last executing test programs: 1.364927551s ago: executing program 1 (id=1033): socket(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000002, 0x110, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext, 0x1010, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2, 0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0b00000005000000020000000400000005000000", @ANYRES8, @ANYRESOCT=r3, @ANYRESOCT=r3, @ANYRES32, @ANYBLOB="9cb34d2ef2a2233fc0099b1d54f99d000000000000000000000000004a49720000000000000091850000000000001214aa684b61b2fca38f5a5e"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000cc0)=ANY=[@ANYBLOB="18000700000000000000000000000000181100000f5678d9656dd6c8c224e7a84a27c6d4a35761f768e9d0296ea207acb91b9b3a53d3083fee18665de747ffb346f240ccfe0b7a115cf5c1e10026c6734e44b43034c9cc955919c9d31360129fdd250a0af0c92494520f7359a63be329e0d04c7e9c50521d50c736fda97debcabb9df1203239835312e99a5315e28c77d35ec9d8b093f9582099de76c86f57893df77e25d28cd0bb8b9f80e2eae21967f77ab0aa723405002499ecc6f343acd2582b9f5b30e71c5010d28b241edc5a3a77bf97665169e452de7faff4577c42eb3a354c01c9f739384026ad6aedeecddca125723e55c438b5d9d025eeb7c57872f3e98b9c7af56a2615593b00"/282, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000140000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x18) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000ff0f00000400000000000000", @ANYRES32=0x0, @ANYRESOCT=r2, @ANYRES32=0x0, @ANYRES32=r4, @ANYRES8=r2], 0x48) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r8}, 0x10) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x275a, 0x0) mmap(&(0x7f000091c000/0x1000)=nil, 0x1000, 0x2000003, 0x28012, r9, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0xc0, &(0x7f0000000040)=0x3, 0x0, 0x4) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r10, 0x2275, &(0x7f0000000740)=0x1000400) socket$nl_route(0x10, 0x3, 0x0) r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000002300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r11, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.166004384s ago: executing program 1 (id=1041): bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) personality(0x2000000) 1.165593004s ago: executing program 1 (id=1042): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000006500000008000000"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'}) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x2}, 0x7ff}) 1.047780146s ago: executing program 1 (id=1044): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) preadv(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000280)=""/191, 0xbf}, {&(0x7f0000000000)=""/30, 0x1e}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000000340)=""/188, 0xbc}, {&(0x7f00000004c0)=""/74, 0x4a}, {&(0x7f0000000540)=""/106, 0x6a}], 0x7, 0x9, 0x81) 946.475537ms ago: executing program 1 (id=1046): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = gettid() sendmsg$unix(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x000\x00\x00\x00\x00\x00', @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000018"], 0xa0}, 0x4004881) recvmsg$unix(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000) 811.825379ms ago: executing program 0 (id=1050): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x80000) 699.797801ms ago: executing program 0 (id=1054): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000020000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r2, 0x0, 0x0, 0x20004041, 0x0, 0x0) connect$inet6(r2, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x19}, 0x7}, 0x1c) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x800) 629.351282ms ago: executing program 0 (id=1059): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000002540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r2}, 0x18) syz_open_procfs(0x0, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) lstat(0x0, 0x0) kexec_load(0x755, 0x0, &(0x7f0000000780), 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f0000000800)={[{@bsdgroups}, {@nodiscard}, {@oldalloc}, {@grpjquota}, {@dioread_nolock}, {@noquota}, {@abort}, {@nodiscard}, {@nodiscard}]}, 0x64, 0x50d, &(0x7f0000000200)="$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") syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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") prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) ustat(0xd, &(0x7f0000000680)) 517.689004ms ago: executing program 3 (id=1065): bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd4c, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0x44804) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2, 0x0, 0x4}, 0x1f) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xfffffffe, 0x8001}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x81, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94) r3 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) socket$igmp(0x2, 0x3, 0x2) sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000021c0)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xf}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_TUPDATE={0x8, 0x4, 0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c) getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@loopback}, &(0x7f0000000180)=0x14) 459.388484ms ago: executing program 3 (id=1067): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) creat(&(0x7f0000000000)='./bus\x00', 0x8) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') (fail_nth: 1) 435.370294ms ago: executing program 2 (id=1068): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10) sendto$inet6(0xffffffffffffffff, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x2000000, @loopback, 0xffffffff}, 0x1c) 424.273874ms ago: executing program 3 (id=1069): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) pipe(0x0) 369.315006ms ago: executing program 2 (id=1070): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000020000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r2, 0x0, 0x0, 0x20004041, 0x0, 0x0) connect$inet6(r2, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x19}, 0x7}, 0x1c) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x800) 365.897855ms ago: executing program 3 (id=1071): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) creat(&(0x7f0000000000)='./bus\x00', 0x8) r1 = syz_io_uring_setup(0x5c9d, &(0x7f0000000240)={0x0, 0xe3a, 0x0, 0xff7fffff, 0xdd}, &(0x7f0000000500)=0x0, &(0x7f0000000200)=0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='io_uring_req_failed\x00', r4, 0x0, 0xffffffffffff3bac}, 0x18) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000071000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) r6 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="0213000002"], 0x10}}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_SPLICE={0x1e, 0x23, 0x0, @fd, 0x4, {}, 0x28, 0x4}) io_uring_enter(r1, 0x47f6, 0x810001, 0x0, 0x0, 0x0) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 360.788735ms ago: executing program 0 (id=1072): r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = semget$private(0x0, 0x4, 0x40) semop(r2, &(0x7f00000001c0), 0x0) 303.110286ms ago: executing program 4 (id=1073): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x54) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x41, 0x4, 0x1}, 0x10) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000480)={{'\x00', 0x2}, {0x9}, 0x80, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)="1ddd8d8e02edbba9eb23807d9154343d267c9b15bfd27ee62851f349e3d32ffce74132c5c247b70a58858f11625ca22bbb1dc1cb622aceaeb6de712f824ba10f1180c4f889c9a10f335ca4c8135ccb2f24657af237aa01f100d4e6ba91278f75ca5ef5a33dafdf1dd423caea2ee6ea99e276ce0a2294594c8d03627472472cc92bf432912f43661c8af799575f0e0336650e9395db0e44f3d9ae15464fe0917f72a8bbeef27f80889cd7dd90d498c0e91d5c81f9482bf474e585563fe185a35171e7794e9e57924396e5e65d0c5f7fcdf64ef1d6fde82daa9afe644c2b1c8501eb707a5f34a53d7f326df88c3353aef7c2dc2266481d675adba529dad691f246032b7f6e5c326f4eca1757f9194812716a14b00f55160938e412ba6e8a6421dfa4d71152dfde69d580a05383e7d0ab8c707ddc1425dac7048b356ef4bee5945befc90b6fdae0f0b026aeb9c364c5f3a8c41a7b689acf64c138255ecdb53695304fc5af99ef581b6cfe4ff5bd85d3df69fdbb3cb4eb5bcece1e774039275be0aa141cd76da8ed922df501", 0x18a, 0x0, &(0x7f00000002c0)={0x2, 0x144, {0x0, 0xc, 0x60, "db660a9aa37488da0dc90eeaaffc4e2e2de87cdcd0bc60a12e5e27095d297322e81f58aa72ea966e9808108ba49e58811134204fa6f4c45be801c87a695ac0713cc31ae9e4e352fc9366e4903dc9a498209bf2120d663d9b21efaedb3673f12c", 0xd7, "3c0999392551b205501feb64a49b962f2a0d48395262b9c435bbe592b1a80d33e4f1764afd688220184f985260150460137ed54c73e0036d560bbb271bf3f1c606bcb078c42a898bf4fe3f270c6e1f22ce18fb2b5408a95d43b189ded6077f3715534d8a27dde7edc8618b98118652a87d5555784fe5b9a2f022e973bcadeada6f6c6d3e44bef298d991b4cfc6aa3080fffba3662754ae89a395c9879cc8d6e83a98779b480c67315f9c101ee78324d4efd43cb3a8e47ed5dc6bb5de20b3a9202027dec2bd3488e9f04e99d2f4d2178c5d07898fbeb938"}, 0x37, "f7753e80ce501b57b5a8f281c7be5c730fa73285b4a4cef25d4f006e4a96eac6f393732fb32cb57701570040ebb1683e8e6db5e599e875"}, 0x187}) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1800000, 0x13, r0, 0xbb9ab000) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r1 = syz_io_uring_setup(0x633a, &(0x7f0000000500)={0x0, 0x25c, 0xe010, 0x1, 0x191}, &(0x7f0000000580), &(0x7f00000005c0)) madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xe) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000600)='mem_disconnect\x00', r0, 0x0, 0x9}, 0x18) ioctl$RNDCLEARPOOL(r0, 0x5206, &(0x7f0000000680)=0xb) pread64(r2, &(0x7f00000006c0)=""/194, 0xc2, 0x8a) r3 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0) r4 = socket$rds(0x15, 0x5, 0x0) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0x80000, 0x0) r7 = socket$pppoe(0x18, 0x1, 0x0) setsockopt$sock_int(r7, 0x1, 0x29, &(0x7f0000000880)=0x81, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000f, 0x40010, r6, 0x0) rseq(&(0x7f00000008c0), 0x20, 0x1, 0x0) recvmsg(r5, &(0x7f0000002c80)={&(0x7f0000000900)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000002b80)=[{&(0x7f0000000980)=""/110, 0x6e}, {&(0x7f0000000a00)=""/206, 0xce}, {&(0x7f0000000b00)=""/57, 0x39}, {&(0x7f0000000b40)=""/4096, 0x1000}, {&(0x7f0000001b40)=""/4096, 0x1000}, {&(0x7f0000002b40)=""/24, 0x18}], 0x6, &(0x7f0000002c00)=""/115, 0x73}, 0x263) r8 = accept4$unix(r0, &(0x7f0000002cc0)=@abs, &(0x7f0000002d40)=0x6e, 0x1000) r9 = epoll_create1(0x0) r10 = dup3(r5, r2, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002e00)={{r6, 0xffffffffffffffff}, &(0x7f0000002d80), &(0x7f0000002dc0)=r6}, 0x20) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f0, &(0x7f0000003100)={'tunl0\x00', &(0x7f0000003000)={'syztnl1\x00', 0x0, 0x40, 0x7, 0x9, 0x2, {{0x37, 0x4, 0x2, 0x2, 0xdc, 0x65, 0x0, 0xf8, 0x29, 0x0, @local, @rand_addr=0x64010101, {[@cipso={0x86, 0x11, 0x0, [{0x2, 0xb, "4a293b9485ce2e43a3"}]}, @cipso={0x86, 0x44, 0xfffffffffffffffd, [{0x7, 0x3, 'T'}, {0x5, 0x5, "1e0279"}, {0x1, 0xd, "10a5ae6672d03a5ff84e33"}, {0x7, 0xe, "edfb77e56a6c920934f13584"}, {0x0, 0x10, "08b8fd0d121fa4e33c397a5c9ad5"}, {0x2, 0xb, "21ee6f8fe350d7c185"}]}, @rr={0x7, 0xb, 0x55, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x54, 0x41, 0x3, 0x7, [{@remote, 0x4}, {@rand_addr=0x64010101, 0xe}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1}, {@private=0xa010100, 0x1}, {@remote, 0x5}, {@broadcast, 0xdc3}, {@dev={0xac, 0x14, 0x14, 0xc}, 0x5}, {@loopback, 0x6}, {@private=0xa010100, 0x8}, {@dev={0xac, 0x14, 0x14, 0x15}, 0x3}]}, @ra={0x94, 0x4, 0x1}, @generic={0x89, 0xd, "59a08f684d6e38076be6db"}, @noop]}}}}}) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003300)={r6, 0x20, &(0x7f00000032c0)={&(0x7f0000003180)=""/176, 0xb0, 0x0, &(0x7f0000003240)=""/66, 0x42}}, 0x10) r14 = open_tree(0xffffffffffffff9c, &(0x7f0000003340)='./file1\x00', 0x0) r15 = bpf$PROG_LOAD(0x5, &(0x7f0000003480)={0x12, 0x1c, &(0x7f0000002e40)=@raw=[@cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffd}, @map_fd={0x18, 0x3, 0x1, 0x0, r0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r10}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r11}}, @ldst={0x1, 0x1, 0x2, 0x7, 0x1, 0x18, 0xfffffffffffffff0}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9d3}}, @jmp={0x5, 0x1, 0xb, 0x5, 0x4, 0xffffffffffffffc0, 0x4}, @map_idx={0x18, 0x9, 0x5, 0x0, 0x7}, @ldst={0x2, 0x0, 0x3, 0x2, 0x7, 0x1, 0xfffffffffffffffc}, @alu={0x7, 0x1, 0xd, 0x8, 0x8, 0x40, 0x1}], &(0x7f0000002f40)='GPL\x00', 0x7fff, 0x6f, &(0x7f0000002f80)=""/111, 0x41000, 0x4, '\x00', r12, @fallback=0x1f, 0xffffffffffffffff, 0x8, &(0x7f0000003140)={0x7, 0x3}, 0x8, 0x10, 0x0, 0x0, r13, r14, 0x9, &(0x7f0000003380)=[r6, r5, r0, r5, r0, r5, r6, r6], &(0x7f00000033c0)=[{0x5, 0x2, 0x6, 0x2}, {0x5, 0x2, 0xc, 0xa}, {0x2, 0x1, 0x3, 0x5}, {0x2, 0x2, 0x6, 0x8}, {0x10, 0x1, 0x7}, {0x4, 0x4, 0x2, 0x7}, {0x2, 0x1, 0x1, 0x3}, {0x3, 0x1, 0xe, 0x9}, {0x4, 0x5, 0x7, 0xe}], 0x10, 0x7, @void, @value}, 0x94) r16 = socket$nl_audit(0x10, 0x3, 0x9) r17 = socket$inet(0x2, 0x3, 0xfffff000) sendmmsg$unix(r8, &(0x7f0000006400)=[{{&(0x7f0000003540)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000005700)=[{&(0x7f00000035c0)="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", 0x1000}, {&(0x7f00000045c0)="b2bfa6762bc473f2f7fa693b35022ef8a2edc0dc", 0x14}, {&(0x7f0000004600)="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", 0x1000}, {&(0x7f0000005600)="1d9687d96c8b479f4ff420449bfd8c0cb8632f98294cd17a1262cc5ec8fe3c9b84b13e858ecb0934ac8af41eb7668ec3f096b84d7dafad513e145a329452411e7287fac7c35043f4b4bcf6f3abc26b160bc4740ad9f25866d0070f782c5242d5c6761fca2599383b652fc9e014ea75e12dc6feecccea5c2bd14afaa94b5636c6204943053564727fb5f72669a1206e601708b5fb22bb81f74a3b455956ab0cf7b3ee48cf16360dc0972e25925865426ac9c9f3b274fb6a80ab958c0d3963d198", 0xc0}, {&(0x7f00000056c0)="94f8b7e4c480f014faf5be4fe0d56d0b7f72e9", 0x13}], 0x5, &(0x7f00000058c0)=[@rights={{0x34, 0x1, 0x1, [r16, r17, r14, r8, 0xffffffffffffffff, r10, r14, r1, r10]}}, @rights={{0x24, 0x1, 0x1, [r10, r14, r7, 0xffffffffffffffff, r3]}}, @rights={{0x1c, 0x1, 0x1, [r1, r1, r10]}}, @rights={{0x24, 0x1, 0x1, [r2, 0xffffffffffffffff, r0, r4, r15]}}, @cred={{0x1c}}], 0xc8, 0x20004000}}, {{&(0x7f00000059c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000005d80)=[{&(0x7f0000005a40)="693ec13f9727683943eaa248b0fc1e9661", 0x11}, {&(0x7f0000005a80)="422544fecb5bc6e900a1f2f89c00e08223c67bdd307204e7e85afd01cecddd8818af", 0x22}, {&(0x7f0000005ac0)="e3af4ada18f7e8d5863a77f17f73dd679400af22d7b9c1b700d5c4cd6cd93d4524e78b1ae770d4dffea3eeeac9d8ddc30885ba044bcb804a6792085addad2101431443cc418a00bc619963a6ab72ff22cd4872331a1b01448a7124b15db85f231a306fd4035ee9b87e", 0x69}, {&(0x7f0000005b40)="d65eb6437536259a50868f38796158344d94d9acb18cbba91a44a5e69968fea48cdcf23e7746d1c7acd52ea80e2f9fb25cd47b7b0bef791955f1a375f1b9cdb1c36a85af80c775490a8e9308a3a54de9613b32440a487f2cc3e7251ba95b3c0e8b5c9f26a03a325922366c8b9d24ead69de18a1cb496dc976a1987c69c03f769de6e647854255873de5c877a39ea5741c95c8b8a77b9a0aa1b19e3dd8327d540a3dce6e913d81b1e5c897b7e184615cd234c882cc47fd247b2ed35985927e6002560c59edb6382ce76e5b80d99572020e297ca1b67ab6c88ac0a94", 0xdb}, {&(0x7f0000005c40)="25dddf6e2445057edd4694d3753da8466073547adcb300760ec9287354d8cdbc594cb11c4e7ba4ff6b55b4c3a52619a54771004ce98c502843dcc06858cfffb5cc7e5b88139eac891989b3e3fa7cde2908ac2ea4d049584391e5b977324d8aebc5e1f2b4c812b3a48da7392e5a2730ea61656a1a14d178ef46b0df99bc9d2911d3977f08b85a8d35adccab40df6dacedd1104bceb12a76709ccc4271edf01e58cdd00949d643870d549e154db2db51e3fd99fbda7a31831e84507ad9c5c9f6", 0xbf}, {&(0x7f0000005d00)="60796f1c24dffc97bb3ccd80c9b1ddc4d44a0a38e83d9c32a56ef3ba4058de3c365d9072", 0x24}, {&(0x7f0000005d40)="cf65484ec9437c690b45242c2165c56423c06f82b8ee1c7be79bbfc83d204f93c686add96268a8d7d448ecd708f450", 0x2f}], 0x7, &(0x7f0000005fc0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r7, r4, r10]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}], 0x60, 0x20000000}}, {{&(0x7f0000006040)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006300)=[{&(0x7f00000060c0)="0f6eb57fb9fcc2428eed5c2c6f5fa6f087f74bd3b882857c9492af27eb8d3dd5e5fe91387d963cfbea2872a814f9779d7e94d99a3bcbd27f87e5ef1851c28fd59036eb2f89f147a276b5252efce1c714a0949f1f5594887918fb4d3fe8ce7ce2ad782c55aa4aff7eded3c784adaeaeb34b794a008f3ed2ebcb00a0a93ff762f300d292ab0acd04a2de57c001be86666c022ef2c0d4bda3e7e59ffdde6c977785c0a860d8eae0f38ef684feda185201ea3fa847289baa0b7942dbf4e117ec4baf1270b6ff5e4e0464ae160a37d29fe81c0ee7d82f570117e8adfb38c4f40401515c", 0xe1}, {&(0x7f00000061c0)="9bc861cdcad4e123f3da1f9eca0eb31c4510e046196abdbeb3446e1ff358b5ebaeea540d6603bdc5bc67be297d42132372743c1a20ca23b9bce12fb220565d932182c501e69fd7d3530cf2033a09bf00ba35855976d2c432715119c631451a86739e347b565b2edcef5ab6df2e877468d8846a67da569b58106d9577ae8617894baa421a03df213ca15a31acfdff3db5f84f13070eef1da5949fc0bae0da208ab34fa0dafb752d1d3397aa524a5be6464a66e246729277eec85c1831e3ae2fae7b917c5284083950b54fda9afe52ae83bec47754542e482038a25a9f74d7dfb6fad1a98dbf6307", 0xe7}, {&(0x7f00000062c0)}], 0x3, &(0x7f0000006380)=[@rights={{0x28, 0x1, 0x1, [r14, r2, r11, r5, 0xffffffffffffffff, r0]}}, @rights={{0x1c, 0x1, 0x1, [r14, r9, r6]}}], 0x48, 0x80}}], 0x3, 0x20000001) 302.598816ms ago: executing program 0 (id=1074): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000180)={0x430002, 0x4, 0x25}, 0x18) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$rds(0x15, 0x5, 0x0) bind$rds(r5, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r5, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)}}], 0x90}, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2) sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES64, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52d, &(0x7f0000001500)="$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") r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r7, 0x40305829, &(0x7f0000000300)={0x17c04, r2, 0x4ea, 0x10001, 0x0, 0x8}) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x1d, &(0x7f00000008c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x26}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @jmp={0x5, 0x0, 0x9, 0xb, 0x2, 0xffffffffffffffe0, 0xb1d35fd738ccdca0}, @call={0x85, 0x0, 0x0, 0x9f}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x0, 0xe, 0x0, &(0x7f00000000c0)="fe1fe9beacda84df94785c3c464c", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)) 302.097827ms ago: executing program 3 (id=1075): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x800, 0x0, 0x8001, 0x8000000, 0xfffffffffffffffe, 0x0, 0x4}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000000000000008001b"], 0x24}}, 0x0) preadv(r0, &(0x7f0000000280)=[{&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000000400)=""/229, 0xe5}, {&(0x7f0000000340)=""/111, 0x6f}], 0x3, 0x5, 0x4) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(0xffffffffffffffff, 0xc0105303, &(0x7f0000000200)={0x1c, 0x9, 0x9}) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x1f, 0x10, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000040000000000000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000eb7963b9850000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x42, 0x1fe) fallocate(r1, 0x10, 0x3, 0x7ffd) mknodat$loop(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x80, 0x0) read$eventfd(r1, &(0x7f0000000240), 0x8) 282.528787ms ago: executing program 2 (id=1076): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b51811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@const={0x0, 0x0, 0x0, 0x4}, @func_proto={0x2, 0x0, 0x0, 0x12, 0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) 259.063377ms ago: executing program 4 (id=1077): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) ustat(0xd, &(0x7f0000000680)) 220.006517ms ago: executing program 2 (id=1078): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="0b000000050000000400000032a9000009"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000090000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'}) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r6, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x2}, 0x7ff}) 219.613568ms ago: executing program 4 (id=1079): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) personality(0x2000000) 174.323758ms ago: executing program 3 (id=1080): bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000006c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d2800128014000180090001006c617374000000000400028010000180060001006c6173740000000008000340000001"], 0xb4}}, 0x20050800) 173.621478ms ago: executing program 2 (id=1081): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10) sendto$inet6(0xffffffffffffffff, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x2000000, @loopback, 0xffffffff}, 0x1c) 173.325888ms ago: executing program 4 (id=1082): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) pipe(0x0) 160.620869ms ago: executing program 0 (id=1083): r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0) 141.471599ms ago: executing program 4 (id=1084): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="0b000000050000000400000032a9000009"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000090000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'}) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r6, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x2}, 0x7ff}) 88.730559ms ago: executing program 1 (id=1085): r0 = socket$netlink(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0003fbdb7f25120000000800060008000000080006000600000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20000001) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000f0000001c0007800c000400005f3a3a000000400c0003"], 0x30}}, 0x20088004) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2, 0xffffffffffffffff}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r7, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000007c0)=ANY=[@ANYRES8, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) close_range(r5, r0, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000440)=0x80cf7f, 0x4) write$qrtrtun(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r9, 0x800448d4, &(0x7f0000000000)={0x0, 0xe, "e900", 0xc}) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94) r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r11 = openat$bsg(0xffffffffffffff9c, &(0x7f00000006c0), 0x28000, 0x0) write$nbd(r11, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x82) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={r10, 0x5, 0x18, 0x0, &(0x7f0000000180)="2501b1735d789fef03a49ab879b61ed953908c102567a300", 0x0, 0xd30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r12, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="342000df", @ANYRES16=r13, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) 81.53765ms ago: executing program 4 (id=1086): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000020000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r2, 0x0, 0x0, 0x20004041, 0x0, 0x0) connect$inet6(r2, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x19}, 0x7}, 0x1c) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x800) 0s ago: executing program 2 (id=1087): r0 = socket$can_j1939(0x1d, 0x2, 0x7) r1 = socket$nl_audit(0x10, 0x3, 0x9) r2 = fsopen(&(0x7f00000000c0)='proc\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000140)='source', &(0x7f0000000180)=',(*\x00', 0x0) sendmsg$can_j1939(r0, &(0x7f0000001580)={&(0x7f0000000500)={0x1d, 0x0, 0x1, {0x0, 0x0, 0x4}, 0x2}, 0x18, &(0x7f0000001540)={&(0x7f0000000540)="1940f3a18353018639446641438a094d461efe8ab002e2e878840e71c0d0c45ddf1f1625d252d47a609afbcc975901431a5e62377afa46b374abe5caadb305507e0e80a98a1cb35976b3ef0205e64f828d050b75b01e4f52884e1f1f33d39268beda876d20c94b0ca1932ff6cf01d4ac71368d1b0a7292117881bbf8861219465feb3a835334d9e5872115a7f82f08cdddad39900236f1a700a7c8a7e6734b937a746a0ea63de7052823e872f096a404dcf9c0d3682fba78971aadbcadc699528d81ac0aa35851bfaf9e17be2d8dac5f694496984c2ec8e88c43e92499b1c2fc7bc8607cda0217a6a3f97a03a76319ebb4a952b071f064458af1419a4b43386ac289602b1e1368f2b3745d87ecaa2e7d17a2e7932e484080c812e1bfb60354009b48817e70622f5ba0d494b1bcbaf6a23d35ffae1266220f01f901522cfb3e335292046edafd8f6dd7c3651437422c7b6c19788f3be8f9a1a099a29733cf2bfe67e7c8f1489f95ca35812bcac65a7f20408003281f4680f533f07b880d9c2ba079c90c0cdd79ea9a332ec97caef4ba56d43e31d69cc63d062f5dfaaad628800a83ed351a7b852968b4624a7259c06057cf06815046e7e447b44dae76281c74dcad4a1bfeca8fcaa5c8cdedf96d11f351f0042084e469dbe660a884b19ce7bc15d0bf86b4616fdec2a2d2c96eef748f0df6101b690cdd57969eac09c0c22236e33ed61f7cae71e5ce6ed7dcf6002bd21c744aa810084633babad28cfed988850b0fd7fec5c513032bc054c90182b49ee51642fb9f69d74642d037bd4443b13fa7fc424e3213018e5a3627afa44a1af5d3e9d62aee3be37576742975922c61c246bc5fbafbe23d6e32e506dbe5213c1c711d657278f42b880d4f43f2ec9a8ab75e3f56a5d57bf4c0e18f2fbc12e20fe046fedb008706242c5f4618f97630b345396455e8bcf24f20b4b91f60009025aa0d108e63e538cad7b2b6d3827e46ec281f315774a21992f485dae3447e77fcc9e5133a6625705ca0432684c6730c8657533d2b8874b9be4e620876507de1a4b499c30a5089ea5216df696a7ab0e23a070a82611ec2a6f3e37fb9871ff957662612dcffa988ac69e97ce81c9489bc9a7d5f9d21554c695905e258d191b98c85e7ef4fa5704af38efb8f6faa7862b244b11aad77bfd6a2807dea3c4a3b65a75d9cf3504ff2bf237747184c78c1fbe88285b85c49014802a3d529ebd1b1623c5bded9e9a3f3e94423bd3745c7c691e9763cb8ba9fe3e2db248729e2e3f5afa6912df5933f04b83c9d03c2da9081e90d204332d80349db8495910423ab2c30b85d2eb152dce424a4ecf0c14e5bb693cfbc2411f5d880ac85cd950c34e29e49d8c50c699f347f94e99a872876566c511aa29c42af1f47449e5bf7d371f0007568c7dc2c916e01243bf6c47ec0022026a562af3887f924cb0e14bacb42b4ddd4714291d61103b265aa8b3a97cd67fd4716cb42d45df7fd7317770eb14ad516019bb0ec6e64bea53ab54440658add832da1489bb8aed659d1b9d2519d62391967d74252a82ac9e1cbb3fa171c96450bfd87de41dbca70cca1300846b6f0286ec227ba9ffa02055a0a8e355e90fb78d08aeac266eeb0e768b8fc484f7e8b0fc84846885b53fbb53f4cba216757619f283960e5382937e27218b9caf839e98a35cc0403f42c0903f185befa0c052d993d59927ba3ea100dd8c761131fd6c82a41d8d0ec2e4277675175d70edbe45026ce38d48f234cc04509fa88aa7c165733684e61fae99b1eafa74d68cbba3deb6a663028ad0141817a2bf4745cab7d9d2103b14c506fbfc6eade5c95e5c6719fc43223c09a62c32e86a6ccf79e11157a11e57444dfb1560fc41d6ed0b7bb353511492388f3042999ec335ef803a749dcda5a64d156e25fc2ff5f4424d0b2ba08dceafba1de4cd409498b88be977ad0a4b63e6264aef11dda73f8790a19852ed284b22b5ca41a3c1b5851c3649418b6618c315c10d2b1b69321315c47f8d8be2804727b8cf7a209cbba8be1cd380ca3a29c05cf96fdd989782aa1959001e344b1aa851d4f89bb50750a4bf3299424f8d6defb7ab570548c8e04f61dea1e4b659e8ebb2b4f0da5e8e15a4a2c9a5f37bdc745d574ca0184b78bc5fd46988b6c56a7d91c766fa42dc29e688a2ce3facfdde9189b1f8e575e531d669ecfe0651df9d954b4d36d71626497479764292af2fa533d0d0ae8cd0302f7ad1a8f667fc6886be7630017e12260755609bbc9c88b2d253686b1ea651f96989a116e55bc82684cfc01ffc6818e6958e6ca6e58df9bf46fe5b05b3e33b55ed8bcae3514f92e4838a1fe552ea6834e15d8e710f119cbcf04e9864edc48137efbc1920608a5faa294e5b9d3a5ac8a608cedf2eb2f98963af7416b49bdde9fcdd2ac863fdce454a3e8ae9a8dadd8d8a3f945cbd19ed6b7d36d206dadd7ee83be56cf15da2987241f70a769e63c1c5e0573f6bcf365399cd67467d602b3ab60a09d20a6044e01b7985df07e355a032abc99feddb71091c556e1dca5207963d036c590ed4926f0fffc7726722d9a31426f61f62dffe3ff3ce5231a2d85bf9bb3d9cce9bc6f72050e43212175e1990c19c34701a8a239e2951dbbd435c4fb017c400f1da47287840677988c67ae5feba6a110c38e86cb013a20894fae4d5036405454374260531f503ab8a10871f6a0f6e3e47e88a5d4250fa95a1e164234dffd93133346b8c8ac4e00e04e0c0e41e172ac6b2e208b0aafeed67dee498b29870c4c5fec3117bbe1539e16e13d0d2809b3a9165d3445d657b5f9592711fe3c9ff6b317f2bed6eb230589571f4cc951f12b9f16a793796f413e86aca10379b8eed2f226a55304ec3df7c4dae6e263fa55b42c5b2902743c5aa4593563bf1532338ca3e73b936eb8f3d5770167faf4aa35b44641118417dd4ae8d6db72a0279eefbdd0735813171d2e64da73df457c9264839533161556cea9c3d688f69640e21ec3a4884448412ea6393df7d74aa46929c31ba89a49886c5662ef9033abf506be3fc407ae936febe8fb13743e221cbfb29bd89beb9c6c8a4619a477c6abf13ef9a3ee91fe0eee249bad7b90bd1e2e23573f73ea1cef108053da743666fff77361770b477d9d76488d173ad37fee100cb7f065322a5a89f657d6c284c73d7b40dd688b65c493483e059fed9a577c3fa5c0ee0b8bfe02afefb6f20a73de6d291265702661a9ae9b1e69e4d26b6674a825434e5fe01990829c8377ef06462fa0419a2386d8e169df5991fd8d08cff06dee0bd786e9b30d32446fc742976e14d1e32ef30a1556ecad9e016a587d4459dd43fdf431c7304c7851b904d9424ae2f927f30521b5da1b6357854220c6072cf0430ddb5da266fc58d2f3fc1b1a9cf8c408396088ac96e36f786b53d91502614626482da0ba34ad766f27cd1f2ea2c3e2b7728b67c1585a0e7199893bc5eda845fd57bdeaf03aa148d1bab9694fc5821a2fa0984f908e8e769486ca72009e155fe31a0288ced603687782ada08a81cd3e464d0b449c758aaea847928f638c38331c36c14c09ed69686e4eaff90bb199b11ea253013fd2b6ca5c3eb7d35880ecaf0a8411db558134b84b0c3f61c0b5f19e2f318fae4c11314b63ef218ed1445357a9f54339e30d2640360e8a56b419ce2d0de4beee78a789f85549f91f62e43766c30ece0ab1a9d05befdd8717fa81be12cb16ef1bd61a3438b6497edfbf24addc4fdb1f604bb84e58bdfcdf7883861d5f24d0b1c29836d4b44ca86afd831491a3fabc7fa29a30adc0ba60422f4cb62aff35e419a1f8cd4ccba5d40241fe741e55463b07bf7dd6ae28b8347012325c2e8b64c0fc462f387bcfee0bf7b0419a6aeb43f2bb41ead916fbccf7765aa6ac931b1d23de09376245ef50729622deac9d8cf1e125a72f38e114f4c2eb0a550f7e772dbf25524b18dc8e031cc93fb72adfbd085e153d1e2ee2371e36b2ee3a5877601082905858f2f77c46624713e1afc5fe552097c2d8a69b27a339b1a5560fbf94351180a9fd77566546d5fb25ae305873edfbf04aec7b5778af48546cfdd00d4acb34352fb46044eec5d3aff37d6f29e4551a76d035679cd1bb2e388525efc4ef767261f741b597a8e9ba89e74774f40b6bfb569a76a568192313eb026b98e675d1edc695f886de4cc225b9c073a5936efc2916e0d244469d85a9ad448be16d46484c5dbd99993906adfa55371a5f4d7199401e9fad2c914ec3ea27124d3a5e7225a47b68d7ce498f6720d08c5d07f2ba644ac3983ee5d8b4171e91c4c4a28f55ff7c49e6ff8a4753ae7efeb1f7fe557bceebaa158ded60ae48bd85180539440f5da1ada5ccada477bee8a8b38c4fb75b7a130a5e2e5c5a6ffff303d194aeee0c4c616433376254436f35c815328f43dccbf75e8a9767dfc4b3f5cf07d747e1771540fc2f1ca345b3b6661cacece97f17cfdd108ab1e8198ffb053570a86f0d5916e5c8c2e166b300c0ddbd0ac979476ee4baab450568f5cdb674113e0016a101f029e9cf42ff9dbe631d334de6a3feaa849ff8783ec9e2cd2a4a3cb44132b85e84ec44edfb077dfce603896d6939bdbc2268aca975e8f1f7038c73d9be38be71414a02b6d581e0ddf62ee8aa26dfdd592fa4461698858f04f0a94f1c428707279e7decbc668ab07d8819609039e3f7d591073cc6bdaeb2ff881e91300d2689ba3bca31da4d08bd4eb9406dc6b27025880219e2987ee3a8716e34434f5f1f6bd47e591d41c0744babe29515e27e323adfee7108946c197749065a3f1e25b006709cf04aa9a273f5e3e17d358631b605ead52a7e1b5dffdb63e969545604644a909a5f35697da9655ff2431816206e6e6279ada7a1697c8e563a7283131a890d7d806463a9bc5bcd3ba3b19abf6f59898efce074d64a99784c06b789301ef4edcadeb9cfacd883b8a7a1d93db9236a160e79fbbc795498d8392a1f89af5c2e28342f8460ee5e0c90dbb28d73ba4db3442a6d98e5795b3e9a04f1e13053420c54af47f53a3f9d76d25129a969c3c2d6f50351b45ebe01ac283527365eec71a6294022efc4d660f6b55ffade56ac8f5a9722fa5969de06de568039e052bb0111e34a2c7d82ba66c7720f923ec0a05652d9cf1e42f25b26992862ca735ada840d87395c3758081eb46d26c8040c371c7b2bd55b4705d79702223ea067953bc075c6638b83d04bc80176994c921ce0a6bbbfc4a3a4bd64c5d7186552f615acc40e7abac4dee1df04bdc0fd8b0388b6a35d66d974dfeffb109c20813172b9710750d09fcff90f907a904c2fb3226376199d0cbca7ee448095f112b3acd64ae62931c32cf342be9ee007989816e82a5329a49d0deedbc9655653da474fc3cb74d1eeb5345457672779f9fcfd21242f17f641b7d84f3f6e78088044fc9c665eaaf57a357af096a159c57fa90f39b1a3c8252f634ba8ce983abf51eeb9ec6db714e54eccd96dfd103f60e7bc4dae218b789ade6a12ef73941a40f5cb63b9e15b03285e79784d0bff58e6d717b17c2a0493bd7ce3194098fe15b7d1b3f5455a35195da63567a08d2153df5451db7e0e2e48abe6fec87d6e1b4e2f7173e5cd90e17cff11903d1ec0e67ed81083fafb68d893dfffed692bcc734ef97c07c758ca22ad67aacd02c9be89916e057f01fe66f9ea280c3ba5ca4d156c8f55f33699077868da642da61bdd58c129fb5105f7c5ed6a5497943dd99be3271a6e5dd30b9afc44dc36211d72528486c0248f7df9ea833acd5a7db214c82eb2", 0x1000}, 0x1, 0x0, 0x0, 0x4000}, 0x4004818) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r3}, 0x10) r4 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f00000002c0)={0x4800, 0x5, 0x0, 0xfffffffe}, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c0000001600010a030000000000000002000000d4fc0000130008006e65746c696e905f65787461636b0000abee747270783d4f5f22fb5dfb2e935bb752fb053fd760a52983e66efd60f036c3c574b0c6f9fa757ba3246390909cb653ea3675087423061bf2afdede71eac7d0cc"], 0x2c}, 0x1, 0x0, 0x0, 0x4004000}, 0x24000004) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = gettid() bpf$PROG_LOAD(0x5, 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r8, 0x0, 0x3}, 0x18) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000000008010100000000000000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x0) sendmsg$unix(r5, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001"], 0xa0}, 0x4004881) sendmsg$AUDIT_DEL_RULE(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000480)={&(0x7f00000015c0)=ANY=[@ANYBLOB="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"], 0x430}, 0x1, 0x0, 0x0, 0x40}, 0x800) setsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, 0x0, 0x0) kernel console output (not intermixed with test programs): ][ T4203] 9pnet_fd: Insufficient options for proto=fd [ 47.514574][ T29] audit: type=1326 audit(1747796850.598:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099ff8e969 code=0x7ffc0000 [ 47.565432][ T4228] ip6gre1: entered allmulticast mode [ 47.582277][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.900715][ T4245] loop3: detected capacity change from 0 to 1024 [ 47.921479][ T4245] EXT4-fs: Ignoring removed i_version option [ 47.930414][ T4245] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 47.947120][ T4117] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.947135][ T4243] loop1: detected capacity change from 0 to 1024 [ 47.947583][ T4243] EXT4-fs: Ignoring removed i_version option [ 47.968196][ T4245] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 47.982672][ T4117] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.991151][ T4245] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 47.999575][ T4245] EXT4-fs (loop3): orphan cleanup on readonly fs [ 48.006423][ T4243] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 48.007534][ T4245] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 48.020675][ T4243] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 48.027258][ T4117] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.040036][ T4245] EXT4-fs (loop3): Remounting filesystem read-only [ 48.046518][ T4117] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.064197][ T4245] EXT4-fs (loop3): 1 orphan inode deleted [ 48.074286][ T4243] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 48.085805][ T4245] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 48.099471][ T4243] EXT4-fs (loop1): orphan cleanup on readonly fs [ 48.124198][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.134376][ T4243] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 48.161434][ T4243] EXT4-fs (loop1): Remounting filesystem read-only [ 48.176808][ T4243] EXT4-fs (loop1): 1 orphan inode deleted [ 48.193912][ T4243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 48.310321][ T4256] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4256 comm=syz.3.300 [ 48.310447][ T4243] 9pnet_fd: Insufficient options for proto=fd [ 48.358523][ T4258] xt_hashlimit: max too large, truncated to 1048576 [ 48.380051][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.435794][ T4262] netlink: 'syz.1.303': attribute type 1 has an invalid length. [ 48.504722][ T4267] loop2: detected capacity change from 0 to 512 [ 48.516074][ T4272] __nla_validate_parse: 48 callbacks suppressed [ 48.516093][ T4272] netlink: 28 bytes leftover after parsing attributes in process `syz.4.308'. [ 48.531473][ T4272] netlink: 28 bytes leftover after parsing attributes in process `syz.4.308'. [ 48.545420][ T4267] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 48.569971][ T4267] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.306: bad orphan inode 131083 [ 48.581285][ T4267] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.695342][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.731929][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 48.751165][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 48.796451][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 48.815676][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 48.862192][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 48.888765][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'. [ 49.038077][ T4293] wireguard0: entered promiscuous mode [ 49.043831][ T4293] wireguard0: entered allmulticast mode [ 49.273624][ T4304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.316'. [ 49.282577][ T4304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.316'. [ 49.375800][ T4319] xt_hashlimit: max too large, truncated to 1048576 [ 49.385389][ T4319] netlink: 'syz.1.323': attribute type 10 has an invalid length. [ 49.424412][ T4321] xt_hashlimit: max too large, truncated to 1048576 [ 49.434616][ T4328] loop0: detected capacity change from 0 to 512 [ 49.470395][ T4331] loop3: detected capacity change from 0 to 512 [ 49.472396][ T4328] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.505923][ T4331] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 49.515096][ T4331] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 49.516005][ T4328] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 49.538140][ T4333] Invalid ELF header magic: != ELF [ 49.552594][ T4331] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 49.570275][ T4331] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 49.594629][ T4331] System zones: 0-2, 18-18, 34-34 [ 49.614976][ T4331] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 49.631129][ T4331] EXT4-fs (loop3): 1 truncate cleaned up [ 49.637305][ T4331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.651803][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.675947][ T4336] netlink: 'syz.1.329': attribute type 1 has an invalid length. [ 49.707584][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.737532][ T4342] netlink: 'syz.4.333': attribute type 39 has an invalid length. [ 49.811858][ T4351] syzkaller0: entered promiscuous mode [ 49.817408][ T4351] syzkaller0: entered allmulticast mode [ 49.850536][ T4355] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 49.869108][ T4357] xt_hashlimit: max too large, truncated to 1048576 [ 49.878467][ T4357] netlink: 'syz.3.338': attribute type 10 has an invalid length. [ 49.915893][ T4362] loop3: detected capacity change from 0 to 512 [ 49.926201][ T4355] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 49.927746][ T4362] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 49.944843][ T4362] EXT4-fs (loop3): orphan cleanup on readonly fs [ 49.952905][ T4362] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.340: Failed to acquire dquot type 1 [ 49.964538][ T4362] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.340: bg 0: block 40: padding at end of block bitmap is not set [ 49.978859][ T4362] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 49.988162][ T4362] EXT4-fs (loop3): 1 truncate cleaned up [ 49.994437][ T4362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 50.010352][ T4355] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.028379][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.092383][ T4355] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.156638][ T4355] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.167533][ T4355] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.178786][ T4355] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.189596][ T4355] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.240394][ T4367] loop0: detected capacity change from 0 to 512 [ 50.248376][ T4367] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 50.257499][ T4367] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 50.266427][ T4367] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 50.275635][ T4367] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 50.285006][ T4367] System zones: 0-2, 18-18, 34-34 [ 50.290615][ T4367] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 50.306168][ T4367] EXT4-fs (loop0): 1 truncate cleaned up [ 50.317283][ T4371] netlink: 'syz.2.343': attribute type 1 has an invalid length. [ 50.318896][ T4367] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.347912][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.401743][ T4373] 9pnet_fd: Insufficient options for proto=fd [ 50.493735][ T4386] capability: warning: `syz.1.350' uses deprecated v2 capabilities in a way that may be insecure [ 50.749653][ T4404] 9pnet_fd: Insufficient options for proto=fd [ 50.913387][ T4415] gretap0: entered promiscuous mode [ 50.940626][ T4415] batadv_slave_1: entered promiscuous mode [ 50.946781][ T4415] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 50.963783][ T4413] loop0: detected capacity change from 0 to 1024 [ 50.970358][ T4415] Cannot create hsr debugfs directory [ 50.976206][ T4413] EXT4-fs: Ignoring removed i_version option [ 50.996124][ T4413] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 51.010972][ T4413] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 51.032551][ T4413] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 51.050917][ T4413] EXT4-fs (loop0): orphan cleanup on readonly fs [ 51.057966][ T4413] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 51.144609][ T4413] EXT4-fs (loop0): Remounting filesystem read-only [ 51.160162][ T4413] EXT4-fs (loop0): 1 orphan inode deleted [ 51.182429][ T4413] 9pnet_fd: Insufficient options for proto=fd [ 51.189324][ T4420] netlink: 'syz.2.361': attribute type 1 has an invalid length. [ 51.279254][ T4427] loop0: detected capacity change from 0 to 1024 [ 51.287115][ T4427] EXT4-fs: Ignoring removed i_version option [ 51.304625][ T4427] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 51.315361][ T4427] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 51.332906][ T4427] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 51.341399][ T4427] EXT4-fs (loop0): orphan cleanup on readonly fs [ 51.352571][ T4427] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 51.369472][ T4427] EXT4-fs (loop0): Remounting filesystem read-only [ 51.403991][ T4427] EXT4-fs (loop0): 1 orphan inode deleted [ 51.744890][ T4451] SELinux: ebitmap: truncated map [ 51.751945][ T4451] SELinux: failed to load policy [ 51.868653][ T4452] loop1: detected capacity change from 0 to 256 [ 51.876432][ T4452] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 51.890860][ T4452] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 51.899513][ T4452] FAT-fs (loop1): Filesystem has been set read-only [ 51.907151][ T4452] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 52.123644][ T4479] ip6gre2: entered allmulticast mode [ 52.188089][ T29] kauditd_printk_skb: 256 callbacks suppressed [ 52.188106][ T29] audit: type=1400 audit(1747796855.298:999): avc: denied { connect } for pid=4478 comm="syz.0.384" lport=132 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 52.422907][ T4484] SELinux: ebitmap: truncated map [ 52.429657][ T4484] SELinux: failed to load policy [ 52.452031][ T4491] FAULT_INJECTION: forcing a failure. [ 52.452031][ T4491] name failslab, interval 1, probability 0, space 0, times 0 [ 52.464867][ T4491] CPU: 1 UID: 0 PID: 4491 Comm: syz.3.388 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 52.464899][ T4491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 52.464914][ T4491] Call Trace: [ 52.464922][ T4491] [ 52.464931][ T4491] __dump_stack+0x1d/0x30 [ 52.464957][ T4491] dump_stack_lvl+0xe8/0x140 [ 52.464982][ T4491] dump_stack+0x15/0x1b [ 52.465016][ T4491] should_fail_ex+0x265/0x280 [ 52.465048][ T4491] should_failslab+0x8c/0xb0 [ 52.465154][ T4491] __kvmalloc_node_noprof+0x126/0x4d0 [ 52.465183][ T4491] ? pfifo_fast_init+0xc9/0x350 [ 52.465220][ T4491] ? __pfx_pfifo_fast_dequeue+0x10/0x10 [ 52.465295][ T4491] pfifo_fast_init+0xc9/0x350 [ 52.465391][ T4491] qdisc_create_dflt+0xcd/0x260 [ 52.465431][ T4491] dev_activate+0x209/0x9e0 [ 52.465468][ T4491] __dev_open+0x472/0x530 [ 52.465500][ T4491] __dev_change_flags+0x163/0x400 [ 52.465561][ T4491] netif_change_flags+0x5a/0xd0 [ 52.465659][ T4491] dev_change_flags+0xce/0x180 [ 52.465693][ T4491] ? netdev_name_node_lookup+0xa4/0xd0 [ 52.465717][ T4491] dev_ifsioc+0x44b/0xaa0 [ 52.465737][ T4491] ? __rcu_read_unlock+0x4f/0x70 [ 52.465765][ T4491] dev_ioctl+0x70a/0x960 [ 52.465791][ T4491] sock_do_ioctl+0x197/0x220 [ 52.465936][ T4491] sock_ioctl+0x41b/0x610 [ 52.465960][ T4491] ? __pfx_sock_ioctl+0x10/0x10 [ 52.465986][ T4491] __se_sys_ioctl+0xce/0x140 [ 52.466014][ T4491] __x64_sys_ioctl+0x43/0x50 [ 52.466045][ T4491] x64_sys_call+0x19a8/0x2fb0 [ 52.466067][ T4491] do_syscall_64+0xd0/0x1a0 [ 52.466106][ T4491] ? clear_bhb_loop+0x40/0x90 [ 52.466132][ T4491] ? clear_bhb_loop+0x40/0x90 [ 52.466160][ T4491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.466187][ T4491] RIP: 0033:0x7f099ff8e969 [ 52.466254][ T4491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.466277][ T4491] RSP: 002b:00007f099e5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.466302][ T4491] RAX: ffffffffffffffda RBX: 00007f09a01b5fa0 RCX: 00007f099ff8e969 [ 52.466319][ T4491] RDX: 0000200000000100 RSI: 0000000000008914 RDI: 0000000000000008 [ 52.466336][ T4491] RBP: 00007f099e5f7090 R08: 0000000000000000 R09: 0000000000000000 [ 52.466389][ T4491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 52.466463][ T4491] R13: 0000000000000000 R14: 00007f09a01b5fa0 R15: 00007ffcf49e3e18 [ 52.466481][ T4491] [ 52.466534][ T4491] pim6reg1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 52.662197][ T29] audit: type=1326 audit(1747796855.728:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.667689][ T4491] pim6reg1: entered promiscuous mode [ 52.675270][ T29] audit: type=1326 audit(1747796855.728:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.683231][ T4491] pim6reg1: entered allmulticast mode [ 52.774533][ T29] audit: type=1326 audit(1747796855.728:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.797249][ T29] audit: type=1326 audit(1747796855.728:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.819964][ T29] audit: type=1326 audit(1747796855.748:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.842720][ T29] audit: type=1326 audit(1747796855.748:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.865469][ T29] audit: type=1326 audit(1747796855.748:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.888236][ T29] audit: type=1326 audit(1747796855.748:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.911026][ T29] audit: type=1326 audit(1747796855.748:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4492 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 52.992173][ T4498] netlink: 'syz.3.391': attribute type 1 has an invalid length. [ 53.191996][ T4510] xt_hashlimit: max too large, truncated to 1048576 [ 53.201755][ T4510] netlink: 'syz.1.396': attribute type 10 has an invalid length. [ 53.419756][ T4522] syzkaller0: entered promiscuous mode [ 53.425265][ T4522] syzkaller0: entered allmulticast mode [ 53.561626][ T4526] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.631637][ T4526] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.681320][ T4526] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.700621][ T4539] loop0: detected capacity change from 0 to 1024 [ 53.708769][ T4539] EXT4-fs: Ignoring removed i_version option [ 53.715535][ T4539] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 53.724675][ T4539] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 53.735990][ T4539] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 53.736666][ T4526] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.744078][ T4539] EXT4-fs (loop0): orphan cleanup on readonly fs [ 53.760620][ T4539] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 53.770517][ T4539] EXT4-fs (loop0): Remounting filesystem read-only [ 53.777155][ T4539] EXT4-fs (loop0): 1 orphan inode deleted [ 53.786131][ T4539] 9pnet_fd: Insufficient options for proto=fd [ 53.801764][ T4526] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.813676][ T4526] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.825061][ T4526] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.836827][ T4526] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.155228][ T4577] loop3: detected capacity change from 0 to 526 [ 54.174644][ T4577] ext4: Unknown parameter ' ' [ 54.195280][ T4577] FAULT_INJECTION: forcing a failure. [ 54.195280][ T4577] name failslab, interval 1, probability 0, space 0, times 0 [ 54.208145][ T4577] CPU: 0 UID: 0 PID: 4577 Comm: syz.3.422 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 54.208310][ T4577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 54.208331][ T4577] Call Trace: [ 54.208339][ T4577] [ 54.208348][ T4577] __dump_stack+0x1d/0x30 [ 54.208372][ T4577] dump_stack_lvl+0xe8/0x140 [ 54.208391][ T4577] dump_stack+0x15/0x1b [ 54.208410][ T4577] should_fail_ex+0x265/0x280 [ 54.208495][ T4577] ? audit_log_d_path+0x8d/0x150 [ 54.208529][ T4577] should_failslab+0x8c/0xb0 [ 54.208576][ T4577] __kmalloc_cache_noprof+0x4c/0x320 [ 54.208662][ T4577] audit_log_d_path+0x8d/0x150 [ 54.208705][ T4577] audit_log_d_path_exe+0x42/0x70 [ 54.208848][ T4577] audit_log_task+0x1e9/0x250 [ 54.208948][ T4577] audit_seccomp+0x61/0x100 [ 54.208976][ T4577] ? __seccomp_filter+0x68c/0x10d0 [ 54.208998][ T4577] __seccomp_filter+0x69d/0x10d0 [ 54.209019][ T4577] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 54.209065][ T4577] ? vfs_write+0x75e/0x8d0 [ 54.209090][ T4577] ? __rcu_read_unlock+0x4f/0x70 [ 54.209112][ T4577] ? __fget_files+0x184/0x1c0 [ 54.209223][ T4577] __secure_computing+0x82/0x150 [ 54.209246][ T4577] syscall_trace_enter+0xcf/0x1e0 [ 54.209271][ T4577] do_syscall_64+0xaa/0x1a0 [ 54.209361][ T4577] ? clear_bhb_loop+0x40/0x90 [ 54.209462][ T4577] ? clear_bhb_loop+0x40/0x90 [ 54.209486][ T4577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 54.209510][ T4577] RIP: 0033:0x7f099ff8e969 [ 54.209528][ T4577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 54.209557][ T4577] RSP: 002b:00007f099e5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 54.209618][ T4577] RAX: ffffffffffffffda RBX: 00007f09a01b5fa0 RCX: 00007f099ff8e969 [ 54.209630][ T4577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 54.209643][ T4577] RBP: 00007f099e5f7090 R08: 0000000000000000 R09: 0000000000000000 [ 54.209655][ T4577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 54.209672][ T4577] R13: 0000000000000000 R14: 00007f09a01b5fa0 R15: 00007ffcf49e3e18 [ 54.209731][ T4577] [ 54.689614][ T4593] loop3: detected capacity change from 0 to 1024 [ 54.704882][ T4593] EXT4-fs: Ignoring removed i_version option [ 54.717218][ T4593] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 54.751451][ T4593] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 54.808199][ T4593] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 54.818434][ T4593] EXT4-fs (loop3): orphan cleanup on readonly fs [ 54.825597][ T4593] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 54.836553][ T4593] EXT4-fs (loop3): Remounting filesystem read-only [ 54.843411][ T4593] EXT4-fs (loop3): 1 orphan inode deleted [ 54.846292][ T4600] xt_hashlimit: max too large, truncated to 1048576 [ 54.879107][ T4601] loop0: detected capacity change from 0 to 1024 [ 54.887705][ T4601] EXT4-fs: Ignoring removed i_version option [ 54.897026][ T4601] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 54.900452][ T4600] netlink: 'syz.4.431': attribute type 10 has an invalid length. [ 54.906081][ T4601] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 54.931028][ T4589] 9pnet_fd: Insufficient options for proto=fd [ 54.940166][ T4601] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 54.948323][ T4601] EXT4-fs (loop0): orphan cleanup on readonly fs [ 54.968904][ T4601] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 54.978673][ T4601] EXT4-fs (loop0): Remounting filesystem read-only [ 54.985443][ T4601] EXT4-fs (loop0): 1 orphan inode deleted [ 54.991404][ T4600] hsr_slave_0: left promiscuous mode [ 55.007444][ T4600] hsr_slave_1: left promiscuous mode [ 55.088476][ T4597] 9pnet_fd: Insufficient options for proto=fd [ 55.132822][ T4614] loop2: detected capacity change from 0 to 512 [ 55.146603][ T4615] loop1: detected capacity change from 0 to 1024 [ 55.163423][ T4614] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 55.177475][ T4615] EXT4-fs: Ignoring removed i_version option [ 55.190790][ T4615] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 55.210074][ T4615] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 55.226387][ T4614] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.435: bad orphan inode 131083 [ 55.237786][ T4615] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 55.246413][ T4615] EXT4-fs (loop1): orphan cleanup on readonly fs [ 55.259212][ T4615] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 55.277793][ T4615] EXT4-fs (loop1): Remounting filesystem read-only [ 55.295712][ T4615] EXT4-fs (loop1): 1 orphan inode deleted [ 55.322083][ T4628] loop0: detected capacity change from 0 to 1024 [ 55.334196][ T4629] lo: entered promiscuous mode [ 55.337648][ T4628] EXT4-fs: Ignoring removed i_version option [ 55.339025][ T4629] lo: entered allmulticast mode [ 55.349784][ T4629] __nla_validate_parse: 23 callbacks suppressed [ 55.349800][ T4629] netlink: 28 bytes leftover after parsing attributes in process `syz.3.440'. [ 55.365262][ T4629] netlink: 28 bytes leftover after parsing attributes in process `syz.3.440'. [ 55.375538][ T4628] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 55.375631][ T4612] 9pnet_fd: Insufficient options for proto=fd [ 55.390017][ T4628] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 55.411836][ T4628] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 55.420427][ T4628] EXT4-fs (loop0): orphan cleanup on readonly fs [ 55.431181][ T4628] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 55.447727][ T4628] EXT4-fs (loop0): Remounting filesystem read-only [ 55.466258][ T4628] EXT4-fs (loop0): 1 orphan inode deleted [ 55.479191][ T4636] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.520129][ T4622] 9pnet_fd: Insufficient options for proto=fd [ 55.553162][ T4636] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.591914][ T4636] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.627935][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.639282][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.664917][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.674481][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.683925][ T4636] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.697025][ T4656] xt_hashlimit: max too large, truncated to 1048576 [ 55.714945][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.723657][ T4649] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 55.748704][ T4636] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.771853][ T4636] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.788034][ T4636] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.801492][ T4636] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.863273][ T4664] netlink: 28 bytes leftover after parsing attributes in process `syz.0.451'. [ 55.872345][ T4664] netlink: 28 bytes leftover after parsing attributes in process `syz.0.451'. [ 56.204873][ T4672] xt_hashlimit: max too large, truncated to 1048576 [ 56.212429][ T4672] Cannot find set identified by id 0 to match [ 56.234893][ T4672] netlink: 'syz.2.453': attribute type 10 has an invalid length. [ 56.271149][ T4674] FAULT_INJECTION: forcing a failure. [ 56.271149][ T4674] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 56.284333][ T4674] CPU: 1 UID: 0 PID: 4674 Comm: syz.3.455 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 56.284362][ T4674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 56.284448][ T4674] Call Trace: [ 56.284456][ T4674] [ 56.284464][ T4674] __dump_stack+0x1d/0x30 [ 56.284487][ T4674] dump_stack_lvl+0xe8/0x140 [ 56.284508][ T4674] dump_stack+0x15/0x1b [ 56.284529][ T4674] should_fail_ex+0x265/0x280 [ 56.284631][ T4674] should_fail+0xb/0x20 [ 56.284671][ T4674] should_fail_usercopy+0x1a/0x20 [ 56.284694][ T4674] _copy_from_user+0x1c/0xb0 [ 56.284720][ T4674] copy_from_bpfptr+0x5c/0x90 [ 56.284756][ T4674] bpf_prog_load+0x74a/0x1070 [ 56.284843][ T4674] ? security_bpf+0x2b/0x90 [ 56.284940][ T4674] __sys_bpf+0x51d/0x790 [ 56.284980][ T4674] __x64_sys_bpf+0x41/0x50 [ 56.285010][ T4674] x64_sys_call+0x2478/0x2fb0 [ 56.285035][ T4674] do_syscall_64+0xd0/0x1a0 [ 56.285115][ T4674] ? clear_bhb_loop+0x40/0x90 [ 56.285175][ T4674] ? clear_bhb_loop+0x40/0x90 [ 56.285257][ T4674] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.285281][ T4674] RIP: 0033:0x7f099ff8e969 [ 56.285299][ T4674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 56.285318][ T4674] RSP: 002b:00007f099e5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 56.285340][ T4674] RAX: ffffffffffffffda RBX: 00007f09a01b5fa0 RCX: 00007f099ff8e969 [ 56.285354][ T4674] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 0000000000000005 [ 56.285368][ T4674] RBP: 00007f099e5f7090 R08: 0000000000000000 R09: 0000000000000000 [ 56.285403][ T4674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 56.285461][ T4674] R13: 0000000000000001 R14: 00007f09a01b5fa0 R15: 00007ffcf49e3e18 [ 56.285482][ T4674] [ 56.498304][ T4678] loop3: detected capacity change from 0 to 512 [ 56.515837][ T4678] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 56.538803][ T4676] xt_hashlimit: max too large, truncated to 1048576 [ 56.546945][ T4678] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.457: bad orphan inode 131083 [ 56.560640][ T4685] random: crng reseeded on system resumption [ 56.716063][ T4698] loop1: detected capacity change from 0 to 2048 [ 56.778208][ T3307] loop1: p1 < > p4 [ 56.788362][ T3307] loop1: p4 size 8388608 extends beyond EOD, truncated [ 56.801311][ T4698] loop1: p1 < > p4 [ 56.809486][ T4698] loop1: p4 size 8388608 extends beyond EOD, truncated [ 57.021774][ T4718] vhci_hcd: default hub control req: 800f v0000 i0000 l31125 [ 57.105523][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 57.116923][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 57.128014][ T4720] xt_hashlimit: max too large, truncated to 1048576 [ 57.190962][ T29] kauditd_printk_skb: 466 callbacks suppressed [ 57.190980][ T29] audit: type=1326 audit(1747796860.308:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.256717][ T29] audit: type=1326 audit(1747796860.308:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.280371][ T29] audit: type=1326 audit(1747796860.308:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.303726][ T29] audit: type=1326 audit(1747796860.308:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.327258][ T29] audit: type=1326 audit(1747796860.308:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.350665][ T29] audit: type=1326 audit(1747796860.308:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.374075][ T29] audit: type=1326 audit(1747796860.308:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.397591][ T29] audit: type=1326 audit(1747796860.308:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.420854][ T29] audit: type=1326 audit(1747796860.308:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.444185][ T29] audit: type=1326 audit(1747796860.308:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.0.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 57.519579][ T4753] loop3: detected capacity change from 0 to 1024 [ 57.526588][ T4753] EXT4-fs: Ignoring removed i_version option [ 57.562075][ T4753] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 57.572297][ T4753] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 57.605390][ T4753] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 57.617750][ T4753] EXT4-fs (loop3): orphan cleanup on readonly fs [ 57.637965][ T4768] loop0: detected capacity change from 0 to 512 [ 57.641728][ T4753] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 57.653734][ T4768] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 57.662915][ T4768] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 57.671443][ T4764] loop2: detected capacity change from 0 to 4096 [ 57.684214][ T4753] EXT4-fs (loop3): Remounting filesystem read-only [ 57.691107][ T4753] EXT4-fs (loop3): 1 orphan inode deleted [ 57.707422][ T4768] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 57.717575][ T4753] 9pnet_fd: Insufficient options for proto=fd [ 57.725870][ T4768] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 57.745244][ T4768] System zones: 0-2, 18-18, 34-34 [ 57.755401][ T4768] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 57.771526][ T4768] EXT4-fs (loop0): 1 truncate cleaned up [ 57.786005][ T4775] ip6gre1: entered allmulticast mode [ 58.015406][ T4810] netlink: 'syz.3.502': attribute type 1 has an invalid length. [ 58.509537][ T4840] loop2: detected capacity change from 0 to 2048 [ 58.562719][ T4840] netlink: 'syz.2.514': attribute type 4 has an invalid length. [ 58.571157][ T4840] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 58.624044][ T4849] xt_hashlimit: max too large, truncated to 1048576 [ 58.631590][ T4849] Cannot find set identified by id 0 to match [ 58.639572][ T4849] netlink: 'syz.2.516': attribute type 10 has an invalid length. [ 58.781249][ T4853] loop2: detected capacity change from 0 to 1024 [ 58.794088][ T4853] EXT4-fs: Ignoring removed i_version option [ 58.804205][ T4853] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 58.813899][ T4853] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 58.825648][ T4853] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 58.834993][ T4853] EXT4-fs (loop2): orphan cleanup on readonly fs [ 58.861186][ T4853] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 58.877178][ T4853] EXT4-fs (loop2): Remounting filesystem read-only [ 58.908159][ T4853] EXT4-fs (loop2): 1 orphan inode deleted [ 58.934405][ T4853] 9pnet_fd: Insufficient options for proto=fd [ 59.094036][ T4892] netlink: 'syz.1.533': attribute type 1 has an invalid length. [ 59.127041][ T4894] xt_hashlimit: max too large, truncated to 1048576 [ 59.134468][ T4894] Cannot find set identified by id 0 to match [ 59.253178][ T4904] loop2: detected capacity change from 0 to 512 [ 59.268558][ T4904] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 59.302268][ T4904] EXT4-fs (loop2): 1 truncate cleaned up [ 59.687298][ T4931] loop4: detected capacity change from 0 to 1024 [ 59.694311][ T4931] EXT4-fs: Ignoring removed i_version option [ 59.703946][ T4931] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 59.717595][ T4931] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 59.730341][ T4931] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 59.738605][ T4931] EXT4-fs (loop4): orphan cleanup on readonly fs [ 59.746404][ T4931] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 59.756234][ T4931] EXT4-fs (loop4): Remounting filesystem read-only [ 59.763828][ T4931] EXT4-fs (loop4): 1 orphan inode deleted [ 59.774258][ T4931] 9pnet_fd: Insufficient options for proto=fd [ 59.886738][ T4939] loop4: detected capacity change from 0 to 2048 [ 59.956496][ T3307] loop4: p1 < > p4 [ 59.962359][ T3307] loop4: p4 size 8388608 extends beyond EOD, truncated [ 59.984670][ T4939] loop4: p1 < > p4 [ 59.989403][ T4939] loop4: p4 size 8388608 extends beyond EOD, truncated [ 60.045140][ T4947] ip6gre2: entered allmulticast mode [ 60.301948][ T4976] loop2: detected capacity change from 0 to 512 [ 60.320671][ T4976] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 60.330054][ T4976] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 60.342426][ T4978] loop0: detected capacity change from 0 to 512 [ 60.350939][ T4978] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 60.365109][ T4976] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 60.378498][ T4978] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.561: bad orphan inode 131083 [ 60.392226][ T4976] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 60.408933][ T4984] __nla_validate_parse: 74 callbacks suppressed [ 60.408953][ T4984] netlink: 34 bytes leftover after parsing attributes in process `syz.4.563'. [ 60.411486][ T4976] System zones: [ 60.420425][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 60.424325][ T4976] 0-2 [ 60.429424][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 60.437939][ T4976] , 18-18, 34-34 [ 60.456578][ T4976] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 60.477994][ T4984] netlink: 8 bytes leftover after parsing attributes in process `syz.4.563'. [ 60.502528][ T4976] EXT4-fs (loop2): 1 truncate cleaned up [ 60.605893][ T5003] netlink: 28 bytes leftover after parsing attributes in process `syz.2.571'. [ 60.614954][ T5003] netlink: 28 bytes leftover after parsing attributes in process `syz.2.571'. [ 60.842274][ T5011] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.909530][ T5017] loop2: detected capacity change from 0 to 512 [ 60.917123][ T5011] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.932452][ T5017] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 60.970733][ T5019] loop3: detected capacity change from 0 to 1024 [ 60.978842][ T5019] EXT4-fs: Ignoring removed i_version option [ 60.994005][ T5019] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 61.003351][ T5019] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 61.014334][ T5019] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 61.022425][ T5019] EXT4-fs (loop3): orphan cleanup on readonly fs [ 61.029434][ T5019] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 61.029751][ T5011] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.040677][ T5019] EXT4-fs (loop3): Remounting filesystem read-only [ 61.055714][ T5019] EXT4-fs (loop3): 1 orphan inode deleted [ 61.071640][ T5019] 9pnet_fd: Insufficient options for proto=fd [ 61.101382][ T5011] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.111754][ T5024] loop2: detected capacity change from 0 to 512 [ 61.123897][ T5024] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 61.133039][ T5024] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 61.142766][ T5024] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 61.156042][ T5024] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 61.164496][ T5024] System zones: 0-2, 18-18, 34-34 [ 61.174981][ T5024] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 61.180255][ T5011] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.190559][ T5024] EXT4-fs (loop2): 1 truncate cleaned up [ 61.205369][ T5031] netlink: 8 bytes leftover after parsing attributes in process `syz.3.581'. [ 61.214238][ T5031] netlink: 4 bytes leftover after parsing attributes in process `syz.3.581'. [ 61.221434][ T5011] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.236062][ T5011] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.284927][ T5011] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.458966][ T5052] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'. [ 61.467830][ T5052] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'. [ 61.568566][ T5056] xt_hashlimit: max too large, truncated to 1048576 [ 61.581038][ T5056] netlink: 'syz.2.589': attribute type 10 has an invalid length. [ 61.711972][ T5062] loop3: detected capacity change from 0 to 512 [ 61.736528][ T5064] loop1: detected capacity change from 0 to 512 [ 61.762302][ T5062] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 61.808303][ T5064] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 61.817499][ T5064] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 61.867875][ T5064] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 61.878351][ T5064] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 61.889475][ T5064] System zones: 0-2, 18-18, 34-34 [ 61.905909][ T5069] netlink: 8 bytes leftover after parsing attributes in process `syz.0.593'. [ 61.914850][ T5069] netlink: 8 bytes leftover after parsing attributes in process `syz.0.593'. [ 61.926502][ T5064] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 61.941688][ T5062] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.591: bad orphan inode 131083 [ 61.981073][ T5064] EXT4-fs (loop1): 1 truncate cleaned up [ 62.061240][ T5080] loop0: detected capacity change from 0 to 2048 [ 62.130416][ T3307] loop0: p1 < > p4 [ 62.143335][ T5085] loop1: detected capacity change from 0 to 2048 [ 62.150701][ T5092] FAULT_INJECTION: forcing a failure. [ 62.150701][ T5092] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 62.163845][ T5092] CPU: 1 UID: 0 PID: 5092 Comm: syz.3.601 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 62.163943][ T5092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 62.163958][ T5092] Call Trace: [ 62.163965][ T5092] [ 62.163974][ T5092] __dump_stack+0x1d/0x30 [ 62.163999][ T5092] dump_stack_lvl+0xe8/0x140 [ 62.164040][ T5092] dump_stack+0x15/0x1b [ 62.164061][ T5092] should_fail_ex+0x265/0x280 [ 62.164158][ T5092] should_fail+0xb/0x20 [ 62.164237][ T5092] should_fail_usercopy+0x1a/0x20 [ 62.164256][ T5092] _copy_to_user+0x20/0xa0 [ 62.164283][ T5092] simple_read_from_buffer+0xb5/0x130 [ 62.164382][ T5092] proc_fail_nth_read+0x100/0x140 [ 62.164414][ T5092] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 62.164461][ T5092] vfs_read+0x1a0/0x6f0 [ 62.164536][ T5092] ? __rcu_read_unlock+0x4f/0x70 [ 62.164559][ T5092] ? __rcu_read_unlock+0x4f/0x70 [ 62.164584][ T5092] ? __fget_files+0x184/0x1c0 [ 62.164668][ T5092] ksys_read+0xda/0x1a0 [ 62.164700][ T5092] __x64_sys_read+0x40/0x50 [ 62.164789][ T5092] x64_sys_call+0x2d77/0x2fb0 [ 62.164817][ T5092] do_syscall_64+0xd0/0x1a0 [ 62.164919][ T5092] ? clear_bhb_loop+0x40/0x90 [ 62.164946][ T5092] ? clear_bhb_loop+0x40/0x90 [ 62.164967][ T5092] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.164993][ T5092] RIP: 0033:0x7f099ff8d37c [ 62.165009][ T5092] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 62.165039][ T5092] RSP: 002b:00007f099e5f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 62.165065][ T5092] RAX: ffffffffffffffda RBX: 00007f09a01b5fa0 RCX: 00007f099ff8d37c [ 62.165080][ T5092] RDX: 000000000000000f RSI: 00007f099e5f70a0 RDI: 0000000000000005 [ 62.165095][ T5092] RBP: 00007f099e5f7090 R08: 0000000000000000 R09: 0000000000000000 [ 62.165134][ T5092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 62.165149][ T5092] R13: 0000000000000000 R14: 00007f09a01b5fa0 R15: 00007ffcf49e3e18 [ 62.165171][ T5092] [ 62.180075][ T5085] loop1: p1 < > p4 [ 62.182655][ T3307] loop0: p4 size 8388608 extends beyond EOD, [ 62.196061][ T5085] loop1: p4 size 8388608 extends beyond EOD, [ 62.198637][ T3307] truncated [ 62.395139][ T5085] truncated [ 62.500790][ T5080] loop0: p1 < > p4 [ 62.516396][ T5080] loop0: p4 size 8388608 extends beyond EOD, truncated [ 62.882239][ T5097] loop3: detected capacity change from 0 to 1024 [ 62.932126][ T5097] EXT4-fs: Ignoring removed i_version option [ 62.959815][ T5097] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 62.969736][ T5109] loop4: detected capacity change from 0 to 128 [ 62.992154][ T29] kauditd_printk_skb: 438 callbacks suppressed [ 62.992197][ T29] audit: type=1400 audit(1747796866.108:1887): avc: denied { remount } for pid=5108 comm="syz.4.607" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 63.028750][ T5097] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 63.034442][ T5111] loop0: detected capacity change from 0 to 512 [ 63.060702][ T5097] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 63.070889][ T5097] EXT4-fs (loop3): orphan cleanup on readonly fs [ 63.078882][ T5111] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 63.120723][ T5097] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 63.140514][ T5097] EXT4-fs (loop3): Remounting filesystem read-only [ 63.147271][ T5097] Quota error (device loop3): write_blk: dquota write failed [ 63.154751][ T5097] Quota error (device loop3): write_blk: dquota write failed [ 63.162292][ T5097] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 63.237549][ T5111] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.608: bad orphan inode 131083 [ 63.276896][ T5097] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 63.285790][ T5097] EXT4-fs (loop3): 1 orphan inode deleted [ 63.574827][ T29] audit: type=1400 audit(1747796866.688:1888): avc: denied { kexec_image_load } for pid=5125 comm="syz.1.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 63.625790][ T5126] loop1: detected capacity change from 0 to 512 [ 63.655492][ T5126] EXT4-fs: Ignoring removed oldalloc option [ 63.717715][ T5126] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 63.905731][ T5097] 9pnet_fd: Insufficient options for proto=fd [ 63.913837][ T5126] Quota error (device loop1): do_check_range: Getting block 196613 out of range 1-5 [ 63.923430][ T5126] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 63.932913][ T5126] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.610: Failed to acquire dquot type 1 [ 63.946003][ T5126] EXT4-fs (loop1): 1 truncate cleaned up [ 63.974350][ T29] audit: type=1400 audit(1747796867.078:1889): avc: denied { write } for pid=5133 comm="syz.0.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 63.992758][ T5126] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 64.028473][ T5136] xt_hashlimit: max too large, truncated to 1048576 [ 64.104596][ T29] audit: type=1400 audit(1747796867.218:1890): avc: denied { cpu } for pid=5138 comm="syz.4.615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 64.111306][ T5126] 9pnet_fd: Insufficient options for proto=fd [ 64.160558][ T5148] loop3: detected capacity change from 0 to 2048 [ 64.215610][ T5157] loop2: detected capacity change from 0 to 1024 [ 64.225038][ T5157] EXT4-fs: Ignoring removed i_version option [ 64.232490][ T3307] loop3: p1 < > p4 [ 64.239134][ T5157] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 64.249499][ T3307] loop3: p4 size 8388608 extends beyond EOD, truncated [ 64.264505][ T5157] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 64.293584][ T5148] loop3: p1 < > p4 [ 64.298747][ T5159] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.310237][ T5157] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 64.318507][ T5157] EXT4-fs (loop2): orphan cleanup on readonly fs [ 64.322818][ T5148] loop3: p4 size 8388608 extends beyond EOD, truncated [ 64.340485][ T5157] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 64.367570][ T5159] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.402886][ T5166] loop4: detected capacity change from 0 to 1024 [ 64.409647][ T5166] EXT4-fs: Ignoring removed i_version option [ 64.415514][ T5157] EXT4-fs (loop2): Remounting filesystem read-only [ 64.424420][ T5159] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.435386][ T5166] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 64.444584][ T5157] EXT4-fs (loop2): 1 orphan inode deleted [ 64.455719][ T5166] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 64.467113][ T5166] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 64.482780][ T5166] EXT4-fs (loop4): orphan cleanup on readonly fs [ 64.500801][ T5166] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 64.513912][ T5159] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.532332][ T5166] EXT4-fs (loop4): Remounting filesystem read-only [ 64.541188][ T5166] EXT4-fs (loop4): 1 orphan inode deleted [ 64.559396][ T5166] 9pnet_fd: Insufficient options for proto=fd [ 64.621588][ T5159] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.642549][ T5159] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.655767][ T5159] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.685532][ T5159] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.869590][ T5204] xt_hashlimit: max too large, truncated to 1048576 [ 64.891191][ T5206] loop2: detected capacity change from 0 to 512 [ 64.916025][ T5206] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 64.954754][ T5209] netlink: 'syz.3.637': attribute type 10 has an invalid length. [ 65.047779][ T5206] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.635: bad orphan inode 131083 [ 65.068066][ T5213] loop4: detected capacity change from 0 to 512 [ 65.091135][ T5213] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 65.100268][ T5213] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 65.117078][ T5215] loop1: detected capacity change from 0 to 2048 [ 65.150191][ T5216] loop3: detected capacity change from 0 to 512 [ 65.162637][ T5216] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 65.171817][ T5216] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 65.181758][ T5213] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 65.196761][ T5213] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 65.205180][ T5213] System zones: 0-2, 18-18, 34-34 [ 65.211905][ T5213] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 65.234688][ T5213] EXT4-fs (loop4): 1 truncate cleaned up [ 65.280778][ T5215] netlink: 'syz.1.641': attribute type 4 has an invalid length. [ 65.311112][ T5216] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 65.321541][ T5216] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 65.334714][ T5216] System zones: 0-2, 18-18, 34-34 [ 65.348557][ T5216] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 65.380427][ T5216] EXT4-fs (loop3): 1 truncate cleaned up [ 65.392060][ T5226] loop4: detected capacity change from 0 to 1024 [ 65.420079][ T5226] EXT4-fs: Ignoring removed i_version option [ 65.426986][ T5226] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 65.436207][ T5228] __nla_validate_parse: 15 callbacks suppressed [ 65.436293][ T5228] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 65.452366][ T5228] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 65.469785][ T5226] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 65.485461][ T5226] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 65.516086][ T5226] EXT4-fs (loop4): orphan cleanup on readonly fs [ 65.521306][ T5238] loop3: detected capacity change from 0 to 164 [ 65.522663][ T5228] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 65.548560][ T5238] loop3: detected capacity change from 0 to 2048 [ 65.555479][ T5228] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 65.560490][ T5226] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 65.601844][ T5238] EXT4-fs mount: 64 callbacks suppressed [ 65.601860][ T5238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 65.622129][ T5245] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 65.630028][ T5226] EXT4-fs (loop4): Remounting filesystem read-only [ 65.630540][ T5245] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 65.637068][ T5226] EXT4-fs (loop4): 1 orphan inode deleted [ 65.678623][ T5245] loop2: detected capacity change from 0 to 2048 [ 65.694541][ T5226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 65.706691][ T5243] loop0: detected capacity change from 0 to 1764 [ 65.756090][ T5248] xt_hashlimit: max too large, truncated to 1048576 [ 65.772500][ T3307] loop2: p1 < > p4 [ 65.777748][ T3307] loop2: p4 size 8388608 extends beyond EOD, truncated [ 65.795425][ T5248] netlink: 'syz.1.651': attribute type 10 has an invalid length. [ 65.815613][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.944554][ T5257] loop0: detected capacity change from 0 to 512 [ 65.971451][ T5257] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 65.980581][ T5257] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 66.051038][ T5257] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 66.074196][ T5257] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 66.093607][ T5257] System zones: 0-2, 18-18, 34-34 [ 66.104217][ T5257] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 66.130650][ T5245] loop2: p1 < > p4 [ 66.134601][ T5257] EXT4-fs (loop0): 1 truncate cleaned up [ 66.145177][ T5245] loop2: p4 size 8388608 extends beyond EOD, truncated [ 66.171199][ T5257] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.217506][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.224762][ T5267] loop4: detected capacity change from 0 to 1024 [ 66.250400][ T5267] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.317826][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.333794][ T5273] loop1: detected capacity change from 0 to 1024 [ 66.344310][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.365415][ T5273] EXT4-fs: Ignoring removed i_version option [ 66.405415][ T5278] loop0: detected capacity change from 0 to 1024 [ 66.425747][ T5278] EXT4-fs: Ignoring removed i_version option [ 66.437826][ T5273] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 66.447994][ T5273] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 66.546141][ T5278] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 66.556302][ T5273] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 66.566103][ T5273] EXT4-fs (loop1): orphan cleanup on readonly fs [ 66.573090][ T5273] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 66.583945][ T5273] EXT4-fs (loop1): Remounting filesystem read-only [ 66.590780][ T5273] EXT4-fs (loop1): 1 orphan inode deleted [ 66.593248][ T5278] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 66.607672][ T5273] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 66.636640][ T5263] 9pnet_fd: Insufficient options for proto=fd [ 66.849769][ T5278] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 66.867257][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.892482][ T5278] EXT4-fs (loop0): orphan cleanup on readonly fs [ 66.902474][ T5278] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 66.913687][ T5278] EXT4-fs (loop0): Remounting filesystem read-only [ 66.921167][ T5278] EXT4-fs (loop0): 1 orphan inode deleted [ 67.056015][ T5278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 67.083854][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.375600][ T5303] loop2: detected capacity change from 0 to 1024 [ 67.391939][ T5312] loop0: detected capacity change from 0 to 1024 [ 67.395198][ T5303] EXT4-fs: Ignoring removed i_version option [ 67.410664][ T5303] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 67.427551][ T5303] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 67.433781][ T5312] EXT4-fs: Ignoring removed i_version option [ 67.477787][ T5303] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 67.486317][ T5312] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 67.506959][ T5303] EXT4-fs (loop2): orphan cleanup on readonly fs [ 67.524285][ T5312] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 67.536875][ T5321] loop3: detected capacity change from 0 to 1024 [ 67.544015][ T5303] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 67.561958][ T5321] EXT4-fs: Ignoring removed i_version option [ 67.569635][ T5303] EXT4-fs (loop2): Remounting filesystem read-only [ 67.577462][ T5312] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 67.585846][ T5321] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 67.595977][ T5303] EXT4-fs (loop2): 1 orphan inode deleted [ 67.602163][ T5312] EXT4-fs (loop0): orphan cleanup on readonly fs [ 67.608925][ T5321] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 67.612875][ T5312] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 67.619966][ T5303] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 67.644411][ T5312] EXT4-fs (loop0): Remounting filesystem read-only [ 67.655354][ T5321] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 67.657154][ T5303] 9pnet_fd: Insufficient options for proto=fd [ 67.664699][ T5312] EXT4-fs (loop0): 1 orphan inode deleted [ 67.682413][ T5321] EXT4-fs (loop3): orphan cleanup on readonly fs [ 67.691950][ T5323] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 67.695071][ T5321] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 67.703189][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.715744][ T5312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 67.720791][ T5323] SELinux: failed to load policy [ 67.737156][ T5321] EXT4-fs (loop3): Remounting filesystem read-only [ 67.744249][ T5321] EXT4-fs (loop3): 1 orphan inode deleted [ 67.750241][ T5305] 9pnet_fd: Insufficient options for proto=fd [ 67.770421][ T5321] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 67.811585][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.858014][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.006738][ T29] kauditd_printk_skb: 264 callbacks suppressed [ 68.006755][ T29] audit: type=1400 audit(1747796871.108:2123): avc: denied { getopt } for pid=5349 comm="syz.2.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 68.032651][ T29] audit: type=1400 audit(1747796871.108:2124): avc: denied { ioctl } for pid=5349 comm="syz.2.689" path="socket:[11127]" dev="sockfs" ino=11127 ioctlcmd=0x5402 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 68.058592][ T29] audit: type=1400 audit(1747796871.108:2125): avc: denied { accept } for pid=5349 comm="syz.2.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 68.079320][ T29] audit: type=1400 audit(1747796871.108:2126): avc: denied { module_request } for pid=5349 comm="syz.2.689" kmod="nfnetlink-subsys-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 68.103043][ T29] audit: type=1400 audit(1747796871.118:2127): avc: denied { read } for pid=5349 comm="syz.2.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 68.123541][ T29] audit: type=1400 audit(1747796871.118:2128): avc: denied { ioctl } for pid=5349 comm="syz.2.689" path="socket:[11129]" dev="sockfs" ino=11129 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 68.148450][ T29] audit: type=1400 audit(1747796871.138:2129): avc: denied { sys_module } for pid=5349 comm="syz.2.689" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 68.169688][ T29] audit: type=1400 audit(1747796871.138:2130): avc: denied { relabelfrom } for pid=5349 comm="syz.2.689" name="NETLINK" dev="sockfs" ino=11127 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 68.194076][ T29] audit: type=1400 audit(1747796871.138:2131): avc: denied { mac_admin } for pid=5349 comm="syz.2.689" capability=33 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 68.215413][ T29] audit: type=1400 audit(1747796871.138:2132): avc: denied { relabelto } for pid=5349 comm="syz.2.689" name="NETLINK" dev="sockfs" ino=11127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_netfilter_socket permissive=1 trawcon="system_u:object_r:scanner_device_t:s0" [ 68.245178][ T5359] netlink: 8 bytes leftover after parsing attributes in process `syz.2.692'. [ 68.266192][ T5363] loop1: detected capacity change from 0 to 1024 [ 68.300305][ T5363] EXT4-fs: Ignoring removed i_version option [ 68.347823][ T5363] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 68.410434][ T5363] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 68.412594][ T5374] loop0: detected capacity change from 0 to 128 [ 68.477614][ T5363] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 68.494284][ T5363] EXT4-fs (loop1): orphan cleanup on readonly fs [ 68.517183][ T5363] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 68.539217][ T5363] EXT4-fs (loop1): Remounting filesystem read-only [ 68.566735][ T5363] EXT4-fs (loop1): 1 orphan inode deleted [ 68.591752][ T5363] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 68.656555][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.671804][ T5383] loop3: detected capacity change from 0 to 1024 [ 68.771631][ T5383] EXT4-fs: Ignoring removed i_version option [ 68.971951][ T5383] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 69.096691][ T5383] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 69.155552][ T5383] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 69.166216][ T5383] EXT4-fs (loop3): orphan cleanup on readonly fs [ 69.174056][ T5383] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 69.189009][ T5383] EXT4-fs (loop3): Remounting filesystem read-only [ 69.200095][ T5383] EXT4-fs (loop3): 1 orphan inode deleted [ 69.211874][ T5383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 69.226637][ T5398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'. [ 69.230875][ T5379] 9pnet_fd: Insufficient options for proto=fd [ 69.253198][ T5398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'. [ 69.301342][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.319210][ T5398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'. [ 69.334941][ T5398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'. [ 69.378972][ T5400] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.396966][ T5398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.706'. [ 69.471118][ T5400] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.507405][ T5408] loop3: detected capacity change from 0 to 1024 [ 69.515426][ T5408] EXT4-fs: Ignoring removed i_version option [ 69.531023][ T5408] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 69.540038][ T5408] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 69.540692][ T5400] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.551280][ T5408] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 69.568550][ T5408] EXT4-fs (loop3): orphan cleanup on readonly fs [ 69.575935][ T5408] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 69.585739][ T5408] EXT4-fs (loop3): Remounting filesystem read-only [ 69.593954][ T5400] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.603941][ T5408] EXT4-fs (loop3): 1 orphan inode deleted [ 69.610740][ T5408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 69.659877][ T5408] 9pnet_fd: Insufficient options for proto=fd [ 69.687734][ T5400] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.702354][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.741272][ T5400] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.769348][ T5400] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.781372][ T5400] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.091902][ T5439] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.153234][ T5442] loop1: detected capacity change from 0 to 512 [ 70.187216][ T5439] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.201336][ T5442] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 70.262249][ T5439] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.289787][ T5442] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.722: bad orphan inode 131083 [ 70.320629][ T5442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.347976][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.361729][ T5439] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.503872][ T5451] loop4: detected capacity change from 0 to 2048 [ 70.563112][ T5451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.697620][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.714300][ T5474] __nla_validate_parse: 1 callbacks suppressed [ 70.714315][ T5474] netlink: 80 bytes leftover after parsing attributes in process `syz.2.732'. [ 70.723477][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.741230][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.750700][ T5476] loop3: detected capacity change from 0 to 512 [ 70.757147][ T5474] loop2: detected capacity change from 0 to 512 [ 70.764787][ T5476] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 70.773957][ T5476] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 70.783765][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.792634][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.793783][ T5474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.823110][ T5474] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.840022][ T5476] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 70.849545][ T5478] xt_hashlimit: max too large, truncated to 1048576 [ 70.862521][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.871187][ T5476] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 70.871249][ T5472] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 70.888894][ T5476] System zones: 0-2, 18-18, 34-34 [ 70.894768][ T5476] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 70.920267][ T5476] EXT4-fs (loop3): 1 truncate cleaned up [ 70.931746][ T5484] loop4: detected capacity change from 0 to 512 [ 70.938605][ T5484] EXT4-fs: Ignoring removed oldalloc option [ 70.947508][ T5476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.970286][ T5484] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 70.979428][ T5488] loop1: detected capacity change from 0 to 1024 [ 70.993512][ T5488] EXT4-fs: Ignoring removed i_version option [ 71.010289][ T5488] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 71.011498][ T5484] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.733: Failed to acquire dquot type 1 [ 71.031346][ T5488] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 71.043695][ T5488] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 71.051324][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.053162][ T5484] EXT4-fs (loop4): 1 truncate cleaned up [ 71.062178][ T5488] EXT4-fs (loop1): orphan cleanup on readonly fs [ 71.066896][ T5484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.085666][ T5484] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 71.096450][ T5488] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 71.117700][ T5488] EXT4-fs (loop1): Remounting filesystem read-only [ 71.138615][ T5488] EXT4-fs (loop1): 1 orphan inode deleted [ 71.142690][ T5484] 9pnet_fd: Insufficient options for proto=fd [ 71.158699][ T5488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 71.189573][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.204101][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.394525][ T5515] netlink: 8 bytes leftover after parsing attributes in process `syz.3.744'. [ 71.403395][ T5515] netlink: 8 bytes leftover after parsing attributes in process `syz.3.744'. [ 71.440584][ T5512] loop4: detected capacity change from 0 to 2048 [ 71.500491][ T3302] loop4: p1 < > p4 [ 71.505513][ T3302] loop4: p4 size 8388608 extends beyond EOD, truncated [ 71.518131][ T5512] loop4: p1 < > p4 [ 71.523070][ T5512] loop4: p4 size 8388608 extends beyond EOD, truncated [ 71.572961][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.601626][ T5526] loop3: detected capacity change from 0 to 1024 [ 71.626503][ T5526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.666796][ T5530] netlink: 'syz.2.751': attribute type 1 has an invalid length. [ 71.684677][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.743828][ T5532] loop3: detected capacity change from 0 to 512 [ 71.751679][ T5532] EXT4-fs: Ignoring removed oldalloc option [ 71.758288][ T5532] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 71.808473][ T5532] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.753: Failed to acquire dquot type 1 [ 71.830672][ T5532] EXT4-fs (loop3): 1 truncate cleaned up [ 71.841369][ T5532] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.874203][ T5532] ext4 filesystem being mounted at /162/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 71.930290][ T5532] 9pnet_fd: Insufficient options for proto=fd [ 71.968504][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.001267][ T5538] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 72.081024][ T5539] xt_hashlimit: max too large, truncated to 1048576 [ 72.095287][ T5541] loop4: detected capacity change from 0 to 2048 [ 72.119587][ T5541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.183768][ T5550] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.207625][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.232564][ T5550] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.272890][ T5550] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.324630][ T5550] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.362452][ T5566] loop1: detected capacity change from 0 to 1024 [ 72.381849][ T5550] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.385259][ T5566] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.394759][ T5550] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.416659][ T5550] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.425988][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.428314][ T5550] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.598590][ T5586] loop4: detected capacity change from 0 to 1024 [ 72.621071][ T5586] EXT4-fs: Ignoring removed i_version option [ 72.643526][ T5586] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 72.652457][ T5586] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 72.676108][ T5586] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 72.694401][ T5586] EXT4-fs (loop4): orphan cleanup on readonly fs [ 72.740436][ T5586] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 72.770052][ T5586] EXT4-fs (loop4): Remounting filesystem read-only [ 72.776796][ T5586] EXT4-fs (loop4): 1 orphan inode deleted [ 72.804259][ T5586] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 72.849842][ T5578] 9pnet_fd: Insufficient options for proto=fd [ 72.885367][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.990043][ T5601] loop4: detected capacity change from 0 to 1024 [ 73.230511][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.465807][ T5439] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.493494][ T5439] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.503986][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.523884][ T5439] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.596086][ T5439] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.632593][ T5618] loop1: detected capacity change from 0 to 512 [ 73.642093][ T5618] EXT4-fs: Ignoring removed oldalloc option [ 73.660500][ T5618] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 73.692351][ T29] kauditd_printk_skb: 236 callbacks suppressed [ 73.692372][ T29] audit: type=1326 audit(1747796876.808:2345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.723945][ T29] audit: type=1326 audit(1747796876.838:2346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.746901][ T29] audit: type=1326 audit(1747796876.838:2347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.769753][ T29] audit: type=1326 audit(1747796876.838:2348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.792602][ T29] audit: type=1326 audit(1747796876.838:2349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.815349][ T29] audit: type=1326 audit(1747796876.838:2350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.838104][ T29] audit: type=1326 audit(1747796876.838:2351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.860940][ T29] audit: type=1326 audit(1747796876.838:2352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.883689][ T29] audit: type=1326 audit(1747796876.838:2353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.906534][ T29] audit: type=1326 audit(1747796876.838:2354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 73.931349][ T5618] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.781: Failed to acquire dquot type 1 [ 73.943250][ T5618] EXT4-fs (loop1): 1 truncate cleaned up [ 73.955763][ T5618] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.969255][ T5618] ext4 filesystem being mounted at /135/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 74.004465][ T5634] loop2: detected capacity change from 0 to 1024 [ 74.070448][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.105996][ T5634] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.193571][ T5649] loop1: detected capacity change from 0 to 2048 [ 74.228173][ T5652] loop0: detected capacity change from 0 to 2048 [ 74.245858][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.266203][ T3537] loop0: p1 < > p4 [ 74.277811][ T5649] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.295954][ T3537] loop0: p4 size 8388608 extends beyond EOD, truncated [ 74.306408][ T5652] loop0: p1 < > p4 [ 74.311784][ T5652] loop0: p4 size 8388608 extends beyond EOD, truncated [ 74.359854][ T3004] loop0: p1 < > p4 [ 74.369489][ T3004] loop0: p4 size 8388608 extends beyond EOD, truncated [ 74.472166][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.578191][ T5684] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 74.586449][ T5684] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 74.669712][ T5684] loop2: detected capacity change from 0 to 2048 [ 74.710663][ T5684] loop2: p1 < > p4 [ 74.716622][ T5684] loop2: p4 size 8388608 extends beyond EOD, truncated [ 74.900124][ T5696] loop3: detected capacity change from 0 to 1024 [ 74.911241][ T5696] EXT4-fs: Ignoring removed i_version option [ 74.974988][ T5696] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 75.001403][ T5696] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 75.042998][ T5696] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 75.062346][ T5696] EXT4-fs (loop3): orphan cleanup on readonly fs [ 75.066472][ T5701] loop4: detected capacity change from 0 to 2048 [ 75.097178][ T5696] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 75.127948][ T5696] EXT4-fs (loop3): Remounting filesystem read-only [ 75.135226][ T5696] EXT4-fs (loop3): 1 orphan inode deleted [ 75.149581][ T5696] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 75.173648][ T5701] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.228604][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.252323][ T5720] netlink: 'syz.4.814': attribute type 4 has an invalid length. [ 75.257639][ T5719] loop1: detected capacity change from 0 to 512 [ 75.299584][ T5718] loop2: detected capacity change from 0 to 512 [ 75.308808][ T5718] EXT4-fs: Ignoring removed oldalloc option [ 75.324327][ T5719] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 75.333503][ T5719] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 75.346249][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.361760][ T5719] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 75.370787][ T5718] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 75.381130][ T5719] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 75.389747][ T5719] System zones: 0-2, 18-18, 34-34 [ 75.418159][ T5719] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 75.435862][ T5718] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.819: Failed to acquire dquot type 1 [ 75.478955][ T5718] EXT4-fs (loop2): 1 truncate cleaned up [ 75.487380][ T5718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.504677][ T5719] EXT4-fs (loop1): 1 truncate cleaned up [ 75.504874][ T5718] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 75.539513][ T5719] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.540410][ T5718] 9pnet_fd: Insufficient options for proto=fd [ 75.578013][ T5733] netlink: 'syz.0.825': attribute type 1 has an invalid length. [ 75.603175][ T5736] loop3: detected capacity change from 0 to 128 [ 75.611514][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.622345][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.644173][ T5735] loop4: detected capacity change from 0 to 512 [ 75.651373][ T5735] EXT4-fs: Ignoring removed oldalloc option [ 75.672274][ T5735] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 75.697081][ T5744] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 75.698796][ T5745] loop1: detected capacity change from 0 to 1024 [ 75.705337][ T5744] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 75.714550][ T5745] EXT4-fs: Ignoring removed i_version option [ 75.727391][ T5745] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 75.740094][ T5745] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 75.759164][ T5744] loop2: detected capacity change from 0 to 2048 [ 75.759524][ T5735] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.826: Failed to acquire dquot type 1 [ 75.770784][ T5745] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 75.778244][ T5735] EXT4-fs (loop4): 1 truncate cleaned up [ 75.785056][ T5745] EXT4-fs (loop1): orphan cleanup on readonly fs [ 75.792150][ T5735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.797185][ T5745] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 75.809481][ T5735] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 75.820217][ T5745] EXT4-fs (loop1): Remounting filesystem read-only [ 75.836446][ T5744] loop2: p1 < > p4 [ 75.840034][ T5745] EXT4-fs (loop1): 1 orphan inode deleted [ 75.842544][ T5744] loop2: p4 size 8388608 extends beyond EOD, truncated [ 75.847576][ T5745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 76.139059][ T5765] loop1: detected capacity change from 0 to 512 [ 76.152486][ T5765] EXT4-fs: Ignoring removed oldalloc option [ 76.167301][ T5765] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 76.219842][ T5775] loop4: detected capacity change from 0 to 512 [ 76.228469][ T5775] EXT4-fs: Ignoring removed oldalloc option [ 76.250255][ T5775] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 76.260966][ T5778] loop2: detected capacity change from 0 to 1024 [ 76.265045][ T5765] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.838: Failed to acquire dquot type 1 [ 76.281840][ T5765] EXT4-fs (loop1): 1 truncate cleaned up [ 76.282413][ T5778] EXT4-fs: Ignoring removed i_version option [ 76.288347][ T5765] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 76.309562][ T5775] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.842: Failed to acquire dquot type 1 [ 76.329206][ T5778] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 76.338094][ T5778] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.340281][ T5784] __nla_validate_parse: 10 callbacks suppressed [ 76.340295][ T5784] netlink: 8 bytes leftover after parsing attributes in process `syz.3.844'. [ 76.352206][ T5775] EXT4-fs (loop4): 1 truncate cleaned up [ 76.365896][ T5765] 9pnet_fd: Insufficient options for proto=fd [ 76.369399][ T5778] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 76.390517][ T5775] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 76.394117][ T5784] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=133 sclass=netlink_route_socket pid=5784 comm=syz.3.844 [ 76.413497][ T5778] EXT4-fs (loop2): orphan cleanup on readonly fs [ 76.453669][ T5778] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 76.470567][ T5775] 9pnet_fd: Insufficient options for proto=fd [ 76.499102][ T5778] EXT4-fs (loop2): Remounting filesystem read-only [ 76.506032][ T5778] EXT4-fs (loop2): 1 orphan inode deleted [ 76.598737][ T5804] loop2: detected capacity change from 0 to 2048 [ 76.694896][ T5818] netlink: 'syz.2.853': attribute type 4 has an invalid length. [ 76.702671][ T5818] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.853'. [ 76.738374][ T5817] netlink: 'syz.0.857': attribute type 1 has an invalid length. [ 76.931504][ T5834] loop2: detected capacity change from 0 to 1024 [ 77.281623][ T5842] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.341618][ T5842] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.374563][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.383525][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.393779][ T5842] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.401613][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.413386][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.441462][ T5842] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.444331][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.461476][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.869'. [ 77.508268][ T5842] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.596563][ T5842] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.622052][ T5842] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.633930][ T5842] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.644345][ T5866] netlink: 8 bytes leftover after parsing attributes in process `syz.4.871'. [ 77.653223][ T5866] netlink: 8 bytes leftover after parsing attributes in process `syz.4.871'. [ 77.719309][ T5875] xt_hashlimit: max too large, truncated to 1048576 [ 77.742327][ T5875] netlink: 'syz.4.878': attribute type 10 has an invalid length. [ 77.756450][ T5873] loop3: detected capacity change from 0 to 512 [ 77.792395][ T5885] netlink: 'syz.0.883': attribute type 1 has an invalid length. [ 77.801839][ T5873] EXT4-fs: Ignoring removed oldalloc option [ 77.835584][ T5873] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 77.853097][ T5883] xt_hashlimit: max too large, truncated to 1048576 [ 77.863025][ T5890] loop4: detected capacity change from 0 to 2048 [ 77.878502][ T5873] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.877: Failed to acquire dquot type 1 [ 77.900345][ T5873] EXT4-fs (loop3): 1 truncate cleaned up [ 77.907065][ T5873] ext4 filesystem being mounted at /187/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 77.950599][ T5890] netlink: 'syz.4.884': attribute type 4 has an invalid length. [ 78.015268][ T5904] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.092273][ T5904] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.145986][ T5911] loop3: detected capacity change from 0 to 1024 [ 78.161419][ T5904] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.242033][ T5904] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.303073][ T5904] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.328854][ T5904] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.355497][ T5904] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.378769][ T5904] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.546098][ T5925] xt_hashlimit: max too large, truncated to 1048576 [ 78.564034][ T5933] loop3: detected capacity change from 0 to 1024 [ 78.582340][ T5933] EXT4-fs: Ignoring removed i_version option [ 78.595338][ T5933] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 78.622247][ T5933] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 78.637377][ T5933] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 78.648821][ T5933] EXT4-fs (loop3): orphan cleanup on readonly fs [ 78.671387][ T5939] loop1: detected capacity change from 0 to 2048 [ 78.693491][ T5933] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 78.703731][ T5933] EXT4-fs (loop3): Remounting filesystem read-only [ 78.710817][ T5933] __quota_error: 305 callbacks suppressed [ 78.710903][ T5933] Quota error (device loop3): write_blk: dquota write failed [ 78.724132][ T5933] Quota error (device loop3): write_blk: dquota write failed [ 78.731592][ T5933] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 78.744498][ T5939] netlink: 'syz.1.899': attribute type 4 has an invalid length. [ 78.768417][ T29] audit: type=1326 audit(1747796881.878:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5946 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 78.791858][ T29] audit: type=1326 audit(1747796881.878:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5946 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 78.803949][ T5933] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 78.815661][ T29] audit: type=1326 audit(1747796881.918:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5946 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 78.847712][ T29] audit: type=1326 audit(1747796881.918:2639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5946 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472b30e969 code=0x7ffc0000 [ 78.873507][ T5933] EXT4-fs (loop3): 1 orphan inode deleted [ 78.881324][ T5944] loop4: detected capacity change from 0 to 1024 [ 78.921210][ T5944] EXT4-fs: Ignoring removed i_version option [ 78.934259][ T29] audit: type=1326 audit(1747796882.048:2640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5954 comm="syz.1.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f960e969 code=0x7ffc0000 [ 78.957655][ T29] audit: type=1326 audit(1747796882.048:2641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5954 comm="syz.1.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fa7f960e969 code=0x7ffc0000 [ 78.959171][ T5944] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 78.983027][ T5927] 9pnet_fd: Insufficient options for proto=fd [ 79.024912][ T5944] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 79.052887][ T5950] xt_hashlimit: max too large, truncated to 1048576 [ 79.102489][ T5944] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 79.110828][ T5944] EXT4-fs (loop4): orphan cleanup on readonly fs [ 79.117900][ T5944] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 79.138863][ T5944] EXT4-fs (loop4): Remounting filesystem read-only [ 79.159104][ T5974] xt_hashlimit: max too large, truncated to 1048576 [ 79.161247][ T5944] EXT4-fs (loop4): 1 orphan inode deleted [ 79.242415][ T5944] 9pnet_fd: Insufficient options for proto=fd [ 79.339543][ T5994] loop0: detected capacity change from 0 to 512 [ 79.349355][ T5987] xt_hashlimit: max too large, truncated to 1048576 [ 79.453091][ T5994] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 79.462360][ T5994] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 79.560995][ T5994] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 79.617065][ T5994] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 79.779729][ T5994] System zones: 0-2, 18-18, 34-34 [ 80.050990][ T5994] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 80.137442][ T5994] EXT4-fs (loop0): 1 truncate cleaned up [ 80.530407][ T6024] loop2: detected capacity change from 0 to 128 [ 80.598824][ T6018] xt_hashlimit: max too large, truncated to 1048576 [ 80.875016][ T6045] loop0: detected capacity change from 0 to 512 [ 80.936660][ T6045] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 81.033866][ T6045] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.939: bad orphan inode 131083 [ 81.347906][ T6058] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.485043][ T6058] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.561862][ T6058] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.715656][ T6075] loop0: detected capacity change from 0 to 512 [ 82.143970][ T6075] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 82.153126][ T6075] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 82.173357][ T6058] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 82.187871][ T6077] loop1: detected capacity change from 0 to 512 [ 82.196084][ T6077] EXT4-fs: Ignoring removed oldalloc option [ 82.203594][ T6075] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 82.213447][ T6075] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 82.213655][ T6077] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 82.222900][ T6075] System zones: 0-2, 18-18, 34-34 [ 82.240001][ T6075] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 82.251889][ T6077] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.951: Failed to acquire dquot type 1 [ 82.268244][ T6077] EXT4-fs (loop1): 1 truncate cleaned up [ 82.282166][ T6058] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.300983][ T6077] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 82.312321][ T6058] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.314792][ T6075] EXT4-fs (loop0): 1 truncate cleaned up [ 82.323932][ T6058] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.353712][ T6085] __nla_validate_parse: 38 callbacks suppressed [ 82.353729][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.364077][ T6058] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.387524][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.407844][ T6091] xt_hashlimit: max too large, truncated to 1048576 [ 82.424471][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.435548][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.457404][ T6087] loop3: detected capacity change from 0 to 2048 [ 82.466155][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.476184][ T6085] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 82.506611][ T6103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.956'. [ 82.515600][ T6103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.956'. [ 82.552987][ T6111] netlink: 'syz.3.954': attribute type 4 has an invalid length. [ 82.560908][ T6111] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.954'. [ 82.582667][ T6110] xt_hashlimit: max too large, truncated to 1048576 [ 82.593721][ T6110] netlink: 'syz.2.961': attribute type 10 has an invalid length. [ 82.617136][ T6116] netlink: 16 bytes leftover after parsing attributes in process `syz.1.963'. [ 82.689837][ T6125] loop4: detected capacity change from 0 to 128 [ 82.784994][ T6129] loop1: detected capacity change from 0 to 512 [ 82.804077][ T6129] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 82.813380][ T6129] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 82.848619][ T6131] loop2: detected capacity change from 0 to 512 [ 82.863208][ T6131] EXT4-fs: Ignoring removed oldalloc option [ 82.883653][ T6129] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 82.894539][ T6131] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 82.965096][ T6129] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 82.986079][ T6129] System zones: 0-2, 18-18, 34-34 [ 82.992902][ T6129] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 83.009127][ T6129] EXT4-fs (loop1): 1 truncate cleaned up [ 83.070632][ T6131] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.967: Failed to acquire dquot type 1 [ 83.114007][ T6131] EXT4-fs (loop2): 1 truncate cleaned up [ 83.138627][ T6131] ext4 filesystem being mounted at /189/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.401434][ T6198] loop0: detected capacity change from 0 to 256 [ 83.741713][ T6217] loop1: detected capacity change from 0 to 1024 [ 83.769240][ T6217] EXT4-fs: Ignoring removed i_version option [ 83.770781][ T29] kauditd_printk_skb: 175 callbacks suppressed [ 83.770803][ T29] audit: type=1400 audit(1747796886.878:2809): avc: denied { getopt } for pid=6219 comm="syz.2.977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 83.803147][ T6217] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 83.838216][ T6217] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 83.848634][ T29] audit: type=1400 audit(1747796886.938:2810): avc: denied { open } for pid=6221 comm="-" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 83.848666][ T29] audit: type=1400 audit(1747796886.938:2811): avc: denied { kernel } for pid=6221 comm="-" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 83.904484][ T29] audit: type=1400 audit(1747796887.018:2812): avc: denied { read } for pid=6223 comm=3BC7 name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 83.928793][ T29] audit: type=1400 audit(1747796887.038:2813): avc: denied { open } for pid=6223 comm=3BC7 path="/dev/input/event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 83.953506][ T6217] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 83.989322][ T6217] EXT4-fs (loop1): orphan cleanup on readonly fs [ 83.996730][ T6217] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 84.006586][ T29] audit: type=1326 audit(1747796887.068:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd3b1345927 code=0x7ffc0000 [ 84.029520][ T29] audit: type=1326 audit(1747796887.068:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd3b12eab39 code=0x7ffc0000 [ 84.052237][ T29] audit: type=1326 audit(1747796887.068:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd3b1345927 code=0x7ffc0000 [ 84.068918][ T6217] EXT4-fs (loop1): Remounting filesystem read-only [ 84.074921][ T29] audit: type=1326 audit(1747796887.068:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd3b12eab39 code=0x7ffc0000 [ 84.104177][ T29] audit: type=1326 audit(1747796887.068:2818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm=3BC7 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b134e969 code=0x7ffc0000 [ 84.120967][ T6217] EXT4-fs (loop1): 1 orphan inode deleted [ 84.158648][ T6217] 9pnet_fd: Insufficient options for proto=fd [ 84.196779][ T6234] xt_hashlimit: max too large, truncated to 1048576 [ 84.206988][ T6236] syz.1.983 uses obsolete (PF_INET,SOCK_PACKET) [ 84.216722][ T6236] FAULT_INJECTION: forcing a failure. [ 84.216722][ T6236] name failslab, interval 1, probability 0, space 0, times 0 [ 84.229589][ T6236] CPU: 1 UID: 0 PID: 6236 Comm: syz.1.983 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 84.229620][ T6236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 84.229632][ T6236] Call Trace: [ 84.229638][ T6236] [ 84.229646][ T6236] __dump_stack+0x1d/0x30 [ 84.229676][ T6236] dump_stack_lvl+0xe8/0x140 [ 84.229700][ T6236] dump_stack+0x15/0x1b [ 84.229733][ T6236] should_fail_ex+0x265/0x280 [ 84.229764][ T6236] should_failslab+0x8c/0xb0 [ 84.229803][ T6236] kmem_cache_alloc_noprof+0x50/0x310 [ 84.229826][ T6236] ? dst_alloc+0xbd/0x100 [ 84.229847][ T6236] dst_alloc+0xbd/0x100 [ 84.229892][ T6236] ip_route_input_rcu+0x177d/0x1d00 [ 84.229928][ T6236] ip_route_input_noref+0x5f/0x90 [ 84.229996][ T6236] ip_rcv_finish_core+0x315/0xb40 [ 84.230151][ T6236] ? iptable_mangle_hook+0x119/0x260 [ 84.230235][ T6236] ip_rcv_finish+0x100/0x1a0 [ 84.230264][ T6236] ip_rcv+0x62/0x140 [ 84.230297][ T6236] ? __pfx_ip_rcv_finish+0x10/0x10 [ 84.230385][ T6236] ? __pfx_ip_rcv+0x10/0x10 [ 84.230491][ T6236] __netif_receive_skb+0xff/0x270 [ 84.230516][ T6236] ? skb_partial_csum_set+0xfb/0x1b0 [ 84.230553][ T6236] ? tun_rx_batched+0xc7/0x430 [ 84.230702][ T6236] netif_receive_skb+0x4b/0x2e0 [ 84.230727][ T6236] ? tun_rx_batched+0xc7/0x430 [ 84.230820][ T6236] tun_rx_batched+0xfc/0x430 [ 84.230852][ T6236] tun_get_user+0x1e07/0x24d0 [ 84.230883][ T6236] ? ref_tracker_alloc+0x1f2/0x2f0 [ 84.231010][ T6236] ? avc_policy_seqno+0x15/0x30 [ 84.231069][ T6236] tun_chr_write_iter+0x15e/0x210 [ 84.231097][ T6236] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 84.231124][ T6236] vfs_write+0x4a0/0x8d0 [ 84.231216][ T6236] ksys_write+0xda/0x1a0 [ 84.231297][ T6236] __x64_sys_write+0x40/0x50 [ 84.231351][ T6236] x64_sys_call+0x2cdd/0x2fb0 [ 84.231374][ T6236] do_syscall_64+0xd0/0x1a0 [ 84.231398][ T6236] ? clear_bhb_loop+0x40/0x90 [ 84.231423][ T6236] ? clear_bhb_loop+0x40/0x90 [ 84.231459][ T6236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.231483][ T6236] RIP: 0033:0x7fa7f960e969 [ 84.231500][ T6236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 84.231521][ T6236] RSP: 002b:00007fa7f7c77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 84.231544][ T6236] RAX: ffffffffffffffda RBX: 00007fa7f9835fa0 RCX: 00007fa7f960e969 [ 84.231558][ T6236] RDX: 000000000000004e RSI: 0000200000000280 RDI: 0000000000000003 [ 84.231640][ T6236] RBP: 00007fa7f7c77090 R08: 0000000000000000 R09: 0000000000000000 [ 84.231654][ T6236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 84.231725][ T6236] R13: 0000000000000000 R14: 00007fa7f9835fa0 R15: 00007ffdb173f4c8 [ 84.231744][ T6236] [ 84.576944][ T6245] loop3: detected capacity change from 0 to 512 [ 84.592343][ T6234] netlink: 'syz.4.982': attribute type 10 has an invalid length. [ 84.609859][ T6245] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 84.614587][ T6247] xt_hashlimit: max too large, truncated to 1048576 [ 84.619016][ T6245] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 84.651318][ T6247] netlink: 'syz.0.988': attribute type 10 has an invalid length. [ 84.711307][ T6245] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 84.737968][ T6257] FAULT_INJECTION: forcing a failure. [ 84.737968][ T6257] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 84.751214][ T6257] CPU: 0 UID: 0 PID: 6257 Comm: syz.4.993 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 84.751243][ T6257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 84.751258][ T6257] Call Trace: [ 84.751265][ T6257] [ 84.751275][ T6257] __dump_stack+0x1d/0x30 [ 84.751384][ T6257] dump_stack_lvl+0xe8/0x140 [ 84.751412][ T6257] dump_stack+0x15/0x1b [ 84.751434][ T6257] should_fail_ex+0x265/0x280 [ 84.751473][ T6257] should_fail+0xb/0x20 [ 84.751571][ T6257] should_fail_usercopy+0x1a/0x20 [ 84.751591][ T6257] _copy_from_user+0x1c/0xb0 [ 84.751630][ T6257] __sys_bpf+0x178/0x790 [ 84.751668][ T6257] __x64_sys_bpf+0x41/0x50 [ 84.751700][ T6257] x64_sys_call+0x2478/0x2fb0 [ 84.751856][ T6257] do_syscall_64+0xd0/0x1a0 [ 84.751885][ T6257] ? clear_bhb_loop+0x40/0x90 [ 84.751910][ T6257] ? clear_bhb_loop+0x40/0x90 [ 84.751944][ T6257] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.751972][ T6257] RIP: 0033:0x7f7106fce969 [ 84.751990][ T6257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 84.752008][ T6257] RSP: 002b:00007f7105637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 84.752033][ T6257] RAX: ffffffffffffffda RBX: 00007f71071f5fa0 RCX: 00007f7106fce969 [ 84.752047][ T6257] RDX: 0000000000000048 RSI: 0000200000000580 RDI: 0000000000000000 [ 84.752069][ T6257] RBP: 00007f7105637090 R08: 0000000000000000 R09: 0000000000000000 [ 84.752085][ T6257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 84.752154][ T6257] R13: 0000000000000000 R14: 00007f71071f5fa0 R15: 00007ffdb1729ba8 [ 84.752172][ T6257] [ 84.758209][ T6245] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 84.936915][ T6245] System zones: 0-2, 18-18, 34-34 [ 84.947440][ T6245] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 84.969300][ T6245] EXT4-fs (loop3): 1 truncate cleaned up [ 84.996251][ T6267] loop4: detected capacity change from 0 to 1024 [ 85.053775][ T6276] 9pnet: Could not find request transport: tc [ 85.080144][ T6281] FAULT_INJECTION: forcing a failure. [ 85.080144][ T6281] name failslab, interval 1, probability 0, space 0, times 0 [ 85.091165][ T6284] xt_hashlimit: max too large, truncated to 1048576 [ 85.092901][ T6281] CPU: 0 UID: 0 PID: 6281 Comm: syz.3.1000 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 85.093015][ T6281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 85.093028][ T6281] Call Trace: [ 85.093035][ T6281] [ 85.093043][ T6281] __dump_stack+0x1d/0x30 [ 85.093146][ T6281] dump_stack_lvl+0xe8/0x140 [ 85.093179][ T6281] dump_stack+0x15/0x1b [ 85.093198][ T6281] should_fail_ex+0x265/0x280 [ 85.093231][ T6281] ? __se_sys_mount+0xef/0x2e0 [ 85.093259][ T6281] should_failslab+0x8c/0xb0 [ 85.093333][ T6281] __kmalloc_cache_noprof+0x4c/0x320 [ 85.093356][ T6281] ? memdup_user+0x99/0xd0 [ 85.093377][ T6281] __se_sys_mount+0xef/0x2e0 [ 85.093413][ T6281] ? fput+0x8f/0xc0 [ 85.093432][ T6281] ? ksys_write+0x16e/0x1a0 [ 85.093482][ T6281] __x64_sys_mount+0x67/0x80 [ 85.093579][ T6281] x64_sys_call+0xd36/0x2fb0 [ 85.093601][ T6281] do_syscall_64+0xd0/0x1a0 [ 85.093627][ T6281] ? clear_bhb_loop+0x40/0x90 [ 85.093684][ T6281] ? clear_bhb_loop+0x40/0x90 [ 85.093707][ T6281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.093810][ T6281] RIP: 0033:0x7f099ff8e969 [ 85.093827][ T6281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.093847][ T6281] RSP: 002b:00007f099e5f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 85.093870][ T6281] RAX: ffffffffffffffda RBX: 00007f09a01b5fa0 RCX: 00007f099ff8e969 [ 85.093884][ T6281] RDX: 00002000000004c0 RSI: 0000200000000300 RDI: 0000000000000000 [ 85.093959][ T6281] RBP: 00007f099e5f7090 R08: 0000200000000240 R09: 0000000000000000 [ 85.093971][ T6281] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 85.093984][ T6281] R13: 0000000000000000 R14: 00007f09a01b5fa0 R15: 00007ffcf49e3e18 [ 85.094000][ T6281] [ 85.125290][ T6286] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 85.158087][ T6284] netlink: 'syz.4.1001': attribute type 10 has an invalid length. [ 85.161115][ T6286] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 85.323277][ T6294] loop4: detected capacity change from 0 to 2048 [ 85.342160][ T6292] loop2: detected capacity change from 0 to 2048 [ 85.375879][ T6293] netlink: 'syz.1.1004': attribute type 1 has an invalid length. [ 85.426628][ T6294] netlink: 'syz.4.1005': attribute type 4 has an invalid length. [ 85.429195][ T3302] loop2: p1 < > p4 [ 85.440236][ T3302] loop2: p4 size 8388608 extends beyond EOD, truncated [ 85.450908][ T6292] loop2: p1 < > p4 [ 85.455475][ T6292] loop2: p4 size 8388608 extends beyond EOD, truncated [ 85.601838][ T6303] loop4: detected capacity change from 0 to 1024 [ 85.655588][ T6303] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 85.744564][ T6303] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 85.805125][ T6303] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 85.832382][ T6303] EXT4-fs (loop4): mount failed [ 86.193395][ T6322] loop1: detected capacity change from 0 to 512 [ 86.239115][ T6322] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 86.248264][ T6322] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 86.254443][ T6327] xt_hashlimit: max too large, truncated to 1048576 [ 86.268749][ T6326] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.290397][ T6327] netlink: 'syz.2.1015': attribute type 10 has an invalid length. [ 86.307487][ T6322] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 86.322046][ T6322] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 86.333026][ T6326] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.363022][ T6322] System zones: 0-2, 18-18, 34-34 [ 86.377636][ T6322] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 86.405129][ T6335] loop2: detected capacity change from 0 to 512 [ 86.417638][ T6335] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 86.426795][ T6335] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 86.440161][ T6326] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.469490][ T6322] EXT4-fs (loop1): 1 truncate cleaned up [ 86.488499][ T6335] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 86.511183][ T6335] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 86.520239][ T6335] System zones: 0-2, 18-18, 34-34 [ 86.529155][ T6335] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 86.554203][ T6326] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.570824][ T6335] EXT4-fs (loop2): 1 truncate cleaned up [ 86.617902][ T6326] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.646915][ T6343] loop1: detected capacity change from 0 to 2048 [ 86.655851][ T6326] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.667745][ T6326] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.688540][ T6326] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.700463][ T3302] loop1: p1 < > p4 [ 86.706202][ T3302] loop1: p4 size 8388608 extends beyond EOD, truncated [ 86.740930][ T6343] loop1: p1 < > p4 [ 86.746764][ T6343] loop1: p4 size 8388608 extends beyond EOD, truncated [ 86.895827][ T6356] loop4: detected capacity change from 0 to 1024 [ 86.920091][ T6356] EXT4-fs: Ignoring removed i_version option [ 86.990271][ T6356] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 87.009143][ T6356] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 87.117170][ T6361] loop3: detected capacity change from 0 to 1024 [ 87.125918][ T6356] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 87.162502][ T6361] EXT4-fs: Ignoring removed i_version option [ 87.169285][ T6356] EXT4-fs (loop4): orphan cleanup on readonly fs [ 87.191688][ T6356] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 87.230963][ T6361] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 87.309573][ T6356] EXT4-fs (loop4): Remounting filesystem read-only [ 87.364157][ T6361] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 87.392677][ T6356] EXT4-fs (loop4): 1 orphan inode deleted [ 87.419754][ T6361] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 87.434360][ T6353] 9pnet_fd: Insufficient options for proto=fd [ 87.451807][ T6361] EXT4-fs (loop3): orphan cleanup on readonly fs [ 87.465410][ T6361] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 87.479971][ T6361] EXT4-fs (loop3): Remounting filesystem read-only [ 87.486613][ T6361] EXT4-fs (loop3): 1 orphan inode deleted [ 87.531616][ T6372] syz_tun: entered allmulticast mode [ 87.567921][ T6359] 9pnet_fd: Insufficient options for proto=fd [ 87.736004][ T6388] loop0: detected capacity change from 0 to 512 [ 87.758722][ T6388] EXT4-fs: Ignoring removed oldalloc option [ 87.775294][ T6388] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 87.775459][ T6394] __nla_validate_parse: 18 callbacks suppressed [ 87.775474][ T6394] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1034'. [ 87.799389][ T6394] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1034'. [ 87.815958][ T6391] xt_hashlimit: max too large, truncated to 1048576 [ 87.835428][ T6388] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.1037: Failed to acquire dquot type 1 [ 87.860646][ T6391] netlink: 'syz.2.1040': attribute type 10 has an invalid length. [ 87.875970][ T6388] EXT4-fs (loop0): 1 truncate cleaned up [ 87.900556][ T6388] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 87.916523][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 87.943218][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 87.976741][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 88.001121][ T6408] xt_hashlimit: max too large, truncated to 1048576 [ 88.007934][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 88.069920][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 88.078815][ T6400] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 88.159086][ T6404] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1045'. [ 88.168075][ T6404] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1045'. [ 88.197940][ T6404] wireguard0: entered promiscuous mode [ 88.218028][ T6426] xt_hashlimit: max too large, truncated to 1048576 [ 88.346955][ T6450] loop0: detected capacity change from 0 to 512 [ 88.367238][ T6450] EXT4-fs: Ignoring removed oldalloc option [ 88.391586][ T6450] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 88.433639][ T6450] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.1059: Failed to acquire dquot type 1 [ 88.516545][ T6450] EXT4-fs (loop0): 1 truncate cleaned up [ 88.525941][ T6450] ext4 filesystem being mounted at /238/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 88.618650][ T6481] loop0: detected capacity change from 0 to 512 [ 88.631932][ T6481] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 88.641117][ T6481] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 88.665198][ T6488] loop3: detected capacity change from 0 to 1024 [ 88.681776][ T6481] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 88.703346][ T6481] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 88.718273][ T6481] System zones: 0-2, 18-18, 34-34 [ 88.725085][ T6481] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 88.741900][ T6481] EXT4-fs (loop0): 1 truncate cleaned up [ 88.831664][ T6508] tipc: Started in network mode [ 88.836585][ T6508] tipc: Node identity , cluster identity 4711 [ 88.857470][ T29] kauditd_printk_skb: 354 callbacks suppressed [ 88.857475][ T6508] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65280 sclass=netlink_xfrm_socket pid=6508 comm=syz.1.1085 [ 88.857489][ T29] audit: type=1400 audit(1747796891.968:3157): avc: denied { write } for pid=6505 comm="syz.1.1085" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 88.857604][ T6508] ================================================================== [ 88.863801][ T6508] BUG: KCSAN: data-race in data_alloc / data_push_tail [ 88.863857][ T6508] [ 88.863866][ T6508] write to 0xffffffff88e17db8 of 8 bytes by task 29 on cpu 0: [ 88.863889][ T6508] data_alloc+0x203/0x2b0 [ 88.863927][ T6508] prb_reserve+0x808/0xaf0 [ 88.863962][ T6508] vprintk_store+0x56d/0x860 [ 88.863984][ T6508] vprintk_emit+0x178/0x650 [ 88.864006][ T6508] vprintk_default+0x26/0x30 [ 88.864026][ T6508] vprintk+0x1d/0x30 [ 88.864054][ T6508] _printk+0x79/0xa0 [ 88.864086][ T6508] kauditd_hold_skb+0x1b1/0x1c0 [ 88.864109][ T6508] kauditd_send_queue+0x273/0x2c0 [ 88.864131][ T6508] kauditd_thread+0x421/0x630 [ 88.864165][ T6508] kthread+0x486/0x510 [ 88.864186][ T6508] ret_from_fork+0x4b/0x60 [ 88.864206][ T6508] ret_from_fork_asm+0x1a/0x30 [ 88.864234][ T6508] [ 88.864244][ T6508] read to 0xffffffff88e17db8 of 8 bytes by task 6508 on cpu 1: [ 88.864263][ T6508] data_push_tail+0xfd/0x420 [ 88.864306][ T6508] data_alloc+0xbf/0x2b0 [ 88.864343][ T6508] prb_reserve+0x808/0xaf0 [ 88.864379][ T6508] vprintk_store+0x56d/0x860 [ 88.864398][ T6508] vprintk_emit+0x178/0x650 [ 88.864418][ T6508] vprintk_default+0x26/0x30 [ 88.864443][ T6508] vprintk+0x1d/0x30 [ 88.864475][ T6508] _printk+0x79/0xa0 [ 88.864507][ T6508] selinux_netlink_send+0x583/0x5f0 [ 88.864532][ T6508] security_netlink_send+0x40/0x80 [ 88.864556][ T6508] netlink_sendmsg+0x498/0x6b0 [ 88.864580][ T6508] __sock_sendmsg+0x145/0x180 [ 88.864608][ T6508] ____sys_sendmsg+0x31e/0x4e0 [ 88.864627][ T6508] ___sys_sendmsg+0x17b/0x1d0 [ 88.864646][ T6508] __x64_sys_sendmsg+0xd4/0x160 [ 88.864666][ T6508] x64_sys_call+0x2999/0x2fb0 [ 88.864687][ T6508] do_syscall_64+0xd0/0x1a0 [ 88.864710][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.864731][ T6508] [ 88.864737][ T6508] value changed: 0x00000000ffffe21b -> 0x00000000ffffef2d [ 88.864750][ T6508] [ 88.864756][ T6508] Reported by Kernel Concurrency Sanitizer on: [ 88.864768][ T6508] CPU: 1 UID: 0 PID: 6508 Comm: syz.1.1085 Not tainted 6.15.0-rc7-syzkaller-00002-gb36ddb9210e6 #0 PREEMPT(voluntary) [ 88.864797][ T6508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 88.864811][ T6508] ================================================================== [ 88.953433][ T29] audit: type=1400 audit(1747796892.068:3158): avc: denied { bind } for pid=6505 comm="syz.1.1085" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 88.953468][ T29] audit: type=1400 audit(1747796892.068:3159): avc: denied { setopt } for pid=6505 comm="syz.1.1085" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 88.953496][ T29] audit: type=1400 audit(1747796892.068:3160): avc: denied { create } for pid=6505 comm="syz.1.1085" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 88.953522][ T29] audit: type=1400 audit(1747796892.068:3161): avc: denied { ioctl } for pid=6505 comm="syz.1.1085" path="socket:[15533]" dev="sockfs" ino=15533 ioctlcmd=0x48d4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 89.021833][ T29] audit: type=1400 audit(1747796892.138:3162): avc: denied { create } for pid=6515 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 89.032749][ T6519] netlink: 'syz.2.1087': attribute type 8 has an invalid length. [ 89.034087][ T29] audit: type=1400 audit(1747796892.138:3163): avc: denied { write } for pid=6515 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 89.259967][ T29] audit: type=1400 audit(1747796892.158:3164): avc: denied { nlmsg_write } for pid=6515 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 89.280799][ T29] audit: type=1400 audit(1747796892.158:3165): avc: denied { setopt } for pid=6515 comm="syz.2.1087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1