743824][T15145] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.2949: mark_inode_dirty error
[  422.758537][T15145] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.2949: mark inode dirty (error -117)
[  422.772637][T15145] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  422.783450][T15138] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  422.818719][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.862805][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.946303][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2962'.
[  422.955320][T15181] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2962'.
[  422.972778][T15181] ip6gre1: entered allmulticast mode
[  422.998207][T15184] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15184 comm=+}[@
[  423.029425][T15187] loop1: detected capacity change from 0 to 128
[  423.043314][T15187] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  423.049311][T15191] loop4: detected capacity change from 0 to 512
[  423.063451][T15189] FAULT_INJECTION: forcing a failure.
[  423.063451][T15189] name failslab, interval 1, probability 0, space 0, times 0
[  423.071454][T15187] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  423.076102][T15189] CPU: 0 UID: 0 PID: 15189 Comm: syz.3.2966 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  423.076139][T15189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  423.076153][T15189] Call Trace:
[  423.076161][T15189]  <TASK>
[  423.076194][T15189]  __dump_stack+0x1d/0x30
[  423.076222][T15189]  dump_stack_lvl+0xe8/0x140
[  423.076248][T15189]  dump_stack+0x15/0x1b
[  423.076332][T15189]  should_fail_ex+0x265/0x280
[  423.076377][T15189]  should_failslab+0x8c/0xb0
[  423.076470][T15189]  kmem_cache_alloc_node_noprof+0x57/0x320
[  423.076494][T15189]  ? __alloc_skb+0x101/0x320
[  423.076538][T15189]  __alloc_skb+0x101/0x320
[  423.076580][T15189]  ? audit_log_start+0x365/0x6c0
[  423.076647][T15189]  audit_log_start+0x380/0x6c0
[  423.076708][T15189]  audit_seccomp+0x48/0x100
[  423.076814][T15189]  ? __seccomp_filter+0x68c/0x10d0
[  423.076843][T15189]  __seccomp_filter+0x69d/0x10d0
[  423.076867][T15189]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  423.076895][T15189]  ? vfs_write+0x75e/0x8d0
[  423.076998][T15189]  ? __rcu_read_unlock+0x4f/0x70
[  423.077064][T15189]  ? __fget_files+0x184/0x1c0
[  423.077164][T15189]  __secure_computing+0x82/0x150
[  423.077194][T15189]  syscall_trace_enter+0xcf/0x1e0
[  423.077259][T15189]  do_syscall_64+0xaa/0x1a0
[  423.077360][T15189]  ? clear_bhb_loop+0x40/0x90
[  423.077464][T15189]  ? clear_bhb_loop+0x40/0x90
[  423.077495][T15189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.077525][T15189] RIP: 0033:0x7f6304a5e969
[  423.077593][T15189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.077688][T15189] RSP: 002b:00007f63030c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000105
[  423.077715][T15189] RAX: ffffffffffffffda RBX: 00007f6304c85fa0 RCX: 00007f6304a5e969
[  423.077733][T15189] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  423.077751][T15189] RBP: 00007f63030c7090 R08: 0000000000000000 R09: 0000000000000000
[  423.077767][T15189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  423.077811][T15189] R13: 0000000000000000 R14: 00007f6304c85fa0 R15: 00007ffe82eaf138
[  423.077838][T15189]  </TASK>
[  423.146337][T15191] EXT4-fs (loop4): 1 orphan inode deleted
[  423.192576][T15202] loop3: detected capacity change from 0 to 736
[  423.202842][T15191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.207341][ T4048] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  423.211115][T15191] ext4 filesystem being mounted at /607/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  423.380207][T15191] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2967: corrupted inode contents
[  423.413003][T15191] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #16: comm syz.4.2967: mark_inode_dirty error
[  423.425656][T15191] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2967: corrupted inode contents
[  423.438477][T15191] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #16: comm syz.4.2967: mark_inode_dirty error
[  423.453840][T15191] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #16: comm syz.4.2967: mark inode dirty (error -117)
[  423.479931][T15191] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117)
[  423.513205][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.580786][T15225] tmpfs: Bad value for 'mpol'
[  423.677731][T15231] loop0: detected capacity change from 0 to 736
[  423.858640][T15244] loop0: detected capacity change from 0 to 512
[  423.905641][T15244] EXT4-fs (loop0): 1 orphan inode deleted
[  423.914608][T15244] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.934410][   T58] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  423.946553][T15244] ext4 filesystem being mounted at /598/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  423.989435][T15244] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.2989: corrupted inode contents
[  424.032910][T15255] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2992'.
[  424.042735][T15244] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.2989: mark_inode_dirty error
[  424.070286][T15254] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2992'.
[  424.104923][T15244] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.2989: corrupted inode contents
[  424.146301][T15244] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.2989: mark_inode_dirty error
[  424.190552][T15244] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.2989: mark inode dirty (error -117)
[  424.214086][T15225] loop1: detected capacity change from 0 to 65536
[  424.214374][   T29] kauditd_printk_skb: 216 callbacks suppressed
[  424.214393][   T29] audit: type=1326 audit(1747660951.790:10953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f747393e9f7 code=0x7ffc0000
[  424.250335][   T29] audit: type=1326 audit(1747660951.790:10954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f747393d2d0 code=0x7ffc0000
[  424.250756][T15244] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  424.273959][   T29] audit: type=1326 audit(1747660951.790:10955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f747393e56b code=0x7ffc0000
[  424.306649][   T29] audit: type=1326 audit(1747660951.870:10956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f747393d5ca code=0x7ffc0000
[  424.330214][   T29] audit: type=1326 audit(1747660951.870:10957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f747393d5ca code=0x7ffc0000
[  424.353670][   T29] audit: type=1326 audit(1747660951.870:10958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f747393d1d7 code=0x7ffc0000
[  424.377411][   T29] audit: type=1326 audit(1747660951.870:10959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f747394010a code=0x7ffc0000
[  424.416169][T15262] FAULT_INJECTION: forcing a failure.
[  424.416169][T15262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  424.429368][T15262] CPU: 0 UID: 0 PID: 15262 Comm: syz.2.2995 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  424.429402][T15262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  424.429452][T15262] Call Trace:
[  424.429461][T15262]  <TASK>
[  424.429472][T15262]  __dump_stack+0x1d/0x30
[  424.429519][T15262]  dump_stack_lvl+0xe8/0x140
[  424.429541][T15262]  dump_stack+0x15/0x1b
[  424.429560][T15262]  should_fail_ex+0x265/0x280
[  424.429716][T15262]  should_fail+0xb/0x20
[  424.429749][T15262]  should_fail_usercopy+0x1a/0x20
[  424.429770][T15262]  strncpy_from_user+0x25/0x230
[  424.429804][T15262]  ? kmem_cache_alloc_noprof+0x186/0x310
[  424.429840][T15262]  ? getname_flags+0x80/0x3b0
[  424.429882][T15262]  getname_flags+0xae/0x3b0
[  424.429977][T15262]  __se_sys_newstat+0x4b/0x270
[  424.430028][T15262]  ? fput+0x8f/0xc0
[  424.430051][T15262]  ? ksys_write+0x16e/0x1a0
[  424.430089][T15262]  __x64_sys_newstat+0x31/0x40
[  424.430200][T15262]  x64_sys_call+0x781/0x2fb0
[  424.430305][T15262]  do_syscall_64+0xd0/0x1a0
[  424.430332][T15262]  ? clear_bhb_loop+0x40/0x90
[  424.430355][T15262]  ? clear_bhb_loop+0x40/0x90
[  424.430422][T15262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.430443][T15262] RIP: 0033:0x7f9dc165e969
[  424.430462][T15262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.430487][T15262] RSP: 002b:00007f9dbfcc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  424.430511][T15262] RAX: ffffffffffffffda RBX: 00007f9dc1885fa0 RCX: 00007f9dc165e969
[  424.430557][T15262] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: 0000200000000ac0
[  424.430570][T15262] RBP: 00007f9dbfcc7090 R08: 0000000000000000 R09: 0000000000000000
[  424.430583][T15262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  424.430595][T15262] R13: 0000000000000000 R14: 00007f9dc1885fa0 R15: 00007ffd5192e258
[  424.430615][T15262]  </TASK>
[  424.431118][T15264] loop3: detected capacity change from 0 to 736
[  424.518416][T15266] x_tables: duplicate underflow at hook 1
[  424.519558][   T29] audit: type=1326 audit(1747660951.940:10960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f747393d2d0 code=0x7ffc0000
[  424.660161][   T29] audit: type=1326 audit(1747660951.940:10961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f747393e56b code=0x7ffc0000
[  424.683747][   T29] audit: type=1326 audit(1747660951.940:10962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15224 comm="syz.1.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f747393d5ca code=0x7ffc0000
[  424.725892][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.783319][T15273] serio: Serial port ptm0
[  424.810453][T15279] FAULT_INJECTION: forcing a failure.
[  424.810453][T15279] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  424.823680][T15279] CPU: 0 UID: 0 PID: 15279 Comm: syz.0.2998 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  424.823717][T15279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  424.823734][T15279] Call Trace:
[  424.823740][T15279]  <TASK>
[  424.823748][T15279]  __dump_stack+0x1d/0x30
[  424.823770][T15279]  dump_stack_lvl+0xe8/0x140
[  424.823859][T15279]  dump_stack+0x15/0x1b
[  424.823881][T15279]  should_fail_ex+0x265/0x280
[  424.823918][T15279]  should_fail+0xb/0x20
[  424.823948][T15279]  should_fail_usercopy+0x1a/0x20
[  424.824009][T15279]  _copy_to_user+0x20/0xa0
[  424.824033][T15279]  simple_read_from_buffer+0xb5/0x130
[  424.824066][T15279]  proc_fail_nth_read+0x100/0x140
[  424.824233][T15279]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  424.824263][T15279]  vfs_read+0x1a0/0x6f0
[  424.824353][T15279]  ? __rcu_read_unlock+0x4f/0x70
[  424.824383][T15279]  ? __fget_files+0x184/0x1c0
[  424.824414][T15279]  ? __sys_bind+0x1f9/0x2a0
[  424.824481][T15279]  ksys_read+0xda/0x1a0
[  424.824513][T15279]  __x64_sys_read+0x40/0x50
[  424.824549][T15279]  x64_sys_call+0x2d77/0x2fb0
[  424.824578][T15279]  do_syscall_64+0xd0/0x1a0
[  424.824646][T15279]  ? clear_bhb_loop+0x40/0x90
[  424.824676][T15279]  ? clear_bhb_loop+0x40/0x90
[  424.824705][T15279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.824787][T15279] RIP: 0033:0x7fbe2c93d37c
[  424.824802][T15279] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  424.824825][T15279] RSP: 002b:00007fbe2afa7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  424.824986][T15279] RAX: ffffffffffffffda RBX: 00007fbe2cb65fa0 RCX: 00007fbe2c93d37c
[  424.825004][T15279] RDX: 000000000000000f RSI: 00007fbe2afa70a0 RDI: 0000000000000007
[  424.825021][T15279] RBP: 00007fbe2afa7090 R08: 0000000000000000 R09: 0000000000000000
[  424.825038][T15279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  424.825055][T15279] R13: 0000000000000000 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  424.825081][T15279]  </TASK>
[  425.137335][T15298] loop1: detected capacity change from 0 to 512
[  425.157134][T15301] loop3: detected capacity change from 0 to 736
[  425.168114][T15298] EXT4-fs (loop1): 1 orphan inode deleted
[  425.174465][T15298] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.189053][   T58] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  425.202662][T15298] ext4 filesystem being mounted at /599/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  425.203677][T15307] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3011'.
[  425.255391][T15298] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3008: corrupted inode contents
[  425.282266][T15298] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3008: mark_inode_dirty error
[  425.294252][T15298] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3008: corrupted inode contents
[  425.310496][T15298] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3008: mark_inode_dirty error
[  425.326894][T15318] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3015'.
[  425.338102][T15298] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3008: mark inode dirty (error -117)
[  425.351330][T15298] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  425.376358][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.396775][T15322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3017'.
[  425.405771][T15322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3017'.
[  425.414691][T15322] netlink: 'syz.4.3017': attribute type 21 has an invalid length.
[  425.587566][T15347] loop4: detected capacity change from 0 to 736
[  425.594818][T15340] netlink: 'syz.3.3024': attribute type 10 has an invalid length.
[  425.636275][T15340] veth0_macvtap: left promiscuous mode
[  425.642296][T15340] team0: Device veth0_macvtap failed to register rx_handler
[  425.711316][T15358] FAULT_INJECTION: forcing a failure.
[  425.711316][T15358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.724473][T15358] CPU: 1 UID: 0 PID: 15358 Comm: syz.2.3031 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  425.724510][T15358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  425.724527][T15358] Call Trace:
[  425.724533][T15358]  <TASK>
[  425.724541][T15358]  __dump_stack+0x1d/0x30
[  425.724601][T15358]  dump_stack_lvl+0xe8/0x140
[  425.724624][T15358]  dump_stack+0x15/0x1b
[  425.724640][T15358]  should_fail_ex+0x265/0x280
[  425.724692][T15358]  should_fail+0xb/0x20
[  425.724732][T15358]  should_fail_usercopy+0x1a/0x20
[  425.724759][T15358]  _copy_to_user+0x20/0xa0
[  425.724818][T15358]  simple_read_from_buffer+0xb5/0x130
[  425.724851][T15358]  proc_fail_nth_read+0x100/0x140
[  425.724878][T15358]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.724910][T15358]  vfs_read+0x1a0/0x6f0
[  425.724964][T15358]  ? __rcu_read_unlock+0x4f/0x70
[  425.724988][T15358]  ? __fget_files+0x184/0x1c0
[  425.725018][T15358]  ksys_read+0xda/0x1a0
[  425.725099][T15358]  __x64_sys_read+0x40/0x50
[  425.725126][T15358]  x64_sys_call+0x2d77/0x2fb0
[  425.725171][T15358]  do_syscall_64+0xd0/0x1a0
[  425.725203][T15358]  ? clear_bhb_loop+0x40/0x90
[  425.725231][T15358]  ? clear_bhb_loop+0x40/0x90
[  425.725260][T15358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.725321][T15358] RIP: 0033:0x7f9dc165d37c
[  425.725354][T15358] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  425.725378][T15358] RSP: 002b:00007f9dbfcc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  425.725402][T15358] RAX: ffffffffffffffda RBX: 00007f9dc1885fa0 RCX: 00007f9dc165d37c
[  425.725419][T15358] RDX: 000000000000000f RSI: 00007f9dbfcc70a0 RDI: 0000000000000006
[  425.725502][T15358] RBP: 00007f9dbfcc7090 R08: 0000000000000000 R09: 0000000000000014
[  425.725516][T15358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.725532][T15358] R13: 0000000000000000 R14: 00007f9dc1885fa0 R15: 00007ffd5192e258
[  425.725562][T15358]  </TASK>
[  425.933576][T15364] loop4: detected capacity change from 0 to 128
[  426.118574][T15390] loop0: detected capacity change from 0 to 128
[  426.146976][T15390] FAULT_INJECTION: forcing a failure.
[  426.146976][T15390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  426.160320][T15390] CPU: 0 UID: 0 PID: 15390 Comm: syz.0.3046 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  426.160363][T15390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  426.160377][T15390] Call Trace:
[  426.160383][T15390]  <TASK>
[  426.160390][T15390]  __dump_stack+0x1d/0x30
[  426.160415][T15390]  dump_stack_lvl+0xe8/0x140
[  426.160439][T15390]  dump_stack+0x15/0x1b
[  426.160467][T15390]  should_fail_ex+0x265/0x280
[  426.160505][T15390]  should_fail+0xb/0x20
[  426.160536][T15390]  should_fail_usercopy+0x1a/0x20
[  426.160631][T15390]  strncpy_from_user+0x25/0x230
[  426.160663][T15390]  ? kmem_cache_alloc_noprof+0x186/0x310
[  426.160691][T15390]  ? getname_flags+0x80/0x3b0
[  426.160768][T15390]  getname_flags+0xae/0x3b0
[  426.160801][T15390]  __x64_sys_renameat2+0x5f/0x90
[  426.160841][T15390]  x64_sys_call+0x2bf6/0x2fb0
[  426.160908][T15390]  do_syscall_64+0xd0/0x1a0
[  426.161006][T15390]  ? clear_bhb_loop+0x40/0x90
[  426.161034][T15390]  ? clear_bhb_loop+0x40/0x90
[  426.161056][T15390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.161109][T15390] RIP: 0033:0x7fbe2c93e969
[  426.161130][T15390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.161155][T15390] RSP: 002b:00007fbe2afa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  426.161181][T15390] RAX: ffffffffffffffda RBX: 00007fbe2cb65fa0 RCX: 00007fbe2c93e969
[  426.161212][T15390] RDX: 0000000000000006 RSI: 0000200000000140 RDI: 0000000000000006
[  426.161225][T15390] RBP: 00007fbe2afa7090 R08: 0000000000000001 R09: 0000000000000000
[  426.161238][T15390] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  426.161251][T15390] R13: 0000000000000000 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  426.161276][T15390]  </TASK>
[  426.168936][T15388] loop4: detected capacity change from 0 to 128
[  426.381204][T15397] loop1: detected capacity change from 0 to 128
[  426.403882][T15397] FAULT_INJECTION: forcing a failure.
[  426.403882][T15397] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  426.416998][T15397] CPU: 0 UID: 0 PID: 15397 Comm: syz.1.3048 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  426.417080][T15397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  426.417176][T15397] Call Trace:
[  426.417183][T15397]  <TASK>
[  426.417191][T15397]  __dump_stack+0x1d/0x30
[  426.417214][T15397]  dump_stack_lvl+0xe8/0x140
[  426.417238][T15397]  dump_stack+0x15/0x1b
[  426.417260][T15397]  should_fail_ex+0x265/0x280
[  426.417370][T15397]  should_fail+0xb/0x20
[  426.417449][T15397]  should_fail_usercopy+0x1a/0x20
[  426.417478][T15397]  strncpy_from_user+0x25/0x230
[  426.417513][T15397]  ? kmem_cache_alloc_noprof+0x186/0x310
[  426.417540][T15397]  ? getname_flags+0x80/0x3b0
[  426.417635][T15397]  getname_flags+0xae/0x3b0
[  426.417678][T15397]  user_path_at+0x28/0x130
[  426.417706][T15397]  vfs_open_tree+0xef/0x540
[  426.417752][T15397]  __x64_sys_open_tree+0x45/0xc0
[  426.417859][T15397]  x64_sys_call+0x28d3/0x2fb0
[  426.417889][T15397]  do_syscall_64+0xd0/0x1a0
[  426.417935][T15397]  ? clear_bhb_loop+0x40/0x90
[  426.417963][T15397]  ? clear_bhb_loop+0x40/0x90
[  426.417993][T15397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.418021][T15397] RIP: 0033:0x7f747393e969
[  426.418041][T15397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.418136][T15397] RSP: 002b:00007f7471fa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac
[  426.418162][T15397] RAX: ffffffffffffffda RBX: 00007f7473b65fa0 RCX: 00007f747393e969
[  426.418180][T15397] RDX: 0000000000081000 RSI: 0000200000000640 RDI: ffffffffffffff9c
[  426.418197][T15397] RBP: 00007f7471fa7090 R08: 0000000000000000 R09: 0000000000000000
[  426.418214][T15397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.418231][T15397] R13: 0000000000000000 R14: 00007f7473b65fa0 R15: 00007ffcf37b5058
[  426.418257][T15397]  </TASK>
[  426.422901][T15388] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  426.493645][T15410] loop3: detected capacity change from 0 to 2048
[  426.501799][T15388] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  426.549192][T15410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.703351][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.705783][T15401] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3050'.
[  426.721480][T15401] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3050'.
[  426.787769][T15428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3058'.
[  426.802633][T15429] loop3: detected capacity change from 0 to 128
[  426.816018][T15431] loop1: detected capacity change from 0 to 128
[  426.875392][T15437] loop3: detected capacity change from 0 to 512
[  426.927076][T15437] EXT4-fs (loop3): 1 orphan inode deleted
[  426.950195][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  426.963697][T15437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  426.977817][T15437] ext4 filesystem being mounted at /592/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  426.993789][T15451] xt_policy: output policy not valid in PREROUTING and INPUT
[  427.007075][T15437] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3060: corrupted inode contents
[  427.027030][T15437] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3060: mark_inode_dirty error
[  427.047622][T15451] loop1: detected capacity change from 0 to 1024
[  427.063062][T15437] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3060: corrupted inode contents
[  427.083547][T15437] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3060: mark_inode_dirty error
[  427.096796][T15437] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3060: mark inode dirty (error -117)
[  427.112217][T15437] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  427.123197][T15454] loop0: detected capacity change from 0 to 128
[  427.135692][T15454] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  427.150675][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.158283][T15454] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  427.291113][T15471] FAULT_INJECTION: forcing a failure.
[  427.291113][T15471] name failslab, interval 1, probability 0, space 0, times 0
[  427.303907][T15471] CPU: 1 UID: 0 PID: 15471 Comm: syz.0.3073 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  427.303940][T15471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  427.303958][T15471] Call Trace:
[  427.303967][T15471]  <TASK>
[  427.303977][T15471]  __dump_stack+0x1d/0x30
[  427.304007][T15471]  dump_stack_lvl+0xe8/0x140
[  427.304033][T15471]  dump_stack+0x15/0x1b
[  427.304056][T15471]  should_fail_ex+0x265/0x280
[  427.304095][T15471]  should_failslab+0x8c/0xb0
[  427.304208][T15471]  kmem_cache_alloc_node_noprof+0x57/0x320
[  427.304230][T15471]  ? __alloc_skb+0x101/0x320
[  427.304324][T15471]  __alloc_skb+0x101/0x320
[  427.304366][T15471]  netlink_alloc_large_skb+0xba/0xf0
[  427.304407][T15471]  netlink_sendmsg+0x3cf/0x6b0
[  427.304435][T15471]  ? __pfx_netlink_sendmsg+0x10/0x10
[  427.304521][T15471]  __sock_sendmsg+0x145/0x180
[  427.304558][T15471]  ____sys_sendmsg+0x31e/0x4e0
[  427.304589][T15471]  ___sys_sendmsg+0x17b/0x1d0
[  427.304634][T15471]  __x64_sys_sendmsg+0xd4/0x160
[  427.304668][T15471]  x64_sys_call+0x2999/0x2fb0
[  427.304734][T15471]  do_syscall_64+0xd0/0x1a0
[  427.304762][T15471]  ? clear_bhb_loop+0x40/0x90
[  427.304808][T15471]  ? clear_bhb_loop+0x40/0x90
[  427.304894][T15471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.304925][T15471] RIP: 0033:0x7fbe2c93e969
[  427.304945][T15471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.304974][T15471] RSP: 002b:00007fbe2afa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  427.304998][T15471] RAX: ffffffffffffffda RBX: 00007fbe2cb65fa0 RCX: 00007fbe2c93e969
[  427.305012][T15471] RDX: 0000000004004040 RSI: 00002000000015c0 RDI: 0000000000000004
[  427.305059][T15471] RBP: 00007fbe2afa7090 R08: 0000000000000000 R09: 0000000000000000
[  427.305075][T15471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.305087][T15471] R13: 0000000000000000 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  427.305106][T15471]  </TASK>
[  427.581177][T15487] tipc: Withdrawal distribution failure
[  427.688015][T15501] random: crng reseeded on system resumption
[  427.838407][T15500] loop1: detected capacity change from 0 to 512
[  427.870786][T15517] FAULT_INJECTION: forcing a failure.
[  427.870786][T15517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  427.879351][T15519] FAULT_INJECTION: forcing a failure.
[  427.879351][T15519] name failslab, interval 1, probability 0, space 0, times 0
[  427.884044][T15517] CPU: 0 UID: 0 PID: 15517 Comm: syz.0.3091 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  427.884071][T15517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  427.884084][T15517] Call Trace:
[  427.884092][T15517]  <TASK>
[  427.884101][T15517]  __dump_stack+0x1d/0x30
[  427.884130][T15517]  dump_stack_lvl+0xe8/0x140
[  427.884223][T15517]  dump_stack+0x15/0x1b
[  427.884247][T15517]  should_fail_ex+0x265/0x280
[  427.884294][T15517]  should_fail+0xb/0x20
[  427.884382][T15517]  should_fail_usercopy+0x1a/0x20
[  427.884411][T15517]  _copy_to_user+0x20/0xa0
[  427.884444][T15517]  simple_read_from_buffer+0xb5/0x130
[  427.884481][T15517]  proc_fail_nth_read+0x100/0x140
[  427.884546][T15517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  427.884590][T15517]  vfs_read+0x1a0/0x6f0
[  427.884626][T15517]  ? __rcu_read_unlock+0x4f/0x70
[  427.884657][T15517]  ? __fget_files+0x184/0x1c0
[  427.884756][T15517]  ? __pfx_br_ioctl_stub+0x10/0x10
[  427.884852][T15517]  ksys_read+0xda/0x1a0
[  427.884890][T15517]  __x64_sys_read+0x40/0x50
[  427.884926][T15517]  x64_sys_call+0x2d77/0x2fb0
[  427.884955][T15517]  do_syscall_64+0xd0/0x1a0
[  427.885002][T15517]  ? clear_bhb_loop+0x40/0x90
[  427.885032][T15517]  ? clear_bhb_loop+0x40/0x90
[  427.885162][T15517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.885198][T15517] RIP: 0033:0x7fbe2c93d37c
[  427.885220][T15517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  427.885246][T15517] RSP: 002b:00007fbe2afa7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  427.885294][T15517] RAX: ffffffffffffffda RBX: 00007fbe2cb65fa0 RCX: 00007fbe2c93d37c
[  427.885313][T15517] RDX: 000000000000000f RSI: 00007fbe2afa70a0 RDI: 0000000000000004
[  427.885351][T15517] RBP: 00007fbe2afa7090 R08: 0000000000000000 R09: 0000000000000000
[  427.885369][T15517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.885386][T15517] R13: 0000000000000000 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  427.885413][T15517]  </TASK>
[  427.900590][T15500] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  427.907648][T15519] CPU: 1 UID: 0 PID: 15519 Comm: syz.3.3092 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  427.907752][T15519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  427.907770][T15519] Call Trace:
[  427.907779][T15519]  <TASK>
[  427.907790][T15519]  __dump_stack+0x1d/0x30
[  427.907819][T15519]  dump_stack_lvl+0xe8/0x140
[  427.907846][T15519]  dump_stack+0x15/0x1b
[  427.907870][T15519]  should_fail_ex+0x265/0x280
[  427.907962][T15519]  ? l2tp_tunnel_create+0x67/0x1d0
[  427.907995][T15519]  should_failslab+0x8c/0xb0
[  427.908039][T15519]  __kmalloc_cache_noprof+0x4c/0x320
[  427.908080][T15519]  ? radix_tree_lookup+0x12d/0x140
[  427.908130][T15519]  l2tp_tunnel_create+0x67/0x1d0
[  427.908195][T15519]  pppol2tp_connect+0x38f/0xa00
[  427.908240][T15519]  ? __pfx_pppol2tp_connect+0x10/0x10
[  427.908278][T15519]  __sys_connect+0x1f2/0x2b0
[  427.908330][T15519]  __x64_sys_connect+0x3f/0x50
[  427.908437][T15519]  x64_sys_call+0x1daa/0x2fb0
[  427.908496][T15519]  do_syscall_64+0xd0/0x1a0
[  427.908530][T15519]  ? clear_bhb_loop+0x40/0x90
[  427.908561][T15519]  ? clear_bhb_loop+0x40/0x90
[  427.908602][T15519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.908631][T15519] RIP: 0033:0x7f6304a5e969
[  427.908653][T15519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.908679][T15519] RSP: 002b:00007f63030c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  427.908714][T15519] RAX: ffffffffffffffda RBX: 00007f6304c85fa0 RCX: 00007f6304a5e969
[  427.908732][T15519] RDX: 0000000000000032 RSI: 00002000000002c0 RDI: 0000000000000003
[  427.908749][T15519] RBP: 00007f63030c7090 R08: 0000000000000000 R09: 0000000000000000
[  427.908767][T15519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.908784][T15519] R13: 0000000000000000 R14: 00007f6304c85fa0 R15: 00007ffe82eaf138
[  427.908810][T15519]  </TASK>
[  428.249339][T15535] loop0: detected capacity change from 0 to 2048
[  428.251765][T15500] ext4 filesystem being mounted at /615/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  428.354630][T15535]  loop0: p1 < > p2 < > p3 p4
[  428.359434][T15535] loop0: partition table partially beyond EOD, truncated
[  428.367033][T15535] loop0: p1 start 2305 is beyond EOD, truncated
[  428.373484][T15535] loop0: p2 start 4294902784 is beyond EOD, truncated
[  428.380368][T15535] loop0: p3 start 3724543488 is beyond EOD, truncated
[  428.387207][T15535] loop0: p4 size 8192 extends beyond EOD, truncated
[  428.401582][T15502] SELinux: failed to load policy
[  428.467528][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.589049][T15566] xt_policy: output policy not valid in PREROUTING and INPUT
[  428.614213][T15566] loop1: detected capacity change from 0 to 1024
[  428.666708][T15559] netlink: 'GPL': attribute type 4 has an invalid length.
[  428.676048][T15559] netlink: 'GPL': attribute type 4 has an invalid length.
[  428.755977][T15574] loop1: detected capacity change from 0 to 128
[  428.787124][T15580] loop3: detected capacity change from 0 to 736
[  428.809293][T15574] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  428.839015][T15574] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  428.900443][T15582] loop4: detected capacity change from 0 to 736
[  428.988975][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  428.996892][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.004734][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.012725][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.020665][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.028506][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.036301][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.044063][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.051861][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.059692][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.067493][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.075363][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.079491][T15591] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3116'.
[  429.083109][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.094544][T15593] FAULT_INJECTION: forcing a failure.
[  429.094544][T15593] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  429.099878][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.112903][T15593] CPU: 1 UID: 0 PID: 15593 Comm: syz.0.3117 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  429.112943][T15593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  429.113001][T15593] Call Trace:
[  429.113011][T15593]  <TASK>
[  429.113021][T15593]  __dump_stack+0x1d/0x30
[  429.113051][T15593]  dump_stack_lvl+0xe8/0x140
[  429.113214][T15593]  dump_stack+0x15/0x1b
[  429.113238][T15593]  should_fail_ex+0x265/0x280
[  429.113327][T15593]  should_fail+0xb/0x20
[  429.113370][T15593]  should_fail_usercopy+0x1a/0x20
[  429.113445][T15593]  strncpy_from_user+0x25/0x230
[  429.113483][T15593]  ? kmem_cache_alloc_noprof+0x186/0x310
[  429.113512][T15593]  ? getname_flags+0x80/0x3b0
[  429.113633][T15593]  getname_flags+0xae/0x3b0
[  429.113677][T15593]  do_sys_openat2+0x60/0x110
[  429.113708][T15593]  __x64_sys_openat+0xf2/0x120
[  429.113887][T15593]  x64_sys_call+0x1af/0x2fb0
[  429.113918][T15593]  do_syscall_64+0xd0/0x1a0
[  429.113952][T15593]  ? clear_bhb_loop+0x40/0x90
[  429.113983][T15593]  ? clear_bhb_loop+0x40/0x90
[  429.114017][T15593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.114046][T15593] RIP: 0033:0x7fbe2c93d2d0
[  429.114076][T15593] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  429.114102][T15593] RSP: 002b:00007fbe2afa6f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  429.114128][T15593] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fbe2c93d2d0
[  429.114146][T15593] RDX: 0000000000000002 RSI: 00007fbe2afa6fa0 RDI: 00000000ffffff9c
[  429.114163][T15593] RBP: 00007fbe2afa6fa0 R08: 0000000000000000 R09: 0000000000000000
[  429.114180][T15593] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  429.114228][T15593] R13: 0000000000000001 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  429.114254][T15593]  </TASK>
[  429.235060][   T29] kauditd_printk_skb: 241 callbacks suppressed
[  429.235078][   T29] audit: type=1400 audit(1747660956.820:11202): avc:  denied  { create } for  pid=15598 comm="syz.0.3118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  429.252800][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.252828][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.252919][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.252942][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.265308][T15599] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.269440][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.278705][   T29] audit: type=1400 audit(1747660956.840:11203): avc:  denied  { bind } for  pid=15598 comm="syz.0.3118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  429.285486][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.293492][   T29] audit: type=1400 audit(1747660956.840:11204): avc:  denied  { read write } for  pid=15598 comm="syz.0.3118" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  429.301563][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.304748][   T29] audit: type=1400 audit(1747660956.850:11205): avc:  denied  { open } for  pid=15598 comm="syz.0.3118" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  429.310732][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.310756][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.310778][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.330379][   T29] audit: type=1400 audit(1747660956.850:11206): avc:  denied  { ioctl } for  pid=15598 comm="syz.0.3118" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  429.338065][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.349422][T15599] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.353537][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.531941][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.531970][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.532000][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.555538][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.563330][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.571280][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.579100][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.586857][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.594677][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.602427][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.610274][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.618151][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.626010][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.633749][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.641540][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.649385][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.657231][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.665101][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.672897][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.680660][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.688432][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.696188][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.703938][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.711715][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.719482][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.727255][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.735016][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.742878][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.750751][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.758567][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.766351][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.774159][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.781981][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.789897][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.797695][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.805533][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.813273][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.821084][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.828858][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.828891][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.844556][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.852306][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.860091][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.867878][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.875657][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.883407][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.891260][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.899083][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.906872][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.914726][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.922485][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.930290][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.938078][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.945873][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.953625][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.961455][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.969243][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.977016][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.984785][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  429.992544][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.000368][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.008185][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.016001][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.023842][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.031695][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.039535][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.047296][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.055080][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.062895][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.070656][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.078409][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.086160][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.093936][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.101786][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.109611][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.117361][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.125122][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.132857][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.140606][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.148466][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.156284][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.164024][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.171796][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.179611][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.187364][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.195232][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.203072][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.210920][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.218709][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.226501][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.234229][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.241982][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.249809][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.257611][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.265397][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.273241][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.281010][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.288982][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.296821][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.304663][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.312414][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.320179][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.328013][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.335793][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.343583][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.351432][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: unknown main item tag 0x0
[  430.360299][ T2969] hid-generic 0006:0007:FFFFFFFA.0001: hidraw0: VIRTUAL HID v0.08 Device [syz0] on syz1
[  430.397295][T15610] loop3: detected capacity change from 0 to 1024
[  430.427652][T15610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  430.445117][T15610] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 15 with error 28
[  430.457595][T15610] EXT4-fs (loop3): This should not happen!! Data will be lost
[  430.457595][T15610] 
[  430.467417][T15610] EXT4-fs (loop3): Total free blocks count 0
[  430.473522][T15610] EXT4-fs (loop3): Free/Dirty block details
[  430.479749][T15610] EXT4-fs (loop3): free_blocks=0
[  430.484952][T15610] EXT4-fs (loop3): dirty_blocks=0
[  430.490024][T15610] EXT4-fs (loop3): Block reservation details
[  430.496160][T15610] EXT4-fs (loop3): i_reserved_data_blocks=0
[  430.520557][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.547846][T15622] loop4: detected capacity change from 0 to 512
[  430.552492][T15624] loop1: detected capacity change from 0 to 512
[  430.560662][T15625] loop3: detected capacity change from 0 to 512
[  430.587658][T15625] EXT4-fs (loop3): 1 orphan inode deleted
[  430.593905][T15625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.598801][T15622] EXT4-fs (loop4): 1 orphan inode deleted
[  430.606685][ T4048] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  430.613805][T15622] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.622034][ T4048] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  430.635548][T15622] ext4 filesystem being mounted at /630/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.648107][T15625] ext4 filesystem being mounted at /612/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.657322][ T4048] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  430.673630][T15624] EXT4-fs (loop1): 1 orphan inode deleted
[  430.676751][ T4048] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  430.694660][ T4048] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  430.694886][T15624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.704484][ T4048] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  430.717370][T15624] ext4 filesystem being mounted at /623/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.731321][T15622] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3127: corrupted inode contents
[  430.752771][T15632] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3125: corrupted inode contents
[  430.765395][T15632] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3125: mark_inode_dirty error
[  430.765479][T15622] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #16: comm syz.4.3127: mark_inode_dirty error
[  430.789233][T15632] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3125: corrupted inode contents
[  430.789276][T15622] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3127: corrupted inode contents
[  430.805243][T15632] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3125: mark_inode_dirty error
[  430.827574][T15622] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #16: comm syz.4.3127: mark_inode_dirty error
[  430.827847][T15624] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3126: corrupted inode contents
[  430.840979][T15622] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #16: comm syz.4.3127: mark inode dirty (error -117)
[  430.864711][T15622] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117)
[  430.865269][T15632] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3125: mark inode dirty (error -117)
[  430.887157][T15632] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  430.896872][T15624] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3126: mark_inode_dirty error
[  430.908908][T15624] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3126: corrupted inode contents
[  430.921904][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.932501][T15635] loop0: detected capacity change from 0 to 512
[  430.940447][T15624] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3126: mark_inode_dirty error
[  430.940961][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.954416][T15624] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3126: mark inode dirty (error -117)
[  430.975747][T15624] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  431.016322][T15635] EXT4-fs (loop0): 1 orphan inode deleted
[  431.026282][T15635] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.039363][   T12] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  431.049204][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  431.049753][T15635] ext4 filesystem being mounted at /623/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  431.065970][   T29] audit: type=1400 audit(1747660958.640:11207): avc:  denied  { connect } for  pid=15643 comm="syz.3.3132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  431.085398][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.093793][T15635] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3128: corrupted inode contents
[  431.112599][T15635] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.3128: mark_inode_dirty error
[  431.126237][T15644] SELinux:  Context system_u:object_r:tape_device_t:s0 is not valid (left unmapped).
[  431.139072][T15635] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3128: corrupted inode contents
[  431.152128][T15647] loop1: detected capacity change from 0 to 512
[  431.163872][T15647] EXT4-fs (loop1): external journal device major/minor numbers have changed
[  431.176341][T15635] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.3128: mark_inode_dirty error
[  431.188461][T15647] EXT4-fs (loop1): failed to open journal device unknown-block(7,45) -6
[  431.190794][T15635] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.3128: mark inode dirty (error -117)
[  431.211462][T15635] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  431.254904][T15654] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3135'.
[  431.271651][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.335908][T15663] loop1: detected capacity change from 0 to 128
[  431.352080][T15663] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  431.353392][T15666] loop0: detected capacity change from 0 to 512
[  431.371011][T15663] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  431.389270][T15666] EXT4-fs (loop0): 1 orphan inode deleted
[  431.395786][T15666] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.409781][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  431.421666][T15666] ext4 filesystem being mounted at /625/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  431.436914][T15666] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #18: comm syz.0.3140: corrupted inode contents
[  431.450313][T15666] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #18: comm syz.0.3140: mark_inode_dirty error
[  431.462165][T15666] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #18: comm syz.0.3140: corrupted inode contents
[  431.475360][T15666] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.3140: mark_inode_dirty error
[  431.491867][T15666] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.3140: mark inode dirty (error -117)
[  431.505050][T15666] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  431.512056][T15671] loop1: detected capacity change from 0 to 512
[  431.528983][T15671] EXT4-fs (loop1): 1 orphan inode deleted
[  431.529320][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.535390][T15671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.556840][T15671] ext4 filesystem being mounted at /627/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  431.556911][ T4048] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  431.583444][T15671] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3141: corrupted inode contents
[  431.595781][T15671] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3141: mark_inode_dirty error
[  431.607729][T15671] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3141: corrupted inode contents
[  431.620047][T15671] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3141: mark_inode_dirty error
[  431.633023][T15671] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3141: mark inode dirty (error -117)
[  431.646741][T15671] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  431.668939][T15677] FAULT_INJECTION: forcing a failure.
[  431.668939][T15677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  431.682213][T15677] CPU: 1 UID: 0 PID: 15677 Comm: syz.0.3143 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  431.682248][T15677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  431.682265][T15677] Call Trace:
[  431.682346][T15677]  <TASK>
[  431.682354][T15677]  __dump_stack+0x1d/0x30
[  431.682376][T15677]  dump_stack_lvl+0xe8/0x140
[  431.682398][T15677]  dump_stack+0x15/0x1b
[  431.682420][T15677]  should_fail_ex+0x265/0x280
[  431.682453][T15677]  should_fail+0xb/0x20
[  431.682502][T15677]  should_fail_usercopy+0x1a/0x20
[  431.682582][T15677]  _copy_from_iter+0xcf/0xdd0
[  431.682619][T15677]  ? alloc_pages_mpol+0x202/0x250
[  431.682644][T15677]  copy_page_from_iter+0x15a/0x290
[  431.682664][T15677]  tun_get_user+0x5c7/0x24d0
[  431.682765][T15677]  ? ref_tracker_alloc+0x1f2/0x2f0
[  431.682821][T15677]  tun_chr_write_iter+0x15e/0x210
[  431.682845][T15677]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  431.682867][T15677]  vfs_write+0x4a0/0x8d0
[  431.682916][T15677]  ksys_write+0xda/0x1a0
[  431.682951][T15677]  __x64_sys_write+0x40/0x50
[  431.683038][T15677]  x64_sys_call+0x2cdd/0x2fb0
[  431.683058][T15677]  do_syscall_64+0xd0/0x1a0
[  431.683080][T15677]  ? clear_bhb_loop+0x40/0x90
[  431.683137][T15677]  ? clear_bhb_loop+0x40/0x90
[  431.683157][T15677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.683185][T15677] RIP: 0033:0x7fbe2c93d41f
[  431.683230][T15677] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  431.683298][T15677] RSP: 002b:00007fbe2afa7000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  431.683325][T15677] RAX: ffffffffffffffda RBX: 00007fbe2cb65fa0 RCX: 00007fbe2c93d41f
[  431.683337][T15677] RDX: 0000000000000056 RSI: 0000200000000f80 RDI: 00000000000000c8
[  431.683349][T15677] RBP: 00007fbe2afa7090 R08: 0000000000000000 R09: 0000000000000000
[  431.683360][T15677] R10: 0000000000000056 R11: 0000000000000293 R12: 0000000000000001
[  431.683372][T15677] R13: 0000000000000000 R14: 00007fbe2cb65fa0 R15: 00007ffdfb8fb568
[  431.683390][T15677]  </TASK>
[  431.686128][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.922931][T15685] FAULT_INJECTION: forcing a failure.
[  431.922931][T15685] name failslab, interval 1, probability 0, space 0, times 0
[  431.935701][T15685] CPU: 1 UID: 0 PID: 15685 Comm: syz.3.3147 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  431.935728][T15685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  431.935741][T15685] Call Trace:
[  431.935748][T15685]  <TASK>
[  431.935756][T15685]  __dump_stack+0x1d/0x30
[  431.935784][T15685]  dump_stack_lvl+0xe8/0x140
[  431.935849][T15685]  dump_stack+0x15/0x1b
[  431.935866][T15685]  should_fail_ex+0x265/0x280
[  431.935900][T15685]  should_failslab+0x8c/0xb0
[  431.935958][T15685]  kmem_cache_alloc_node_noprof+0x57/0x320
[  431.935987][T15685]  ? __alloc_skb+0x101/0x320
[  431.936098][T15685]  __alloc_skb+0x101/0x320
[  431.936184][T15685]  netlink_alloc_large_skb+0xba/0xf0
[  431.936219][T15685]  netlink_sendmsg+0x3cf/0x6b0
[  431.936249][T15685]  ? __pfx_netlink_sendmsg+0x10/0x10
[  431.936276][T15685]  __sock_sendmsg+0x145/0x180
[  431.936337][T15685]  ____sys_sendmsg+0x31e/0x4e0
[  431.936472][T15685]  ___sys_sendmsg+0x17b/0x1d0
[  431.936519][T15685]  __x64_sys_sendmsg+0xd4/0x160
[  431.936606][T15685]  x64_sys_call+0x2999/0x2fb0
[  431.936635][T15685]  do_syscall_64+0xd0/0x1a0
[  431.936664][T15685]  ? clear_bhb_loop+0x40/0x90
[  431.936755][T15685]  ? clear_bhb_loop+0x40/0x90
[  431.936782][T15685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.936811][T15685] RIP: 0033:0x7f6304a5e969
[  431.936827][T15685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.936931][T15685] RSP: 002b:00007f63030c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  431.936954][T15685] RAX: ffffffffffffffda RBX: 00007f6304c85fa0 RCX: 00007f6304a5e969
[  431.936972][T15685] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  431.936989][T15685] RBP: 00007f63030c7090 R08: 0000000000000000 R09: 0000000000000000
[  431.937007][T15685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  431.937025][T15685] R13: 0000000000000000 R14: 00007f6304c85fa0 R15: 00007ffe82eaf138
[  431.937045][T15685]  </TASK>
[  432.205662][T15694] loop0: detected capacity change from 0 to 512
[  432.212984][T15695] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3151'.
[  432.239660][T15700] loop4: detected capacity change from 0 to 736
[  432.267233][T15694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.282834][T15694] ext4 filesystem being mounted at /630/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  432.298996][T15708] loop1: detected capacity change from 0 to 512
[  432.428456][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.445547][T15708] EXT4-fs (loop1): 1 orphan inode deleted
[  432.452809][T15719] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  432.454168][T15708] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.541612][T15782] loop3: detected capacity change from 0 to 512
[  432.547935][T15708] ext4 filesystem being mounted at /629/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  432.584488][T15708] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3155: corrupted inode contents
[  432.600638][T15708] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3155: mark_inode_dirty error
[  432.619677][T15782] EXT4-fs (loop3): 1 orphan inode deleted
[  432.624244][T15708] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3155: corrupted inode contents
[  432.625962][T15782] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.654482][T15749] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:34: Failed to release dquot type 1
[  432.675777][T15782] ext4 filesystem being mounted at /623/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  432.684369][T15708] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3155: mark_inode_dirty error
[  432.716905][T15782] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3164: corrupted inode contents
[  432.739455][T15708] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3155: mark inode dirty (error -117)
[  432.763923][T15782] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3164: mark_inode_dirty error
[  432.776720][T15782] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3164: corrupted inode contents
[  432.791925][T15782] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3164: mark_inode_dirty error
[  432.815177][T15708] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  432.832384][T15782] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3164: mark inode dirty (error -117)
[  432.860036][T15804] loop0: detected capacity change from 0 to 736
[  432.864754][T15782] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  432.879174][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.949312][T15808] loop0: detected capacity change from 0 to 512
[  432.967912][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.982728][T15808] EXT4-fs (loop0): 1 orphan inode deleted
[  432.989165][T15770] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:47: Failed to release dquot type 1
[  432.991510][T15808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  433.028559][T15808] ext4 filesystem being mounted at /635/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  433.104391][T15808] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3169: corrupted inode contents
[  433.148152][T15808] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.3169: mark_inode_dirty error
[  433.203474][T15820] loop3: detected capacity change from 0 to 128
[  433.229618][T15822] loop1: detected capacity change from 0 to 128
[  433.237958][T15808] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3169: corrupted inode contents
[  433.256625][T15820] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  433.283394][T15822] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  433.292985][T15808] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.3169: mark_inode_dirty error
[  433.308280][T15808] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.3169: mark inode dirty (error -117)
[  433.310498][T15820] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  433.322748][T15808] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  433.353509][T15822] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  433.391240][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.403938][T15824] FAULT_INJECTION: forcing a failure.
[  433.403938][T15824] name failslab, interval 1, probability 0, space 0, times 0
[  433.416720][T15824] CPU: 1 UID: 0 PID: 15824 Comm: syz.2.3175 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  433.416820][T15824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  433.416837][T15824] Call Trace:
[  433.416845][T15824]  <TASK>
[  433.416855][T15824]  __dump_stack+0x1d/0x30
[  433.416897][T15824]  dump_stack_lvl+0xe8/0x140
[  433.416924][T15824]  dump_stack+0x15/0x1b
[  433.416947][T15824]  should_fail_ex+0x265/0x280
[  433.417060][T15824]  should_failslab+0x8c/0xb0
[  433.417103][T15824]  kmem_cache_alloc_node_noprof+0x57/0x320
[  433.417132][T15824]  ? __alloc_skb+0x101/0x320
[  433.417235][T15824]  __alloc_skb+0x101/0x320
[  433.417277][T15824]  ? audit_log_start+0x365/0x6c0
[  433.417319][T15824]  audit_log_start+0x380/0x6c0
[  433.417403][T15824]  audit_seccomp+0x48/0x100
[  433.417444][T15824]  ? __seccomp_filter+0x68c/0x10d0
[  433.417475][T15824]  __seccomp_filter+0x69d/0x10d0
[  433.417508][T15824]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  433.417562][T15824]  ? vfs_write+0x75e/0x8d0
[  433.417599][T15824]  __secure_computing+0x82/0x150
[  433.417626][T15824]  syscall_trace_enter+0xcf/0x1e0
[  433.417740][T15824]  do_syscall_64+0xaa/0x1a0
[  433.417770][T15824]  ? clear_bhb_loop+0x40/0x90
[  433.417797][T15824]  ? clear_bhb_loop+0x40/0x90
[  433.417826][T15824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.417854][T15824] RIP: 0033:0x7f9dc165e969
[  433.417954][T15824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.418054][T15824] RSP: 002b:00007f9dbfcc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  433.418078][T15824] RAX: ffffffffffffffda RBX: 00007f9dc1885fa0 RCX: 00007f9dc165e969
[  433.418095][T15824] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: ffffffffffffffff
[  433.418113][T15824] RBP: 00007f9dbfcc7090 R08: 0000000000000000 R09: 0000000000000000
[  433.418131][T15824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  433.418147][T15824] R13: 0000000000000000 R14: 00007f9dc1885fa0 R15: 00007ffd5192e258
[  433.418184][T15824]  </TASK>
[  433.677763][T15834] netlink: 260 bytes leftover after parsing attributes in process `syz.3.3180'.
[  433.689177][T15834] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3180'.
[  433.705728][T15834] RDS: rds_bind could not find a transport for fe80::3e, load rds_tcp or rds_rdma?
[  433.725673][T15834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3180'.
[  433.771227][T15842] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3183'.
[  433.812855][T15849] loop1: detected capacity change from 0 to 512
[  433.830478][T15854] program syz.3.3188 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  433.924801][T15866] loop1: detected capacity change from 0 to 512
[  433.937796][T15870] loop3: detected capacity change from 0 to 512
[  433.951613][T15866] EXT4-fs (loop1): 1 orphan inode deleted
[  433.961818][T15870] EXT4-fs (loop3): 1 orphan inode deleted
[  433.967983][T15786] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:61: Failed to release dquot type 1
[  433.985851][T15866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  433.999203][T15870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.012851][T15786] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:61: Failed to release dquot type 1
[  434.026575][T15874] loop0: detected capacity change from 0 to 128
[  434.037866][T15874] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  434.038350][T15870] ext4 filesystem being mounted at /631/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  434.044606][T15866] ext4 filesystem being mounted at /636/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  434.073843][T15870] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3195: corrupted inode contents
[  434.078590][T15874] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  434.088973][T15870] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3195: mark_inode_dirty error
[  434.111677][T15870] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3195: corrupted inode contents
[  434.125060][T15870] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3195: mark_inode_dirty error
[  434.128508][T15866] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3193: corrupted inode contents
[  434.150259][T15866] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3193: mark_inode_dirty error
[  434.162087][T15866] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3193: corrupted inode contents
[  434.175451][T15866] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3193: mark_inode_dirty error
[  434.182069][T15870] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3195: mark inode dirty (error -117)
[  434.212437][T15870] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  434.223025][T15866] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3193: mark inode dirty (error -117)
[  434.238085][T15866] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  434.253935][   T29] kauditd_printk_skb: 134 callbacks suppressed
[  434.253951][   T29] audit: type=1326 audit(1747660961.830:11333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15883 comm="syz.4.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e40dde969 code=0x7ffc0000
[  434.283915][   T29] audit: type=1326 audit(1747660961.830:11334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15883 comm="syz.4.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1e40dde969 code=0x7ffc0000
[  434.307539][   T29] audit: type=1326 audit(1747660961.830:11335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15883 comm="syz.4.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e40dde969 code=0x7ffc0000
[  434.331357][   T29] audit: type=1326 audit(1747660961.830:11336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15883 comm="syz.4.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f1e40dde969 code=0x7ffc0000
[  434.355258][   T29] audit: type=1326 audit(1747660961.830:11337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15883 comm="syz.4.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e40dde969 code=0x7ffc0000
[  434.380933][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.392581][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.404379][T15888] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  434.463272][T15893] FAULT_INJECTION: forcing a failure.
[  434.463272][T15893] name failslab, interval 1, probability 0, space 0, times 0
[  434.475994][T15893] CPU: 1 UID: 0 PID: 15893 Comm: syz.3.3202 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  434.476031][T15893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  434.476146][T15893] Call Trace:
[  434.476156][T15893]  <TASK>
[  434.476237][T15893]  __dump_stack+0x1d/0x30
[  434.476264][T15893]  dump_stack_lvl+0xe8/0x140
[  434.476359][T15893]  dump_stack+0x15/0x1b
[  434.476384][T15893]  should_fail_ex+0x265/0x280
[  434.476454][T15893]  should_failslab+0x8c/0xb0
[  434.476522][T15893]  kmem_cache_alloc_node_noprof+0x57/0x320
[  434.476550][T15893]  ? __alloc_skb+0x101/0x320
[  434.476595][T15893]  __alloc_skb+0x101/0x320
[  434.476627][T15893]  netlink_alloc_large_skb+0xba/0xf0
[  434.476911][T15893]  netlink_sendmsg+0x3cf/0x6b0
[  434.476934][T15893]  ? __pfx_netlink_sendmsg+0x10/0x10
[  434.476954][T15893]  __sock_sendmsg+0x145/0x180
[  434.477057][T15893]  ____sys_sendmsg+0x31e/0x4e0
[  434.477089][T15893]  ___sys_sendmsg+0x17b/0x1d0
[  434.477164][T15893]  __x64_sys_sendmsg+0xd4/0x160
[  434.477198][T15893]  x64_sys_call+0x2999/0x2fb0
[  434.477307][T15893]  do_syscall_64+0xd0/0x1a0
[  434.477398][T15893]  ? clear_bhb_loop+0x40/0x90
[  434.477428][T15893]  ? clear_bhb_loop+0x40/0x90
[  434.477449][T15893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.477471][T15893] RIP: 0033:0x7f6304a5e969
[  434.477564][T15893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  434.477588][T15893] RSP: 002b:00007f63030c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  434.477610][T15893] RAX: ffffffffffffffda RBX: 00007f6304c85fa0 RCX: 00007f6304a5e969
[  434.477626][T15893] RDX: 0000000000000000 RSI: 0000200000006280 RDI: 0000000000000003
[  434.477642][T15893] RBP: 00007f63030c7090 R08: 0000000000000000 R09: 0000000000000000
[  434.477659][T15893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  434.477675][T15893] R13: 0000000000000000 R14: 00007f6304c85fa0 R15: 00007ffe82eaf138
[  434.477774][T15893]  </TASK>
[  434.710060][T15898] program syz.4.3205 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  434.749763][   T29] audit: type=1326 audit(1747660962.330:11338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15904 comm="syz.0.3209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbe2c935927 code=0x7ffc0000
[  434.773515][   T29] audit: type=1326 audit(1747660962.330:11339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15904 comm="syz.0.3209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbe2c8dab39 code=0x7ffc0000
[  434.797371][   T29] audit: type=1326 audit(1747660962.330:11340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15904 comm="syz.0.3209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbe2c935927 code=0x7ffc0000
[  434.821286][   T29] audit: type=1326 audit(1747660962.330:11341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15904 comm="syz.0.3209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbe2c8dab39 code=0x7ffc0000
[  434.821371][   T29] audit: type=1326 audit(1747660962.330:11342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15904 comm="syz.0.3209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbe2c935927 code=0x7ffc0000
[  434.865917][T15911] loop3: detected capacity change from 0 to 512
[  434.944534][T15911] EXT4-fs (loop3): 1 orphan inode deleted
[  434.951754][T15911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.966273][T15751] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:36: Failed to release dquot type 1
[  434.966585][T15911] ext4 filesystem being mounted at /634/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.003641][T15911] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3211: corrupted inode contents
[  435.016701][T15911] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3211: mark_inode_dirty error
[  435.028467][T15911] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3211: corrupted inode contents
[  435.042494][T15911] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3211: mark_inode_dirty error
[  435.046763][T15926] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  435.055577][T15911] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3211: mark inode dirty (error -117)
[  435.076758][T15911] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  435.086203][T15926] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  435.122216][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.138972][T15915] loop4: detected capacity change from 0 to 128
[  435.152694][T15930] program syz.1.3218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  435.163029][T15915] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  435.195890][T15915] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  435.204765][T15934] loop3: detected capacity change from 0 to 1024
[  435.212959][T15934] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  435.223975][T15934] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  435.235991][T15934] JBD2: no valid journal superblock found
[  435.241779][T15934] EXT4-fs (loop3): Could not load journal inode
[  435.355574][T15952] FAULT_INJECTION: forcing a failure.
[  435.355574][T15952] name failslab, interval 1, probability 0, space 0, times 0
[  435.368437][T15952] CPU: 1 UID: 0 PID: 15952 Comm: syz.1.3227 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  435.368474][T15952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  435.368552][T15952] Call Trace:
[  435.368561][T15952]  <TASK>
[  435.368571][T15952]  __dump_stack+0x1d/0x30
[  435.368599][T15952]  dump_stack_lvl+0xe8/0x140
[  435.368662][T15952]  dump_stack+0x15/0x1b
[  435.368679][T15952]  should_fail_ex+0x265/0x280
[  435.368721][T15952]  should_failslab+0x8c/0xb0
[  435.368785][T15952]  kmem_cache_alloc_node_noprof+0x57/0x320
[  435.368818][T15952]  ? __alloc_skb+0x101/0x320
[  435.368863][T15952]  __alloc_skb+0x101/0x320
[  435.368907][T15952]  netlink_alloc_large_skb+0xba/0xf0
[  435.368949][T15952]  netlink_sendmsg+0x3cf/0x6b0
[  435.369042][T15952]  ? __pfx_netlink_sendmsg+0x10/0x10
[  435.369069][T15952]  __sock_sendmsg+0x145/0x180
[  435.369107][T15952]  ____sys_sendmsg+0x31e/0x4e0
[  435.369139][T15952]  ___sys_sendmsg+0x17b/0x1d0
[  435.369176][T15952]  __x64_sys_sendmsg+0xd4/0x160
[  435.369279][T15952]  x64_sys_call+0x2999/0x2fb0
[  435.369308][T15952]  do_syscall_64+0xd0/0x1a0
[  435.369336][T15952]  ? clear_bhb_loop+0x40/0x90
[  435.369388][T15952]  ? clear_bhb_loop+0x40/0x90
[  435.369417][T15952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.369445][T15952] RIP: 0033:0x7f747393e969
[  435.369465][T15952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.369489][T15952] RSP: 002b:00007f7471fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  435.369600][T15952] RAX: ffffffffffffffda RBX: 00007f7473b65fa0 RCX: 00007f747393e969
[  435.369613][T15952] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  435.369674][T15952] RBP: 00007f7471fa7090 R08: 0000000000000000 R09: 0000000000000000
[  435.369691][T15952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  435.369707][T15952] R13: 0000000000000000 R14: 00007f7473b65fa0 R15: 00007ffcf37b5058
[  435.369730][T15952]  </TASK>
[  435.481228][T15956] loop1: detected capacity change from 0 to 128
[  435.531524][T15960] loop4: detected capacity change from 0 to 1024
[  435.563033][T15956] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  435.569047][T15960] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  435.581313][T15956] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  435.584380][T15960] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  435.586259][T15960] JBD2: no valid journal superblock found
[  435.673234][T15960] EXT4-fs (loop4): Could not load journal inode
[  435.800643][T15976] loop3: detected capacity change from 0 to 512
[  435.826101][T15976] EXT4-fs (loop3): 1 orphan inode deleted
[  435.834472][T15976] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.847138][T15785] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:60: Failed to release dquot type 1
[  435.848362][T15976] ext4 filesystem being mounted at /641/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.884557][T15976] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3237: corrupted inode contents
[  435.900172][T15976] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3237: mark_inode_dirty error
[  435.917429][T15976] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3237: corrupted inode contents
[  435.945269][T15987] program syz.2.3241 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  435.959574][T15982] loop1: detected capacity change from 0 to 128
[  435.975404][T15982] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  435.976474][T15976] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3237: mark_inode_dirty error
[  436.006607][T15982] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  436.043124][T15989] loop4: detected capacity change from 0 to 128
[  436.051579][T15976] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3237: mark inode dirty (error -117)
[  436.075542][T15976] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  436.086831][T15989] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  436.103522][T15989] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  436.135958][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.182029][T16000] loop3: detected capacity change from 0 to 1024
[  436.193223][T16000] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  436.204186][T16000] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  436.270384][T16000] JBD2: no valid journal superblock found
[  436.276371][T16000] EXT4-fs (loop3): Could not load journal inode
[  436.294922][T16015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.306239][T16015] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.340718][T16020] loop1: detected capacity change from 0 to 512
[  436.354783][T16020] EXT4-fs: Ignoring removed nobh option
[  436.378853][T16020] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  436.387100][T16017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.404810][T16020] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.3253: invalid indirect mapped block 2683928664 (level 1)
[  436.419543][T16017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.433147][T16020] EXT4-fs (loop1): 1 truncate cleaned up
[  436.443201][T16027] loop3: detected capacity change from 0 to 512
[  436.445207][T16020] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.475734][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.477426][T16027] EXT4-fs (loop3): 1 orphan inode deleted
[  436.490743][T15786] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:61: Failed to release dquot type 1
[  436.491375][T16027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.515149][T16027] ext4 filesystem being mounted at /644/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.534963][T16027] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3255: corrupted inode contents
[  436.550108][T16027] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3255: mark_inode_dirty error
[  436.562622][T16027] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3255: corrupted inode contents
[  436.575567][T16027] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3255: mark_inode_dirty error
[  436.589327][T16027] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3255: mark inode dirty (error -117)
[  436.608704][T16027] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  436.627095][T16032] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3256'.
[  436.641766][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.685162][T16039] loop1: detected capacity change from 0 to 512
[  436.694577][T16041] program syz.3.3257 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  436.697500][T16039] EXT4-fs (loop1): 1 orphan inode deleted
[  436.710455][T16039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.723497][T16039] ext4 filesystem being mounted at /654/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.724437][T15744] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:32: Failed to release dquot type 1
[  436.754619][T16039] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3259: corrupted inode contents
[  436.767877][T16039] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3259: mark_inode_dirty error
[  436.779781][T16039] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3259: corrupted inode contents
[  436.792913][T16039] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3259: mark_inode_dirty error
[  436.806402][T16039] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3259: mark inode dirty (error -117)
[  436.819200][T16039] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  436.842881][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.858291][T16050] loop3: detected capacity change from 0 to 512
[  436.888525][T16050] EXT4-fs (loop3): 1 orphan inode deleted
[  436.915766][T15719] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  436.939584][T16050] ext4 filesystem being mounted at /648/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.952948][T16062] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3267'.
[  436.962061][T16062] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3267'.
[  436.986328][T16062] loop1: detected capacity change from 0 to 512
[  436.994080][T16062] EXT4-fs: Ignoring removed oldalloc option
[  437.003977][T16050] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3262: corrupted inode contents
[  437.016974][T16050] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.3262: mark_inode_dirty error
[  437.028485][T16062] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  437.039781][T16064] loop4: detected capacity change from 0 to 512
[  437.040985][T16050] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.3262: corrupted inode contents
[  437.059923][T16050] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #16: comm syz.3.3262: mark_inode_dirty error
[  437.072311][T16050] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #16: comm syz.3.3262: mark inode dirty (error -117)
[  437.084901][T16062] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.3267: invalid indirect mapped block 4294967295 (level 0)
[  437.103382][T16062] EXT4-fs (loop1): Remounting filesystem read-only
[  437.109482][T16050] EXT4-fs warning (device loop3): ext4_evict_inode:279: xattr delete (err -117)
[  437.123019][T16064] EXT4-fs (loop4): 1 orphan inode deleted
[  437.134444][T15719] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  437.147154][T16062] EXT4-fs (loop1): 1 orphan inode deleted
[  437.148808][T16064] ext4 filesystem being mounted at /654/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.152986][T16062] EXT4-fs (loop1): 1 truncate cleaned up
[  437.190055][T16064] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3268: corrupted inode contents
[  437.211344][T16064] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #16: comm syz.4.3268: mark_inode_dirty error
[  437.223730][T16064] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3268: corrupted inode contents
[  437.238056][T16064] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #16: comm syz.4.3268: mark_inode_dirty error
[  437.260333][T16064] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #16: comm syz.4.3268: mark inode dirty (error -117)
[  437.285192][T16064] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117)
[  437.340022][T16085] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  437.351031][T16084] loop1: detected capacity change from 0 to 512
[  437.357510][T16085] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  437.366296][T16084] EXT4-fs error (device loop1): ext4_iget_extra_inode:4693: inode #15: comm syz.1.3274: corrupted in-inode xattr: invalid ea_ino
[  437.380088][T16084] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.3274: couldn't read orphan inode 15 (err -117)
[  437.395631][T16084] FAULT_INJECTION: forcing a failure.
[  437.395631][T16084] name failslab, interval 1, probability 0, space 0, times 0
[  437.408365][T16084] CPU: 0 UID: 0 PID: 16084 Comm: syz.1.3274 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  437.408407][T16084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  437.408425][T16084] Call Trace:
[  437.408464][T16084]  <TASK>
[  437.408472][T16084]  __dump_stack+0x1d/0x30
[  437.408497][T16084]  dump_stack_lvl+0xe8/0x140
[  437.408522][T16084]  dump_stack+0x15/0x1b
[  437.408538][T16084]  should_fail_ex+0x265/0x280
[  437.408575][T16084]  should_failslab+0x8c/0xb0
[  437.408750][T16084]  kmem_cache_alloc_noprof+0x50/0x310
[  437.408770][T16084]  ? mb_cache_entry_create+0xf0/0x540
[  437.408801][T16084]  ? check_xattrs+0x5e3/0x7d0
[  437.408874][T16084]  mb_cache_entry_create+0xf0/0x540
[  437.408918][T16084]  ext4_xattr_get+0x298/0x470
[  437.408945][T16084]  ext4_xattr_security_get+0x32/0x40
[  437.408965][T16084]  ? __pfx_ext4_xattr_security_get+0x10/0x10
[  437.409016][T16084]  __vfs_getxattr+0x2aa/0x2c0
[  437.409055][T16084]  cap_inode_need_killpriv+0x2e/0x50
[  437.409095][T16084]  security_inode_need_killpriv+0x36/0x70
[  437.409125][T16084]  file_remove_privs_flags+0x123/0x320
[  437.409235][T16084]  ? _parse_integer_limit+0x170/0x190
[  437.409278][T16084]  file_modified_flags+0x32/0x350
[  437.409304][T16084]  file_modified+0x17/0x20
[  437.409391][T16084]  ext4_file_write_iter+0x9b1/0xf00
[  437.409529][T16084]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  437.409599][T16084]  vfs_write+0x4a0/0x8d0
[  437.409637][T16084]  ksys_write+0xda/0x1a0
[  437.409733][T16084]  __x64_sys_write+0x40/0x50
[  437.409764][T16084]  x64_sys_call+0x2cdd/0x2fb0
[  437.409792][T16084]  do_syscall_64+0xd0/0x1a0
[  437.409826][T16084]  ? clear_bhb_loop+0x40/0x90
[  437.409855][T16084]  ? clear_bhb_loop+0x40/0x90
[  437.409903][T16084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.409924][T16084] RIP: 0033:0x7f747393e969
[  437.409943][T16084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.409964][T16084] RSP: 002b:00007f7471fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  437.409983][T16084] RAX: ffffffffffffffda RBX: 00007f7473b65fa0 RCX: 00007f747393e969
[  437.410040][T16084] RDX: 0000000000032600 RSI: 00002000000003c0 RDI: 0000000000000005
[  437.410053][T16084] RBP: 00007f7471fa7090 R08: 0000000000000000 R09: 0000000000000000
[  437.410066][T16084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.410089][T16084] R13: 0000000000000000 R14: 00007f7473b65fa0 R15: 00007ffcf37b5058
[  437.410108][T16084]  </TASK>
[  437.745355][T16098] loop0: detected capacity change from 0 to 512
[  437.766326][T16098] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.3277: corrupted in-inode xattr: invalid ea_ino
[  437.782413][T16098] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3277: couldn't read orphan inode 15 (err -117)
[  437.812796][T16096] loop4: detected capacity change from 0 to 512
[  437.894656][T16096] EXT4-fs: inline encryption not supported
[  437.914417][T16096] ext4: Unknown parameter 'uid'
[  437.932270][T16098] EXT4-fs error (device loop0): ext4_lookup:1793: inode #2: comm syz.0.3277: deleted inode referenced: 15
[  438.131123][T16119] program syz.0.3284 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  438.151170][T16121] loop1: detected capacity change from 0 to 512
[  438.218260][T16121] EXT4-fs (loop1): 1 orphan inode deleted
[  438.235306][T15786] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:61: Failed to release dquot type 1
[  438.255487][T16121] ext4 filesystem being mounted at /664/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.279012][T16121] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3285: corrupted inode contents
[  438.291315][T16121] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3285: mark_inode_dirty error
[  438.304823][T16121] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3285: corrupted inode contents
[  438.342406][T16121] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3285: mark_inode_dirty error
[  438.355787][T16121] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3285: mark inode dirty (error -117)
[  438.385088][T16121] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  438.501213][T16158] loop1: detected capacity change from 0 to 512
[  438.544134][T16158] EXT4-fs (loop1): 1 orphan inode deleted
[  438.552147][T16158] ext4 filesystem being mounted at /665/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.563211][T15744] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:32: Failed to release dquot type 1
[  438.581411][T16158] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3294: corrupted inode contents
[  438.636457][T16158] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.3294: mark_inode_dirty error
[  438.675353][T16158] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.3294: corrupted inode contents
[  438.709074][T16158] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #16: comm syz.1.3294: mark_inode_dirty error
[  438.715286][T16177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  438.754424][T16177] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  438.758863][T16158] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #16: comm syz.1.3294: mark inode dirty (error -117)
[  438.785028][T16158] EXT4-fs warning (device loop1): ext4_evict_inode:279: xattr delete (err -117)
[  439.029619][T16206] loop4: detected capacity change from 0 to 512
[  439.060265][T16206] EXT4-fs (loop4): 1 orphan inode deleted
[  439.068338][T16215] program syz.1.3306 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  439.076911][T16206] ext4 filesystem being mounted at /662/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  439.088174][T15786] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:61: Failed to release dquot type 1
[  439.120219][T16206] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3305: corrupted inode contents
[  439.141600][T16206] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #16: comm syz.4.3305: mark_inode_dirty error
[  439.153589][T16206] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.3305: corrupted inode contents
[  439.187047][T16206] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #16: comm syz.4.3305: mark_inode_dirty error
[  439.208998][T16206] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #16: comm syz.4.3305: mark inode dirty (error -117)
[  439.227695][T16206] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117)
[  439.282973][   T29] kauditd_printk_skb: 534 callbacks suppressed
[  439.282993][   T29] audit: type=1326 audit(1747660966.860:11868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16225 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe2c93e969 code=0x7ffc0000
[  439.318249][   T29] audit: type=1326 audit(1747660966.860:11869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16225 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe2c93e969 code=0x7ffc0000
[  439.525031][T16248] program syz.2.3318 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  439.550570][T16238] loop0: detected capacity change from 0 to 128
[  439.567041][T16238] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  439.603007][T16238] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  439.629504][T16253] program syz.2.3319 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  439.708545][T16259] loop0: detected capacity change from 0 to 1024
[  439.716437][T16259] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  439.727380][T16259] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  439.745722][T16259] JBD2: no valid journal superblock found
[  439.751556][T16259] EXT4-fs (loop0): Could not load journal inode
[  439.758730][   T29] audit: type=1326 audit(1747660967.330:11870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.782526][   T29] audit: type=1326 audit(1747660967.330:11871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.806204][   T29] audit: type=1326 audit(1747660967.340:11872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.829808][   T29] audit: type=1326 audit(1747660967.340:11873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.853443][   T29] audit: type=1326 audit(1747660967.340:11874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.924930][T16264] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  439.933480][T16264] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  439.949807][   T29] audit: type=1326 audit(1747660967.340:11875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.973477][   T29] audit: type=1326 audit(1747660967.340:11876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  439.997289][   T29] audit: type=1326 audit(1747660967.340:11877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16260 comm="syz.2.3331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dc165e969 code=0x7ffc0000
[  440.051989][T16277] loop0: detected capacity change from 0 to 512
[  440.089989][T16277] EXT4-fs (loop0): 1 orphan inode deleted
[  440.101302][T16277] ext4 filesystem being mounted at /663/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.113010][T15719] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  440.158461][T16277] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3324: corrupted inode contents
[  440.172936][T16277] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.3324: mark_inode_dirty error
[  440.233950][T16277] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3324: corrupted inode contents
[  440.263990][T16277] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.3324: mark_inode_dirty error
[  440.282704][T16277] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.3324: mark inode dirty (error -117)
[  440.332735][T16277] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  440.454588][T16321] program syz.0.3333 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  440.503899][T16320] loop3: detected capacity change from 0 to 128
[  440.529319][T16320] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  440.556460][T16320] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  440.759538][T16348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.778398][T16348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.861082][T16359] program syz.0.3348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  440.888077][T16362] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.900561][T16366] program syz.3.3349 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  440.914877][T16362] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.986872][T16371] loop0: detected capacity change from 0 to 512
[  441.054328][T16371] EXT4-fs (loop0): 1 orphan inode deleted
[  441.062255][T16371] ext4 filesystem being mounted at /668/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.072881][T16378] loop3: detected capacity change from 0 to 1024
[  441.073229][T16378] EXT4-fs: Ignoring removed orlov option
[  441.079371][T15719] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  441.095884][T16380] loop4: detected capacity change from 0 to 1024
[  441.104776][T16380] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  441.106668][T16371] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3350: corrupted inode contents
[  441.115779][T16380] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  441.129365][T16371] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.3350: mark_inode_dirty error
[  441.139151][T16380] JBD2: no valid journal superblock found
[  441.154459][T16380] EXT4-fs (loop4): Could not load journal inode
[  441.154642][T16371] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3350: corrupted inode contents
[  441.172932][T16371] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.3350: mark_inode_dirty error
[  441.204102][T16371] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.3350: mark inode dirty (error -117)
[  441.218772][T16371] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)
[  441.257700][T16378] ==================================================================
[  441.266094][T16378] BUG: KCSAN: data-race in redirty_tail_locked / vfs_fsync_range
[  441.273869][T16378] 
[  441.276219][T16378] read-write to 0xffff888127c0e0c8 of 4 bytes by task 16382 on cpu 1:
[  441.284485][T16378]  redirty_tail_locked+0x56/0x280
[  441.289546][T16378]  writeback_single_inode+0x21e/0x3e0
[  441.294955][T16378]  sync_inode_metadata+0x5b/0x90
[  441.299935][T16378]  generic_buffers_fsync_noflush+0xd9/0x120
[  441.305871][T16378]  ext4_sync_file+0x1ab/0x690
[  441.310573][T16378]  vfs_fsync_range+0x10a/0x130
[  441.315361][T16378]  ext4_buffered_write_iter+0x34f/0x3c0
[  441.320950][T16378]  ext4_file_write_iter+0x383/0xf00
[  441.326228][T16378]  iter_file_splice_write+0x5f2/0x970
[  441.331624][T16378]  direct_splice_actor+0x153/0x2a0
[  441.336765][T16378]  splice_direct_to_actor+0x30f/0x680
[  441.342213][T16378]  do_splice_direct+0xda/0x150
[  441.347010][T16378]  do_sendfile+0x380/0x640
[  441.351434][T16378]  __x64_sys_sendfile64+0x105/0x150
[  441.356658][T16378]  x64_sys_call+0xb39/0x2fb0
[  441.361267][T16378]  do_syscall_64+0xd0/0x1a0
[  441.365787][T16378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.371694][T16378] 
[  441.374367][T16378] read to 0xffff888127c0e0c8 of 4 bytes by task 16378 on cpu 0:
[  441.382010][T16378]  vfs_fsync_range+0x9b/0x130
[  441.386708][T16378]  ext4_buffered_write_iter+0x34f/0x3c0
[  441.392280][T16378]  ext4_file_write_iter+0x383/0xf00
[  441.397495][T16378]  iter_file_splice_write+0x5f2/0x970
[  441.402879][T16378]  direct_splice_actor+0x153/0x2a0
[  441.408006][T16378]  splice_direct_to_actor+0x30f/0x680
[  441.413391][T16378]  do_splice_direct+0xda/0x150
[  441.418168][T16378]  do_sendfile+0x380/0x640
[  441.422590][T16378]  __x64_sys_sendfile64+0x105/0x150
[  441.427831][T16378]  x64_sys_call+0xb39/0x2fb0
[  441.432432][T16378]  do_syscall_64+0xd0/0x1a0
[  441.437037][T16378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.442942][T16378] 
[  441.445267][T16378] value changed: 0x0000003a -> 0x00000002
[  441.450983][T16378] 
[  441.453313][T16378] Reported by Kernel Concurrency Sanitizer on:
[  441.459493][T16378] CPU: 0 UID: 0 PID: 16378 Comm: syz.3.3352 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  441.470262][T16378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  441.480329][T16378] ==================================================================
[  441.525267][T16385] loop0: detected capacity change from 0 to 512
[  441.537023][T16385] EXT4-fs (loop0): 1 orphan inode deleted
[  441.543545][T16385] ext4 filesystem being mounted at /669/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.557620][T16385] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3354: corrupted inode contents
[  441.569869][T16385] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.3354: mark_inode_dirty error
[  441.582537][T16385] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.3354: corrupted inode contents
[  441.613482][T16385] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #16: comm syz.0.3354: mark_inode_dirty error
[  441.626339][T16385] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #16: comm syz.0.3354: mark inode dirty (error -117)
[  441.639225][T16385] EXT4-fs warning (device loop0): ext4_evict_inode:279: xattr delete (err -117)