last executing test programs:

2.672909435s ago: executing program 2 (id=1396):
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f0000000040)={0x10, 0x0, "bc496f9fa113c7f1dcc486315fe727af"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6)
ioctl$TIOCGPTPEER(r3, 0x5441, 0xe7b)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
msgget$private(0x0, 0x100)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)={0x34, r8, 0x1, 0x400000, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}]}]}, 0x34}}, 0x2000c050)

2.553019227s ago: executing program 3 (id=1400):
open$dir(&(0x7f0000000640)='./file0/file0\x00', 0x101042, 0x1)

2.538873308s ago: executing program 3 (id=1401):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x4)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)
pipe2(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r2, 0x0, r1, 0x0, 0x6, 0x0)
read$char_usb(r0, &(0x7f00000003c0)=""/50, 0x32)
sendmsg$IPSET_CMD_PROTOCOL(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4000150}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = memfd_create(0x0, 0x0)
splice(r3, 0x0, r5, 0x0, 0x1ea9, 0x9)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, 0x0, 0x13f, 0x1}}, 0x20)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x4, 0x40002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x10000, 0x6}, 0xc004, 0x10000, 0x0, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
socket$netlink(0x10, 0x3, 0x0)
socket(0x840000000002, 0x3, 0x100)
r6 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r6, &(0x7f00000000c0)=ANY=[], 0x20)
perf_event_open(&(0x7f0000000a40)={0x8, 0x80, 0x0, 0x4, 0x0, 0x1, 0x2, 0x0, 0x3800, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x10290, 0x0, 0x0, 0x0, 0x7, 0x0, 0x3, 0x0, 0x2, 0x0, 0x808000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x9)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
socket(0x200000000000011, 0x2, 0x0)

1.776084771s ago: executing program 2 (id=1406):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlinkat(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=""/37, 0xffffffffffffff80)

1.752617993s ago: executing program 2 (id=1407):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x15, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x27, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000000)=""/24, &(0x7f0000000040)=0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r2, 0x1)
bind$inet6(r2, &(0x7f0000000a00)={0xa, 0x4e20, 0x4, @empty, 0x5}, 0x1c)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x4, @empty, 0x400}, 0x1c)

1.634856604s ago: executing program 0 (id=1410):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x10007ffffffff}, 0x18)
pipe(&(0x7f00000000c0))

1.566249131s ago: executing program 0 (id=1412):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@o_path={&(0x7f0000000040)='./file0\x00', 0x0, 0x4000}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x8}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)=ANY=[@ANYBLOB], 0x78}, 0x1, 0x7}, 0x40000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
prctl$PR_MCE_KILL(0x35, 0x1, 0x2)
r3 = fcntl$dupfd(r2, 0x0, r2)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000140), 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r5}, 0x18)
r6 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[], 0x0)
ppoll(&(0x7f0000000d40)=[{r6, 0x8000}], 0x20000000000000e0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)

1.415953455s ago: executing program 0 (id=1414):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.412652895s ago: executing program 0 (id=1415):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002400)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xffffffffffffffff)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r3 = fsopen(&(0x7f00000000c0)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
openat$vsock(0xffffffffffffff9c, 0x0, 0xe2e74525cf298b4b, 0x0)
socket(0x10, 0x3, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000b40))
r5 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000580)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x8, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x20, 0x1})
io_uring_enter(r5, 0x6e2, 0x3920, 0x1, 0x0, 0xe00)
r8 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r8, &(0x7f00000019c0)=""/4097, 0x1001)

1.372448059s ago: executing program 3 (id=1416):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002400)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xffffffffffffffff)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r3 = fsopen(&(0x7f00000000c0)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
openat$vsock(0xffffffffffffff9c, 0x0, 0xe2e74525cf298b4b, 0x0)
socket(0x10, 0x3, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000b40))
r5 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000580)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x8, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x20, 0x1})
io_uring_enter(r5, 0x6e2, 0x3920, 0x1, 0x0, 0xe00)
r8 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r8, &(0x7f00000019c0)=""/4097, 0x1001)

1.206556295s ago: executing program 1 (id=1418):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlinkat(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=""/37, 0xffffffffffffff80)

1.117952764s ago: executing program 1 (id=1419):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002400)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000009c0)={&(0x7f00000003c0)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7fff}, 0x18)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xffffffffffffffff)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r5 = fsopen(&(0x7f00000000c0)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
openat$vsock(0xffffffffffffff9c, 0x0, 0xe2e74525cf298b4b, 0x0)
socket(0x10, 0x3, 0x0)
r6 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=<r7=>0x0, &(0x7f0000000580)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x8, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x20, 0x1})
io_uring_enter(r6, 0x6e2, 0x3920, 0x1, 0x0, 0xe00)
r9 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r9, &(0x7f00000019c0)=""/4097, 0x1001)

915.300833ms ago: executing program 4 (id=1426):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

898.418915ms ago: executing program 4 (id=1427):
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000030000850000001b00000bb70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x21, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000400)="d8", 0x1, 0x20004804, &(0x7f0000000080)={0xa, 0x0, 0x3f66400, @dev={0xfe, 0x80, '\x00', 0x86}, 0x3}, 0x1c)
shutdown(r0, 0x1)

893.911755ms ago: executing program 2 (id=1428):
r0 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000440)="0001000000000000a5decc3e428c79eb5edd20f1eded245fe6836984efbf57345bc6a5e0f5558da3ccd4c2dbd751d4b40f74f24bd0e9cd88671c9ff5deb5cdc286da8a3d7112c904c62fbf80cab1c29318775a582b63bf43fc17fe430b584dd48039d8e52b764d5b39ba097c02af98ddfd5f5644", 0x74}, {&(0x7f0000000040)="74d1c81dbeca7fc7", 0x8}, {&(0x7f0000000080)="b03a6ffda4eff45ec76e4657d230246f9d13319404f9766c2a482a425115e47ab8c4bfd14288b914ff0156e45dff7d5dd384037a9ff79e2ef3aa3a49ec7ee19a948122661f42b424cb8f1426914aea1f3dcd8e505ead79e44090e6265306121d418761e48093b62bc4fd7e51abbd4f7d35ef59e3f441f9", 0xffffff10}], 0x3, &(0x7f0000000180)="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", 0xfc, 0x20000000}, 0x800)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
ioctl$KDGETLED(r2, 0x4b31, &(0x7f0000000000))
r3 = syz_open_pts(r2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
r4 = dup3(r3, r2, 0x0)
read$watch_queue(r4, &(0x7f0000000240)=""/173, 0xad)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0x80000001, 0x2, 0x81e6b76d, 0x10002, 0x9, "aa32b73986bbee6b9231334cbfa0b748261a13"})
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000380)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)

829.514091ms ago: executing program 4 (id=1429):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x1123102, 0x0)
r1 = dup(r0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1b)
ioctl$USBDEVFS_DISCSIGNAL(r1, 0x8010550e, 0x0)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000240)='./file1\x00', 0x2000414, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRESDEC=r0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2df, &(0x7f00000005c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x6da6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r4 = memfd_create(&(0x7f0000000a80)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
fsetxattr$security_selinux(r4, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r5, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r5, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000180)=0xa, 0x4)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r6 = openat$cgroup_ro(r1, &(0x7f0000000040)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r6, 0x0)
modify_ldt$write2(0x11, &(0x7f00000008c0)={0x4, 0x0, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1}, 0x10)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file1\x00', 0x0, 0x0)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r9}, 0x10)
setsockopt$CAN_RAW_FILTER(r8, 0x65, 0x1, 0x0, 0xf00)
getdents64(r7, &(0x7f0000000000)=""/49, 0x31)

749.472129ms ago: executing program 2 (id=1430):
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f0000000040)={0x10, 0x0, "bc496f9fa113c7f1dcc486315fe727af"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6)
ioctl$TIOCGPTPEER(r3, 0x5441, 0xe7b)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
msgget$private(0x0, 0x100)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)={0x34, r6, 0x1, 0x400000, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}]}]}, 0x34}}, 0x2000c050)

741.48287ms ago: executing program 4 (id=1431):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlinkat(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=""/37, 0xffffffffffffff80)

696.076824ms ago: executing program 4 (id=1432):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0xf07f, 0x800, 0x0, 0x165}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000001840)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket$packet(0x11, 0x2, 0x300)
readv(r4, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/199, 0xc7}], 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x2)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x4004, @fd_index=0x1, 0x8, &(0x7f0000002a40)=[{0x0}, {0x0}], 0x2, 0x1d})
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r5, 0x400, 0x1)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r6, 0x0, 0x0, 0x1000000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0) (fail_nth: 8)

538.011729ms ago: executing program 0 (id=1433):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x3}, {}, 0x20, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)="d5285035132528b260499b970b74f65dc1e83a6afb50e8c469bc", 0x1a, 0x0, &(0x7f00000003c0)={0x2, 0x114, {0x1, 0xc, 0xf3, "29e26bcdf2a8498c88b2fba5a04f9bfe01a0292f6ec9dc6b8e23095fd69c0b30f9b63d94d46e6460e977811388dcbd0e1f8aa076253c83a755175e31afdbefa08e5ed954d99238d3df83ffc7d6dd1b35b83d0bebca4ea81fac557e8789f14d345c51200f26d05a4fe95122652ed8716ff8db053ff1d16478e1757453033243f7466d08b76dca1de362b3091eeb94b7837e680c8bb130254cad4f0e044b766e77eaa2e7b7afe45a55d66a8a7e8183afc97f615df0ad7ded21df222d843ebfe084fb68634ae9bb89ac1e794124fa201df241af2fa2229c2dabfc936d11a67876cfd26e1e1f0dc0586cb26875b05caa23e15d6e03", 0x14, "5a4f42c43ba607f690ecc3794261edbf975cb0aa"}, 0xc6, "ecb197e6033f9a31850b2fb73b27cf746943721ac310afcd1492f678b19b09af1993d05688f3600a55fae271897828660cf2a517fb72c90c89cd691003844fb168385f434056c6e877f4adfec407bb2aec6b1f15f0bd115b115bddf8fe040f382d54939dc7507cecd456bd53201144baba40efa655724ab86376e61f097d0e21beba78461662ccd11e0ecdd22c763343d6855b8a7704483216862c55e02fbbe83b1a340429f7b3e5615a0a7059f0f021ba30ed112f4d7b7de6b3c3fb6c6c5a0ecd50cf87e1a8"}, 0x1e6})
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x0, 0x10000006, @remote}}}, 0x108)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
timer_create(0x9, 0x0, &(0x7f0000000300)=<r1=>0x0)
timer_delete(r1)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a4c0000000e0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c000180060001"], 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

510.397782ms ago: executing program 3 (id=1434):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}})

257.111426ms ago: executing program 1 (id=1435):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$UHID_CREATE2(r2, 0x0, 0x8)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000000)={0x4}, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0xf, 0x8, &(0x7f00000003c0)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r7 = dup(r6)
r8 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
ftruncate(r8, 0x200004)
sendfile(r7, r8, 0x0, 0x80001d00c0d1)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x8040044}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d78"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_collapse_huge_page_swapin\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@fallback=r9, 0x35, 0x0, 0x6, &(0x7f0000000140), 0x0, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0], <r12=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000014c0)=ANY=[@ANYRES32=r10, @ANYRES32=r11, @ANYBLOB="30000000eb4b1e9991d601000000", @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES64=r12], 0x20)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32, @ANYRES32=r5, @ANYBLOB="0b000000e3ff000071baa7325f64850633efcf874580a96f8ed4643c8c074e3eafa47124e3b643bdbbe66efd1f68a7f1e33041935b2750e015aa5c20077c3c8040087e8bd1a7bd14739a8f17d673ceba510618f916042207be5bd1846e872b4b42bda03b89641444eb4de21214b9b6a6eb8ac1efaddc81479d3cc9e02108b7c344e60000009c16abc1e258c0f82b7dee67b3dabca7beb554986310d2a88e66e742f8c5741ace59fae972030831bc11a42e63f7ba8e7cdd3d013a50d51c", @ANYRES32=r7, @ANYBLOB, @ANYRES32, @ANYRES16=r5, @ANYRES64=r12], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000840)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="190000001000000000000000", @ANYRES32=r4, @ANYBLOB="3fa346a5980ee8b3f8dd3801b6023ffcce096de3687e6e1a1df3348a008274685e71ab6c88b21902dbcbe2d1660d2bcea443d9398b045258fd1394f1b3d87a79ad18450465a9ccb4f4b2bb811742140f59814c4e12f8fb36fcc26ef545af18452ce575033f8813b1a40aa0b818d3df9298eb7d7e7dea4f6c61248b2d258f4382571f4412adf0aad397a946a914549fe4ada5db7dcd5cc8ee1a1d9d8eb97674bc540a910b4f428829ea02616ba66b58d5f529d7fc27d6e0b1e6d9328216f4a596658437813cc75d4f85af6e5b58539145a2189869c7c7440f0088e570849035fadf1629d5d7eeb56a9317b29f5d47868b", @ANYRES64=r12], 0x20)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

158.125555ms ago: executing program 1 (id=1436):
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
connect$llc(r1, &(0x7f00000000c0)={0x1a, 0x0, 0x2, 0x8, 0x20, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

118.499279ms ago: executing program 0 (id=1437):
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1818e58, &(0x7f00000003c0), 0x2a, 0x63f, &(0x7f0000000d80)="$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")
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

117.558169ms ago: executing program 3 (id=1438):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x15, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x27, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000000)=""/24, &(0x7f0000000040)=0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r2, 0x1)
bind$inet6(r2, &(0x7f0000000a00)={0xa, 0x4e20, 0x4, @empty, 0x5}, 0x1c)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x4, @empty, 0x400}, 0x1c)

94.026321ms ago: executing program 2 (id=1439):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000046, &(0x7f0000000240), 0x11, 0x565, &(0x7f0000000440)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
acct(&(0x7f0000000180)='./cgroup.cpu/cgroup.procs\x00')
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000009c0)=ANY=[@ANYBLOB="180000000000000093b554c5a9dd7dd0058ad1ed617367af5856a0e4f909fc8a50ddb1b40c30742781ed00e79dfa86bcbc3538ca", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
setsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, &(0x7f00000001c0)=0x1, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
unshare(0x20060400)
r7 = syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000022780)=@newlink={0x30, 0x10, 0x49920d862a92143b, 0x100000, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x24000800)
openat(0xffffffffffffff9c, 0x0, 0x181242, 0x148)
tgkill(r7, 0x0, 0x2f)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r5, 0x10e, 0x2, &(0x7f00000003c0)=0x16, 0x4)
fcntl$addseals(r2, 0x409, 0x0)

57.358655ms ago: executing program 3 (id=1440):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x55, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56e}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@delalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@mblk_io_submit}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}]}, 0x11, 0x56e, &(0x7f0000001f00)="$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")

37.348147ms ago: executing program 4 (id=1441):
r0 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000440)="0001000000000000a5decc3e428c79eb5edd20f1eded245fe6836984efbf57345bc6a5e0f5558da3ccd4c2dbd751d4b40f74f24bd0e9cd88671c9ff5deb5cdc286da8a3d7112c904c62fbf80cab1c29318775a582b63bf43fc17fe430b584dd48039d8e52b764d5b39ba097c02af98ddfd5f5644", 0x74}, {&(0x7f0000000040)="74d1c81dbeca7fc7", 0x8}, {&(0x7f0000000080)="b03a6ffda4eff45ec76e4657d230246f9d13319404f9766c2a482a425115e47ab8c4bfd14288b914ff0156e45dff7d5dd384037a9ff79e2ef3aa3a49ec7ee19a948122661f42b424cb8f1426914aea1f3dcd8e505ead79e44090e6265306121d418761e48093b62bc4fd7e51abbd4f7d35ef59e3f441f9", 0xffffff10}], 0x3, &(0x7f0000000180)="802ee626eb923fa47bf8cd1a9fa09aaa537a51784a2792de0809e0ee80fb99081e1dbe74b77f4b0d5a635643e640bac382f05c9c85351a82bd1400339c397663ba74fb5ae8053288289decabb96e413e4d4b05f66e4dcb28996359499eebe3b19bc4b0335bf0013d8c8f9d231c9e691c875dc0a6f9ed9cfb25606db3813687e37b59d176fc8b3215875d2e657c9b96c7a3913fed15a409693a0a9fe3c7ec7b65eac6af027f2b5398bf433b3c503f453a6e56707b54522be2f9b25e6f18cd7fc202fe045dc9f18f8185ea081b1a1af96813cc01945a1340bdacaf3186c209cf0c05c48046884dfffa8a1c67957ecb0b65f7ac20b5a60e00838f8843be", 0xfc, 0x20000000}, 0x800)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
ioctl$KDGETLED(r2, 0x4b31, &(0x7f0000000000))
r3 = syz_open_pts(r2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
r4 = dup3(r3, r2, 0x0)
read$watch_queue(r4, &(0x7f0000000240)=""/173, 0xad)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000180)={0x80000001, 0x2, 0x81e6b76d, 0x10002, 0x9, "aa32b73986bbee6b9231334cbfa0b748261a13"})
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000380)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)

36.958747ms ago: executing program 1 (id=1442):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readlinkat(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=""/37, 0xffffffffffffff80)

0s ago: executing program 1 (id=1443):
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000002000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000100000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
connect$llc(r2, &(0x7f00000000c0)={0x1a, 0x0, 0x2, 0x8, 0x20, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.876739][ T5413] RSP: 002b:00007fb198ad7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   66.876754][ T5413] RAX: ffffffffffffffda RBX: 00007fb19a2c5fa0 RCX: 00007fb19a06f749
[   66.876763][ T5413] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000009
[   66.876772][ T5413] RBP: 00007fb198ad7090 R08: 0000000000000508 R09: 0000000000000000
[   66.876780][ T5413] R10: 0000200000000d40 R11: 0000000000000246 R12: 0000000000000001
[   66.876789][ T5413] R13: 00007fb19a2c6038 R14: 00007fb19a2c5fa0 R15: 00007ffefd5bf948
[   66.876802][ T5413]  </TASK>
[   67.113231][ T5416] tipc: Started in network mode
[   67.118177][ T5416] tipc: Node identity 7e9837b1c454, cluster identity 4711
[   67.125438][ T5416] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   67.137122][ T5417] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[   67.147285][ T5417] syzkaller0: entered promiscuous mode
[   67.153005][ T5417] syzkaller0: entered allmulticast mode
[   67.170402][ T5423] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   67.196260][ T5415] netlink: 'syz.4.655': attribute type 1 has an invalid length.
[   67.214668][ T5415] tipc: Resetting bearer <eth:syzkaller0>
[   67.229068][ T5415] tipc: Disabling bearer <eth:syzkaller0>
[   67.279171][ T5431] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   67.311287][ T5433] vlan2: entered allmulticast mode
[   67.338222][ T5437] netlink: 12 bytes leftover after parsing attributes in process `syz.0.664'.
[   67.358127][ T5433] netlink: 24 bytes leftover after parsing attributes in process `syz.4.662'.
[   67.376701][ T5433] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.662' sets config #0
[   67.425339][ T5442] loop3: detected capacity change from 0 to 1024
[   67.449511][ T5442] EXT4-fs mount: 2 callbacks suppressed
[   67.449530][ T5442] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.490856][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.573069][ T5456] netlink: 12 bytes leftover after parsing attributes in process `syz.1.671'.
[   67.640953][ T5462] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   67.702552][ T5474] loop2: detected capacity change from 0 to 1024
[   67.724292][ T5474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.767401][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.769360][   T29] kauditd_printk_skb: 394 callbacks suppressed
[   67.769527][   T29] audit: type=1326 audit(1766282538.386:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.806439][   T29] audit: type=1326 audit(1766282538.406:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.830173][   T29] audit: type=1326 audit(1766282538.406:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.853800][   T29] audit: type=1326 audit(1766282538.406:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.854772][ T5483] FAULT_INJECTION: forcing a failure.
[   67.854772][ T5483] name failslab, interval 1, probability 0, space 0, times 0
[   67.877415][   T29] audit: type=1326 audit(1766282538.406:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.889985][ T5483] CPU: 1 UID: 0 PID: 5483 Comm: syz.3.681 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.890017][ T5483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   67.890031][ T5483] Call Trace:
[   67.890039][ T5483]  <TASK>
[   67.890049][ T5483]  __dump_stack+0x1d/0x30
[   67.890101][ T5483]  dump_stack_lvl+0xe8/0x140
[   67.890190][ T5483]  dump_stack+0x15/0x1b
[   67.890212][ T5483]  should_fail_ex+0x265/0x280
[   67.890237][ T5483]  should_failslab+0x8c/0xb0
[   67.890338][ T5483]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[   67.890462][ T5483]  ? __alloc_skb+0x324/0x4d0
[   67.890488][ T5483]  __alloc_skb+0x324/0x4d0
[   67.890582][ T5483]  ? __alloc_skb+0x24d/0x4d0
[   67.890643][ T5483]  audit_log_start+0x3a0/0x720
[   67.890666][ T5483]  ? kstrtouint+0x76/0xc0
[   67.890738][ T5483]  audit_seccomp+0x48/0x100
[   67.890786][ T5483]  ? __seccomp_filter+0x832/0x1260
[   67.890814][ T5483]  __seccomp_filter+0x843/0x1260
[   67.890843][ T5483]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   67.890952][ T5483]  ? vfs_write+0x7e8/0x960
[   67.890973][ T5483]  ? __rcu_read_unlock+0x4f/0x70
[   67.890994][ T5483]  ? __fget_files+0x184/0x1c0
[   67.891105][ T5483]  __secure_computing+0x82/0x150
[   67.891138][ T5483]  syscall_trace_enter+0xcf/0x1e0
[   67.891163][ T5483]  do_syscall_64+0xb2/0x2c0
[   67.891224][ T5483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.891247][ T5483] RIP: 0033:0x7f14e516f749
[   67.891263][ T5483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.891282][ T5483] RSP: 002b:00007f14e3bd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[   67.891344][ T5483] RAX: ffffffffffffffda RBX: 00007f14e53c5fa0 RCX: 00007f14e516f749
[   67.891358][ T5483] RDX: 0000000000000000 RSI: 0000000066020000 RDI: 0000000000000007
[   67.891425][ T5483] RBP: 00007f14e3bd7090 R08: 0000000000000000 R09: 0000000000000000
[   67.891507][ T5483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.891520][ T5483] R13: 00007f14e53c6038 R14: 00007f14e53c5fa0 R15: 00007ffd79ff22d8
[   67.891539][ T5483]  </TASK>
[   67.891577][ T5483] audit: audit_lost=5 audit_rate_limit=0 audit_backlog_limit=64
[   67.913783][   T29] audit: type=1326 audit(1766282538.406:3255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   67.923401][ T5483] audit: out of memory in audit_log_start
[   67.952989][ T5484] loop1: detected capacity change from 0 to 2048
[   67.989570][   T29] audit: type=1326 audit(1766282538.476:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   68.189120][   T29] audit: type=1326 audit(1766282538.476:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5482 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[   68.213752][ T5488] netlink: 12 bytes leftover after parsing attributes in process `syz.3.683'.
[   68.316520][ T5497] netlink: 4 bytes leftover after parsing attributes in process `syz.3.684'.
[   68.397324][ T5503] loop4: detected capacity change from 0 to 512
[   68.425628][ T5503] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.691: error while reading EA inode 32 err=-116
[   68.438961][ T5503] EXT4-fs (loop4): Remounting filesystem read-only
[   68.445937][ T5503] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[   68.460211][ T5503] EXT4-fs (loop4): 1 orphan inode deleted
[   68.485986][ T5503] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.562769][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.599773][ T5515] $Hÿ: left promiscuous mode
[   68.604637][ T5515] bond_slave_0: left promiscuous mode
[   68.610171][ T5515] bond_slave_1: left promiscuous mode
[   68.632717][ T5515] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   68.640807][ T5521] netlink: 12 bytes leftover after parsing attributes in process `syz.4.695'.
[   68.661574][ T5515] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   68.741528][ T5529] siw: device registration error -23
[   68.813473][ T5539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.873994][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.891968][ T5545] siw: device registration error -23
[   69.103779][ T5562] netlink: 12 bytes leftover after parsing attributes in process `syz.0.711'.
[   69.141667][ T5554] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   69.170054][ T5568] binfmt_misc: register: failed to install interpreter file ./file0
[   69.274808][ T5584] FAULT_INJECTION: forcing a failure.
[   69.274808][ T5584] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.288078][ T5584] CPU: 1 UID: 0 PID: 5584 Comm: syz.0.722 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.288107][ T5584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.288121][ T5584] Call Trace:
[   69.288129][ T5584]  <TASK>
[   69.288175][ T5584]  __dump_stack+0x1d/0x30
[   69.288201][ T5584]  dump_stack_lvl+0xe8/0x140
[   69.288224][ T5584]  dump_stack+0x15/0x1b
[   69.288246][ T5584]  should_fail_ex+0x265/0x280
[   69.288272][ T5584]  should_fail+0xb/0x20
[   69.288346][ T5584]  should_fail_usercopy+0x1a/0x20
[   69.288375][ T5584]  _copy_from_user+0x1c/0xb0
[   69.288441][ T5584]  ___sys_sendmsg+0xc1/0x1d0
[   69.288565][ T5584]  __sys_sendmmsg+0x178/0x300
[   69.288637][ T5584]  __x64_sys_sendmmsg+0x57/0x70
[   69.288670][ T5584]  x64_sys_call+0x1e28/0x3000
[   69.288698][ T5584]  do_syscall_64+0xd8/0x2c0
[   69.288746][ T5584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.288770][ T5584] RIP: 0033:0x7fe0f2aef749
[   69.288787][ T5584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.288816][ T5584] RSP: 002b:00007fe0f154f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   69.288838][ T5584] RAX: ffffffffffffffda RBX: 00007fe0f2d45fa0 RCX: 00007fe0f2aef749
[   69.288852][ T5584] RDX: 0000000000000001 RSI: 00002000000032c0 RDI: 0000000000000006
[   69.288866][ T5584] RBP: 00007fe0f154f090 R08: 0000000000000000 R09: 0000000000000000
[   69.288880][ T5584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.288894][ T5584] R13: 00007fe0f2d46038 R14: 00007fe0f2d45fa0 R15: 00007ffdd4386568
[   69.288953][ T5584]  </TASK>
[   69.577584][ T5596] netlink: 12 bytes leftover after parsing attributes in process `syz.4.727'.
[   69.789812][ T5609] set_capacity_and_notify: 2 callbacks suppressed
[   69.789831][ T5609] loop3: detected capacity change from 0 to 8192
[   69.806360][ T5607] hub 2-0:1.0: USB hub found
[   69.811384][ T5607] hub 2-0:1.0: 8 ports detected
[   69.840646][ T5609] netlink: 72 bytes leftover after parsing attributes in process `syz.3.734'.
[   69.855641][ T5621] loop4: detected capacity change from 0 to 1024
[   69.894659][ T5621] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.972028][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.023593][ T5629] loop2: detected capacity change from 0 to 1024
[   70.055914][ T5629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.149355][ T5640] netlink: 12 bytes leftover after parsing attributes in process `syz.3.744'.
[   70.168581][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.181859][ T5634] loop4: detected capacity change from 0 to 8192
[   70.277207][ T5642] $Hÿ: entered promiscuous mode
[   70.282346][ T5642] bond_slave_0: entered promiscuous mode
[   70.288088][ T5642] bond_slave_1: entered promiscuous mode
[   70.383841][ T5651] siw: device registration error -23
[   71.042252][ T5678] netlink: 12 bytes leftover after parsing attributes in process `syz.0.756'.
[   71.114240][ T5682] netlink: 36 bytes leftover after parsing attributes in process `syz.1.757'.
[   71.164501][ T5686] siw: device registration error -23
[   71.349770][ T5656] syz.2.749 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[   71.360771][ T5656] CPU: 0 UID: 0 PID: 5656 Comm: syz.2.749 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.360802][ T5656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.360817][ T5656] Call Trace:
[   71.360842][ T5656]  <TASK>
[   71.360906][ T5656]  __dump_stack+0x1d/0x30
[   71.360932][ T5656]  dump_stack_lvl+0xe8/0x140
[   71.360960][ T5656]  dump_stack+0x15/0x1b
[   71.360991][ T5656]  dump_header+0x81/0x240
[   71.361041][ T5656]  oom_kill_process+0x295/0x350
[   71.361135][ T5656]  out_of_memory+0x97b/0xb80
[   71.361160][ T5656]  try_charge_memcg+0x610/0xa10
[   71.361191][ T5656]  charge_memcg+0x51/0xc0
[   71.361225][ T5656]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   71.361286][ T5656]  __read_swap_cache_async+0x17b/0x2d0
[   71.361326][ T5656]  swap_cluster_readahead+0x362/0x3c0
[   71.361394][ T5656]  swapin_readahead+0xde/0x820
[   71.361428][ T5656]  ? mod_memcg_lruvec_state+0x1a1/0x280
[   71.361468][ T5656]  ? __rcu_read_unlock+0x34/0x70
[   71.361494][ T5656]  ? __rcu_read_unlock+0x4f/0x70
[   71.361598][ T5656]  ? swap_cache_get_folio+0x277/0x280
[   71.361635][ T5656]  do_swap_page+0x2b4/0x21e0
[   71.361707][ T5656]  ? __pfx_default_wake_function+0x10/0x10
[   71.361745][ T5656]  handle_mm_fault+0x9d8/0x2c60
[   71.361862][ T5656]  do_user_addr_fault+0x630/0x1080
[   71.361898][ T5656]  exc_page_fault+0x62/0xa0
[   71.361930][ T5656]  asm_exc_page_fault+0x26/0x30
[   71.361987][ T5656] RIP: 0033:0x7fe830e2d72d
[   71.362006][ T5656] Code: 44 8d 56 04 4c 8d 0d f2 48 38 00 89 f0 4c 8d 05 e9 28 38 00 89 c2 81 e2 ff 1f 00 00 49 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 <45> 38 1c 10 75 23 83 c0 01 44 39 d0 75 dc 48 89 f0 25 ff 1f 00 00
[   71.362023][ T5656] RSP: 002b:00007ffd4bc45558 EFLAGS: 00010286
[   71.362040][ T5656] RAX: 000000008176abde RBX: 00007fe831cf5720 RCX: ffffffff81806bdd
[   71.362052][ T5656] RDX: 0000000000000bde RSI: ffffffff8176abde RDI: 0000000000000015
[   71.362065][ T5656] RBP: ffffffff8176abde R08: 00007fe8311b0000 R09: 00007fe8311b2000
[   71.362093][ T5656] R10: 000000008176abe2 R11: 0000000000000015 R12: 0000000000000015
[   71.362108][ T5656] R13: 0000000000000000 R14: ffffffff8176a9d7 R15: 000000000000000e
[   71.362124][ T5656]  ? perf_copy_attr+0x5a7/0x610
[   71.362156][ T5656]  ? perf_event_set_clock+0xbe/0x110
[   71.362206][ T5656]  ? pcpu_populate_chunk+0x27d/0xa80
[   71.362237][ T5656]  ? perf_event_set_clock+0xbe/0x110
[   71.362327][ T5656]  </TASK>
[   71.391555][ T5703] FAULT_INJECTION: forcing a failure.
[   71.391555][ T5703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.392786][ T5656] memory: usage 307200kB, limit 307200kB, failcnt 561
[   71.397254][ T5703] CPU: 1 UID: 0 PID: 5703 Comm: syz.4.765 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.397282][ T5703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.397295][ T5703] Call Trace:
[   71.397301][ T5703]  <TASK>
[   71.397353][ T5703]  __dump_stack+0x1d/0x30
[   71.397379][ T5703]  dump_stack_lvl+0xe8/0x140
[   71.397402][ T5703]  dump_stack+0x15/0x1b
[   71.397424][ T5703]  should_fail_ex+0x265/0x280
[   71.397449][ T5703]  should_fail+0xb/0x20
[   71.397626][ T5703]  should_fail_usercopy+0x1a/0x20
[   71.397650][ T5703]  _copy_from_user+0x1c/0xb0
[   71.397735][ T5703]  __sys_connect+0xd0/0x2b0
[   71.397775][ T5703]  __x64_sys_connect+0x3f/0x50
[   71.397800][ T5703]  x64_sys_call+0x2e09/0x3000
[   71.397825][ T5703]  do_syscall_64+0xd8/0x2c0
[   71.397922][ T5703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.397945][ T5703] RIP: 0033:0x7fb19a06f749
[   71.397962][ T5703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.397980][ T5703] RSP: 002b:00007fb198ad7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   71.398007][ T5703] RAX: ffffffffffffffda RBX: 00007fb19a2c5fa0 RCX: 00007fb19a06f749
[   71.398020][ T5703] RDX: 000000000000001e RSI: 0000200000000040 RDI: 0000000000000003
[   71.398034][ T5703] RBP: 00007fb198ad7090 R08: 0000000000000000 R09: 0000000000000000
[   71.398047][ T5703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.398071][ T5703] R13: 00007fb19a2c6038 R14: 00007fb19a2c5fa0 R15: 00007ffefd5bf948
[   71.398090][ T5703]  </TASK>
[   71.581876][ T5707] FAULT_INJECTION: forcing a failure.
[   71.581876][ T5707] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.584520][ T5656] memory+swap: usage 62460kB, limit 9007199254740988kB, failcnt 0
[   71.589800][ T5707] CPU: 1 UID: 0 PID: 5707 Comm: syz.0.766 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.589826][ T5707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.589838][ T5707] Call Trace:
[   71.589845][ T5707]  <TASK>
[   71.589853][ T5707]  __dump_stack+0x1d/0x30
[   71.589936][ T5707]  dump_stack_lvl+0xe8/0x140
[   71.589960][ T5707]  dump_stack+0x15/0x1b
[   71.589981][ T5707]  should_fail_ex+0x265/0x280
[   71.590006][ T5707]  should_fail+0xb/0x20
[   71.590027][ T5707]  should_fail_usercopy+0x1a/0x20
[   71.590108][ T5707]  _copy_from_user+0x1c/0xb0
[   71.590137][ T5707]  ___sys_sendmsg+0xc1/0x1d0
[   71.590178][ T5707]  __x64_sys_sendmsg+0xd4/0x160
[   71.590329][ T5707]  x64_sys_call+0x17ba/0x3000
[   71.590355][ T5707]  do_syscall_64+0xd8/0x2c0
[   71.590421][ T5707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.590444][ T5707] RIP: 0033:0x7fe0f2aef749
[   71.590461][ T5707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.590480][ T5707] RSP: 002b:00007fe0f154f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.590547][ T5707] RAX: ffffffffffffffda RBX: 00007fe0f2d45fa0 RCX: 00007fe0f2aef749
[   71.590561][ T5707] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[   71.590574][ T5707] RBP: 00007fe0f154f090 R08: 0000000000000000 R09: 0000000000000000
[   71.590587][ T5707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.590600][ T5707] R13: 00007fe0f2d46038 R14: 00007fe0f2d45fa0 R15: 00007ffdd4386568
[   71.590664][ T5707]  </TASK>
[   71.838776][ T5719] loop4: detected capacity change from 0 to 1024
[   71.841418][ T5656] kmem: usage 872kB, limit 9007199254740988kB, failcnt 0
[   71.841438][ T5656] Memory cgroup stats for /syz2:
[   71.841758][ T5656] cache 0
[   71.928522][ T5719] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.934009][ T5656] rss 8409088
[   71.934024][ T5656] shmem 0
[   71.934032][ T5656] mapped_file 0
[   71.934040][ T5656] dirty 0
[   71.934073][ T5656] writeback 0
[   71.934081][ T5656] workingset_refault_anon 32
[   71.934091][ T5656] workingset_refault_file 19
[   71.934100][ T5656] swap 184320
[   71.934109][ T5656] swapcached 8192
[   71.934117][ T5656] pgpgin 48293
[   71.934132][ T5656] pgpgout 46240
[   72.026085][ T5656] pgfault 61204
[   72.029533][ T5656] pgmajfault 26
[   72.033108][ T5656] inactive_anon 0
[   72.036954][ T5656] active_anon 20480
[   72.040755][ T5656] inactive_file 0
[   72.044405][ T5656] active_file 0
[   72.047879][ T5656] unevictable 8388608
[   72.051989][ T5656] hierarchical_memory_limit 314572800
[   72.057439][ T5656] hierarchical_memsw_limit 9223372036854771712
[   72.063698][ T5656] total_cache 0
[   72.067187][ T5656] total_rss 8409088
[   72.070989][ T5656] total_shmem 0
[   72.074675][ T5656] total_mapped_file 0
[   72.078689][ T5656] total_dirty 0
[   72.082248][ T5656] total_writeback 0
[   72.086081][ T5656] total_workingset_refault_anon 32
[   72.091216][ T5656] total_workingset_refault_file 19
[   72.096354][ T5656] total_swap 184320
[   72.100146][ T5656] total_swapcached 8192
[   72.104409][ T5656] total_pgpgin 48293
[   72.108425][ T5656] total_pgpgout 46240
[   72.112431][ T5656] total_pgfault 61204
[   72.116428][ T5656] total_pgmajfault 26
[   72.120448][ T5656] total_inactive_anon 0
[   72.124662][ T5656] total_active_anon 20480
[   72.132125][ T5656] total_inactive_file 0
[   72.136473][ T5656] total_active_file 0
[   72.140472][ T5656] total_unevictable 8388608
[   72.145035][ T5656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.749,pid=5656,uid=0
[   72.159884][ T5656] Memory cgroup out of memory: Killed process 5656 (syz.2.749) total-vm:94100kB, anon-rss:9456kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[   72.160998][ T5674] syz.2.749 (5674) used greatest stack depth: 10120 bytes left
[   72.185220][ T5656] syz.2.749 (5656) used greatest stack depth: 10088 bytes left
[   72.193516][ T5657] syz.2.749 (5657) used greatest stack depth: 9792 bytes left
[   72.224631][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.240478][ T5729] $Hÿ: left promiscuous mode
[   72.245332][ T5729] bond_slave_0: left promiscuous mode
[   72.250862][ T5729] bond_slave_1: left promiscuous mode
[   72.258771][ T5729] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   72.296256][ T5734] netlink: 12 bytes leftover after parsing attributes in process `syz.4.776'.
[   72.307646][ T5735] netlink: 36 bytes leftover after parsing attributes in process `syz.2.777'.
[   72.328439][ T5729] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   72.397636][ T5748] netlink: 12 bytes leftover after parsing attributes in process `syz.3.784'.
[   72.466855][ T5744] loop2: detected capacity change from 0 to 8192
[   72.539603][ T5757] loop0: detected capacity change from 0 to 512
[   72.578762][ T5757] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.597649][ T5758] wg1 speed is unknown, defaulting to 1000
[   72.620069][ T5757] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.650582][ T5758] lo speed is unknown, defaulting to 1000
[   72.674361][ T5756] ipip0: entered promiscuous mode
[   72.752689][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.003753][ T5772] siw: device registration error -23
[   73.019790][ T5772] loop0: detected capacity change from 0 to 2048
[   73.346189][ T5786] netlink: 12 bytes leftover after parsing attributes in process `syz.2.797'.
[   73.770575][ T5810] FAULT_INJECTION: forcing a failure.
[   73.770575][ T5810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.783850][ T5810] CPU: 1 UID: 0 PID: 5810 Comm: syz.4.806 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.783883][ T5810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   73.783897][ T5810] Call Trace:
[   73.783963][ T5810]  <TASK>
[   73.783972][ T5810]  __dump_stack+0x1d/0x30
[   73.783999][ T5810]  dump_stack_lvl+0xe8/0x140
[   73.784025][ T5810]  dump_stack+0x15/0x1b
[   73.784092][ T5810]  should_fail_ex+0x265/0x280
[   73.784121][ T5810]  should_fail+0xb/0x20
[   73.784260][ T5810]  should_fail_usercopy+0x1a/0x20
[   73.784322][ T5810]  _copy_from_user+0x1c/0xb0
[   73.784353][ T5810]  ___sys_sendmsg+0xc1/0x1d0
[   73.784460][ T5810]  __x64_sys_sendmsg+0xd4/0x160
[   73.784493][ T5810]  x64_sys_call+0x17ba/0x3000
[   73.784548][ T5810]  do_syscall_64+0xd8/0x2c0
[   73.784585][ T5810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.784627][ T5810] RIP: 0033:0x7fb19a06f749
[   73.784716][ T5810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.784733][ T5810] RSP: 002b:00007fb198ad7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.784756][ T5810] RAX: ffffffffffffffda RBX: 00007fb19a2c5fa0 RCX: 00007fb19a06f749
[   73.784770][ T5810] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[   73.784822][ T5810] RBP: 00007fb198ad7090 R08: 0000000000000000 R09: 0000000000000000
[   73.784833][ T5810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.784846][ T5810] R13: 00007fb19a2c6038 R14: 00007fb19a2c5fa0 R15: 00007ffefd5bf948
[   73.784867][ T5810]  </TASK>
[   74.036442][   T29] kauditd_printk_skb: 437 callbacks suppressed
[   74.036462][   T29] audit: type=1326 audit(1766282544.646:3695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.066038][   T29] audit: type=1326 audit(1766282544.646:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.089798][   T29] audit: type=1326 audit(1766282544.646:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.113232][   T29] audit: type=1326 audit(1766282544.646:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.136608][   T29] audit: type=1326 audit(1766282544.646:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.160001][   T29] audit: type=1326 audit(1766282544.646:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.183526][   T29] audit: type=1326 audit(1766282544.646:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.206912][   T29] audit: type=1326 audit(1766282544.646:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.230312][   T29] audit: type=1326 audit(1766282544.646:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5818 comm="syz.4.810" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[   74.253571][   T29] audit: type=1400 audit(1766282544.646:3704): avc:  granted  { setsecparam } for  pid=5818 comm="syz.4.810" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   74.474203][ T5832] hub 2-0:1.0: USB hub found
[   74.478943][ T5832] hub 2-0:1.0: 8 ports detected
[   74.545938][ T5836] __nla_validate_parse: 3 callbacks suppressed
[   74.545958][ T5836] netlink: 200 bytes leftover after parsing attributes in process `syz.3.815'.
[   75.050607][ T5838] siw: device registration error -23
[   75.063365][ T5838] loop2: detected capacity change from 0 to 2048
[   75.201342][ T5844] FAULT_INJECTION: forcing a failure.
[   75.201342][ T5844] name failslab, interval 1, probability 0, space 0, times 0
[   75.214261][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: syz.0.818 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.214283][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   75.214292][ T5844] Call Trace:
[   75.214297][ T5844]  <TASK>
[   75.214303][ T5844]  __dump_stack+0x1d/0x30
[   75.214322][ T5844]  dump_stack_lvl+0xe8/0x140
[   75.214338][ T5844]  dump_stack+0x15/0x1b
[   75.214352][ T5844]  should_fail_ex+0x265/0x280
[   75.214369][ T5844]  should_failslab+0x8c/0xb0
[   75.214385][ T5844]  kmem_cache_alloc_noprof+0x69/0x4b0
[   75.214401][ T5844]  ? vm_area_dup+0x33/0x2c0
[   75.214418][ T5844]  vm_area_dup+0x33/0x2c0
[   75.214435][ T5844]  __split_vma+0xe9/0x660
[   75.214451][ T5844]  vms_gather_munmap_vmas+0x17a/0x7b0
[   75.214474][ T5844]  ? selinux_file_open+0x2dc/0x330
[   75.214498][ T5844]  do_vmi_align_munmap+0x1ac/0x3d0
[   75.214526][ T5844]  do_vmi_munmap+0x1db/0x220
[   75.214548][ T5844]  mremap_at+0xfc/0x610
[   75.214566][ T5844]  __se_sys_mremap+0x6d7/0xb30
[   75.214585][ T5844]  ? mutex_unlock+0x4f/0x90
[   75.214603][ T5844]  ? __bpf_trace_sys_enter+0x10/0x30
[   75.214620][ T5844]  ? trace_sys_enter+0xd0/0xf0
[   75.214636][ T5844]  __x64_sys_mremap+0x67/0x80
[   75.214650][ T5844]  x64_sys_call+0x2944/0x3000
[   75.214667][ T5844]  do_syscall_64+0xd8/0x2c0
[   75.214690][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.214706][ T5844] RIP: 0033:0x7fe0f2aef749
[   75.214718][ T5844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.214731][ T5844] RSP: 002b:00007fe0f154f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[   75.214746][ T5844] RAX: ffffffffffffffda RBX: 00007fe0f2d45fa0 RCX: 00007fe0f2aef749
[   75.214755][ T5844] RDX: 0000000000001000 RSI: 0000000000c00000 RDI: 0000200000400000
[   75.214764][ T5844] RBP: 00007fe0f154f090 R08: 00002000008b5000 R09: 0000000000000000
[   75.214772][ T5844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.214781][ T5844] R13: 00007fe0f2d46038 R14: 00007fe0f2d45fa0 R15: 00007ffdd4386568
[   75.214794][ T5844]  </TASK>
[   75.472962][ T5846] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   75.612614][ T5857] loop3: detected capacity change from 0 to 1024
[   75.660873][ T5857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.690936][ T5862] $Hÿ: entered promiscuous mode
[   75.696247][ T5862] bond_slave_0: entered promiscuous mode
[   75.702638][ T5862] bond_slave_1: entered promiscuous mode
[   75.867894][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.956037][ T5865] hub 2-0:1.0: USB hub found
[   75.961011][ T5865] hub 2-0:1.0: 8 ports detected
[   76.180003][ T5879] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   76.418140][ T5890] siw: device registration error -23
[   76.532970][ T5905] loop4: detected capacity change from 0 to 764
[   76.537859][ T5904] siw: device registration error -23
[   76.546348][ T5905] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   76.576773][ T5905] netlink: 'syz.4.844': attribute type 27 has an invalid length.
[   76.686363][ T5905] $Hÿ: left promiscuous mode
[   76.691276][ T5905] bond_slave_0: left promiscuous mode
[   76.696932][ T5905] bond_slave_1: left promiscuous mode
[   76.717909][ T3485] lo speed is unknown, defaulting to 1000
[   76.723801][ T3485] syz2: Port: 1 Link DOWN
[   76.769231][ T5921] siw: device registration error -23
[   76.825699][ T5914] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   76.852729][ T5914] 8021q: adding VLAN 0 to HW filter on device team0
[   76.895183][ T5914] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   76.911322][ T3485] lo speed is unknown, defaulting to 1000
[   76.917190][ T3485] syz2: Port: 1 Link ACTIVE
[   76.970618][ T5937] loop2: detected capacity change from 0 to 512
[   76.992059][ T5937] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   77.042118][ T5937] EXT4-fs error (device loop2): ext4_init_orphan_info:620: comm syz.2.870: orphan file block 0: bad magic
[   77.077857][ T5937] EXT4-fs (loop2): mount failed
[   77.180386][ T5958] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.868' sets config #0
[   77.249639][ T5961] ªªªªªª: renamed from vlan0
[   77.267345][ T5965] loop1: detected capacity change from 0 to 512
[   77.278917][ T5965] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   77.338384][ T5963] hub 2-0:1.0: USB hub found
[   77.343371][ T5963] hub 2-0:1.0: 8 ports detected
[   77.454496][ T5977] netlink: 12 bytes leftover after parsing attributes in process `syz.2.879'.
[   77.459419][ T5983] $Hÿ: left promiscuous mode
[   77.468255][ T5983] bond_slave_0: left promiscuous mode
[   77.473898][ T5983] bond_slave_1: left promiscuous mode
[   77.480934][ T5983] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   77.492120][ T5983] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   77.609113][ T5979] netlink: 8 bytes leftover after parsing attributes in process `syz.4.878'.
[   77.666926][ T5995] wg1 speed is unknown, defaulting to 1000
[   77.674039][ T5995] lo speed is unknown, defaulting to 1000
[   77.718336][ T6000] loop2: detected capacity change from 0 to 1024
[   77.725615][ T6000] EXT4-fs: inline encryption not supported
[   77.754382][ T6000] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.783966][ T6006] wg1 speed is unknown, defaulting to 1000
[   77.792366][ T6006] lo speed is unknown, defaulting to 1000
[   77.836265][ T6009] loop0: detected capacity change from 0 to 1024
[   77.845972][ T6009] EXT4-fs: inline encryption not supported
[   77.869076][ T6009] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.902591][ T6006] FAULT_INJECTION: forcing a failure.
[   77.902591][ T6006] name failslab, interval 1, probability 0, space 0, times 0
[   77.915410][ T6006] CPU: 1 UID: 0 PID: 6006 Comm: syz.0.886 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.915441][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.915455][ T6006] Call Trace:
[   77.915513][ T6006]  <TASK>
[   77.915523][ T6006]  __dump_stack+0x1d/0x30
[   77.915553][ T6006]  dump_stack_lvl+0xe8/0x140
[   77.915581][ T6006]  dump_stack+0x15/0x1b
[   77.915605][ T6006]  should_fail_ex+0x265/0x280
[   77.915714][ T6006]  should_failslab+0x8c/0xb0
[   77.915741][ T6006]  __kmalloc_noprof+0xb9/0x5a0
[   77.915782][ T6006]  ? ext4_ext_precache+0xa1/0x380
[   77.915813][ T6006]  ext4_ext_precache+0xa1/0x380
[   77.915842][ T6006]  ext4_get_es_cache+0x163/0x4c0
[   77.915873][ T6006]  ? avc_has_extended_perms+0x609/0x800
[   77.915972][ T6006]  ? should_fail_ex+0xdb/0x280
[   77.916058][ T6006]  ext4_ioctl+0x158d/0x2d20
[   77.916092][ T6006]  ? file_ioctl+0x146/0x530
[   77.916156][ T6006]  ? do_vfs_ioctl+0x7ca/0xe10
[   77.916232][ T6006]  ? selinux_file_ioctl+0x308/0x3a0
[   77.916267][ T6006]  ? __fget_files+0x184/0x1c0
[   77.916365][ T6006]  ? __pfx_ext4_ioctl+0x10/0x10
[   77.916393][ T6006]  __se_sys_ioctl+0xce/0x140
[   77.916495][ T6006]  __x64_sys_ioctl+0x43/0x50
[   77.916611][ T6006]  x64_sys_call+0x14b0/0x3000
[   77.916640][ T6006]  do_syscall_64+0xd8/0x2c0
[   77.916688][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.916776][ T6006] RIP: 0033:0x7fe0f2aef749
[   77.916795][ T6006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.916815][ T6006] RSP: 002b:00007fe0f152e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.916838][ T6006] RAX: ffffffffffffffda RBX: 00007fe0f2d46090 RCX: 00007fe0f2aef749
[   77.916852][ T6006] RDX: 0000200000000380 RSI: 00000000c020662a RDI: 000000000000000d
[   77.916867][ T6006] RBP: 00007fe0f152e090 R08: 0000000000000000 R09: 0000000000000000
[   77.916881][ T6006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.916981][ T6006] R13: 00007fe0f2d46128 R14: 00007fe0f2d46090 R15: 00007ffdd4386568
[   77.917077][ T6006]  </TASK>
[   78.146540][ T6019] $Hÿ: entered promiscuous mode
[   78.151660][ T6019] bond_slave_0: entered promiscuous mode
[   78.157574][ T6019] bond_slave_1: entered promiscuous mode
[   78.184114][ T6021] $Hÿ: left promiscuous mode
[   78.189174][ T6021] bond_slave_0: left promiscuous mode
[   78.194935][ T6021] bond_slave_1: left promiscuous mode
[   78.201023][ T6021] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   78.210252][ T6021] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   78.296083][ T6027] loop3: detected capacity change from 0 to 512
[   78.304279][ T6027] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.315455][ T6027] EXT4-fs error (device loop3): ext4_init_orphan_info:620: comm syz.3.896: orphan file block 0: bad magic
[   78.328576][ T6027] EXT4-fs (loop3): mount failed
[   78.436746][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.479567][ T6043] loop4: detected capacity change from 0 to 1024
[   78.501542][ T6048] $Hÿ: entered promiscuous mode
[   78.506716][ T6048] bond_slave_0: entered promiscuous mode
[   78.512648][ T6048] bond_slave_1: entered promiscuous mode
[   78.520305][ T6043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.576742][ T6052] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   78.576859][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.617494][ T6047] siw: device registration error -23
[   78.673497][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.682418][ T6060] siw: device registration error -23
[   78.813761][ T6080] loop3: detected capacity change from 0 to 512
[   78.841174][ T6080] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.873775][ T6080] EXT4-fs (loop3): 1 truncate cleaned up
[   78.888302][ T6080] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.923160][ T6072]  loop1: p1 p2 < > p3 p4 < p5 >
[   78.928366][ T6072] loop1: partition table partially beyond EOD, truncated
[   78.948290][ T6080] EXT4-fs error (device loop3): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.3.914: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[   78.966476][ T6072] loop1: p1 size 100663296 extends beyond EOD, truncated
[   78.979394][ T6080] EXT4-fs (loop3): Remounting filesystem read-only
[   78.986048][ T6080] EXT4-fs warning (device loop3): ext4_rename_delete:3729: inode #2: comm syz.3.914: Deleting old file: nlink 5, error=-117
[   79.000132][ T6072] loop1: p2 start 591104 is beyond EOD, truncated
[   79.007058][ T6072] loop1: p3 start 33572980 is beyond EOD, truncated
[   79.019444][ T6072] loop1: p5 size 100663296 extends beyond EOD, truncated
[   79.057575][ T6094] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   79.094260][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.113815][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   79.115278][ T3517] udevd[3517]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory
[   79.135637][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   79.156415][ T6098] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   79.185983][ T6098] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   79.202937][ T6098] __quota_error: 460 callbacks suppressed
[   79.202957][ T6098] Quota error (device loop2): write_blk: dquota write failed
[   79.216229][ T6098] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   79.226563][ T6098] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   79.231430][ T6104] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.241379][ T6098] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   79.266629][ T6098] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   79.279153][ T6098] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   79.288146][  T911] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[   79.297196][  T911] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:8: Failed to release dquot type 0
[   79.316146][ T6098] EXT4-fs (loop2): 1 orphan inode deleted
[   79.322621][ T6098] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.336407][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.431046][ T6119] EXT4-fs error (device loop2): ext4_lookup:1785: inode #16: comm syz.2.922: iget: bad extra_isize 65535 (inode size 256)
[   79.445290][ T6110] siw: device registration error -23
[   79.462885][   T29] audit: type=1400 audit(1766282550.086:4165): avc:  denied  { create } for  pid=6097 comm="syz.2.922" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[   79.470754][ T6123] FAULT_INJECTION: forcing a failure.
[   79.470754][ T6123] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.505586][ T6123] CPU: 0 UID: 0 PID: 6123 Comm: syz.1.930 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   79.505619][ T6123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   79.505651][ T6123] Call Trace:
[   79.505659][ T6123]  <TASK>
[   79.505668][ T6123]  __dump_stack+0x1d/0x30
[   79.505723][ T6123]  dump_stack_lvl+0xe8/0x140
[   79.505748][ T6123]  dump_stack+0x15/0x1b
[   79.505770][ T6123]  should_fail_ex+0x265/0x280
[   79.505798][ T6123]  should_fail+0xb/0x20
[   79.505892][ T6123]  should_fail_usercopy+0x1a/0x20
[   79.505922][ T6123]  _copy_from_user+0x1c/0xb0
[   79.505990][ T6123]  ___sys_sendmsg+0xc1/0x1d0
[   79.506036][ T6123]  __x64_sys_sendmsg+0xd4/0x160
[   79.506089][ T6123]  x64_sys_call+0x17ba/0x3000
[   79.506113][ T6123]  do_syscall_64+0xd8/0x2c0
[   79.506146][ T6123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.506171][ T6123] RIP: 0033:0x7f8b9635f749
[   79.506189][ T6123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.506292][ T6123] RSP: 002b:00007f8b94dc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.506314][ T6123] RAX: ffffffffffffffda RBX: 00007f8b965b5fa0 RCX: 00007f8b9635f749
[   79.506391][ T6123] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000003
[   79.506404][ T6123] RBP: 00007f8b94dc7090 R08: 0000000000000000 R09: 0000000000000000
[   79.506417][ T6123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.506431][ T6123] R13: 00007f8b965b6038 R14: 00007f8b965b5fa0 R15: 00007ffe9b8ec0b8
[   79.506450][ T6123]  </TASK>
[   79.532799][   T29] audit: type=1400 audit(1766282550.156:4166): avc:  denied  { allowed } for  pid=6124 comm="syz.0.931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   79.533467][   T29] audit: type=1400 audit(1766282550.156:4167): avc:  denied  { create } for  pid=6124 comm="syz.0.931" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   79.533572][   T29] audit: type=1400 audit(1766282550.156:4168): avc:  denied  { map } for  pid=6124 comm="syz.0.931" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=14355 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   79.533721][   T29] audit: type=1400 audit(1766282550.156:4169): avc:  denied  { read write } for  pid=6124 comm="syz.0.931" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=14355 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   79.617126][ T6130] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.793126][ T6130] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.884823][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.041311][ T6098] +}[@ (6098) used greatest stack depth: 9216 bytes left
[   80.052726][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.062510][   T12] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[   80.071672][   T12] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:0: Failed to release dquot type 0
[   80.100549][ T6143] netlink: 12 bytes leftover after parsing attributes in process `syz.2.937'.
[   80.178755][ T6149] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   80.237925][   T29] audit: type=1326 audit(1766282550.856:4170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6158 comm="syz.1.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b9635f749 code=0x7ffc0000
[   80.417149][ T6168] netlink: 12 bytes leftover after parsing attributes in process `syz.2.950'.
[   80.535567][ T6171] $Hÿ: entered promiscuous mode
[   80.540788][ T6171] bond_slave_0: entered promiscuous mode
[   80.546727][ T6171] bond_slave_1: entered promiscuous mode
[   80.883183][ T6203] netlink: 12 bytes leftover after parsing attributes in process `syz.2.963'.
[   81.982434][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.1.981'.
[   82.274702][ T6261] hub 2-0:1.0: USB hub found
[   82.279528][ T6261] hub 2-0:1.0: 8 ports detected
[   82.370254][ T6250] set_capacity_and_notify: 5 callbacks suppressed
[   82.370270][ T6250] loop2: detected capacity change from 0 to 8192
[   82.778267][ T6282] loop3: detected capacity change from 0 to 1024
[   82.795070][ T6282] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.847569][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.868367][ T6288] netlink: 12 bytes leftover after parsing attributes in process `syz.3.994'.
[   83.084827][ T6307] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   83.797464][ T6325] wg1 speed is unknown, defaulting to 1000
[   83.805808][ T6325] lo speed is unknown, defaulting to 1000
[   84.057639][ T6330] hub 2-0:1.0: USB hub found
[   84.062449][ T6330] hub 2-0:1.0: 8 ports detected
[   84.247016][ T6335] hub 2-0:1.0: USB hub found
[   84.251961][ T6335] hub 2-0:1.0: 8 ports detected
[   84.318596][ T6337] siw: device registration error -23
[   84.334702][ T6337] loop4: detected capacity change from 0 to 2048
[   84.410419][   T29] kauditd_printk_skb: 893 callbacks suppressed
[   84.410520][   T29] audit: type=1326 audit(1766282555.026:5064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.440746][   T29] audit: type=1326 audit(1766282555.026:5065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.464687][   T29] audit: type=1326 audit(1766282555.036:5066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.488241][   T29] audit: type=1326 audit(1766282555.036:5067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.511866][   T29] audit: type=1326 audit(1766282555.036:5068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.535546][   T29] audit: type=1326 audit(1766282555.036:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.559458][   T29] audit: type=1326 audit(1766282555.036:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.583244][   T29] audit: type=1326 audit(1766282555.036:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.606926][   T29] audit: type=1326 audit(1766282555.036:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   84.630461][   T29] audit: type=1326 audit(1766282555.036:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   85.349650][ T6357] ALSA: seq fatal error: cannot create timer (-19)
[   85.358534][ T6362] loop0: detected capacity change from 0 to 1024
[   85.373853][ T6362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.427877][ T6368] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1026'.
[   85.475733][ T6371] loop2: detected capacity change from 0 to 1024
[   85.507313][ T6371] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   85.527120][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.539862][ T6371] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   85.568176][ T6380] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   85.585077][ T6371] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   85.596411][ T6371] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   85.609844][ T6371] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   85.631561][   T52] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 0
[   85.651945][ T6371] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   85.661614][ T6371] EXT4-fs (loop2): 1 orphan inode deleted
[   85.668164][ T6371] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.735033][ T6386] EXT4-fs error (device loop2): ext4_lookup:1785: inode #16: comm syz.2.1028: iget: bad extra_isize 65535 (inode size 256)
[   85.910235][ T6393] loop0: detected capacity change from 0 to 1024
[   85.929114][ T6393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.944696][ T6389] hub 2-0:1.0: USB hub found
[   85.945021][ T6389] hub 2-0:1.0: 8 ports detected
[   85.968556][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.036653][   T39] Bluetooth: hci0: Frame reassembly failed (-84)
[   86.052768][ T6400] ALSA: seq fatal error: cannot create timer (-19)
[   86.320060][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.340289][ T6403] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1039'.
[   86.509586][ T6412] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   87.283001][ T6429] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1050'.
[   87.298743][ T6431] loop2: detected capacity change from 0 to 1024
[   87.328187][ T6431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.451419][ T6448] siw: device registration error -23
[   87.546235][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.572323][ T6451] $Hÿ: entered promiscuous mode
[   87.577478][ T6451] bond_slave_0: entered promiscuous mode
[   87.583265][ T6451] bond_slave_1: entered promiscuous mode
[   87.645159][ T6456] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1062'.
[   87.655302][ T6460] loop3: detected capacity change from 0 to 1024
[   87.662783][ T6454] hub 2-0:1.0: USB hub found
[   87.667850][ T6454] hub 2-0:1.0: 8 ports detected
[   87.676347][ T6460] EXT4-fs (loop3): unable to read superblock
[   87.739470][ T6467] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   87.751566][   T44] Bluetooth: hci1: sending frame failed (-49)
[   87.757855][ T3803] Bluetooth: hci1: Opcode 0x1003 failed: -49
[   87.768710][ T6467] loop2: detected capacity change from 0 to 1024
[   87.775887][ T6467] EXT4-fs: inline encryption not supported
[   87.781808][ T6467] EXT4-fs: Ignoring removed orlov option
[   87.788419][ T6467] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   87.803914][ T6467] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c018, mo2=0002]
[   87.812274][ T6467] System zones: 0-1, 3-12
[   87.818803][ T6467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.872816][ T6477] FAULT_INJECTION: forcing a failure.
[   87.872816][ T6477] name failslab, interval 1, probability 0, space 0, times 0
[   87.873926][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.885843][ T6477] CPU: 1 UID: 0 PID: 6477 Comm: syz.3.1071 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.885873][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   87.885896][ T6477] Call Trace:
[   87.885904][ T6477]  <TASK>
[   87.885912][ T6477]  __dump_stack+0x1d/0x30
[   87.885939][ T6477]  dump_stack_lvl+0xe8/0x140
[   87.885994][ T6477]  dump_stack+0x15/0x1b
[   87.886085][ T6477]  should_fail_ex+0x265/0x280
[   87.886110][ T6477]  should_failslab+0x8c/0xb0
[   87.886135][ T6477]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[   87.886172][ T6477]  ? __alloc_skb+0x324/0x4d0
[   87.886200][ T6477]  __alloc_skb+0x324/0x4d0
[   87.886325][ T6477]  ? __alloc_skb+0x24d/0x4d0
[   87.886351][ T6477]  mgmt_cmd_complete+0x42/0x210
[   87.886415][ T6477]  read_commands+0x13d/0x160
[   87.886449][ T6477]  hci_mgmt_cmd+0x7f5/0x8a0
[   87.886481][ T6477]  hci_sock_sendmsg+0x518/0x910
[   87.886583][ T6477]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[   87.886613][ T6477]  __sock_sendmsg+0x145/0x180
[   87.886643][ T6477]  sock_write_iter+0x1a7/0x1f0
[   87.886749][ T6477]  aio_write+0x2e5/0x410
[   87.886785][ T6477]  io_submit_one+0xb74/0x1280
[   87.886821][ T6477]  __se_sys_io_submit+0xfb/0x280
[   87.886894][ T6477]  __x64_sys_io_submit+0x43/0x50
[   87.886971][ T6477]  x64_sys_call+0x2e40/0x3000
[   87.886996][ T6477]  do_syscall_64+0xd8/0x2c0
[   87.887031][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.887054][ T6477] RIP: 0033:0x7f14e516f749
[   87.887143][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.887163][ T6477] RSP: 002b:00007f14e3bd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   87.887215][ T6477] RAX: ffffffffffffffda RBX: 00007f14e53c5fa0 RCX: 00007f14e516f749
[   87.887229][ T6477] RDX: 0000200000000940 RSI: 0000000000000001 RDI: 00007f14e3b93000
[   87.887242][ T6477] RBP: 00007f14e3bd7090 R08: 0000000000000000 R09: 0000000000000000
[   87.887255][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.887269][ T6477] R13: 00007f14e53c6038 R14: 00007f14e53c5fa0 R15: 00007ffd79ff22d8
[   87.887288][ T6477]  </TASK>
[   88.081295][ T3556] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   88.081491][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[   88.173681][ T6481] raw_sendmsg: syz.0.1072 forgot to set AF_INET. Fix it!
[   88.330228][ T6492] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1075'.
[   88.351040][ T6486] unsupported nla_type 52263
[   88.395630][ T6496] loop2: detected capacity change from 0 to 1024
[   88.425311][ T6496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.520015][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.586405][ T6505] loop0: detected capacity change from 0 to 128
[   88.596707][ T6505] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   88.670648][ T6522] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1087'.
[   88.681688][ T6523] siw: device registration error -23
[   88.697592][ T6523] loop2: detected capacity change from 0 to 2048
[   88.780742][ T6529] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   88.789440][ T6529] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   88.810829][ T6529] loop4: detected capacity change from 0 to 1024
[   88.818095][ T6529] EXT4-fs: inline encryption not supported
[   88.824656][ T6529] EXT4-fs: Ignoring removed mblk_io_submit option
[   88.843193][ T6529] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.907987][ T6537] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1091'.
[   88.944295][ T6539] loop0: detected capacity change from 0 to 1024
[   88.972672][ T6539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.008188][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.102918][ T6548] netlink: 131712 bytes leftover after parsing attributes in process `syz.0.1094'.
[   89.112748][ T6548] netlink: del zone limit has 4 unknown bytes
[   89.412131][   T29] kauditd_printk_skb: 2123 callbacks suppressed
[   89.412147][   T29] audit: type=1326 audit(1766282560.036:7194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.454266][   T29] audit: type=1326 audit(1766282560.036:7195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.478023][   T29] audit: type=1326 audit(1766282560.036:7196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.501670][   T29] audit: type=1326 audit(1766282560.036:7197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.525589][   T29] audit: type=1326 audit(1766282560.036:7198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.549266][   T29] audit: type=1326 audit(1766282560.036:7199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.573133][   T29] audit: type=1326 audit(1766282560.036:7200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.589958][ T6556] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1099'.
[   89.596748][   T29] audit: type=1326 audit(1766282560.036:7201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.629653][   T29] audit: type=1326 audit(1766282560.036:7202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.653562][   T29] audit: type=1326 audit(1766282560.036:7203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.4.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb19a0a2005 code=0x7ffc0000
[   89.698910][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.754714][ T6567] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1102'.
[   89.813036][ T6574] bridge0: port 3(batadv1) entered blocking state
[   89.819619][ T6574] bridge0: port 3(batadv1) entered disabled state
[   89.827342][ T6574] batadv1: entered allmulticast mode
[   89.833412][ T6574] batadv1: entered promiscuous mode
[   90.095774][ T6604] loop2: detected capacity change from 0 to 512
[   90.102932][ T6604] EXT4-fs: Ignoring removed i_version option
[   90.109049][ T6604] EXT4-fs: Ignoring removed bh option
[   90.150669][ T6604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.172136][ T6604] ext4 filesystem being mounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.261813][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.312411][ T3643] batman_adv: batadv1: IGMP Querier appeared
[   90.318576][ T3643] batman_adv: batadv1: MLD Querier appeared
[   90.360469][ T6624] atomic_op ffff888128627928 conn xmit_atomic 0000000000000000
[   90.370179][ T6624] loop4: detected capacity change from 0 to 164
[   90.380138][ T6624] Unable to read rock-ridge attributes
[   90.397958][ T6624] Unable to read rock-ridge attributes
[   90.403843][ T6624] iso9660: Corrupted directory entry in block 4 of inode 1792
[   90.618996][ T6650] __nla_validate_parse: 2 callbacks suppressed
[   90.619016][ T6650] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1134'.
[   90.824979][ T6654] hub 2-0:1.0: USB hub found
[   90.829758][ T6654] hub 2-0:1.0: 8 ports detected
[   90.893615][ T6659] FAULT_INJECTION: forcing a failure.
[   90.893615][ T6659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.906861][ T6659] CPU: 0 UID: 0 PID: 6659 Comm: syz.1.1137 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   90.906884][ T6659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   90.906893][ T6659] Call Trace:
[   90.906897][ T6659]  <TASK>
[   90.906959][ T6659]  __dump_stack+0x1d/0x30
[   90.906978][ T6659]  dump_stack_lvl+0xe8/0x140
[   90.907000][ T6659]  dump_stack+0x15/0x1b
[   90.907014][ T6659]  should_fail_ex+0x265/0x280
[   90.907031][ T6659]  should_fail+0xb/0x20
[   90.907045][ T6659]  should_fail_usercopy+0x1a/0x20
[   90.907130][ T6659]  strncpy_from_user+0x27/0x260
[   90.907153][ T6659]  getname_flags+0xae/0x3b0
[   90.907181][ T6659]  __se_sys_move_mount+0x2dc/0x490
[   90.907259][ T6659]  __x64_sys_move_mount+0x67/0x80
[   90.907316][ T6659]  x64_sys_call+0x2a99/0x3000
[   90.907345][ T6659]  do_syscall_64+0xd8/0x2c0
[   90.907468][ T6659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.907485][ T6659] RIP: 0033:0x7f8b9635f749
[   90.907497][ T6659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.907510][ T6659] RSP: 002b:00007f8b94dc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   90.907534][ T6659] RAX: ffffffffffffffda RBX: 00007f8b965b5fa0 RCX: 00007f8b9635f749
[   90.907544][ T6659] RDX: ffffffffffffff9c RSI: 0000200000000140 RDI: ffffffffffffffff
[   90.907552][ T6659] RBP: 00007f8b94dc7090 R08: 0000000000000262 R09: 0000000000000000
[   90.907561][ T6659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.907624][ T6659] R13: 00007f8b965b6038 R14: 00007f8b965b5fa0 R15: 00007ffe9b8ec0b8
[   90.907638][ T6659]  </TASK>
[   91.479607][ T6662] loop1: detected capacity change from 0 to 512
[   91.607528][ T6662] EXT4-fs error (device loop1): __ext4_fill_super:5553: inode #2: comm syz.1.1138: casefold flag without casefold feature
[   91.639037][ T6669] $Hÿ: left promiscuous mode
[   91.644097][ T6669] bond_slave_0: left promiscuous mode
[   91.649600][ T6669] bond_slave_1: left promiscuous mode
[   91.721580][ T6662] EXT4-fs (loop1): get root inode failed
[   91.727308][ T6662] EXT4-fs (loop1): mount failed
[   91.731832][ T6669] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   91.743519][ T6669] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   91.809900][ T6687] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1145'.
[   91.858530][ T6666] 9p: Bad value for 'port'
[   91.941733][ T6699] siw: device registration error -23
[   92.947694][ T6733] loop1: detected capacity change from 0 to 128
[   93.063901][ T6733] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   93.236406][ T6752] netlink: 'syz.0.1156': attribute type 10 has an invalid length.
[   93.244616][ T6752] syz_tun: entered promiscuous mode
[   93.253031][ T6752] $Hÿ: (slave syz_tun): Enslaving as an active interface with an up link
[   93.382484][ T6769] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1157'.
[   93.405836][ T6776] $Hÿ: left promiscuous mode
[   93.410885][ T6776] bond_slave_0: left promiscuous mode
[   93.416581][ T6776] bond_slave_1: left promiscuous mode
[   93.422344][ T6776] syz_tun: left promiscuous mode
[   93.442113][ T6776] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   93.452403][ T6776] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   93.588228][ T6783] $Hÿ: entered promiscuous mode
[   93.593455][ T6783] bond_slave_0: entered promiscuous mode
[   93.599245][ T6783] bond_slave_1: entered promiscuous mode
[   93.607236][ T6789] loop4: detected capacity change from 0 to 1024
[   93.627082][ T6790] loop2: detected capacity change from 0 to 1024
[   93.663801][ T6790] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   93.664825][ T6789] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.722752][ T6790] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   93.765468][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.780134][ T6790] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   93.791741][ T6790] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   93.827743][ T6808] siw: device registration error -23
[   93.833511][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[   93.841732][ T6790] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   93.855937][ T6810] ALSA: seq fatal error: cannot create timer (-19)
[   93.871008][ T6790] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   93.871330][   T12] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:0: Failed to release dquot type 0
[   93.891842][ T6790] EXT4-fs (loop2): 1 orphan inode deleted
[   93.898389][ T6790] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.975382][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1172'.
[   93.988625][ T6833] EXT4-fs error (device loop2): ext4_lookup:1785: inode #16: comm syz.2.1162: iget: bad extra_isize 65535 (inode size 256)
[   94.206296][ T6835] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1173'.
[   94.510376][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.519887][   T39] __quota_error: 1749 callbacks suppressed
[   94.519905][   T39] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[   94.530498][ T6844] loop0: detected capacity change from 0 to 1024
[   94.534762][   T39] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 0
[   94.568270][ T6847] loop2: detected capacity change from 0 to 1024
[   94.593869][ T6844] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.617005][ T6844] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   94.638287][ T6844] Quota error (device loop0): write_blk: dquota write failed
[   94.645957][ T6844] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   94.668748][ T6844] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   94.709995][ T6844] EXT4-fs error (device loop0): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   94.747302][ T6844] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   94.753367][   T39] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-7
[   94.760815][ T6847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.768843][   T39] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 0
[   94.781528][ T6844] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   94.792734][   T29] audit: type=1400 audit(1766282565.346:8950): avc:  denied  { read } for  pid=6850 comm="syz.4.1179" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   94.824667][   T29] audit: type=1400 audit(1766282565.346:8951): avc:  denied  { open } for  pid=6850 comm="syz.4.1179" path="/dev/input/event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   94.832167][ T6844] EXT4-fs (loop0): 1 orphan inode deleted
[   94.849221][   T29] audit: type=1400 audit(1766282565.346:8952): avc:  denied  { ioctl } for  pid=6850 comm="syz.4.1179" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4590 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   94.855793][ T6844] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.895830][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.951446][   T29] audit: type=1326 audit(1766282565.576:8953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6856 comm="syz.2.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   94.951705][   T29] audit: type=1326 audit(1766282565.576:8954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6856 comm="syz.2.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   94.952661][   T29] audit: type=1326 audit(1766282565.576:8955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6856 comm="syz.2.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   95.028036][ T6858] EXT4-fs error (device loop0): ext4_lookup:1785: inode #16: comm syz.0.1177: iget: bad extra_isize 65535 (inode size 256)
[   95.052049][ T6857] siw: device registration error -23
[   95.142966][ T6864] loop2: detected capacity change from 0 to 2048
[   95.193879][ T6864] Alternate GPT is invalid, using primary GPT.
[   95.194001][ T6864]  loop2: p1 p2 p3
[   95.194010][ T6864] loop2: partition table partially beyond EOD, truncated
[   95.420030][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.429783][  T812] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:5: Failed to release dquot type 0
[   95.519289][ T6882] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1191'.
[   95.531090][ T6884] loop1: detected capacity change from 0 to 1024
[   95.538655][ T6884] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   95.551912][ T6884] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   95.571704][ T6884] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   95.586117][ T6884] EXT4-fs error (device loop1): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   95.600921][ T6884] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   95.614522][ T6884] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   95.623208][   T39] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 0
[   95.623481][ T6884] EXT4-fs (loop1): 1 orphan inode deleted
[   95.641396][ T6884] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.735504][ T6894] EXT4-fs error (device loop1): ext4_lookup:1785: inode #16: comm syz.1.1193: iget: bad extra_isize 65535 (inode size 256)
[   95.771104][ T6896] loop0: detected capacity change from 0 to 512
[   95.795578][ T6896] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1197: error while reading EA inode 32 err=-116
[   95.841477][ T3556] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   95.855747][ T6896] EXT4-fs (loop0): Remounting filesystem read-only
[   95.855775][ T6896] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[   95.855808][ T6896] EXT4-fs (loop0): 1 orphan inode deleted
[   95.856393][ T6896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.913251][ T6904] atomic_op ffff88813b163d28 conn xmit_atomic 0000000000000000
[   95.950211][ T6905] loop3: detected capacity change from 0 to 1024
[   96.021568][ T6905] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.034600][ T6905] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   96.034757][ T6905] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   96.035057][ T6905] EXT4-fs error (device loop3): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   96.035195][ T6905] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   96.077789][  T885] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:6: Failed to release dquot type 0
[   96.152147][ T6905] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   96.152267][ T6905] EXT4-fs (loop3): 1 orphan inode deleted
[   96.152649][ T6905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.165567][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.302882][ T6917] EXT4-fs error (device loop3): ext4_lookup:1785: inode #16: comm syz.3.1200: iget: bad extra_isize 65535 (inode size 256)
[   96.460568][  T911] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:8: Failed to release dquot type 0
[   96.543438][ T6931] loop1: detected capacity change from 0 to 1024
[   96.552831][ T6932] siw: device registration error -23
[   96.599581][ T3643] Bluetooth: hci0: Frame reassembly failed (-84)
[   96.614165][ T6936] ALSA: seq fatal error: cannot create timer (-19)
[   96.805396][   T39] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 0
[   96.840387][ T6944] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   96.848796][ T6944] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   96.867937][ T6944] EXT4-fs: inline encryption not supported
[   96.876654][ T6944] EXT4-fs: Ignoring removed mblk_io_submit option
[   96.926896][ T6949] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   96.935430][ T6949] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   96.996774][ T6952] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.067687][ T6964] atomic_op ffff88813b161128 conn xmit_atomic 0000000000000000
[   97.281494][ T6976] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.294044][ T6976] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[   97.307570][ T6976] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[   97.324355][ T6976] EXT4-fs error (device loop3): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   97.342654][ T6976] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[   97.355219][ T6976] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   97.364073][   T39] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:2: Failed to release dquot type 0
[   97.366339][ T6976] EXT4-fs (loop3): 1 orphan inode deleted
[   97.389376][ T6981] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1225'.
[   97.478107][ T3326] EXT4-fs unmount: 12 callbacks suppressed
[   97.478129][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.507187][ T6985] $Hÿ: entered promiscuous mode
[   97.507267][ T6985] bond_slave_0: entered promiscuous mode
[   97.507346][ T6985] bond_slave_1: entered promiscuous mode
[   97.507457][ T6985] syz_tun: entered promiscuous mode
[   97.632853][ T6993] atomic_op ffff88813fa47928 conn xmit_atomic 0000000000000000
[   97.659660][ T6996] $Hÿ: left promiscuous mode
[   97.664617][ T6996] bond_slave_0: left promiscuous mode
[   97.664783][ T6996] bond_slave_1: left promiscuous mode
[   97.664866][ T6996] syz_tun: left promiscuous mode
[   97.665822][ T6996] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[   97.692273][ T6996] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   97.850472][ T7002] EXT4-fs: inline encryption not supported
[   97.851867][ T7002] EXT4-fs: Ignoring removed mblk_io_submit option
[   97.884152][ T7002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.929764][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.135501][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.514262][ T7023] set_capacity_and_notify: 6 callbacks suppressed
[   98.514281][ T7023] loop4: detected capacity change from 0 to 2048
[   98.548054][ T7023] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.611267][ T7023] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.641216][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[   98.641325][ T3556] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   98.764357][ T7030] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   98.909321][ T3318] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   98.920749][ T3318] CPU: 1 UID: 0 PID: 3318 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.920784][ T3318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.920800][ T3318] Call Trace:
[   98.920809][ T3318]  <TASK>
[   98.920819][ T3318]  __dump_stack+0x1d/0x30
[   98.920891][ T3318]  dump_stack_lvl+0xe8/0x140
[   98.920922][ T3318]  dump_stack+0x15/0x1b
[   98.920944][ T3318]  dump_header+0x81/0x240
[   98.920965][ T3318]  oom_kill_process+0x295/0x350
[   98.920994][ T3318]  out_of_memory+0x97b/0xb80
[   98.921046][ T3318]  try_charge_memcg+0x610/0xa10
[   98.921146][ T3318]  charge_memcg+0x51/0xc0
[   98.921185][ T3318]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   98.921227][ T3318]  __read_swap_cache_async+0x17b/0x2d0
[   98.921263][ T3318]  swap_cluster_readahead+0x362/0x3c0
[   98.921303][ T3318]  swapin_readahead+0xde/0x820
[   98.921418][ T3318]  ? next_uptodate_folio+0x81c/0x890
[   98.921451][ T3318]  ? percpu_counter_add_batch+0xb6/0x130
[   98.921509][ T3318]  ? __rcu_read_unlock+0x4f/0x70
[   98.921535][ T3318]  ? swap_cache_get_folio+0x277/0x280
[   98.921566][ T3318]  do_swap_page+0x2b4/0x21e0
[   98.921650][ T3318]  ? __pfx_default_wake_function+0x10/0x10
[   98.921692][ T3318]  handle_mm_fault+0x9d8/0x2c60
[   98.921798][ T3318]  do_user_addr_fault+0x630/0x1080
[   98.921835][ T3318]  exc_page_fault+0x62/0xa0
[   98.921869][ T3318]  asm_exc_page_fault+0x26/0x30
[   98.921893][ T3318] RIP: 0033:0x7f8b96235fd7
[   98.921921][ T3318] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 c8 f7 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d d9 f6 ea 00 48 01 d1 39 7c 24
[   98.921943][ T3318] RSP: 002b:00007ffe9b8ec440 EFLAGS: 00010202
[   98.921964][ T3318] RAX: 0000001b33a24000 RBX: 0000000000000242 RCX: 0000000000017ed0
[   98.921980][ T3318] RDX: 000000000d7bb848 RSI: 00007ffe9b8ec4d0 RDI: 0000000000000014
[   98.921996][ T3318] RBP: 00007ffe9b8ec47c R08: 00000000336f442c R09: 7fffffffffffffff
[   98.922011][ T3318] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   98.922026][ T3318] R13: 00000000000927c0 R14: 0000000000018098 R15: 00007ffe9b8ec4d0
[   98.922066][ T3318]  </TASK>
[   99.131978][ T3318] memory: usage 307200kB, limit 307200kB, failcnt 1102
[   99.138905][ T3318] memory+swap: usage 319072kB, limit 9007199254740988kB, failcnt 0
[   99.146887][ T3318] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   99.154335][ T3318] Memory cgroup stats for 
[   99.158771][ T3318] /syz1:
[   99.159200][ T3318] cache 0
[   99.165057][ T3318] rss 0
[   99.167828][ T3318] shmem 0
[   99.170772][ T3318] mapped_file 0
[   99.174468][ T3318] dirty 0
[   99.177512][ T3318] writeback 0
[   99.180899][ T3318] workingset_refault_anon 119
[   99.185748][ T3318] workingset_refault_file 975
[   99.190436][ T3318] swap 12156928
[   99.194049][ T3318] swapcached 0
[   99.197503][ T3318] pgpgin 85589
[   99.200972][ T3318] pgpgout 85589
[   99.204469][ T3318] pgfault 99918
[   99.207954][ T3318] pgmajfault 95
[   99.211560][ T3318] inactive_anon 0
[   99.215284][ T3318] active_anon 0
[   99.218756][ T3318] inactive_file 0
[   99.222443][ T3318] active_file 0
[   99.225915][ T3318] unevictable 0
[   99.229450][ T3318] hierarchical_memory_limit 314572800
[   99.234871][ T3318] hierarchical_memsw_limit 9223372036854771712
[   99.241042][ T3318] total_cache 0
[   99.244588][ T3318] total_rss 0
[   99.247892][ T3318] total_shmem 0
[   99.251541][ T3318] total_mapped_file 0
[   99.255582][ T3318] total_dirty 0
[   99.259493][ T3318] total_writeback 0
[   99.263580][ T3318] total_workingset_refault_anon 119
[   99.268790][ T3318] total_workingset_refault_file 975
[   99.274026][ T3318] total_swap 12156928
[   99.278034][ T3318] total_swapcached 0
[   99.282138][ T3318] total_pgpgin 85589
[   99.286232][ T3318] total_pgpgout 85589
[   99.290318][ T3318] total_pgfault 99918
[   99.294406][ T3318] total_pgmajfault 95
[   99.298400][ T3318] total_inactive_anon 0
[   99.302632][ T3318] total_active_anon 0
[   99.306794][ T3318] total_inactive_file 0
[   99.310961][ T3318] total_active_file 0
[   99.315120][ T3318] total_unevictable 0
[   99.319191][ T3318] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1237,pid=7013,uid=0
[   99.333932][ T3318] Memory cgroup out of memory: Killed process 7013 (syz.1.1237) total-vm:96148kB, anon-rss:1264kB, file-rss:22464kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[   99.351502][ T7034] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   99.368170][ T7043] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   99.376758][ T7043] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   99.442056][ T7014] syz.1.1237 (7014) used greatest stack depth: 6408 bytes left
[   99.507182][ T7051] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1249'.
[   99.572074][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.604953][   T29] kauditd_printk_skb: 378 callbacks suppressed
[   99.604971][   T29] audit: type=1326 audit(1766282570.226:9322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.658646][ T7064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1255'.
[   99.662315][   T29] audit: type=1326 audit(1766282570.256:9323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.691153][   T29] audit: type=1326 audit(1766282570.256:9324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.714801][   T29] audit: type=1326 audit(1766282570.256:9325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.721894][ T7060] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   99.738526][   T29] audit: type=1326 audit(1766282570.256:9326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.738565][   T29] audit: type=1326 audit(1766282570.266:9327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.746767][ T7060] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   99.770162][   T29] audit: type=1326 audit(1766282570.266:9328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.770215][   T29] audit: type=1326 audit(1766282570.266:9329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.821079][ T7064] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1255'.
[   99.826187][   T29] audit: type=1326 audit(1766282570.266:9330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.882313][   T29] audit: type=1326 audit(1766282570.266:9331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.2.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[   99.912137][ T7064] loop3: detected capacity change from 0 to 512
[   99.945174][ T7064] EXT4-fs: inline encryption not supported
[   99.952366][ T7064] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  100.004076][ T7072] FAULT_INJECTION: forcing a failure.
[  100.004076][ T7072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.017233][ T7072] CPU: 0 UID: 0 PID: 7072 Comm: syz.2.1258 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.017337][ T7072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  100.017352][ T7072] Call Trace:
[  100.017361][ T7072]  <TASK>
[  100.017370][ T7072]  __dump_stack+0x1d/0x30
[  100.017410][ T7072]  dump_stack_lvl+0xe8/0x140
[  100.017433][ T7072]  dump_stack+0x15/0x1b
[  100.017501][ T7072]  should_fail_ex+0x265/0x280
[  100.017529][ T7072]  should_fail+0xb/0x20
[  100.017614][ T7072]  should_fail_usercopy+0x1a/0x20
[  100.017641][ T7072]  strncpy_from_user+0x27/0x260
[  100.017681][ T7072]  getname_flags+0xae/0x3b0
[  100.017717][ T7072]  __se_sys_move_mount+0x2dc/0x490
[  100.017799][ T7072]  __x64_sys_move_mount+0x67/0x80
[  100.017822][ T7072]  x64_sys_call+0x2a99/0x3000
[  100.017846][ T7072]  do_syscall_64+0xd8/0x2c0
[  100.017883][ T7072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.017968][ T7072] RIP: 0033:0x7fe830f6f749
[  100.017985][ T7072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.018007][ T7072] RSP: 002b:00007fe82f9cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[  100.018029][ T7072] RAX: ffffffffffffffda RBX: 00007fe8311c5fa0 RCX: 00007fe830f6f749
[  100.018044][ T7072] RDX: ffffffffffffff9c RSI: 0000200000000140 RDI: ffffffffffffffff
[  100.018059][ T7072] RBP: 00007fe82f9cf090 R08: 0000000000000262 R09: 0000000000000000
[  100.018124][ T7072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.018178][ T7072] R13: 00007fe8311c6038 R14: 00007fe8311c5fa0 R15: 00007ffd4bc45528
[  100.018200][ T7072]  </TASK>
[  100.287505][ T7084] loop3: detected capacity change from 0 to 512
[  100.298556][ T7084] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.326271][ T7084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.339424][ T7084] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  100.364777][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.479867][ T7098] netlink: 'syz.1.1270': attribute type 13 has an invalid length.
[  100.489939][ T7098] gretap0: refused to change device tx_queue_len
[  100.498968][ T7098] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  100.520980][ T7098] sd 0:0:1:0: device reset
[  100.533330][ T7100] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1269'.
[  100.590866][ T7105] netlink: 'syz.4.1271': attribute type 13 has an invalid length.
[  100.615442][ T7105] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[  100.633073][ T7105] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.714266][ T7119] loop1: detected capacity change from 0 to 512
[  100.722588][ T7115] FAULT_INJECTION: forcing a failure.
[  100.722588][ T7115] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.736009][ T7115] CPU: 1 UID: 0 PID: 7115 Comm: syz.0.1273 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.736042][ T7115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  100.736056][ T7115] Call Trace:
[  100.736063][ T7115]  <TASK>
[  100.736072][ T7115]  __dump_stack+0x1d/0x30
[  100.736101][ T7115]  dump_stack_lvl+0xe8/0x140
[  100.736162][ T7115]  dump_stack+0x15/0x1b
[  100.736182][ T7115]  should_fail_ex+0x265/0x280
[  100.736209][ T7115]  should_fail+0xb/0x20
[  100.736327][ T7115]  should_fail_usercopy+0x1a/0x20
[  100.736368][ T7115]  _copy_from_user+0x1c/0xb0
[  100.736445][ T7115]  ___sys_sendmsg+0xc1/0x1d0
[  100.736490][ T7115]  __x64_sys_sendmsg+0xd4/0x160
[  100.736523][ T7115]  x64_sys_call+0x17ba/0x3000
[  100.736546][ T7115]  do_syscall_64+0xd8/0x2c0
[  100.736620][ T7115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.736641][ T7115] RIP: 0033:0x7fe0f2aef749
[  100.736657][ T7115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.736686][ T7115] RSP: 002b:00007fe0f154f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.736750][ T7115] RAX: ffffffffffffffda RBX: 00007fe0f2d45fa0 RCX: 00007fe0f2aef749
[  100.736834][ T7115] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000009
[  100.736850][ T7115] RBP: 00007fe0f154f090 R08: 0000000000000000 R09: 0000000000000000
[  100.736863][ T7115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.736879][ T7115] R13: 00007fe0f2d46038 R14: 00007fe0f2d45fa0 R15: 00007ffdd4386568
[  100.736901][ T7115]  </TASK>
[  100.939455][ T7119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.965083][ T7119] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.171668][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.282704][ T7161] siw: device registration error -23
[  101.316950][ T7163] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  101.325237][ T7163] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  101.340536][ T7163] loop3: detected capacity change from 0 to 1024
[  101.347985][ T7163] EXT4-fs: inline encryption not supported
[  101.358157][ T7163] EXT4-fs: Ignoring removed mblk_io_submit option
[  101.375319][ T7163] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.403840][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.406629][ T7169] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  101.421356][ T7169] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  101.445406][ T7172] FAULT_INJECTION: forcing a failure.
[  101.445406][ T7172] name failslab, interval 1, probability 0, space 0, times 0
[  101.458184][ T7172] CPU: 0 UID: 0 PID: 7172 Comm: syz.3.1285 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  101.458217][ T7172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  101.458232][ T7172] Call Trace:
[  101.458240][ T7172]  <TASK>
[  101.458250][ T7172]  __dump_stack+0x1d/0x30
[  101.458356][ T7172]  dump_stack_lvl+0xe8/0x140
[  101.458403][ T7172]  dump_stack+0x15/0x1b
[  101.458427][ T7172]  should_fail_ex+0x265/0x280
[  101.458513][ T7172]  should_failslab+0x8c/0xb0
[  101.458540][ T7172]  kmem_cache_alloc_noprof+0x69/0x4b0
[  101.458567][ T7172]  ? __kernfs_new_node+0x70/0x3a0
[  101.458658][ T7172]  __kernfs_new_node+0x70/0x3a0
[  101.458691][ T7172]  ? __rcu_read_unlock+0x4f/0x70
[  101.458760][ T7172]  ? __rcu_read_unlock+0x4f/0x70
[  101.458783][ T7172]  ? kernfs_next_descendant_post+0x148/0x1a0
[  101.458874][ T7172]  kernfs_new_node+0xd0/0x140
[  101.458908][ T7172]  kernfs_create_link+0x70/0x130
[  101.458932][ T7172]  sysfs_do_create_link_sd+0x6a/0x100
[  101.459038][ T7172]  sysfs_create_link+0x51/0x70
[  101.459145][ T7172]  driver_sysfs_add+0x98/0x160
[  101.459178][ T7172]  really_probe+0xf6/0x5c0
[  101.459203][ T7172]  ? __driver_probe_device+0x116/0x190
[  101.459230][ T7172]  __driver_probe_device+0x121/0x190
[  101.459346][ T7172]  driver_probe_device+0x37/0x2f0
[  101.459433][ T7172]  __device_attach_driver+0x205/0x310
[  101.459459][ T7172]  ? __pfx___device_attach_driver+0x10/0x10
[  101.459498][ T7172]  bus_for_each_drv+0x1c0/0x230
[  101.459525][ T7172]  __device_attach+0x1c7/0x290
[  101.459613][ T7172]  device_attach+0x17/0x20
[  101.459638][ T7172]  proc_ioctl+0x2f7/0x400
[  101.459698][ T7172]  proc_ioctl_default+0x71/0xa0
[  101.459725][ T7172]  usbdev_ioctl+0xe8b/0x1700
[  101.459755][ T7172]  ? __pfx_usbdev_ioctl+0x10/0x10
[  101.459782][ T7172]  __se_sys_ioctl+0xce/0x140
[  101.459844][ T7172]  __x64_sys_ioctl+0x43/0x50
[  101.459936][ T7172]  x64_sys_call+0x14b0/0x3000
[  101.459961][ T7172]  do_syscall_64+0xd8/0x2c0
[  101.460022][ T7172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.460049][ T7172] RIP: 0033:0x7f14e516f749
[  101.460067][ T7172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.460090][ T7172] RSP: 002b:00007f14e3bd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  101.460117][ T7172] RAX: ffffffffffffffda RBX: 00007f14e53c5fa0 RCX: 00007f14e516f749
[  101.460198][ T7172] RDX: 0000200000000000 RSI: 00000000c0105512 RDI: 0000000000000003
[  101.460213][ T7172] RBP: 00007f14e3bd7090 R08: 0000000000000000 R09: 0000000000000000
[  101.460225][ T7172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.460237][ T7172] R13: 00007f14e53c6038 R14: 00007f14e53c5fa0 R15: 00007ffd79ff22d8
[  101.460256][ T7172]  </TASK>
[  101.731549][ T7172] hub 9-0:1.0: really_probe: driver_sysfs_add failed
[  101.752222][ T7169] loop2: detected capacity change from 0 to 1024
[  101.761633][ T7169] EXT4-fs: inline encryption not supported
[  101.775341][ T7169] EXT4-fs: Ignoring removed mblk_io_submit option
[  101.793598][ T7169] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.819309][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.855160][ T7180] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  101.938686][ T7184] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  101.947163][ T7184] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  102.079314][ T7194] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1293'.
[  102.325743][ T7215] loop2: detected capacity change from 0 to 128
[  102.456510][ T7229] loop2: detected capacity change from 0 to 1024
[  102.463989][ T7229] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.476761][ T7229] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[  102.490063][ T7229] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[  102.501543][ T7229] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  102.516904][ T7229] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  102.529784][ T7229] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  102.538752][ T7229] EXT4-fs (loop2): 1 orphan inode deleted
[  102.545512][ T7229] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.559959][ T2883] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:10: Failed to release dquot type 0
[  102.841559][ T7238] loop3: detected capacity change from 0 to 1024
[  102.857174][ T7238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.898638][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.335376][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.335544][ T2883] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:10: Failed to release dquot type 0
[  103.885834][ T7279] loop4: detected capacity change from 0 to 1024
[  103.897760][ T7279] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.943960][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.003501][ T7287] loop4: detected capacity change from 0 to 1024
[  104.010985][ T7287] EXT4-fs: inline encryption not supported
[  104.022273][ T7287] EXT4-fs: Ignoring removed mblk_io_submit option
[  104.038277][ T7287] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.113265][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.146426][ T7296] atomic_op ffff88813fa44928 conn xmit_atomic 0000000000000000
[  104.210697][ T7301] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  104.219082][ T7301] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  104.254908][ T7297] hub 2-0:1.0: USB hub found
[  104.259729][ T7297] hub 2-0:1.0: 8 ports detected
[  104.311045][ T7307] loop4: detected capacity change from 0 to 1024
[  104.324005][ T7310] loop1: detected capacity change from 0 to 1024
[  104.347588][ T7307] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.369348][ T7310] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.424338][ T7305] $Hÿ: entered promiscuous mode
[  104.429546][ T7305] bond_slave_0: entered promiscuous mode
[  104.435478][ T7305] bond_slave_1: entered promiscuous mode
[  104.441974][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.455030][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.523561][ T7324] loop1: detected capacity change from 0 to 1024
[  104.530869][ T7324] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.552095][ T7324] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[  104.565582][ T7324] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[  104.568388][ T7333] atomic_op ffff88813fa47128 conn xmit_atomic 0000000000000000
[  104.577384][ T7324] EXT4-fs error (device loop1): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  104.599835][ T7324] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  104.612558][ T2057] __quota_error: 2616 callbacks suppressed
[  104.612678][ T2057] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-7
[  104.614946][ T7324] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  104.618564][ T2057] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:9: Failed to release dquot type 0
[  104.627961][ T7324] EXT4-fs (loop1): 1 orphan inode deleted
[  104.654718][ T7324] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.685104][   T29] audit: type=1326 audit(1766282575.306:11942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.685221][   T29] audit: type=1326 audit(1766282575.306:11943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.733224][   T29] audit: type=1326 audit(1766282575.306:11944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.733261][   T29] audit: type=1326 audit(1766282575.306:11945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.733757][   T29] audit: type=1326 audit(1766282575.366:11946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.733913][   T29] audit: type=1326 audit(1766282575.366:11947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.740755][   T29] audit: type=1326 audit(1766282575.366:11948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.818991][ T7337] siw: device registration error -23
[  104.828760][   T29] audit: type=1326 audit(1766282575.386:11949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.881838][   T29] audit: type=1326 audit(1766282575.386:11950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7336 comm="syz.3.1342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e516f749 code=0x7ffc0000
[  104.927924][ T7340] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  104.927951][ T7340] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  105.161352][ T7350] loop0: detected capacity change from 0 to 1024
[  105.189640][ T7350] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.229197][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.354088][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.371714][  T898] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:7: Failed to release dquot type 0
[  105.386812][ T7360] loop4: detected capacity change from 0 to 1024
[  105.423815][ T7360] EXT4-fs: inline encryption not supported
[  105.432802][ T7360] EXT4-fs: Ignoring removed mblk_io_submit option
[  105.475285][ T7360] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.604409][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.647762][ T7365] wg1 speed is unknown, defaulting to 1000
[  105.654449][ T7365] lo speed is unknown, defaulting to 1000
[  105.665327][ T7381] FAULT_INJECTION: forcing a failure.
[  105.665327][ T7381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.678494][ T7381] CPU: 0 UID: 0 PID: 7381 Comm: syz.4.1358 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  105.678529][ T7381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  105.678545][ T7381] Call Trace:
[  105.678553][ T7381]  <TASK>
[  105.678570][ T7381]  __dump_stack+0x1d/0x30
[  105.678599][ T7381]  dump_stack_lvl+0xe8/0x140
[  105.678645][ T7381]  dump_stack+0x15/0x1b
[  105.678735][ T7381]  should_fail_ex+0x265/0x280
[  105.678765][ T7381]  should_fail+0xb/0x20
[  105.678789][ T7381]  should_fail_usercopy+0x1a/0x20
[  105.678814][ T7381]  strncpy_from_user+0x27/0x260
[  105.678857][ T7381]  getname_flags+0xae/0x3b0
[  105.678937][ T7381]  __se_sys_move_mount+0x2dc/0x490
[  105.678968][ T7381]  __x64_sys_move_mount+0x67/0x80
[  105.678996][ T7381]  x64_sys_call+0x2a99/0x3000
[  105.679020][ T7381]  do_syscall_64+0xd8/0x2c0
[  105.679167][ T7381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.679193][ T7381] RIP: 0033:0x7fb19a06f749
[  105.679211][ T7381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.679273][ T7381] RSP: 002b:00007fb198ad7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[  105.679293][ T7381] RAX: ffffffffffffffda RBX: 00007fb19a2c5fa0 RCX: 00007fb19a06f749
[  105.679307][ T7381] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: ffffffffffffffff
[  105.679322][ T7381] RBP: 00007fb198ad7090 R08: 0000000000000262 R09: 0000000000000000
[  105.679337][ T7381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.679408][ T7381] R13: 00007fb19a2c6038 R14: 00007fb19a2c5fa0 R15: 00007ffefd5bf948
[  105.679467][ T7381]  </TASK>
[  105.870981][ T7365] loop2: detected capacity change from 0 to 256
[  105.879897][ T7365] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  106.167786][ T7405] SELinux:  Context system_u:object_r:getty_etc_t:s0 is not valid (left unmapped).
[  106.340630][ T7409] netlink: 'syz.3.1369': attribute type 29 has an invalid length.
[  106.349931][ T7409] netlink: 'syz.3.1369': attribute type 29 has an invalid length.
[  106.359298][ T7409] netlink: 500 bytes leftover after parsing attributes in process `syz.3.1369'.
[  106.372716][ T7409] loop3: detected capacity change from 0 to 512
[  106.521460][ T7417] loop0: detected capacity change from 0 to 1024
[  106.530526][ T7417] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.563959][ T7417] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[  106.577485][ T7417] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[  106.589489][ T7417] EXT4-fs error (device loop0): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  106.603544][ T7417] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  106.616649][ T7417] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  106.626057][ T7417] EXT4-fs (loop0): 1 orphan inode deleted
[  106.632518][ T2057] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:9: Failed to release dquot type 0
[  106.632986][ T7417] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.687122][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.696720][  T898] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:7: Failed to release dquot type 0
[  106.826423][ T7430] siw: device registration error -23
[  106.950041][ T7446] atomic_op ffff8881432e8d28 conn xmit_atomic 0000000000000000
[  107.018877][ T7448] vfat: Unknown parameter '00000000000000000005'
[  107.506420][ T7455] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.521753][ T7455] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm +}[@: Invalid block bitmap block 0 in block_group 0
[  107.535345][ T7455] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm +}[@: Failed to acquire dquot type 0
[  107.560179][ T7455] EXT4-fs error (device loop3): ext4_free_blocks:6728: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  107.574283][ T7455] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  107.597121][ T2057] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:9: Failed to release dquot type 0
[  107.600008][ T7455] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  107.636052][ T7455] EXT4-fs (loop3): 1 orphan inode deleted
[  107.642823][ T7455] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.659206][ T7468] FAULT_INJECTION: forcing a failure.
[  107.659206][ T7468] name failslab, interval 1, probability 0, space 0, times 0
[  107.671994][ T7468] CPU: 1 UID: 0 PID: 7468 Comm: syz.1.1392 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  107.672038][ T7468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  107.672052][ T7468] Call Trace:
[  107.672059][ T7468]  <TASK>
[  107.672067][ T7468]  __dump_stack+0x1d/0x30
[  107.672098][ T7468]  dump_stack_lvl+0xe8/0x140
[  107.672126][ T7468]  dump_stack+0x15/0x1b
[  107.672161][ T7468]  should_fail_ex+0x265/0x280
[  107.672259][ T7468]  should_failslab+0x8c/0xb0
[  107.672309][ T7468]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[  107.672406][ T7468]  ? __alloc_skb+0x324/0x4d0
[  107.672433][ T7468]  __alloc_skb+0x324/0x4d0
[  107.672455][ T7468]  ? __alloc_skb+0x24d/0x4d0
[  107.672478][ T7468]  netlink_alloc_large_skb+0xbf/0xf0
[  107.672576][ T7468]  netlink_sendmsg+0x3cf/0x6b0
[  107.672611][ T7468]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.672690][ T7468]  __sock_sendmsg+0x145/0x180
[  107.672710][ T7468]  ____sys_sendmsg+0x31e/0x4a0
[  107.672745][ T7468]  ___sys_sendmsg+0x17b/0x1d0
[  107.672808][ T7468]  __x64_sys_sendmsg+0xd4/0x160
[  107.672918][ T7468]  x64_sys_call+0x17ba/0x3000
[  107.672942][ T7468]  do_syscall_64+0xd8/0x2c0
[  107.672975][ T7468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.673008][ T7468] RIP: 0033:0x7f8b9635f749
[  107.673027][ T7468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.673046][ T7468] RSP: 002b:00007f8b94dc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.673067][ T7468] RAX: ffffffffffffffda RBX: 00007f8b965b5fa0 RCX: 00007f8b9635f749
[  107.673082][ T7468] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  107.673098][ T7468] RBP: 00007f8b94dc7090 R08: 0000000000000000 R09: 0000000000000000
[  107.673169][ T7468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.673182][ T7468] R13: 00007f8b965b6038 R14: 00007f8b965b5fa0 R15: 00007ffe9b8ec0b8
[  107.673201][ T7468]  </TASK>
[  107.682876][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.722930][ T7470] atomic_op ffff8881432e8d28 conn xmit_atomic 0000000000000000
[  107.740492][ T2057] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:9: Failed to release dquot type 0
[  107.925046][ T7479] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  107.933297][ T7479] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  108.124090][ T7494] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1399'.
[  108.544718][ T7505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.790376][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.016017][ T7525] set_capacity_and_notify: 5 callbacks suppressed
[  109.016078][ T7525] loop1: detected capacity change from 0 to 512
[  109.030781][ T7525] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  109.030849][ T7525] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  109.062529][ T7525] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.1413: Allocating blocks 41-42 which overlap fs metadata
[  109.076639][ T7525] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.1413: Allocating blocks 41-42 which overlap fs metadata
[  109.076914][ T7525] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.1413: Failed to acquire dquot type 1
[  109.077124][ T7525] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  109.077410][ T7525] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.1413: corrupted inode contents
[  109.138911][ T7525] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #12: comm syz.1.1413: mark_inode_dirty error
[  109.139148][ T7525] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.1413: corrupted inode contents
[  109.139339][ T7525] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #12: comm syz.1.1413: mark_inode_dirty error
[  109.139636][ T7525] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.1413: corrupted inode contents
[  109.140116][ T7525] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  109.140308][ T7525] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.1413: corrupted inode contents
[  109.140445][ T7525] EXT4-fs error (device loop1): ext4_truncate:4635: inode #12: comm syz.1.1413: mark_inode_dirty error
[  109.155157][ T7525] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  109.155429][ T7525] EXT4-fs (loop1): 1 truncate cleaned up
[  109.155827][ T7525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.325835][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.534008][ T7552] atomic_op ffff888104758128 conn xmit_atomic 0000000000000000
[  109.715997][ T7570] loop4: detected capacity change from 0 to 128
[  109.723014][ T7570] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  109.747335][ T7570] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.788407][ T2883] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.789183][   T29] kauditd_printk_skb: 1065 callbacks suppressed
[  109.789200][   T29] audit: type=1326 audit(1766282580.406:13003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  109.827447][   T29] audit: type=1326 audit(1766282580.406:13004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  109.851421][   T29] audit: type=1326 audit(1766282580.446:13005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7573 comm="syz.4.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[  109.875152][   T29] audit: type=1326 audit(1766282580.446:13006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7573 comm="syz.4.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[  109.898879][   T29] audit: type=1326 audit(1766282580.446:13007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7573 comm="syz.4.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[  109.922476][   T29] audit: type=1326 audit(1766282580.446:13008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7573 comm="syz.4.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb19a06f749 code=0x7ffc0000
[  109.924663][ T7577] FAULT_INJECTION: forcing a failure.
[  109.924663][ T7577] name failslab, interval 1, probability 0, space 0, times 0
[  109.946361][   T29] audit: type=1326 audit(1766282580.466:13009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  109.959069][ T7577] CPU: 0 UID: 0 PID: 7577 Comm: syz.4.1432 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  109.959100][ T7577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  109.959114][ T7577] Call Trace:
[  109.959121][ T7577]  <TASK>
[  109.959131][ T7577]  __dump_stack+0x1d/0x30
[  109.959179][ T7577]  dump_stack_lvl+0xe8/0x140
[  109.959206][ T7577]  dump_stack+0x15/0x1b
[  109.959227][ T7577]  should_fail_ex+0x265/0x280
[  109.959252][ T7577]  should_failslab+0x8c/0xb0
[  109.959357][ T7577]  __kmalloc_cache_noprof+0x65/0x4c0
[  109.959383][ T7577]  ? nfnetlink_rcv+0x555/0x16c0
[  109.959411][ T7577]  nfnetlink_rcv+0x555/0x16c0
[  109.959454][ T7577]  ? __kfree_skb+0x109/0x150
[  109.959480][ T7577]  ? consume_skb+0x49/0x150
[  109.959515][ T7577]  ? nlmon_xmit+0x4f/0x60
[  109.959529][ T7577]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  109.959574][ T7577]  ? __dev_queue_xmit+0x138d/0x1ec0
[  109.959674][ T7577]  ? __dev_queue_xmit+0x148/0x1ec0
[  109.959704][ T7577]  ? ref_tracker_free+0x37d/0x3e0
[  109.959760][ T7577]  netlink_unicast+0x5c0/0x690
[  109.959791][ T7577]  netlink_sendmsg+0x58b/0x6b0
[  109.959878][ T7577]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.959911][ T7577]  __sock_sendmsg+0x145/0x180
[  109.959932][ T7577]  ____sys_sendmsg+0x31e/0x4a0
[  109.959966][ T7577]  ___sys_sendmsg+0x17b/0x1d0
[  109.960006][ T7577]  __x64_sys_sendmsg+0xd4/0x160
[  109.960038][ T7577]  x64_sys_call+0x17ba/0x3000
[  109.960095][ T7577]  do_syscall_64+0xd8/0x2c0
[  109.960129][ T7577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.960152][ T7577] RIP: 0033:0x7fb19a06f749
[  109.960169][ T7577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.960204][ T7577] RSP: 002b:00007fb198aae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.960225][ T7577] RAX: ffffffffffffffda RBX: 00007fb19a2c6090 RCX: 00007fb19a06f749
[  109.960240][ T7577] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 000000000000000a
[  109.960253][ T7577] RBP: 00007fb198aae090 R08: 0000000000000000 R09: 0000000000000000
[  109.960267][ T7577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.960280][ T7577] R13: 00007fb19a2c6128 R14: 00007fb19a2c6090 R15: 00007ffefd5bf948
[  109.960299][ T7577]  </TASK>
[  110.026904][ T7579] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1433'.
[  110.031532][   T29] audit: type=1326 audit(1766282580.466:13010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  110.031570][   T29] audit: type=1326 audit(1766282580.466:13011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  110.036890][ T7579] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1433'.
[  110.271944][   T29] audit: type=1326 audit(1766282580.466:13012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7571 comm="syz.2.1430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe830f6f749 code=0x7ffc0000
[  110.318418][ T7583] siw: device registration error -23
[  110.341330][ T7581] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  110.349613][ T7581] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  110.463172][ T7588] loop0: detected capacity change from 0 to 1024
[  110.469845][ T7592] loop2: detected capacity change from 0 to 1024
[  110.506603][ T7588] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.510306][ T7595] loop3: detected capacity change from 0 to 1024
[  110.533086][ T7595] EXT4-fs: inline encryption not supported
[  110.539144][ T7595] EXT4-fs: Ignoring removed mblk_io_submit option
[  110.546687][ T7588] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1437: Invalid block bitmap block 0 in block_group 0
[  110.561796][ T7588] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.1437: Failed to acquire dquot type 0
[  110.583292][ T2057] ==================================================================
[  110.591616][ T2057] BUG: KCSAN: data-race in n_tty_receive_char_flow_ctrl / tty_set_termios
[  110.594004][ T7588] EXT4-fs error (device loop0): ext4_free_blocks:6728: comm syz.0.1437: Freeing blocks not in datazone - block = 0, count = 4096
[  110.600172][ T2057] 
[  110.600185][ T2057] write to 0xffff88811b854d08 of 44 bytes by task 7604 on cpu 1:
[  110.600206][ T2057]  tty_set_termios+0xc0/0x8c0
[  110.614224][ T7592] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.615995][ T2057]  set_termios+0x490/0x4d0
[  110.644983][ T2057]  tty_mode_ioctl+0x379/0x5c0
[  110.649731][ T2057]  n_tty_ioctl_helper+0x91/0x210
[  110.654717][ T2057]  n_tty_ioctl+0x101/0x230
[  110.659226][ T2057]  tty_ioctl+0x83f/0xb80
[  110.663748][ T2057]  __se_sys_ioctl+0xce/0x140
[  110.668454][ T2057]  __x64_sys_ioctl+0x43/0x50
[  110.673161][ T2057]  x64_sys_call+0x14b0/0x3000
[  110.677860][ T2057]  do_syscall_64+0xd8/0x2c0
[  110.682390][ T2057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.688292][ T2057] 
[  110.690619][ T2057] read to 0xffff88811b854d21 of 1 bytes by task 2057 on cpu 0:
[  110.698162][ T2057]  n_tty_receive_char_flow_ctrl+0x23/0x1d0
[  110.704076][ T2057]  n_tty_lookahead_flow_ctrl+0xed/0x130
[  110.709637][ T2057]  tty_port_default_lookahead_buf+0x91/0xc0
[  110.715629][ T2057]  flush_to_ldisc+0x288/0x340
[  110.720315][ T2057]  process_scheduled_works+0x4ce/0x9d0
[  110.725786][ T2057]  worker_thread+0x582/0x770
[  110.730392][ T2057]  kthread+0x489/0x510
[  110.734648][ T2057]  ret_from_fork+0x149/0x290
[  110.739252][ T2057]  ret_from_fork_asm+0x1a/0x30
[  110.744028][ T2057] 
[  110.746458][ T2057] value changed: 0x11 -> 0x92
[  110.751131][ T2057] 
[  110.753458][ T2057] Reported by Kernel Concurrency Sanitizer on:
[  110.759606][ T2057] CPU: 0 UID: 0 PID: 2057 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  110.769595][ T2057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  110.779656][ T2057] Workqueue: events_unbound flush_to_ldisc
[  110.785476][ T2057] ==================================================================
[  110.809664][ T7595] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.829165][ T7588] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.1437: Invalid inode bitmap blk 0 in block_group 0
[  110.842386][  T911] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:8: Failed to release dquot type 0
[  110.854065][ T7588] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  110.863823][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.872980][ T7588] EXT4-fs (loop0): 1 orphan inode deleted
[  110.880298][ T7588] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.897225][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.925416][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.934820][ T2057] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:9: Failed to release dquot type 0