last executing test programs:

2.515311432s ago: executing program 3 (id=1473):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa4bac0a17a4e486dd6000000000140600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50020011907800035dde8fb78109dd1678b8b447dcabfa0583800abf73ce12f8f034605b92052565abdfedb1688a0196bdb35e25637854d6a3cb41ab1f"], 0x0)

2.33571311s ago: executing program 3 (id=1475):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000380)={'vcan0\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000002580), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x6}, 0x18)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r4, &(0x7f0000000380)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f3800010000000200000003000000970f000004000000000000000d00000000000000c801000000000000e2"], 0x178)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x1ffffffffffffffd}, 0x18)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0xc8, @empty, 0x4000}, 0x1c)
setsockopt$sock_linger(r6, 0x1, 0x3d, &(0x7f00000001c0)={0xb}, 0x8)
sendmmsg$sock(r6, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="3157b081", 0x4}], 0x1, &(0x7f00000000c0)=[@txtime={{0x18, 0x1, 0x3d, 0x6d21}}], 0x18}}], 0x1, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1, 0xa}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x4)
close(r4)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
recvmmsg(r1, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/41, 0x29}, {&(0x7f0000000040)=""/26, 0x1a}, {&(0x7f0000000380)=""/4096, 0x1000}], 0x3, &(0x7f0000001380)=""/4096, 0x1000}, 0x3}, {{&(0x7f00000000c0)=@qipcrtr, 0x80, &(0x7f0000002480)=[{&(0x7f0000000140)=""/92, 0x5c}, {&(0x7f00000001c0)=""/187, 0xbb}, {&(0x7f0000000300)=""/57, 0x39}, {&(0x7f0000002380)=""/193, 0xc1}], 0x4}, 0xc83}], 0x2, 0x2000, &(0x7f0000002540))
write(r0, &(0x7f0000000280)="e8bd8a4c56281ba2ba42cfa5b9fe5fc6dcde2ee431f5595ceadb9a2c95e57f15ee4a83f9e7d78ea996f78bd588bedcdbc730d6d15df6d2a26ca4e55e97ed0522a190ce241a37bad3317fba7e4be3dbbfec5e2f401b5658cc8fda", 0xffffffe5)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000340)={0x1, 0xb, 0x9, 0xfffffffd, 0x8, "3bc9a3558fc50251a1a8a1000000ddff00", 0x3, 0xcb})

1.384489704s ago: executing program 3 (id=1495):
write$selinux_load(0xffffffffffffffff, 0x0, 0xffaf)
r0 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723ae6ffffffffffffff3a73302030"], 0x56)

1.372481435s ago: executing program 3 (id=1497):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='\b\f\x00\x00\x00', @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYRES16=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xb8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES8=r1, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024000000"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000004c0)='./bus\x00', 0x2008042, &(0x7f0000000500)={[{@orlov}, {@discard}]}, 0x1, 0x57c, &(0x7f0000000dc0)="$eJzs3c9vHFcdAPDvjH82SesEeoAKSIBCQFHW8aaNql5aLiBUVUJUHBCH1Ngby2SdDV671CZS3b8BJJA4wZ/AAYkDUk8cuHFE4gCIckAqYIESJA6DZjy72WzWyda73m28n480mTfzZub7ntcz7+1bZ18AE+tCROxFxGxEvBkRC+X+pFzi1YMlP+7u/p2Ve/t3VpLIsjf+mRT5d/fT9rWScn26vOZ8RHzzaxHfTR6O29zZvblcr9c2y+3FrY3bi82d3cvrG8trtbXarWr12tK1Ky9dfbE6tLqe3/jlB19df+1bv/n1p9///d6Xf5gX60yZl9dtaIE6HFR9ph0nNx0Rrx1HsDGYKtezYy4HR5PfvR+LiM8V9/9CTBW/nQDASZZlC5EtdG4DACddWoyBJWklItLWUF7lYAzv2TiV1hvNrUs3Gtu3Vg/Gys7GTHpjvV67cm7uj98vDp5J8u2lIq/IL7arXdtXI+JcRPx47qliu7LSqK+Op8sDABPvdGf7HxH/mUvTSqWvU3t8qgcAPDHmx10AAGDktP8AMHm0/wAwefpo/8sP+/eOvSwAwGh4/w8Ak0f7DwCTR/sPABPlG6+/ni/ZvfL7r1ff2tm+2Xjr8mqtebOysb1SWWls3q6sNRprxXf2bDzuevVG4/bSC7H99uJWrbm12NzZvb7R2L61db34Xu/rtZmR1AoAeJRz59/7QxIRey8/VSzRMZeDthpOtnSIRwFPlqlBTtZBgCea2b5gcvXVhBedhN8de1mA8ej5Zd7zPZMP+umHCOLvjOAj5eIn+x//N8cznCxG9mFyHW38/5WhlwMYvSOP//95uOUARi/Lku45/2fbWQDAiTTAn/Bl7wyrEwKM1eMm8x7K5/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwwpyJiO9FklaKucDT/N+0Uol4OiLOxkxyY71euxIRz8T5iJiZy7eXxl1oAGBA6d+Tcv6viwvPn+nOnU3+O1esI+IHP3vjJ28vb21tLuX7/9XeP9eaPqx6/7wB5hUEAPr3134OKtrvarnueCN/d//OSms5xjI+5IOvtCcfXbm3f6dYDnKmI8uyLGK+6Euc+ncS0+U58xHxXERMDSH+3rsR8Yle9U+KsZGz5cynnfGjjP30SOOnD8RPi7yDdf7j+/gQygKT5r38+fNq9/03VdxZF4ojet//88UTanDF828+ovXsu//8a93v80VpuuPn9/yFfmO88NuvP7QzWzjIezfiuele8ZN2/OSQ+M/3Gf9Pn/rMj145JC/7ecTF6B2/M9bi1sbtxebO7uX1jeW12lrtVrV6benalZeuvlhdLMaoF1sj1Q/7x8uXnjmsbHn9Tx0S/+CVP91V/9n2uV/os/6/+N+b3/ns/c257vhf+nzv1//ZYt3755+3iV/sM/7yqV91T9+90Bl/9ZD6P+71v9Rn/Pf/trva56EAwAg0d3ZvLtfrkZaJ2uZREvm70A9/VpZl7+RleMQxeXZ/F2x1FweoRW2z+ZcoEtHek0QSg1ywVyLvjPVz8MzA1Xkg0RouGXZ1eiSm233F4V7524/+bemZmBuwyunQa3GURJwtE3dHFXQsjyNghO7f9OMuCQAAAAAAAAAAAAAAcJhR/B+mcdcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAk+v/AQAA//9pT7sl")
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
link(0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
readlink(&(0x7f00000005c0)='./bus\x00', &(0x7f0000000640)=""/6, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000540)='sys_exit\x00', r1}, 0x18)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYRESOCT=r0, @ANYRES16=r2, @ANYRES32=r3], 0x90}}, 0x4000000)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
getsockopt$inet6_mreq(r5, 0x29, 0x14, &(0x7f0000000380)={@mcast1, <r7=>0x0}, &(0x7f00000003c0)=0x14)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32=r6, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', r7, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x10)
readahead(0xffffffffffffffff, 0x100, 0xb3e32e0)
setregid(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setreuid(0x0, 0xee00)

1.349851867s ago: executing program 2 (id=1498):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYRES8=r0], 0xdc}, 0x1, 0x0, 0x0, 0x20008014}, 0x10040080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, 0x0, 0x91edf5a19730d98f, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x48845)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r2, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0xffffffff)
write(r3, &(0x7f00000000c0)="240000005a001f001007f4f9002304000a04f51108000400020100020800038005000000", 0x24)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000780)=ANY=[@ANYRES16=r5], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000002c0)=r4}, 0x20)
fsopen(&(0x7f0000000280)='aufs\x00', 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
r8 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x1294, 0x2, 0x5})
mq_getsetattr(r8, &(0x7f0000000000)={0x800, 0x4, 0x9, 0x9a}, 0x0)
mq_timedreceive(r8, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
mq_timedreceive(r8, &(0x7f0000000080)=""/87, 0x57, 0x1000002, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, 0x0, &(0x7f0000000300))
faccessat(r7, &(0x7f0000000000)='./file0\x00', 0x5)
socket$nl_generic(0x10, 0x3, 0x10)

1.134431168s ago: executing program 1 (id=1499):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x8000000000000000}, 0x18)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000300)={0xa, 0x4e1d, 0x9, @mcast2, 0x2}, 0x1c)

1.134068138s ago: executing program 1 (id=1500):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa4bac0a17a4e486dd6000000000140600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50020011907800035dde8fb78109dd1678b8b447dcabfa0583800abf73ce12f8f034605b92052565abdfedb1688a0196bdb35e25637854d6a3cb41ab1f"], 0x0)

1.080070414s ago: executing program 1 (id=1501):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

1.079535834s ago: executing program 2 (id=1502):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000080)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="12000000080000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1008002, &(0x7f0000000140)={[{@noauto_da_alloc}, {@grpquota}, {@grpjquota}, {@barrier}, {@dioread_nolock}, {@nodiscard}, {@nomblk_io_submit}, {@nodiscard}]}, 0x81, 0x601, &(0x7f00000011c0)="$eJzs3c9vFFUcAPDv7LalpWgLMSoepIkxkCgtLWCI8QBXQxr8ES8etNKCSIGG1mjRhJLgxcR4McbEkwfxv1AiVy7qyYMXT4aEKOFo4prd7pRuO7ttt+0OYT6fZOnMvB3ed7r97nsz+95sAIU1VP2nFLE3ImaSiIFkYamsK+qFQ4vPu3/v09PVRxKVyht/J5HUt6XPT+o/++s790bErz8nsae8ut7Z+SvnJ6anpy7X10fmLsyMzM5fOXjuwsTZqbNTF8deGjt29MjRY6OH2jquqxnbTl7/4KOBz8ff/v7bf5PRH/4YT+J4vFp/4vLj2CpDMVT7nSSri/qPbXVlOSnX/06Wv8RJV44BsSHp69cdEU/FQJTjwYs3EJ+9lmtwwLaqJBEVoKAS+Q8FlfYD0nP7lefBpVx6JUAn3D2xeAFgdf53LV4bjN7atYGd95NYflkniYj2rsw12hURt2+NXz9za/x6bNN1OCDbwrWIeDor/5Na/g9GbwzW8r/UkP/VfsGp+s/q9te3KJ618l9/BLbOYv73tsz/aJL/7y7L//farH/oweL7fQ3539fuIQEAAAAAAEBh3TwRES9mff5fWhr/Exnjf/oj4vgW1D+0Yn315/+lO1tQDZDh7omIVzLH/5bS0TaD5WVrg9GdnDk3PXUoIh6PiAPRvaO6PtqijoNf7PmmWdlQffxf+qjWf7s+FrAex52uHY37TE7MTWz2uIGIu9cinskc/5sstf9JRvtffS+YWWcde56/capZ2dr5D2yXyncR+zPb/wd3rUha359jpNYfGEl7Bas9+8mXPzarv938d4sJ2Lxq+7+zdf4PJsvv1zO78ToOz3dVmpW12//vSd6s3XKmp77t44m5ucujET3JyXJ1a8P2sY3HDI+iNB/SfKnm/4HnWl//y+r/90XEwor/O/mncU5x6sn/+v9sFo/+P+Snmv+TG2r/N74wdmPwp2b1p/mfNvHZ7f+RWlt/oL5lMuN+glBEX6dp2tO4PSMdu7KKOh0vAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwKShGxK5LS8NJyqTQ8HNEfEU/EztL0pdm5F85c+vDiZLWs9v3/pfSbfgcW15P0+/8Hl62PrVg/HBG7I+Krcl9tffj0penJvA8eAAAAAAAAAAAAAAAAAAAAHhL9Teb/V/1Vzjs6YNt15R0AkJuM/P8tjziAztP+Q3G1zP937nUuEKDj1tP+93YgDqDz9P+huOQ/FNfq/G/1yf+9SqWyreEAHaT9h+KS/wAAAAAA8EjZve/m70lELLzcV3tU9dTLunONDNhupbwDAHLjFj9QXIb+QHE5xweSNcozp/8n69mzlZnTm9gZAAAAAAAAAAAAAApn/17z/6GozP+H4jL/H4ornf+/L+c4gM5zjg/EGjP5V83/L69nLwAAAAAAAAAAAABgK83OXzk/MT09ddnCW23u/stjEbkH395CpVK5Wv0reFjieQgWdmxi93QofP5HkbmQzvVb3175vScBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACN/g8AAP//Z+EiqQ==")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x4e8, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)

959.616285ms ago: executing program 2 (id=1503):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="50000000090601026017413400000000030000000900020073797a31000000000500010007000000280007800c000180"], 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)="cb86103f245d0103000000000000003d15018cabad1f2b3bc93539f356abeae36912bbce6cdf8fe2cfbac28e7d92fcbd2b34d8180e801ad75ef535377304eaba985f69570866fdd712323c37b7b3160353ab64ccf7cb2485da5d333f5f0c144ddb294adab18db10be69bf42ee7e41195d6e9dc75c3709fa18f04", &(0x7f00000001c0), 0xfffff, r0, 0x4}, 0x38)
r1 = socket(0x18, 0x3, 0x0)
unshare(0x2040400)
bind$pptp(r1, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000e40)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r2, 0x0, 0x6}, 0x18)
mq_open(&(0x7f0000002300)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xefhe\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+\xf7\xc6>n\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:i\x99\xcb\xb5\xd7\xac+\xcdW\xd4\xdc\xd1\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xb3\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xdf\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\x02\x00\x00\x00\x00\x00\x00\x00n\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xee\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\xfe\a^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\xda8\x9cQ\xd9\xac\x9e\xa4\x8d\x13\x8a-sN/\xbf`\xc6\x16\x06\x1e\b(CLPSX5N\xd4ZR\x87\x80J\xfe:\xc9\xf8\xd9\xc5\xa5|\x8dq\x8bq\\ka\xba\\\xe3|\xe8\xa2\xd9\x86hB\xb5\x1e\x8d?\xf7\xd3\x1c\xf5\xa9q\xcc\'E6\xd9FK\x8c\x86f*\xd6\xd9\x84\xf7!\x16\xf1^\xae\x14\xf8\"\xb6/h\xba\x88J\xf0\xbduM\xc4\xac\xfc\xd7\xf2\xfcB\xa2e\xf3Ed\xbc\xb9\x03^\xea\xd6\xeb\xd2\xc7\x89\x8a\xb7\xb1\xc6\xbe\x0e\xb77\xf7A\x92\x91\x02H\x90\xfe\xdb\xc4\x14~\x14\x1d\x1fz\x1f\x81\x89#q\x1en', 0x41, 0x1c5, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
readv(r4, &(0x7f0000000400)=[{&(0x7f0000000240)=""/20, 0x14}], 0x1)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r5, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r7}, 0xe)
inotify_init1(0x80000)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
getsockname$packet(r9, &(0x7f0000000200)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r10, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)

950.934756ms ago: executing program 1 (id=1504):
r0 = syz_io_uring_setup(0x14dd, &(0x7f0000000300)={0x0, 0x511f, 0x800, 0x3, 0x258}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x97}, 0x18)
ioctl$TIOCSETD(r3, 0x5423, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file1\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
syz_emit_ethernet(0x46, &(0x7f0000000900)=ANY=[@ANYBLOB="0180c2000000ffffffffffff86dd69f0a60400101100fc000000000000000000000000000000ff0200000000000000000000000000014e234e20001090780209000080000000874d18b9141a9ae9d95ec889b791ff84bd04cd3d013c631b7b85a9fd6b932e2fbbc6bacfbe16bd3c1bbc8fd61fc05099d9c57277ce8ec673b8626e5fc12a26780546ad012b8103c83ed4eef3b9e77efcec1b0dc363ef79349773c9eb6c49d756ef0bf68304ab962247ada04cf7cf66dcbe3015de378542a374c093f244ee068d422355b061414ead35e03cae0d"], 0x0)
recvmmsg(r6, &(0x7f0000002b80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10000, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000400)}, 0x20)
clock_adjtime(0x0, &(0x7f0000000100)={0x5f0827ef, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000002, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x10000002}, 0x18)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r10, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r10, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4c23, @local}}, 0x0, 0x0, 0x3f, 0x0, "bd131a850810fcd18c0448734d20d5ac652dafacd33061762ee6ff7de1231ab45358cb73940a8ee9605f4291416850b05b3ffe4b328614a6a02e70351ef496146a4cf56e441481cf96f801d8c68fe3d9"}, 0xd8)
setsockopt$inet_tcp_int(r10, 0x6, 0x18, &(0x7f0000000100)=0xfefffff9, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r10, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x9, 0x7f}, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r10, 0x6, 0x13, &(0x7f00000001c0), 0x4)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000680)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
io_uring_enter(r0, 0x47ba, 0x85cb, 0x0, 0x0, 0x0)
symlink(0x0, &(0x7f0000000640)='./file1\x00')

891.963262ms ago: executing program 4 (id=1505):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000080)=0x1, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

789.342892ms ago: executing program 0 (id=1507):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd885000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x36}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={0x0, &(0x7f0000000900)=""/252, 0x0, 0xfc, 0x1, 0x1}, 0x28)
io_uring_enter(0xffffffffffffffff, 0x47fa, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000040), 0x1e)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x3, 0x1, 0x89, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x15, 0x1c, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

780.568453ms ago: executing program 4 (id=1508):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRESDEC], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020047b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000020000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="10000100000000050000000000000000000000000000000035cecd6a2d12e459b9f8d6da96d65d0c70270b95b6f034bca0a47197e70a12ed2a8fb97ead73387c58fa4c21cebdf4e3cc7a82f9e8fba0f138bd77fa1f8b8599ec1d3399fdc3c4667ca01e85bfb82eb93b9f0e3e849c7535598b9fd78b47dccf0904be294157"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000640)=@security={'security\x00', 0x64, 0x4, 0x2a0, 0x100000c, 0xc0, 0xc0, 0x0, 0xffffffff, 0xffffffff, 0x208, 0x208, 0x208, 0xffffffff, 0x4, 0x0, {[{{@ip={@rand_addr, @rand_addr=0x64010100, 0xff000000, 0x0, 'veth0_vlan\x00', 'syzkaller1\x00', {}, {}, 0xff}, 0x0, 0x98, 0xc0, 0x0, {0x0, 0x1000000000000}, [@common=@inet=@socket1={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'syz_tun\x00', 'lo\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x7f, 0x9, 0x4, 0x6, 0x1, 0x7f, 0x1, 0x40]}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x300)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)

705.38599ms ago: executing program 4 (id=1509):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@resgid={'resgid', 0x3d, 0xee00}}, {}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', 0x0, &(0x7f0000000200)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000080), &(0x7f0000001400)=ANY=[], 0x835, 0x2)

645.735966ms ago: executing program 0 (id=1510):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000c00000000000000008500000007000000040000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f00000002c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@grpid}, {@jqfmt_vfsv1}, {@errors_remount}]}, 0x11, 0x565, &(0x7f0000000440)="$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")
r1 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c02000100000000000040000280ffffff05000500000000000a"], 0x80}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)=@newsa={0x2cc, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@rand_addr=0x64010101, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@empty, {0x0, 0x192, 0x6, 0x10ffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x4}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @algo_auth={0x4e, 0x1, {{'hmac(sha1)\x00'}, 0x30, "aeee992c0bea"}}, @replay_val={0x10, 0xa, {0x70bd2c, 0x70bd2b, 0x5}}, @algo_comp={0x11f, 0x3, {{'lzs\x00'}, 0x6b8, "4858a5b6cce2737be6409e4e87233eaca4aae98ff871c431f1f09b8bfc39ebbc4054d1bf9cd4d5a9e88b25fd7312119c104cabecccb6c4c748d36bba5d59e62b0e2f49de5c389dc5c87d960074dcf2c9e2528262e1b5f8c757282934c0f9c2f373953dfd581685710a5bbbab6651809c9f38a68fe3366d1ba358efd3bb0fd73f1118cd1af9ec348c4a16f132bac5fa36e040b0bb6235314e7130fa62866dc420d91433551a3c4fcc0b04bd0800e1b0a7a3f459326c3abb7f3798b949a40ce2820fb91e2cb6dd97e65a1bd763d0d99c4a3bdf4573fb58e3"}}, @policy_type={0xa, 0x10, {0x1}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x8}]}, 0x2cc}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

617.850239ms ago: executing program 2 (id=1511):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=0x1, @ANYRES32=r2, @ANYBLOB='.\x00\x00\x00'], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[], 0x20)
listen(0xffffffffffffffff, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000600)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
read$watch_queue(0xffffffffffffffff, &(0x7f0000000300)=""/176, 0xb0)
syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7fffffffffffffff, 0x8000}, 0x11112, 0x2, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='cpu==0!|!')
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x1}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff00000085"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7bfa}, 0x94)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x5, &(0x7f0000000000)=0x9, 0x8, 0x0)
get_mempolicy(0x0, 0x0, 0x9, &(0x7f00007c5000/0x2000)=nil, 0x2)
nanosleep(&(0x7f0000000240), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x129242, 0x30)

602.67586ms ago: executing program 4 (id=1512):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x300c056, &(0x7f0000000d80)={[{@noload}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55a, &(0x7f0000000480)="$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")

556.494565ms ago: executing program 3 (id=1513):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
set_tid_address(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x401ffffd, 0x3}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, &(0x7f0000000380), &(0x7f0000000340)=r6}, 0x20)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
writev(r7, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x60000}], 0x1)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000000)={'lo\x00', <r11=>0x0})
sendmsg$ETHTOOL_MSG_WOL_GET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002abd7000000000001b0000000c00018008000100", @ANYRES32=r11], 0x20}}, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
sendmsg$tipc(r4, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000090}, 0x95)
r12 = dup3(r1, r4, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r12, 0x10f, 0x88)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

556.056845ms ago: executing program 0 (id=1514):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})

405.93878ms ago: executing program 4 (id=1515):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000080)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="12000000080000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1008002, &(0x7f0000000140)={[{@noauto_da_alloc}, {@grpquota}, {@grpjquota}, {@barrier}, {@dioread_nolock}, {@nodiscard}, {@nomblk_io_submit}, {@nodiscard}]}, 0x81, 0x601, &(0x7f00000011c0)="$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")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x4e8, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)

395.460041ms ago: executing program 2 (id=1516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$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")
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0xfe8e, 0x12)
r3 = socket$inet(0x2, 0x2, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x101042, 0x0)
pwrite64(r4, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
sendmsg$inet(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000100)='\x00\x00', 0x2}, {&(0x7f0000000200)="960c00004500", 0x6}], 0x2}, 0x2c000800)
r5 = syz_clone3(&(0x7f0000003080)={0x10040100, &(0x7f0000000280), &(0x7f0000002f40), &(0x7f0000002f80), {0x3e}, &(0x7f0000002fc0)=""/8, 0x8, &(0x7f0000003000)=""/17, &(0x7f0000003040)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x6, {r4}}, 0x58)
syz_open_procfs(r5, &(0x7f0000003100)='fdinfo/3\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
mkdir(0x0, 0x18b)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000180)={'gretap0\x00', &(0x7f0000000340)={'syztnl2\x00', <r6=>0x0, 0x1, 0x40, 0x5, 0x91, {{0x30, 0x4, 0x1, 0x1, 0xc0, 0x66, 0x0, 0xfe, 0x29, 0x0, @broadcast, @broadcast, {[@cipso={0x86, 0x5a, 0x0, [{0x1, 0x12, "4b2216968d6dff94339d243abd4b0dea"}, {0x7, 0x12, "0fe1b8216e861ebbe81fab959deec665"}, {0x1, 0x12, "8b19a4ebcca697bd1f0035b2cb68db3d"}, {0x0, 0x2}, {0x0, 0x11, "6fd6fe436b3659f2c7b291ae272fc4"}, {0x0, 0xb, "dafc16b0c5c01fb6b4"}]}, @ssrr={0x89, 0x23, 0x7, [@multicast1, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @dev={0xac, 0x14, 0x14, 0x1e}, @dev={0xac, 0x14, 0x14, 0x39}, @multicast2, @multicast2]}, @generic={0x94, 0x12, "279bde9a69ec3bbbc96c17117f365047"}, @timestamp_addr={0x44, 0x14, 0x43, 0x1, 0x4, [{@private=0xa010100, 0x1}, {@empty, 0x2}]}, @generic={0x82, 0x6, "706f7619"}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000001c0)={'gretap0\x00', &(0x7f00000004c0)={'syztnl2\x00', r6, 0x1, 0x700, 0x10, 0x3, {{0x20, 0x4, 0x0, 0x11, 0x80, 0x67, 0x0, 0x9, 0x4, 0x0, @broadcast, @private=0xa010102, {[@timestamp_prespec={0x44, 0x1c, 0x7a, 0x3, 0x5, [{@local, 0xfffffffa}, {@remote, 0x50d}, {@loopback}]}, @rr={0x7, 0x13, 0x36, [@loopback, @local, @multicast2, @broadcast]}, @rr={0x7, 0x13, 0x8e, [@private=0xa010102, @local, @broadcast, @remote]}, @timestamp={0x44, 0x28, 0xd3, 0x0, 0xf, [0x5, 0x5, 0x1000, 0xfffffffb, 0x7, 0x5, 0x0, 0xfffffff8, 0xfffffff7]}, @noop]}}}}})
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r7, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000003140)=ANY=[@ANYBLOB="9feb010018249988b6f4bb118501b2f4000000000000001800000025000000080000000100000001000013020000000600000000009235a1542bc3fc7553e232f11d64000003b1dc123f0565bae59ec2d85c1c60ba4a2f5ba8d14cbe71ae575b9d7c7eb871e2e717913713fdcd498c2df95f19c59b5cfb8debabd0f96aeb3782c8f7993d94bfe774f3ee13efedd7745a773f833dff0ef56b94f23dd909d4b0ab0f4204e757a796132533844a850c1f406c6b2b2fef8ce455b883603172a49ded7054ed676c0557c11a87fab3df0c05b4f3158d36d3f5c9d0b51aaee3889b41ba00"/240], &(0x7f0000001f40)=""/4079, 0x38, 0xfef, 0x8}, 0x28)
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r8, 0x2007ffc)
sendfile(r8, r8, 0x0, 0x100000000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)

369.095553ms ago: executing program 0 (id=1517):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3a}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280)={<r3=>0xffffffffffffffff}, 0x106, 0x2}}, 0xfe5e)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000000)=0x1, r3, 0x0, 0x2, 0x4}}, 0x20)

293.687081ms ago: executing program 0 (id=1518):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000080)=0x1, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

268.922734ms ago: executing program 0 (id=1519):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$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")
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0xfe8e, 0x12)
r3 = socket$inet(0x2, 0x2, 0x1)
r4 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x101042, 0x0)
pwrite64(r4, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
sendmsg$inet(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000100)='\x00\x00', 0x2}, {&(0x7f0000000200)="960c00004500", 0x6}], 0x2}, 0x2c000800)
r5 = syz_clone3(&(0x7f0000003080)={0x10040100, &(0x7f0000000280), &(0x7f0000002f40), &(0x7f0000002f80), {0x3e}, &(0x7f0000002fc0)=""/8, 0x8, &(0x7f0000003000)=""/17, &(0x7f0000003040)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x6, {r4}}, 0x58)
syz_open_procfs(r5, &(0x7f0000003100)='fdinfo/3\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
mkdir(0x0, 0x18b)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000180)={'gretap0\x00', &(0x7f0000000340)={'syztnl2\x00', <r6=>0x0, 0x1, 0x40, 0x5, 0x91, {{0x30, 0x4, 0x1, 0x1, 0xc0, 0x66, 0x0, 0xfe, 0x29, 0x0, @broadcast, @broadcast, {[@cipso={0x86, 0x5a, 0x0, [{0x1, 0x12, "4b2216968d6dff94339d243abd4b0dea"}, {0x7, 0x12, "0fe1b8216e861ebbe81fab959deec665"}, {0x1, 0x12, "8b19a4ebcca697bd1f0035b2cb68db3d"}, {0x0, 0x2}, {0x0, 0x11, "6fd6fe436b3659f2c7b291ae272fc4"}, {0x0, 0xb, "dafc16b0c5c01fb6b4"}]}, @ssrr={0x89, 0x23, 0x7, [@multicast1, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @dev={0xac, 0x14, 0x14, 0x1e}, @dev={0xac, 0x14, 0x14, 0x39}, @multicast2, @multicast2]}, @generic={0x94, 0x12, "279bde9a69ec3bbbc96c17117f365047"}, @timestamp_addr={0x44, 0x14, 0x43, 0x1, 0x4, [{@private=0xa010100, 0x1}, {@empty, 0x2}]}, @generic={0x82, 0x6, "706f7619"}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000001c0)={'gretap0\x00', &(0x7f00000004c0)={'syztnl2\x00', r6, 0x1, 0x700, 0x10, 0x3, {{0x20, 0x4, 0x0, 0x11, 0x80, 0x67, 0x0, 0x9, 0x4, 0x0, @broadcast, @private=0xa010102, {[@timestamp_prespec={0x44, 0x1c, 0x7a, 0x3, 0x5, [{@local, 0xfffffffa}, {@remote, 0x50d}, {@loopback}]}, @rr={0x7, 0x13, 0x36, [@loopback, @local, @multicast2, @broadcast]}, @rr={0x7, 0x13, 0x8e, [@private=0xa010102, @local, @broadcast, @remote]}, @timestamp={0x44, 0x28, 0xd3, 0x0, 0xf, [0x5, 0x5, 0x1000, 0xfffffffb, 0x7, 0x5, 0x0, 0xfffffff8, 0xfffffff7]}, @noop]}}}}})
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r7, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000003140)=ANY=[@ANYBLOB="9feb010018249988b6f4bb118501b2f4000000000000001800000025000000080000000100000001000013020000000600000000009235a1542bc3fc7553e232f11d64000003b1dc123f0565bae59ec2d85c1c60ba4a2f5ba8d14cbe71ae575b9d7c7eb871e2e717913713fdcd498c2df95f19c59b5cfb8debabd0f96aeb3782c8f7993d94bfe774f3ee13efedd7745a773f833dff0ef56b94f23dd909d4b0ab0f4204e757a796132533844a850c1f406c6b2b2fef8ce455b883603172a49ded7054ed676c0557c11a87fab3df0c05b4f3158d36d3f5c9d0b51aaee3889b41ba00"/240], &(0x7f0000001f40)=""/4079, 0x38, 0xfef, 0x8}, 0x28)
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r8, 0x2007ffc)
sendfile(r8, r8, 0x0, 0x100000000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)

95.838051ms ago: executing program 4 (id=1520):
r0 = gettid()
r1 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r1, &(0x7f0000003c40)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x60010002, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000400000000000000000318110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x36, &(0x7f0000001b80)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd64fba88a3ddfac753524053de1e08bbb00003c01fe8000000000000000000000000000bbfe800000"], 0x0)

66.874243ms ago: executing program 1 (id=1521):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0xffbf)

25.835717ms ago: executing program 2 (id=1522):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd885000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x36}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={0x0, &(0x7f0000000900)=""/252, 0x0, 0xfc, 0x1, 0x1}, 0x28)
io_uring_enter(0xffffffffffffffff, 0x47fa, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000040), 0x1e)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x3, 0x1, 0x89, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x15, 0x1c, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

539.43µs ago: executing program 3 (id=1523):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x1000004803}, 0x18)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000380)={0x6, 0x8, 0x4, 0x8000, 0x8})
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000000d0a010800000000000000000a0000010900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c000a800500010047000080"], 0x48}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f00000002c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001380)=@newqdisc={0x45c, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0xe, 0x5}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x0, 0x165, 0x0, 0x1000}, {0x80, 0x1, 0xf000, 0xc, 0x800, 0x800000}, 0x81, 0x64b5, 0x132f}}, @TCA_TBF_RTAB={0x404, 0x2, [0x10, 0x3, 0x5, 0x0, 0x7, 0x9, 0xde3, 0x3, 0x2, 0x7665, 0x4, 0x8, 0x4, 0x7, 0x7ff, 0xe6d, 0x1, 0x5, 0x2, 0x200, 0x81, 0x400, 0x5, 0xfffffffa, 0x2, 0x8, 0x4, 0x9, 0x2, 0xa0000, 0x37, 0x5, 0x9, 0x1, 0x2a8b, 0xb, 0xf81, 0x0, 0x9, 0x90, 0x6, 0x2, 0xb6f, 0xdd, 0x1, 0x81, 0x1, 0x200, 0x0, 0x1, 0xc, 0x20d2, 0x75, 0x800, 0x2a, 0x7, 0x7fff, 0x6, 0x6, 0x4, 0x40, 0x0, 0x6, 0x9, 0x8, 0x80000001, 0x97, 0x4, 0xffff3404, 0x8, 0x80000001, 0x8, 0x1, 0x2, 0x5, 0xf, 0x1, 0x7, 0x3, 0xb1d, 0x400, 0x9, 0x931, 0xffffffff, 0x1, 0x4, 0x6, 0x3, 0x400000, 0x5, 0xfffffff8, 0x3, 0x4, 0x8, 0x8, 0x9, 0x100, 0x0, 0x2, 0x7, 0x7f, 0x2, 0x6, 0x401, 0x8, 0x0, 0xfbb, 0x6, 0x100, 0x9, 0x401, 0x2, 0x100, 0x9, 0x80, 0xff, 0x0, 0x1, 0x6, 0x4, 0x3, 0x5, 0xe, 0x3, 0x3, 0x4, 0x3, 0x3, 0x81, 0xfff, 0x6, 0x1, 0x1, 0x7fffffff, 0x63c7, 0x3, 0x8, 0x7, 0x0, 0x7, 0x3, 0x3, 0xd, 0x9, 0x3, 0x80, 0x3, 0x0, 0x5, 0x1ff, 0xf3c3, 0x8, 0x36, 0x1, 0x0, 0x8, 0xffffffff, 0x6, 0x733, 0x7, 0xec4, 0x7, 0x9, 0x10000, 0x9, 0x8, 0x9, 0x1, 0x9, 0x100, 0x6, 0x78, 0x0, 0x10, 0x7, 0xffff7fff, 0x1, 0x6, 0x7ff, 0x9, 0x9, 0x3, 0x2, 0x8a0f, 0x4, 0x3, 0xffff8001, 0x78, 0x3, 0x7, 0x81, 0x2, 0x6, 0x8, 0x6, 0x231fe9d9, 0xffff, 0x200, 0x1, 0x401, 0x401, 0x6, 0x3, 0x80, 0x5, 0x8, 0x0, 0x1, 0x8, 0x80000001, 0xff000000, 0xbe3, 0x4, 0x0, 0x1, 0x2, 0xfffffffc, 0x4c, 0x8, 0x1, 0x6ef9, 0x69b9, 0x0, 0x1, 0x3, 0x8000, 0x80000001, 0xb4e, 0x401, 0xfffffffc, 0x0, 0x9, 0x9, 0x800, 0x5, 0x6, 0x4, 0x67d6, 0x3, 0x100, 0x9, 0x4, 0x400, 0x1908, 0x1000, 0x1000, 0x5, 0x6, 0xfffffffc, 0x9, 0x5, 0x6, 0xc3, 0x4, 0x7f, 0x8]}]}}]}, 0x45c}}, 0x4000010)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c840}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000003c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000210081044e81f782db44b90402000000008000000000150010001400259070f409000d2000000a000e4006000000036010fab94dcf5c0468c1d67f6f94007134cf6ee05e6756cfb39b0590b4800089e408e8d8ef52b49816277cf4090000001fb791643a5e08001b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db701000000eafad95667e006dcdf969b3ef35ce3bb9ad809d561cace81ed0bffece0b42a9ecbee5de6cce50dd6e4edef3d939acd92954b43370e970100"/216, 0xd8}], 0x1}, 0x0)

0s ago: executing program 1 (id=1524):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
msync(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4)

kernel console output (not intermixed with test programs):

589943.625:6532): avc:  denied  { open } for  pid=6948 comm="syz.2.907" path="/dev/input/event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   90.615877][   T29] audit: type=1400 audit(1761589943.625:6533): avc:  denied  { ioctl } for  pid=6948 comm="syz.2.907" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   90.683823][   T29] audit: type=1326 audit(1761589943.725:6534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.4.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[   90.707282][   T29] audit: type=1326 audit(1761589943.725:6535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.4.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[   90.730784][   T29] audit: type=1326 audit(1761589943.725:6536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.4.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[   90.754170][   T29] audit: type=1326 audit(1761589943.725:6537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.4.909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[   90.835797][ T6958] FAULT_INJECTION: forcing a failure.
[   90.835797][ T6958] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.848960][ T6958] CPU: 0 UID: 0 PID: 6958 Comm: syz.4.912 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   90.849004][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   90.849035][ T6958] Call Trace:
[   90.849096][ T6958]  <TASK>
[   90.849103][ T6958]  __dump_stack+0x1d/0x30
[   90.849125][ T6958]  dump_stack_lvl+0xe8/0x140
[   90.849146][ T6958]  dump_stack+0x15/0x1b
[   90.849168][ T6958]  should_fail_ex+0x265/0x280
[   90.849190][ T6958]  should_fail+0xb/0x20
[   90.849234][ T6958]  should_fail_usercopy+0x1a/0x20
[   90.849254][ T6958]  _copy_to_user+0x20/0xa0
[   90.849467][ T6958]  simple_read_from_buffer+0xb5/0x130
[   90.849491][ T6958]  proc_fail_nth_read+0x10e/0x150
[   90.849596][ T6958]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.849678][ T6958]  vfs_read+0x1a8/0x770
[   90.849708][ T6958]  ? __rcu_read_unlock+0x4f/0x70
[   90.849760][ T6958]  ? __fget_files+0x184/0x1c0
[   90.849788][ T6958]  ksys_read+0xda/0x1a0
[   90.849875][ T6958]  __x64_sys_read+0x40/0x50
[   90.849906][ T6958]  x64_sys_call+0x27c0/0x3000
[   90.849934][ T6958]  do_syscall_64+0xd2/0x200
[   90.849964][ T6958]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   90.849994][ T6958]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   90.850094][ T6958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.850117][ T6958] RIP: 0033:0x7fcd21c4d9dc
[   90.850131][ T6958] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   90.850148][ T6958] RSP: 002b:00007fcd206af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   90.850166][ T6958] RAX: ffffffffffffffda RBX: 00007fcd21ea5fa0 RCX: 00007fcd21c4d9dc
[   90.850178][ T6958] RDX: 000000000000000f RSI: 00007fcd206af0a0 RDI: 0000000000000004
[   90.850248][ T6958] RBP: 00007fcd206af090 R08: 0000000000000000 R09: 0000000000000000
[   90.850261][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.850272][ T6958] R13: 00007fcd21ea6038 R14: 00007fcd21ea5fa0 R15: 00007ffd748de178
[   90.850288][ T6958]  </TASK>
[   91.109680][ T6962] batadv_slave_1: entered promiscuous mode
[   91.171475][ T6964] veth0: entered promiscuous mode
[   91.934967][ T7002] loop3: detected capacity change from 0 to 1024
[   91.942051][ T7002] EXT4-fs: Ignoring removed orlov option
[   91.949571][ T7002] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   91.967961][ T7002] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.127395][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.673447][ T7034] netlink: 8 bytes leftover after parsing attributes in process `syz.4.936'.
[   92.849443][ T7049] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[   92.858010][ T7049] netlink: 172 bytes leftover after parsing attributes in process `syz.2.942'.
[   92.942854][ T7056] loop2: detected capacity change from 0 to 1024
[   92.954422][ T7056] EXT4-fs: Ignoring removed orlov option
[   92.961230][ T7056] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   92.978340][ T7056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.056712][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.074535][ T7062] FAULT_INJECTION: forcing a failure.
[   93.074535][ T7062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.087811][ T7062] CPU: 1 UID: 0 PID: 7062 Comm: syz.2.946 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   93.087841][ T7062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   93.087854][ T7062] Call Trace:
[   93.087859][ T7062]  <TASK>
[   93.087866][ T7062]  __dump_stack+0x1d/0x30
[   93.087892][ T7062]  dump_stack_lvl+0xe8/0x140
[   93.087918][ T7062]  dump_stack+0x15/0x1b
[   93.087980][ T7062]  should_fail_ex+0x265/0x280
[   93.088006][ T7062]  should_fail+0xb/0x20
[   93.088041][ T7062]  should_fail_usercopy+0x1a/0x20
[   93.088061][ T7062]  _copy_from_user+0x1c/0xb0
[   93.088110][ T7062]  do_ipt_set_ctl+0x3a0/0x820
[   93.088128][ T7062]  ? lock_sock_nested+0x112/0x140
[   93.088250][ T7062]  nf_setsockopt+0x199/0x1b0
[   93.088281][ T7062]  ip_setsockopt+0x102/0x110
[   93.088311][ T7062]  udp_setsockopt+0x99/0xb0
[   93.088341][ T7062]  sock_common_setsockopt+0x69/0x80
[   93.088437][ T7062]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   93.088460][ T7062]  __sys_setsockopt+0x184/0x200
[   93.088556][ T7062]  __x64_sys_setsockopt+0x64/0x80
[   93.088584][ T7062]  x64_sys_call+0x20ec/0x3000
[   93.088604][ T7062]  do_syscall_64+0xd2/0x200
[   93.088620][ T7062]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   93.088718][ T7062]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   93.088745][ T7062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.088764][ T7062] RIP: 0033:0x7f4ea16cefc9
[   93.088837][ T7062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.088859][ T7062] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   93.088876][ T7062] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[   93.088886][ T7062] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[   93.088905][ T7062] RBP: 00007f4ea0137090 R08: 0000000000000260 R09: 0000000000000000
[   93.088916][ T7062] R10: 0000200000000fc0 R11: 0000000000000246 R12: 0000000000000001
[   93.088926][ T7062] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[   93.088943][ T7062]  </TASK>
[   93.329388][ T7064] ip6t_srh: unknown srh match flags  4000
[   93.464605][ T6964] veth0: left promiscuous mode
[   93.469670][ T6964] batadv_slave_1: left promiscuous mode
[   93.555646][ T7078] loop4: detected capacity change from 0 to 512
[   93.563182][ T7078] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   93.578539][ T7078] EXT4-fs (loop4): 1 truncate cleaned up
[   93.587216][ T7078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.635617][ T7083] netlink: 24 bytes leftover after parsing attributes in process `syz.3.954'.
[   93.683283][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.685497][ T7087] netlink: 'syz.0.955': attribute type 1 has an invalid length.
[   94.595862][ T7115] netlink: 8 bytes leftover after parsing attributes in process `syz.0.962'.
[   94.752600][ T7126] sctp: [Deprecated]: syz.4.966 (pid 7126) Use of struct sctp_assoc_value in delayed_ack socket option.
[   94.752600][ T7126] Use struct sctp_sack_info instead
[   94.788968][ T7128] loop2: detected capacity change from 0 to 512
[   94.836283][ T7128] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.894375][ T7128] EXT4-fs (loop2): 1 truncate cleaned up
[   94.922056][ T7129] loop4: detected capacity change from 0 to 1024
[   94.955193][ T7128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.030566][ T7133] netlink: 24 bytes leftover after parsing attributes in process `syz.3.968'.
[   95.048408][ T7129] EXT4-fs: Ignoring removed nobh option
[   95.054094][ T7129] EXT4-fs: Ignoring removed bh option
[   95.131024][ T7129] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   95.191558][ T7129] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.204679][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.279736][ T7143] netlink: 'syz.3.972': attribute type 1 has an invalid length.
[   95.353911][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.447439][ T7162] netlink: 'syz.0.979': attribute type 1 has an invalid length.
[   95.457742][   T29] kauditd_printk_skb: 496 callbacks suppressed
[   95.457768][   T29] audit: type=1400 audit(1761589948.535:7034): avc:  denied  { name_bind } for  pid=7161 comm="syz.0.979" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   95.485725][   T29] audit: type=1400 audit(1761589948.535:7035): avc:  denied  { node_bind } for  pid=7161 comm="syz.0.979" saddr=224.0.0.1 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   96.235692][ T7176] xt_hashlimit: max too large, truncated to 1048576
[   96.326224][   T29] audit: type=1326 audit(1761589949.395:7036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.349693][   T29] audit: type=1326 audit(1761589949.395:7037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.373083][   T29] audit: type=1326 audit(1761589949.395:7038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.396480][   T29] audit: type=1326 audit(1761589949.395:7039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.419962][   T29] audit: type=1326 audit(1761589949.395:7040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.443348][   T29] audit: type=1326 audit(1761589949.395:7041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.446800][ T7194] sctp: [Deprecated]: syz.1.987 (pid 7194) Use of struct sctp_assoc_value in delayed_ack socket option.
[   96.446800][ T7194] Use struct sctp_sack_info instead
[   96.466999][   T29] audit: type=1326 audit(1761589949.395:7042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.467128][   T29] audit: type=1326 audit(1761589949.395:7043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7186 comm="syz.2.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[   96.555719][ T7195] netlink: 8 bytes leftover after parsing attributes in process `syz.4.989'.
[   96.689878][ T7194] loop1: detected capacity change from 0 to 1024
[   96.701652][ T7194] EXT4-fs: Ignoring removed nobh option
[   96.707345][ T7194] EXT4-fs: Ignoring removed bh option
[   96.727131][ T7194] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   96.735929][ T7194] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.778923][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.805135][ T7213] FAULT_INJECTION: forcing a failure.
[   96.805135][ T7213] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.818313][ T7213] CPU: 1 UID: 0 PID: 7213 Comm: syz.1.994 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   96.818348][ T7213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   96.818365][ T7213] Call Trace:
[   96.818373][ T7213]  <TASK>
[   96.818382][ T7213]  __dump_stack+0x1d/0x30
[   96.818444][ T7213]  dump_stack_lvl+0xe8/0x140
[   96.818503][ T7213]  dump_stack+0x15/0x1b
[   96.818526][ T7213]  should_fail_ex+0x265/0x280
[   96.818628][ T7213]  should_fail+0xb/0x20
[   96.818649][ T7213]  should_fail_usercopy+0x1a/0x20
[   96.818735][ T7213]  _copy_from_user+0x1c/0xb0
[   96.818768][ T7213]  __se_sys_io_uring_setup+0x11f/0x210
[   96.818818][ T7213]  __x64_sys_io_uring_setup+0x31/0x40
[   96.818861][ T7213]  x64_sys_call+0x2b25/0x3000
[   96.818963][ T7213]  do_syscall_64+0xd2/0x200
[   96.818986][ T7213]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   96.819020][ T7213]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   96.819052][ T7213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.819159][ T7213] RIP: 0033:0x7f0780e3efc9
[   96.819178][ T7213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.819203][ T7213] RSP: 002b:00007f077f89efc8 EFLAGS: 00000206 ORIG_RAX: 00000000000001a9
[   96.819226][ T7213] RAX: ffffffffffffffda RBX: 00007f0781095fa0 RCX: 00007f0780e3efc9
[   96.819241][ T7213] RDX: 0000200000000600 RSI: 0000200000000180 RDI: 0000000000000497
[   96.819252][ T7213] RBP: 0000200000000180 R08: 0000000000000000 R09: 0000200000000600
[   96.819331][ T7213] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   96.819410][ T7213] R13: 00002000000000c0 R14: 0000000000000497 R15: 0000200000000600
[   96.819430][ T7213]  </TASK>
[   97.246333][ T7232] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[   97.255561][ T7232] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1000'.
[   97.512939][ T7246] loop4: detected capacity change from 0 to 1024
[   97.521745][ T7246] EXT4-fs: Ignoring removed orlov option
[   97.536518][ T7246] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   97.621190][ T7246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.684851][ T7249] loop2: detected capacity change from 0 to 512
[   97.693317][ T7249] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   97.711547][ T7249] EXT4-fs (loop2): orphan cleanup on readonly fs
[   97.718484][ T7249] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1006: inode has both inline data and extents flags
[   97.741338][ T7249] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1006: couldn't read orphan inode 15 (err -117)
[   97.753986][ T7249] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   97.773858][ T7249] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 13: comm syz.2.1006: lblock 0 mapped to illegal pblock 13 (length 1)
[   97.791933][ T7263] loop0: detected capacity change from 0 to 8192
[   97.802181][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.834480][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.858222][ T7263] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   97.992989][ T7286] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1018'.
[   98.200675][ T7301] loop4: detected capacity change from 0 to 512
[   98.209786][ T7301] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   98.226801][ T7301] EXT4-fs (loop4): 1 truncate cleaned up
[   98.233382][ T7301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.630907][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.863974][ T7317] loop2: detected capacity change from 0 to 1024
[   98.889684][ T7317] EXT4-fs: Ignoring removed orlov option
[   98.953844][ T7317] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   99.078326][ T7317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.205228][ T7335] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1033'.
[   99.218464][ T7333] loop1: detected capacity change from 0 to 164
[   99.225386][ T7333] iso9660: Bad value for 'uid'
[   99.230357][ T7333] iso9660: Bad value for 'uid'
[   99.249506][ T7333] siw: device registration error -23
[   99.269463][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.356972][ T7346] xt_hashlimit: max too large, truncated to 1048576
[   99.360051][ T7342] FAULT_INJECTION: forcing a failure.
[   99.360051][ T7342] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.376824][ T7342] CPU: 0 UID: 0 PID: 7342 Comm: syz.4.1034 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   99.376857][ T7342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   99.376869][ T7342] Call Trace:
[   99.376875][ T7342]  <TASK>
[   99.376902][ T7342]  __dump_stack+0x1d/0x30
[   99.376928][ T7342]  dump_stack_lvl+0xe8/0x140
[   99.376954][ T7342]  dump_stack+0x15/0x1b
[   99.376976][ T7342]  should_fail_ex+0x265/0x280
[   99.377068][ T7342]  should_fail+0xb/0x20
[   99.377089][ T7342]  should_fail_usercopy+0x1a/0x20
[   99.377131][ T7342]  strncpy_from_user+0x25/0x230
[   99.377214][ T7342]  ? __pfx_pipe_ioctl+0x10/0x10
[   99.377250][ T7342]  strncpy_from_user_nofault+0x68/0xf0
[   99.377277][ T7342]  bpf_probe_read_compat_str+0xb4/0x130
[   99.377337][ T7342]  bpf_prog_fd7be918018daafb+0x41/0x68
[   99.377357][ T7342]  bpf_trace_run2+0x107/0x1c0
[   99.377468][ T7342]  ? xfd_validate_state+0x45/0xf0
[   99.377492][ T7342]  __bpf_trace_sys_enter+0x10/0x30
[   99.377520][ T7342]  trace_sys_enter+0x86/0xf0
[   99.377551][ T7342]  syscall_trace_enter+0x13e/0x1e0
[   99.377641][ T7342]  do_syscall_64+0xac/0x200
[   99.377663][ T7342]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   99.377777][ T7342]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   99.377815][ T7342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.377835][ T7342] RIP: 0033:0x7fcd21c4d9dc
[   99.377850][ T7342] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.377951][ T7342] RSP: 002b:00007fcd2068e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.377975][ T7342] RAX: ffffffffffffffda RBX: 00007fcd21ea6090 RCX: 00007fcd21c4d9dc
[   99.377991][ T7342] RDX: 000000000000000f RSI: 00007fcd2068e0a0 RDI: 0000000000000008
[   99.378026][ T7342] RBP: 00007fcd2068e090 R08: 0000000000000000 R09: 0000000000000000
[   99.378041][ T7342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.378054][ T7342] R13: 00007fcd21ea6128 R14: 00007fcd21ea6090 R15: 00007ffd748de178
[   99.378072][ T7342]  </TASK>
[   99.718221][ T7360] loop0: detected capacity change from 0 to 1024
[   99.740081][ T7360] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.763460][ T7360] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.774167][ T7360] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.800891][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.910333][ T7375] loop4: detected capacity change from 0 to 1024
[  100.017767][ T7375] EXT4-fs: Ignoring removed orlov option
[  100.030775][ T7375] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  100.106120][ T7378] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1047'.
[  100.132531][ T7375] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.284884][ T7387] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  100.301395][ T7387] SELinux: failed to load policy
[  100.408432][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.444576][ T7393] loop3: detected capacity change from 0 to 8192
[  100.469453][   T29] kauditd_printk_skb: 504 callbacks suppressed
[  100.469466][   T29] audit: type=1400 audit(1761589953.545:7548): avc:  denied  { mount } for  pid=7392 comm="syz.3.1052" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  100.510648][ T7396] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  100.519097][ T7396] netlink: 172 bytes leftover after parsing attributes in process `syz.2.1054'.
[  100.540137][ T7393] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  100.568507][   T29] audit: type=1326 audit(1761589953.645:7549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.592074][   T29] audit: type=1326 audit(1761589953.645:7550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.615497][   T29] audit: type=1326 audit(1761589953.645:7551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.639095][   T29] audit: type=1326 audit(1761589953.645:7552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.662587][   T29] audit: type=1326 audit(1761589953.645:7553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.707435][ T7406] loop4: detected capacity change from 0 to 256
[  100.729473][   T29] audit: type=1326 audit(1761589953.645:7554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.753000][   T29] audit: type=1326 audit(1761589953.645:7555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4ea1701885 code=0x7ffc0000
[  100.776705][   T29] audit: type=1326 audit(1761589953.645:7556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  100.800131][   T29] audit: type=1326 audit(1761589953.645:7557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7399 comm="syz.2.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  101.061804][ T7431] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  101.074453][ T7431] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1066'.
[  101.119414][ T7435] FAULT_INJECTION: forcing a failure.
[  101.119414][ T7435] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  101.132795][ T7435] CPU: 1 UID: 0 PID: 7435 Comm: syz.4.1068 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  101.132888][ T7435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  101.132904][ T7435] Call Trace:
[  101.132911][ T7435]  <TASK>
[  101.132921][ T7435]  __dump_stack+0x1d/0x30
[  101.132948][ T7435]  dump_stack_lvl+0xe8/0x140
[  101.132968][ T7435]  dump_stack+0x15/0x1b
[  101.132985][ T7435]  should_fail_ex+0x265/0x280
[  101.133005][ T7435]  should_fail_alloc_page+0xf2/0x100
[  101.133057][ T7435]  __alloc_frozen_pages_noprof+0xff/0x360
[  101.133104][ T7435]  alloc_pages_mpol+0xb3/0x260
[  101.133180][ T7435]  alloc_migration_target_by_mpol+0x11b/0x280
[  101.133217][ T7435]  migrate_pages_batch+0x349/0x1b60
[  101.133251][ T7435]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  101.133354][ T7435]  ? __walk_page_range+0x324/0x340
[  101.133383][ T7435]  ? __pfx_queue_pages_test_walk+0x10/0x10
[  101.133408][ T7435]  ? find_vma+0x6c/0xa0
[  101.133425][ T7435]  migrate_pages+0xf55/0x1760
[  101.133579][ T7435]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  101.133625][ T7435]  __se_sys_mbind+0x975/0xac0
[  101.133666][ T7435]  __x64_sys_mbind+0x78/0x90
[  101.133738][ T7435]  x64_sys_call+0x2936/0x3000
[  101.133813][ T7435]  do_syscall_64+0xd2/0x200
[  101.133941][ T7435]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  101.134031][ T7435]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  101.134070][ T7435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.134094][ T7435] RIP: 0033:0x7fcd21c4efc9
[  101.134108][ T7435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.134154][ T7435] RSP: 002b:00007fcd206af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  101.134177][ T7435] RAX: ffffffffffffffda RBX: 00007fcd21ea5fa0 RCX: 00007fcd21c4efc9
[  101.134192][ T7435] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  101.134208][ T7435] RBP: 00007fcd206af090 R08: 0000000000000000 R09: 0000000000000002
[  101.134221][ T7435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.134233][ T7435] R13: 00007fcd21ea6038 R14: 00007fcd21ea5fa0 R15: 00007ffd748de178
[  101.134251][ T7435]  </TASK>
[  101.399971][ T7440] loop3: detected capacity change from 0 to 256
[  101.472452][ T7453] FAULT_INJECTION: forcing a failure.
[  101.472452][ T7453] name failslab, interval 1, probability 0, space 0, times 0
[  101.485330][ T7453] CPU: 1 UID: 0 PID: 7453 Comm: syz.2.1076 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  101.485362][ T7453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  101.485378][ T7453] Call Trace:
[  101.485386][ T7453]  <TASK>
[  101.485393][ T7453]  __dump_stack+0x1d/0x30
[  101.485440][ T7453]  dump_stack_lvl+0xe8/0x140
[  101.485460][ T7453]  dump_stack+0x15/0x1b
[  101.485480][ T7453]  should_fail_ex+0x265/0x280
[  101.485504][ T7453]  should_failslab+0x8c/0xb0
[  101.485607][ T7453]  kmem_cache_alloc_noprof+0x50/0x480
[  101.485637][ T7453]  ? getname_flags+0x80/0x3b0
[  101.485669][ T7453]  getname_flags+0x80/0x3b0
[  101.485754][ T7453]  do_readlinkat+0x64/0x320
[  101.485782][ T7453]  __x64_sys_readlink+0x47/0x60
[  101.485811][ T7453]  x64_sys_call+0x28de/0x3000
[  101.485869][ T7453]  do_syscall_64+0xd2/0x200
[  101.485892][ T7453]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  101.485920][ T7453]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  101.486026][ T7453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.486049][ T7453] RIP: 0033:0x7f4ea16cefc9
[  101.486067][ T7453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.486139][ T7453] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[  101.486163][ T7453] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[  101.486177][ T7453] RDX: 000000000000000f RSI: 00002000000005c0 RDI: 0000200000000080
[  101.486212][ T7453] RBP: 00007f4ea0137090 R08: 0000000000000000 R09: 0000000000000000
[  101.486228][ T7453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.486243][ T7453] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[  101.486264][ T7453]  </TASK>
[  101.674382][ T7460] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  101.682954][ T7460] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1079'.
[  101.752810][ T7467] IPVS: set_ctl: invalid protocol: 60 127.0.0.1:20000
[  101.768894][ T7471] loop0: detected capacity change from 0 to 1024
[  101.804577][ T7471] EXT4-fs: Ignoring removed orlov option
[  101.833697][ T7471] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  101.847629][ T7467] loop2: detected capacity change from 0 to 1024
[  101.883841][ T7471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.883848][ T7467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.884593][ T7467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.974187][ T7489] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.015483][ T7496] loop2: detected capacity change from 0 to 256
[  102.065430][ T7489] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.080536][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.104308][ T7500] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  102.113141][ T7500] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1090'.
[  102.125780][ T7489] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.243357][ T7489] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.297784][ T6534] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.310235][ T1841] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.322307][ T1841] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.335323][ T1841] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.388559][ T7518] loop2: detected capacity change from 0 to 512
[  102.400065][ T7521] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  102.412054][ T7518] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  102.429869][ T7518] EXT4-fs (loop2): 1 truncate cleaned up
[  102.438269][ T7518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.458500][ T7526] loop4: detected capacity change from 0 to 512
[  102.478685][ T7526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.491404][ T7526] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.505102][ T7526] FAULT_INJECTION: forcing a failure.
[  102.505102][ T7526] name failslab, interval 1, probability 0, space 0, times 0
[  102.518025][ T7526] CPU: 0 UID: 0 PID: 7526 Comm: syz.4.1099 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  102.518059][ T7526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  102.518073][ T7526] Call Trace:
[  102.518078][ T7526]  <TASK>
[  102.518086][ T7526]  __dump_stack+0x1d/0x30
[  102.518179][ T7526]  dump_stack_lvl+0xe8/0x140
[  102.518197][ T7526]  dump_stack+0x15/0x1b
[  102.518213][ T7526]  should_fail_ex+0x265/0x280
[  102.518294][ T7526]  should_failslab+0x8c/0xb0
[  102.518319][ T7526]  __kmalloc_noprof+0xa5/0x570
[  102.518345][ T7526]  ? ext4_find_extent+0x16b/0x7a0
[  102.518369][ T7526]  ext4_find_extent+0x16b/0x7a0
[  102.518408][ T7526]  ext4_ext_map_blocks+0x11f/0x38a0
[  102.518433][ T7526]  ? perf_tp_event+0x9b3/0x9f0
[  102.518457][ T7526]  ? perf_trace_kmem_cache_alloc+0x172/0x1a0
[  102.518563][ T7526]  ext4_map_blocks+0x5ee/0xd00
[  102.518592][ T7526]  ? __account_obj_stock+0x211/0x350
[  102.518678][ T7526]  _ext4_get_block+0x10a/0x350
[  102.518789][ T7526]  ext4_get_block_unwritten+0x2a/0xb0
[  102.518819][ T7526]  ext4_block_write_begin+0x5e8/0xc00
[  102.518840][ T7526]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[  102.518925][ T7526]  ? folio_mapping+0xb9/0xe0
[  102.518951][ T7526]  ext4_write_begin+0x647/0xeb0
[  102.518984][ T7526]  ext4_da_write_begin+0x1fb/0x6e0
[  102.519086][ T7526]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  102.519119][ T7526]  generic_perform_write+0x184/0x490
[  102.519224][ T7526]  ext4_buffered_write_iter+0x1ee/0x3c0
[  102.519243][ T7526]  ? ext4_file_write_iter+0xfe/0xf60
[  102.519262][ T7526]  ext4_file_write_iter+0x387/0xf60
[  102.519280][ T7526]  ? kstrtouint_from_user+0x9f/0xf0
[  102.519298][ T7526]  ? 0xffffffff81000000
[  102.519309][ T7526]  ? __rcu_read_unlock+0x4f/0x70
[  102.519395][ T7526]  ? avc_policy_seqno+0x15/0x30
[  102.519411][ T7526]  ? selinux_file_permission+0x1e4/0x320
[  102.519442][ T7526]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  102.519563][ T7526]  vfs_write+0x52a/0x960
[  102.519631][ T7526]  __x64_sys_pwrite64+0xfd/0x150
[  102.519655][ T7526]  x64_sys_call+0xc4d/0x3000
[  102.519674][ T7526]  do_syscall_64+0xd2/0x200
[  102.519695][ T7526]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  102.519762][ T7526]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  102.519789][ T7526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.519826][ T7526] RIP: 0033:0x7fcd21c4efc9
[  102.519839][ T7526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.519854][ T7526] RSP: 002b:00007fcd206af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  102.519871][ T7526] RAX: ffffffffffffffda RBX: 00007fcd21ea5fa0 RCX: 00007fcd21c4efc9
[  102.519881][ T7526] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000005
[  102.519892][ T7526] RBP: 00007fcd206af090 R08: 0000000000000000 R09: 0000000000000000
[  102.519903][ T7526] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000001
[  102.519978][ T7526] R13: 00007fcd21ea6038 R14: 00007fcd21ea5fa0 R15: 00007ffd748de178
[  102.519995][ T7526]  </TASK>
[  102.521020][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.762239][ T7536] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1104'.
[  102.862874][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.884885][ T7541] loop1: detected capacity change from 0 to 164
[  102.908587][ T7541] iso9660: Bad value for 'uid'
[  102.913520][ T7541] iso9660: Bad value for 'uid'
[  102.941198][ T7541] siw: device registration error -23
[  102.968262][ T7547] loop2: detected capacity change from 0 to 1024
[  102.977931][ T7547] EXT4-fs: Ignoring removed orlov option
[  102.995440][ T7547] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  103.027821][ T7553] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  103.036575][ T7553] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1110'.
[  103.063725][ T7557] sctp: [Deprecated]: syz.4.1111 (pid 7557) Use of struct sctp_assoc_value in delayed_ack socket option.
[  103.063725][ T7557] Use struct sctp_sack_info instead
[  103.107604][ T7559] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1112'.
[  103.196176][ T7557] loop4: detected capacity change from 0 to 1024
[  103.205240][ T7557] EXT4-fs: Ignoring removed nobh option
[  103.210960][ T7557] EXT4-fs: Ignoring removed bh option
[  103.239079][ T7557] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  103.327939][ T7585] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1120'.
[  103.491952][ T7601] sctp: [Deprecated]: syz.4.1127 (pid 7601) Use of struct sctp_assoc_value in delayed_ack socket option.
[  103.491952][ T7601] Use struct sctp_sack_info instead
[  103.573213][ T7606] loop4: detected capacity change from 0 to 1024
[  103.589306][ T7606] EXT4-fs: Ignoring removed nobh option
[  103.594953][ T7606] EXT4-fs: Ignoring removed bh option
[  103.648643][ T7606] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  103.667749][ T7612] loop3: detected capacity change from 0 to 164
[  103.690188][ T7612] iso9660: Bad value for 'uid'
[  103.695082][ T7612] iso9660: Bad value for 'uid'
[  103.758549][ T7612] siw: device registration error -23
[  103.935941][ T7627] loop2: detected capacity change from 0 to 1024
[  103.953432][ T7627] EXT4-fs: Ignoring removed nomblk_io_submit option
[  103.976458][ T7627] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.993535][ T7627] xt_hashlimit: max too large, truncated to 1048576
[  104.077865][ T7632] loop1: detected capacity change from 0 to 1024
[  104.088023][ T7632] EXT4-fs: Ignoring removed nomblk_io_submit option
[  104.100914][ T7632] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.132897][ T7637] netlink: 'syz.3.1141': attribute type 1 has an invalid length.
[  104.141796][ T7632] xt_hashlimit: max too large, truncated to 1048576
[  104.199906][ T7644] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  104.239091][ T7644] __nla_validate_parse: 2 callbacks suppressed
[  104.239112][ T7644] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1144'.
[  104.322809][ T7656] sctp: [Deprecated]: syz.4.1149 (pid 7656) Use of struct sctp_assoc_value in delayed_ack socket option.
[  104.322809][ T7656] Use struct sctp_sack_info instead
[  104.415276][ T7656] loop4: detected capacity change from 0 to 1024
[  104.422489][ T7656] EXT4-fs: Ignoring removed nobh option
[  104.428164][ T7656] EXT4-fs: Ignoring removed bh option
[  104.466965][ T7656] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  104.953896][ T7670] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1151'.
[  104.963869][ T7667] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1151'.
[  104.980360][ T7670] loop2: detected capacity change from 0 to 1024
[  104.995739][ T7667] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1151'.
[  105.029834][ T7673] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'.
[  105.160515][ T7688] sctp: [Deprecated]: syz.1.1160 (pid 7688) Use of struct sctp_assoc_value in delayed_ack socket option.
[  105.160515][ T7688] Use struct sctp_sack_info instead
[  105.192971][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1161'.
[  105.290622][ T7688] loop1: detected capacity change from 0 to 1024
[  105.301846][ T7688] EXT4-fs: Ignoring removed nobh option
[  105.307534][ T7688] EXT4-fs: Ignoring removed bh option
[  105.318407][ T7688] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  105.331007][ T7688] EXT4-fs mount: 14 callbacks suppressed
[  105.331024][ T7688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.418420][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.442032][ T7701] lo speed is unknown, defaulting to 1000
[  105.448129][ T7701] lo speed is unknown, defaulting to 1000
[  105.454765][ T7701] lo speed is unknown, defaulting to 1000
[  105.463553][ T7701] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  105.496143][ T7701] lo speed is unknown, defaulting to 1000
[  105.502475][ T7701] lo speed is unknown, defaulting to 1000
[  105.516658][ T7701] lo speed is unknown, defaulting to 1000
[  105.522943][ T7701] lo speed is unknown, defaulting to 1000
[  105.530686][ T7701] lo speed is unknown, defaulting to 1000
[  105.558446][   T29] kauditd_printk_skb: 782 callbacks suppressed
[  105.558465][   T29] audit: type=1400 audit(1761589958.635:8338): avc:  denied  { ioctl } for  pid=7707 comm="syz.1.1164" path="socket:[16955]" dev="sockfs" ino=16955 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  105.604872][   T29] audit: type=1400 audit(1761589958.665:8339): avc:  denied  { ioctl } for  pid=7707 comm="syz.1.1164" path="socket:[16954]" dev="sockfs" ino=16954 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.634056][ T7711] team_slave_0: entered promiscuous mode
[  105.639794][ T7711] team_slave_1: entered promiscuous mode
[  105.641042][   T29] audit: type=1400 audit(1761589958.705:8340): avc:  denied  { execute } for  pid=7707 comm="syz.1.1164" path="/216/memory.events" dev="tmpfs" ino=1153 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  105.698389][ T7711] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  105.740361][ T7711] team0: Device macvtap1 is already an upper device of the team interface
[  105.767585][ T7711] team_slave_0: left promiscuous mode
[  105.773042][ T7711] team_slave_1: left promiscuous mode
[  105.807490][   T29] audit: type=1400 audit(1761589958.885:8341): avc:  denied  { getopt } for  pid=7715 comm="syz.0.1167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.827227][   T29] audit: type=1400 audit(1761589958.885:8342): avc:  denied  { connect } for  pid=7715 comm="syz.0.1167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.847118][   T29] audit: type=1400 audit(1761589958.885:8343): avc:  denied  { name_connect } for  pid=7715 comm="syz.0.1167" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  105.878017][ T7714] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1166'.
[  105.914170][ T7720] netlink: 'syz.1.1168': attribute type 1 has an invalid length.
[  106.005965][ T7724] netlink: 'syz.2.1169': attribute type 1 has an invalid length.
[  106.133539][   T29] audit: type=1326 audit(1761589959.205:8344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7734 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  106.157147][   T29] audit: type=1326 audit(1761589959.205:8345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7734 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  106.181227][   T29] audit: type=1326 audit(1761589959.215:8346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7734 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  106.204713][   T29] audit: type=1326 audit(1761589959.215:8347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7734 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  106.261339][ T7743] loop3: detected capacity change from 0 to 512
[  106.272525][ T7743] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  106.284247][ T7743] EXT4-fs (loop3): 1 truncate cleaned up
[  106.290366][ T7743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.314560][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.498380][ T7754] loop4: detected capacity change from 0 to 1024
[  106.505416][ T7754] EXT4-fs: Ignoring removed orlov option
[  106.511715][ T7754] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  106.527852][ T7754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.634252][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.894517][ T7780] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.989519][ T7780] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.021947][ T7780] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.080818][ T7780] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.279761][ T6551] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.290197][ T6551] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.371047][ T6551] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.384629][ T6551] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.551388][ T7799] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1193'.
[  107.766034][ T7803] sctp: [Deprecated]: syz.1.1195 (pid 7803) Use of struct sctp_assoc_value in delayed_ack socket option.
[  107.766034][ T7803] Use struct sctp_sack_info instead
[  108.101802][ T7807] lo speed is unknown, defaulting to 1000
[  108.264434][ T7803] loop1: detected capacity change from 0 to 1024
[  108.291434][ T7805] hub 1-0:1.0: USB hub found
[  108.296369][ T7805] hub 1-0:1.0: 8 ports detected
[  108.302370][ T7803] EXT4-fs: Ignoring removed nobh option
[  108.308062][ T7803] EXT4-fs: Ignoring removed bh option
[  108.434658][ T7805] lo speed is unknown, defaulting to 1000
[  108.503306][ T7810] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  108.512047][ T7810] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1197'.
[  108.547786][ T7803] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  108.562320][ T7803] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.763439][ T7825] loop3: detected capacity change from 0 to 164
[  108.783317][ T7825] iso9660: Bad value for 'uid'
[  108.788211][ T7825] iso9660: Bad value for 'uid'
[  108.800637][ T7825] siw: device registration error -23
[  108.821658][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.832348][ T7829] loop2: detected capacity change from 0 to 1024
[  108.873732][ T7829] EXT4-fs: Ignoring removed orlov option
[  108.895166][ T7827] loop0: detected capacity change from 0 to 256
[  108.902345][ T7829] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  108.958611][ T7834] loop3: detected capacity change from 0 to 8192
[  108.968732][ T7829] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.022810][ T7834] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  109.033861][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.370940][ T7869] loop3: detected capacity change from 0 to 164
[  109.379183][ T7869] iso9660: Bad value for 'uid'
[  109.384070][ T7869] iso9660: Bad value for 'uid'
[  109.401379][ T7869] siw: device registration error -23
[  109.487462][ T7873] sctp: [Deprecated]: syz.3.1218 (pid 7873) Use of struct sctp_assoc_value in delayed_ack socket option.
[  109.487462][ T7873] Use struct sctp_sack_info instead
[  109.637647][ T7873] lo speed is unknown, defaulting to 1000
[  109.677684][ T7874] loop3: detected capacity change from 0 to 1024
[  109.700518][ T7874] EXT4-fs: Ignoring removed nobh option
[  109.706239][ T7874] EXT4-fs: Ignoring removed bh option
[  109.756867][ T7874] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  109.810697][ T7874] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.980205][ T7882] sctp: [Deprecated]: syz.2.1220 (pid 7882) Use of struct sctp_assoc_value in delayed_ack socket option.
[  109.980205][ T7882] Use struct sctp_sack_info instead
[  110.020881][ T7882] loop2: detected capacity change from 0 to 1024
[  110.022738][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.041211][ T7882] EXT4-fs: Ignoring removed nobh option
[  110.046902][ T7882] EXT4-fs: Ignoring removed bh option
[  110.072229][ T7882] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  110.080806][ T7882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.266723][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.323034][ T7899] loop1: detected capacity change from 0 to 1024
[  110.385204][ T7899] EXT4-fs: Ignoring removed nomblk_io_submit option
[  110.397031][ T7907] FAULT_INJECTION: forcing a failure.
[  110.397031][ T7907] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  110.400327][ T7899] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.410430][ T7907] CPU: 0 UID: 0 PID: 7907 Comm: syz.3.1228 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  110.410509][ T7907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  110.410527][ T7907] Call Trace:
[  110.410537][ T7907]  <TASK>
[  110.410550][ T7907]  __dump_stack+0x1d/0x30
[  110.410583][ T7907]  dump_stack_lvl+0xe8/0x140
[  110.410612][ T7907]  dump_stack+0x15/0x1b
[  110.410637][ T7907]  should_fail_ex+0x265/0x280
[  110.410664][ T7907]  should_fail_alloc_page+0xf2/0x100
[  110.410816][ T7907]  __alloc_frozen_pages_noprof+0xff/0x360
[  110.410870][ T7907]  alloc_pages_mpol+0xb3/0x260
[  110.410900][ T7907]  alloc_pages_noprof+0x90/0x130
[  110.410931][ T7907]  get_free_pages_noprof+0xc/0x40
[  110.411018][ T7907]  selinux_genfs_get_sid+0x33/0x180
[  110.411051][ T7907]  inode_doinit_with_dentry+0x5fe/0x7a0
[  110.411084][ T7907]  selinux_d_instantiate+0x27/0x40
[  110.411113][ T7907]  security_d_instantiate+0x7a/0xa0
[  110.411147][ T7907]  d_instantiate+0x3f/0x80
[  110.411259][ T7907]  __debugfs_create_file+0x1c1/0x330
[  110.411289][ T7907]  debugfs_create_file_full+0x3f/0x60
[  110.411317][ T7907]  ? __pfx_tun_setup+0x10/0x10
[  110.411430][ T7907]  ref_tracker_dir_debugfs+0x100/0x1e0
[  110.411491][ T7907]  alloc_netdev_mqs+0x1a7/0xa50
[  110.411579][ T7907]  tun_set_iff+0x42c/0x8a0
[  110.411621][ T7907]  __tun_chr_ioctl+0x5f0/0x14c0
[  110.411743][ T7907]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  110.411823][ T7907]  tun_chr_ioctl+0x27/0x40
[  110.411860][ T7907]  __se_sys_ioctl+0xce/0x140
[  110.411891][ T7907]  __x64_sys_ioctl+0x43/0x50
[  110.411918][ T7907]  x64_sys_call+0x1816/0x3000
[  110.411992][ T7907]  do_syscall_64+0xd2/0x200
[  110.412019][ T7907]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  110.412122][ T7907]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  110.412164][ T7907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.412232][ T7907] RIP: 0033:0x7f0b6349efc9
[  110.412252][ T7907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.412277][ T7907] RSP: 002b:00007f0b61eff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.412303][ T7907] RAX: ffffffffffffffda RBX: 00007f0b636f5fa0 RCX: 00007f0b6349efc9
[  110.412321][ T7907] RDX: 0000200000000100 RSI: 00000000400454ca RDI: 0000000000000007
[  110.412336][ T7907] RBP: 00007f0b61eff090 R08: 0000000000000000 R09: 0000000000000000
[  110.412409][ T7907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.412426][ T7907] R13: 00007f0b636f6038 R14: 00007f0b636f5fa0 R15: 00007ffc9525e058
[  110.412453][ T7907]  </TASK>
[  110.682533][ T7899] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.698842][ T7899] xt_hashlimit: max too large, truncated to 1048576
[  110.720409][   T29] kauditd_printk_skb: 248 callbacks suppressed
[  110.720426][   T29] audit: type=1400 audit(1761589963.795:8596): avc:  denied  { create } for  pid=7917 comm="syz.0.1230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  110.756486][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.783747][ T7922] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1233'.
[  110.807907][ T7922] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1233'.
[  110.876437][   T29] audit: type=1326 audit(1761589963.945:8597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7923 comm="syz.1.1232" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0780e3efc9 code=0x0
[  110.940316][ T7930] sctp: [Deprecated]: syz.3.1234 (pid 7930) Use of struct sctp_assoc_value in delayed_ack socket option.
[  110.940316][ T7930] Use struct sctp_sack_info instead
[  110.963762][ T7930] loop3: detected capacity change from 0 to 1024
[  110.973442][ T7930] EXT4-fs: Ignoring removed nobh option
[  110.979140][ T7930] EXT4-fs: Ignoring removed bh option
[  110.998904][ T7930] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  111.007595][ T7930] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.049283][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.269574][   T29] audit: type=1326 audit(1761589964.345:8598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7940 comm="syz.2.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  111.357084][   T29] audit: type=1326 audit(1761589964.365:8599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7940 comm="syz.2.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  111.382569][   T29] audit: type=1326 audit(1761589964.455:8600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7940 comm="syz.2.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  111.406272][   T29] audit: type=1326 audit(1761589964.455:8601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7940 comm="syz.2.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  111.440467][   T29] audit: type=1326 audit(1761589964.515:8602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7940 comm="syz.2.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f4ea16cefc9 code=0x7ffc0000
[  111.616445][   T29] audit: type=1326 audit(1761589964.665:8603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7944 comm="syz.3.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  111.640217][   T29] audit: type=1326 audit(1761589964.665:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7944 comm="syz.3.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  111.663914][   T29] audit: type=1326 audit(1761589964.665:8605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7944 comm="syz.3.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b6349efc9 code=0x7ffc0000
[  111.989399][ T7956] random: crng reseeded on system resumption
[  111.993449][ T7955] loop2: detected capacity change from 0 to 1024
[  112.076747][ T7955] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.098648][ T7955] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.136863][ T7955] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.150425][ T7955] xt_hashlimit: max too large, truncated to 1048576
[  112.203164][ T7962] loop1: detected capacity change from 0 to 4096
[  112.261187][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.273370][ T7962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.310185][ T7962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1245'.
[  112.476276][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.486268][ T7983] FAULT_INJECTION: forcing a failure.
[  112.486268][ T7983] name failslab, interval 1, probability 0, space 0, times 0
[  112.499089][ T7983] CPU: 1 UID: 0 PID: 7983 Comm: syz.2.1252 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.499126][ T7983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  112.499142][ T7983] Call Trace:
[  112.499212][ T7983]  <TASK>
[  112.499222][ T7983]  __dump_stack+0x1d/0x30
[  112.499253][ T7983]  dump_stack_lvl+0xe8/0x140
[  112.499280][ T7983]  dump_stack+0x15/0x1b
[  112.499350][ T7983]  should_fail_ex+0x265/0x280
[  112.499375][ T7983]  ? sctp_add_bind_addr+0x71/0x1e0
[  112.499419][ T7983]  should_failslab+0x8c/0xb0
[  112.499516][ T7983]  __kmalloc_cache_noprof+0x4c/0x4a0
[  112.499609][ T7983]  sctp_add_bind_addr+0x71/0x1e0
[  112.499661][ T7983]  sctp_do_bind+0x427/0x4b0
[  112.499751][ T7983]  sctp_connect_new_asoc+0x153/0x3a0
[  112.499788][ T7983]  sctp_sendmsg+0xf10/0x18d0
[  112.499821][ T7983]  ? selinux_socket_sendmsg+0xb1/0x1b0
[  112.499870][ T7983]  ? __pfx_sctp_sendmsg+0x10/0x10
[  112.499901][ T7983]  inet_sendmsg+0xc5/0xd0
[  112.500073][ T7983]  __sock_sendmsg+0x102/0x180
[  112.500107][ T7983]  ____sys_sendmsg+0x31e/0x4e0
[  112.500231][ T7983]  ___sys_sendmsg+0x17b/0x1d0
[  112.500294][ T7983]  __x64_sys_sendmsg+0xd4/0x160
[  112.500394][ T7983]  x64_sys_call+0x191e/0x3000
[  112.500420][ T7983]  do_syscall_64+0xd2/0x200
[  112.500445][ T7983]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  112.500482][ T7983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.500518][ T7983] RIP: 0033:0x7f4ea16cefc9
[  112.500538][ T7983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.500623][ T7983] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  112.500649][ T7983] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[  112.500673][ T7983] RDX: 00000000000003e8 RSI: 00002000000004c0 RDI: 0000000000000007
[  112.500693][ T7983] RBP: 00007f4ea0137090 R08: 0000000000000000 R09: 0000000000000000
[  112.500708][ T7983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.500724][ T7983] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[  112.500747][ T7983]  </TASK>
[  112.821606][ T7994] sctp: [Deprecated]: syz.2.1256 (pid 7994) Use of struct sctp_assoc_value in delayed_ack socket option.
[  112.821606][ T7994] Use struct sctp_sack_info instead
[  112.851979][ T7996] FAULT_INJECTION: forcing a failure.
[  112.851979][ T7996] name failslab, interval 1, probability 0, space 0, times 0
[  112.864765][ T7996] CPU: 0 UID: 0 PID: 7996 Comm: syz.1.1257 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.864801][ T7996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  112.864818][ T7996] Call Trace:
[  112.864900][ T7996]  <TASK>
[  112.864907][ T7996]  __dump_stack+0x1d/0x30
[  112.864985][ T7996]  dump_stack_lvl+0xe8/0x140
[  112.865012][ T7996]  dump_stack+0x15/0x1b
[  112.865036][ T7996]  should_fail_ex+0x265/0x280
[  112.865061][ T7996]  should_failslab+0x8c/0xb0
[  112.865118][ T7996]  kmem_cache_alloc_noprof+0x50/0x480
[  112.865147][ T7996]  ? security_file_alloc+0x32/0x100
[  112.865181][ T7996]  security_file_alloc+0x32/0x100
[  112.865217][ T7996]  init_file+0x5c/0x1d0
[  112.865252][ T7996]  alloc_empty_file+0x8b/0x200
[  112.865287][ T7996]  alloc_file_pseudo+0xc6/0x160
[  112.865340][ T7996]  __shmem_file_setup+0x1de/0x210
[  112.865367][ T7996]  shmem_file_setup+0x3b/0x50
[  112.865389][ T7996]  __se_sys_memfd_create+0x2c3/0x590
[  112.865429][ T7996]  __x64_sys_memfd_create+0x31/0x40
[  112.865461][ T7996]  x64_sys_call+0x2ac2/0x3000
[  112.865491][ T7996]  do_syscall_64+0xd2/0x200
[  112.865577][ T7996]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  112.865652][ T7996]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  112.865694][ T7996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.865723][ T7996] RIP: 0033:0x7f0780e3efc9
[  112.865742][ T7996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.865777][ T7996] RSP: 002b:00007f077f89ed68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  112.865802][ T7996] RAX: ffffffffffffffda RBX: 00000000000005eb RCX: 00007f0780e3efc9
[  112.865818][ T7996] RDX: 00007f077f89edec RSI: 0000000000000000 RDI: 00007f0780ec2960
[  112.865835][ T7996] RBP: 0000200000000f00 R08: 00007f077f89eb07 R09: 0000000000000000
[  112.865850][ T7996] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  112.865862][ T7996] R13: 00007f077f89edec R14: 00007f077f89edf0 R15: 00007ffdedf37088
[  112.865913][ T7996]  </TASK>
[  113.104024][ T7998] lo speed is unknown, defaulting to 1000
[  113.363378][ T8010] loop4: detected capacity change from 0 to 164
[  113.395928][ T8010] iso9660: Bad value for 'uid'
[  113.400951][ T8010] iso9660: Bad value for 'uid'
[  113.475626][ T8012] loop3: detected capacity change from 0 to 8192
[  113.487215][ T8010] siw: device registration error -23
[  113.525354][ T8012] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  113.547598][ T7994] loop2: detected capacity change from 0 to 1024
[  113.554363][ T7994] EXT4-fs: Ignoring removed nobh option
[  113.560024][ T7994] EXT4-fs: Ignoring removed bh option
[  113.575746][ T8020] ip6t_srh: unknown srh match flags  4000
[  113.624225][ T7994] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  113.641378][ T8025] loop4: detected capacity change from 0 to 1024
[  113.663398][ T7994] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  113.676697][ T8025] EXT4-fs: Ignoring removed nomblk_io_submit option
[  113.691125][ T8025] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  113.696543][ T8034] loop0: detected capacity change from 0 to 164
[  113.706855][ T8034] iso9660: Bad value for 'uid'
[  113.711698][ T8034] iso9660: Bad value for 'uid'
[  113.725771][ T8034] siw: device registration error -23
[  113.763581][ T8025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.801591][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.830853][ T8025] xt_hashlimit: max too large, truncated to 1048576
[  113.849321][ T8038] Driver unsupported XDP return value 0 on prog  (id 763) dev N/A, expect packet loss!
[  113.925063][ T8049] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1276'.
[  113.963141][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.972927][ T8049] netlink: 'syz.3.1276': attribute type 2 has an invalid length.
[  113.980920][ T8049] netlink: 10698 bytes leftover after parsing attributes in process `syz.3.1276'.
[  113.981889][ T8038] loop1: detected capacity change from 0 to 2048
[  114.024308][ T8060] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8060 comm=syz.4.1280
[  114.070883][ T8049] loop3: detected capacity change from 0 to 8192
[  114.183602][ T3519]  loop1: unable to read partition table
[  114.201666][ T8064] loop4: detected capacity change from 0 to 8192
[  114.208317][ T3519] loop1: partition table beyond EOD, truncated
[  114.245860][ T8064] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  114.327571][ T8068] loop0: detected capacity change from 0 to 8192
[  114.362991][ T8038]  loop1: unable to read partition table
[  114.374218][ T8068] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  114.386203][ T8038] loop1: partition table beyond EOD, truncated
[  114.392548][ T8038] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  114.469701][ T3005]  loop1: unable to read partition table
[  114.529747][ T8074] sd 0:0:1:0: device reset
[  114.961686][ T3005] loop1: partition table beyond EOD, truncated
[  114.989811][ T8089] IPv6: NLM_F_CREATE should be specified when creating new route
[  114.997516][ T8093] serio: Serial port ptm0
[  115.026099][ T8089] SELinux: failed to load policy
[  115.210802][ T8106] loop1: detected capacity change from 0 to 1024
[  115.228795][ T8112] loop3: detected capacity change from 0 to 1024
[  115.231778][ T8115] loop0: detected capacity change from 0 to 1024
[  115.237863][ T8112] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.248483][ T8116] FAULT_INJECTION: forcing a failure.
[  115.248483][ T8116] name failslab, interval 1, probability 0, space 0, times 0
[  115.250773][ T8106] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.261194][ T8116] CPU: 1 UID: 0 PID: 8116 Comm: syz.4.1301 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.261225][ T8116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.261313][ T8116] Call Trace:
[  115.261323][ T8116]  <TASK>
[  115.261334][ T8116]  __dump_stack+0x1d/0x30
[  115.261365][ T8116]  dump_stack_lvl+0xe8/0x140
[  115.261393][ T8116]  dump_stack+0x15/0x1b
[  115.261417][ T8116]  should_fail_ex+0x265/0x280
[  115.261444][ T8116]  should_failslab+0x8c/0xb0
[  115.261503][ T8116]  kmem_cache_alloc_noprof+0x50/0x480
[  115.261607][ T8116]  ? skb_clone+0x151/0x1f0
[  115.261674][ T8116]  skb_clone+0x151/0x1f0
[  115.261742][ T8116]  __netlink_deliver_tap+0x2c9/0x500
[  115.261789][ T8116]  ? netlink_attachskb+0x2cc/0x650
[  115.261874][ T8116]  netlink_sendskb+0x126/0x150
[  115.261914][ T8116]  netlink_unicast+0x2a2/0x690
[  115.261957][ T8116]  netlink_ack+0x4c8/0x500
[  115.262004][ T8116]  netlink_rcv_skb+0x192/0x220
[  115.262071][ T8116]  ? __pfx_genl_rcv_msg+0x10/0x10
[  115.262117][ T8116]  genl_rcv+0x28/0x40
[  115.262145][ T8116]  netlink_unicast+0x5c0/0x690
[  115.262260][ T8116]  netlink_sendmsg+0x58b/0x6b0
[  115.262287][ T8116]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.262314][ T8116]  __sock_sendmsg+0x145/0x180
[  115.262394][ T8116]  ____sys_sendmsg+0x31e/0x4e0
[  115.262444][ T8116]  ___sys_sendmsg+0x17b/0x1d0
[  115.262504][ T8116]  __x64_sys_sendmsg+0xd4/0x160
[  115.262723][ T8116]  x64_sys_call+0x191e/0x3000
[  115.262812][ T8116]  do_syscall_64+0xd2/0x200
[  115.262837][ T8116]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.262878][ T8116]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  115.262919][ T8116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.263000][ T8116] RIP: 0033:0x7fcd21c4efc9
[  115.263023][ T8116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.263084][ T8116] RSP: 002b:00007fcd206af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.263176][ T8116] RAX: ffffffffffffffda RBX: 00007fcd21ea5fa0 RCX: 00007fcd21c4efc9
[  115.263192][ T8116] RDX: 000000002000c800 RSI: 0000200000000380 RDI: 0000000000000006
[  115.263210][ T8116] RBP: 00007fcd206af090 R08: 0000000000000000 R09: 0000000000000000
[  115.263227][ T8116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.263245][ T8116] R13: 00007fcd21ea6038 R14: 00007fcd21ea5fa0 R15: 00007ffd748de178
[  115.263270][ T8116]  </TASK>
[  115.273044][ T8115] EXT4-fs: Ignoring removed orlov option
[  115.309344][ T8112] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.332561][ T8106] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.352335][ T8115] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  115.357060][ T8116] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.428479][ T8112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.433834][ T8106] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.437812][ T8115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.460565][ T8112] xt_hashlimit: max too large, truncated to 1048576
[  115.516619][ T8106] xt_hashlimit: max too large, truncated to 1048576
[  115.601142][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.602138][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.638064][ T8116] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.654721][ T8131] FAULT_INJECTION: forcing a failure.
[  115.654721][ T8131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.667885][ T8131] CPU: 0 UID: 0 PID: 8131 Comm: syz.3.1306 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.667914][ T8131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.667927][ T8131] Call Trace:
[  115.667934][ T8131]  <TASK>
[  115.667994][ T8131]  __dump_stack+0x1d/0x30
[  115.668019][ T8131]  dump_stack_lvl+0xe8/0x140
[  115.668081][ T8131]  dump_stack+0x15/0x1b
[  115.668132][ T8131]  should_fail_ex+0x265/0x280
[  115.668176][ T8131]  should_fail+0xb/0x20
[  115.668194][ T8131]  should_fail_usercopy+0x1a/0x20
[  115.668216][ T8131]  _copy_from_iter+0xd2/0xe80
[  115.668240][ T8131]  ? __build_skb_around+0x1ab/0x200
[  115.668271][ T8131]  ? __alloc_skb+0x223/0x320
[  115.668316][ T8131]  netlink_sendmsg+0x471/0x6b0
[  115.668340][ T8131]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.668432][ T8131]  __sock_sendmsg+0x145/0x180
[  115.668483][ T8131]  ____sys_sendmsg+0x31e/0x4e0
[  115.668525][ T8131]  ___sys_sendmsg+0x17b/0x1d0
[  115.668576][ T8131]  __x64_sys_sendmsg+0xd4/0x160
[  115.668633][ T8131]  x64_sys_call+0x191e/0x3000
[  115.668662][ T8131]  do_syscall_64+0xd2/0x200
[  115.668684][ T8131]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.668786][ T8131]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  115.668823][ T8131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.668858][ T8131] RIP: 0033:0x7f0b6349efc9
[  115.668877][ T8131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.668899][ T8131] RSP: 002b:00007f0b61eff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.668923][ T8131] RAX: ffffffffffffffda RBX: 00007f0b636f5fa0 RCX: 00007f0b6349efc9
[  115.668939][ T8131] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  115.668954][ T8131] RBP: 00007f0b61eff090 R08: 0000000000000000 R09: 0000000000000000
[  115.668985][ T8131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.668999][ T8131] R13: 00007f0b636f6038 R14: 00007f0b636f5fa0 R15: 00007ffc9525e058
[  115.669022][ T8131]  </TASK>
[  115.669201][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.739702][ T8132] SELinux:  policydb magic number 0x1cc7852 does not match expected magic number 0xf97cff8c
[  115.826452][ T8138] FAULT_INJECTION: forcing a failure.
[  115.826452][ T8138] name failslab, interval 1, probability 0, space 0, times 0
[  115.872643][ T8132] SELinux: failed to load policy
[  115.878231][ T8138] CPU: 0 UID: 0 PID: 8138 Comm: syz.1.1307 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.878270][ T8138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.878289][ T8138] Call Trace:
[  115.878300][ T8138]  <TASK>
[  115.878311][ T8138]  __dump_stack+0x1d/0x30
[  115.878343][ T8138]  dump_stack_lvl+0xe8/0x140
[  115.878389][ T8138]  dump_stack+0x15/0x1b
[  115.878424][ T8138]  should_fail_ex+0x265/0x280
[  115.878451][ T8138]  should_failslab+0x8c/0xb0
[  115.878521][ T8138]  __kmalloc_noprof+0xa5/0x570
[  115.878640][ T8138]  ? aio_setup_ring+0x1e8/0x760
[  115.878683][ T8138]  aio_setup_ring+0x1e8/0x760
[  115.878729][ T8138]  ioctx_alloc+0x2c4/0x4e0
[  115.878781][ T8138]  __se_sys_io_setup+0x6b/0x1b0
[  115.878819][ T8138]  __x64_sys_io_setup+0x31/0x40
[  115.878858][ T8138]  x64_sys_call+0x2f0e/0x3000
[  115.878929][ T8138]  do_syscall_64+0xd2/0x200
[  115.878955][ T8138]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.878999][ T8138]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  115.879046][ T8138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.879076][ T8138] RIP: 0033:0x7f0780e3efc9
[  115.879098][ T8138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.879123][ T8138] RSP: 002b:00007f077f89f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  115.879149][ T8138] RAX: ffffffffffffffda RBX: 00007f0781095fa0 RCX: 00007f0780e3efc9
[  115.879167][ T8138] RDX: 0000000000000000 RSI: 0000200000002400 RDI: 00000000000008f0
[  115.879250][ T8138] RBP: 00007f077f89f090 R08: 0000000000000000 R09: 0000000000000000
[  115.879267][ T8138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.879285][ T8138] R13: 00007f0781096038 R14: 00007f0781095fa0 R15: 00007ffdedf37088
[  115.879311][ T8138]  </TASK>
[  115.879561][   T29] kauditd_printk_skb: 445 callbacks suppressed
[  115.879575][   T29] audit: type=1400 audit(1761589968.945:9051): avc:  denied  { write } for  pid=8130 comm="syz.0.1305" laddr=fe80::b01a:6dff:fedb:2abd lport=58 faddr=ff02::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  116.053334][ T8144] netlink: 31 bytes leftover after parsing attributes in process `syz.1.1311'.
[  116.064041][   T29] audit: type=1400 audit(1761589969.125:9052): avc:  denied  { mount } for  pid=8143 comm="syz.1.1311" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  116.067940][ T8144] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1311'.
[  116.157859][   T29] audit: type=1400 audit(1761589969.225:9053): avc:  denied  { create } for  pid=8148 comm="syz.0.1313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  116.177693][   T29] audit: type=1400 audit(1761589969.225:9054): avc:  denied  { ioctl } for  pid=8148 comm="syz.0.1313" path="socket:[18817]" dev="sockfs" ino=18817 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  116.202981][   T29] audit: type=1326 audit(1761589969.225:9055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.226403][   T29] audit: type=1326 audit(1761589969.225:9056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.230777][ T8145] loop1: detected capacity change from 0 to 512
[  116.249858][   T29] audit: type=1326 audit(1761589969.225:9057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.249893][   T29] audit: type=1326 audit(1761589969.225:9058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.249925][   T29] audit: type=1326 audit(1761589969.225:9059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.250318][   T29] audit: type=1326 audit(1761589969.325:9060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  116.258365][ T8116] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.365150][ T8145] ext4: Unknown parameter 'rootcontex'
[  116.432799][ T8156] loop1: detected capacity change from 0 to 1024
[  116.441762][ T8156] EXT4-fs: Ignoring removed orlov option
[  116.443395][ T8154] loop0: detected capacity change from 0 to 8192
[  116.449689][ T8156] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  116.465005][ T8116] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.479746][ T8156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.493897][ T8154] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  116.541564][ T6551] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.568210][ T6551] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.585090][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.599842][ T6551] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.615936][ T6551] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.635229][ T8172] sctp: [Deprecated]: syz.1.1318 (pid 8172) Use of struct sctp_assoc_value in delayed_ack socket option.
[  116.635229][ T8172] Use struct sctp_sack_info instead
[  116.687110][ T8172] lo speed is unknown, defaulting to 1000
[  116.741663][ T8177] loop1: detected capacity change from 0 to 1024
[  116.768831][ T8177] EXT4-fs: Ignoring removed nobh option
[  116.774631][ T8177] EXT4-fs: Ignoring removed bh option
[  116.876466][ T8177] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  116.915403][ T8177] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.177664][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.273711][ T8200] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  117.284210][ T8200] netlink: 'syz.1.1326': attribute type 10 has an invalid length.
[  117.292416][ T8200] ipvlan0: entered allmulticast mode
[  117.297870][ T8200] veth0_vlan: entered allmulticast mode
[  117.323221][ T8200] team0: Device ipvlan0 failed to register rx_handler
[  117.338782][ T8203] SELinux:  Context Ü is not valid (left unmapped).
[  117.346762][ T8203] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  117.355498][ T8198] loop3: detected capacity change from 0 to 1024
[  117.362822][ T8203] loop4: detected capacity change from 0 to 128
[  117.365762][ T8203] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  117.390371][ T8203] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  117.418367][ T6501] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  117.457684][ T8209] sctp: [Deprecated]: syz.4.1329 (pid 8209) Use of struct sctp_assoc_value in delayed_ack socket option.
[  117.457684][ T8209] Use struct sctp_sack_info instead
[  117.470342][ T8198] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.503487][ T8209] lo speed is unknown, defaulting to 1000
[  117.556924][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.566573][ T8211] loop4: detected capacity change from 0 to 1024
[  117.573443][ T8211] EXT4-fs: Ignoring removed nobh option
[  117.579241][ T8211] EXT4-fs: Ignoring removed bh option
[  117.604040][ T8211] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  117.636206][ T8211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.725783][ T8227] loop2: detected capacity change from 0 to 128
[  117.736132][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.811230][ T8231] loop0: detected capacity change from 0 to 1024
[  117.846389][ T8231] EXT4-fs: Ignoring removed nobh option
[  117.852016][ T8231] EXT4-fs: Ignoring removed bh option
[  117.877359][ T8231] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  117.887858][ T8231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.895272][ T8241] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1341'.
[  117.923687][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.134030][ T8262] loop2: detected capacity change from 0 to 512
[  118.148414][ T8262] EXT4-fs (loop2): too many log groups per flexible block group
[  118.156631][ T8262] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  118.163757][ T8262] EXT4-fs (loop2): mount failed
[  118.276520][ T8272] sctp: [Deprecated]: syz.2.1352 (pid 8272) Use of struct sctp_assoc_value in delayed_ack socket option.
[  118.276520][ T8272] Use struct sctp_sack_info instead
[  118.303704][ T8272] loop2: detected capacity change from 0 to 1024
[  118.316267][ T8272] EXT4-fs: Ignoring removed nobh option
[  118.322013][ T8272] EXT4-fs: Ignoring removed bh option
[  118.347941][ T8272] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  118.358136][ T8272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.422291][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.488210][ T8281] FAULT_INJECTION: forcing a failure.
[  118.488210][ T8281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.501542][ T8281] CPU: 1 UID: 0 PID: 8281 Comm: syz.2.1354 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  118.501575][ T8281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  118.501591][ T8281] Call Trace:
[  118.501600][ T8281]  <TASK>
[  118.501609][ T8281]  __dump_stack+0x1d/0x30
[  118.501708][ T8281]  dump_stack_lvl+0xe8/0x140
[  118.501739][ T8281]  dump_stack+0x15/0x1b
[  118.501761][ T8281]  should_fail_ex+0x265/0x280
[  118.501836][ T8281]  should_fail+0xb/0x20
[  118.501856][ T8281]  should_fail_usercopy+0x1a/0x20
[  118.501882][ T8281]  _copy_from_iter+0xd2/0xe80
[  118.501904][ T8281]  ? __build_skb_around+0x1ab/0x200
[  118.501967][ T8281]  ? __alloc_skb+0x223/0x320
[  118.502004][ T8281]  netlink_sendmsg+0x471/0x6b0
[  118.502026][ T8281]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.502108][ T8281]  __sock_sendmsg+0x145/0x180
[  118.502132][ T8281]  ____sys_sendmsg+0x31e/0x4e0
[  118.502218][ T8281]  ___sys_sendmsg+0x17b/0x1d0
[  118.502265][ T8281]  __x64_sys_sendmsg+0xd4/0x160
[  118.502309][ T8281]  x64_sys_call+0x191e/0x3000
[  118.502343][ T8281]  do_syscall_64+0xd2/0x200
[  118.502360][ T8281]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  118.502396][ T8281]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  118.502433][ T8281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.502460][ T8281] RIP: 0033:0x7f4ea16cefc9
[  118.502479][ T8281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.502557][ T8281] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.502580][ T8281] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[  118.502596][ T8281] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  118.502611][ T8281] RBP: 00007f4ea0137090 R08: 0000000000000000 R09: 0000000000000000
[  118.502624][ T8281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.502636][ T8281] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[  118.502727][ T8281]  </TASK>
[  118.542155][ T8284] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  118.718134][ T8283] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1356'.
[  118.892664][ T8294] FAULT_INJECTION: forcing a failure.
[  118.892664][ T8294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.905913][ T8294] CPU: 0 UID: 0 PID: 8294 Comm: syz.2.1361 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  118.905984][ T8294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  118.906000][ T8294] Call Trace:
[  118.906008][ T8294]  <TASK>
[  118.906018][ T8294]  __dump_stack+0x1d/0x30
[  118.906047][ T8294]  dump_stack_lvl+0xe8/0x140
[  118.906073][ T8294]  dump_stack+0x15/0x1b
[  118.906092][ T8294]  should_fail_ex+0x265/0x280
[  118.906124][ T8294]  should_fail+0xb/0x20
[  118.906139][ T8294]  should_fail_usercopy+0x1a/0x20
[  118.906195][ T8294]  _copy_from_iter+0xd2/0xe80
[  118.906223][ T8294]  ? __build_skb_around+0x1ab/0x200
[  118.906260][ T8294]  ? __alloc_skb+0x223/0x320
[  118.906319][ T8294]  netlink_sendmsg+0x471/0x6b0
[  118.906376][ T8294]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.906458][ T8294]  __sock_sendmsg+0x145/0x180
[  118.906488][ T8294]  ____sys_sendmsg+0x31e/0x4e0
[  118.906613][ T8294]  ___sys_sendmsg+0x17b/0x1d0
[  118.906672][ T8294]  __x64_sys_sendmsg+0xd4/0x160
[  118.906780][ T8294]  x64_sys_call+0x191e/0x3000
[  118.906837][ T8294]  do_syscall_64+0xd2/0x200
[  118.906893][ T8294]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  118.906929][ T8294]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  118.906992][ T8294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.907090][ T8294] RIP: 0033:0x7f4ea16cefc9
[  118.907105][ T8294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.907176][ T8294] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.907195][ T8294] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[  118.907207][ T8294] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[  118.907219][ T8294] RBP: 00007f4ea0137090 R08: 0000000000000000 R09: 0000000000000000
[  118.907230][ T8294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.907241][ T8294] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[  118.907263][ T8294]  </TASK>
[  119.144472][ T8302] sctp: [Deprecated]: syz.2.1364 (pid 8302) Use of struct sctp_assoc_value in delayed_ack socket option.
[  119.144472][ T8302] Use struct sctp_sack_info instead
[  119.146162][ T8300] loop0: detected capacity change from 0 to 256
[  119.175757][ T8302] loop2: detected capacity change from 0 to 1024
[  119.182875][ T8302] EXT4-fs: Ignoring removed nobh option
[  119.188665][ T8302] EXT4-fs: Ignoring removed bh option
[  119.227813][ T8302] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  119.237211][ T8302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.305306][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.337446][ T8310] sctp: [Deprecated]: syz.3.1367 (pid 8310) Use of struct sctp_assoc_value in delayed_ack socket option.
[  119.337446][ T8310] Use struct sctp_sack_info instead
[  119.390968][ T8310] lo speed is unknown, defaulting to 1000
[  119.430094][ T8317] loop3: detected capacity change from 0 to 1024
[  119.453626][ T8317] EXT4-fs: Ignoring removed nobh option
[  119.459375][ T8317] EXT4-fs: Ignoring removed bh option
[  119.468829][ T8320] netlink: 'syz.0.1370': attribute type 1 has an invalid length.
[  119.497581][ T8317] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  119.506867][ T8317] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.618579][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.900340][ T8342] sctp: [Deprecated]: syz.4.1377 (pid 8342) Use of struct sctp_assoc_value in delayed_ack socket option.
[  119.900340][ T8342] Use struct sctp_sack_info instead
[  119.965868][ T8340] loop3: detected capacity change from 0 to 256
[  119.998546][ T8342] loop4: detected capacity change from 0 to 1024
[  120.016246][ T8340] FAT-fs (loop3): codepage cp949 not found
[  120.023374][ T8342] EXT4-fs: Ignoring removed nobh option
[  120.029037][ T8342] EXT4-fs: Ignoring removed bh option
[  120.068239][ T8348] loop1: detected capacity change from 0 to 256
[  120.079003][ T8347] loop2: detected capacity change from 0 to 2048
[  120.096491][ T8342] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  120.109649][ T8348] FAT-fs (loop1): codepage cp949 not found
[  120.140635][ T8353] serio: Serial port ptm0
[  120.145118][ T8342] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.196428][ T8347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.215436][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.267169][ T8359] serio: Serial port ptm1
[  120.286707][ T8360] FAULT_INJECTION: forcing a failure.
[  120.286707][ T8360] name failslab, interval 1, probability 0, space 0, times 0
[  120.299442][ T8360] CPU: 0 UID: 0 PID: 8360 Comm: syz.2.1378 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  120.299469][ T8360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  120.299486][ T8360] Call Trace:
[  120.299548][ T8360]  <TASK>
[  120.299558][ T8360]  __dump_stack+0x1d/0x30
[  120.299594][ T8360]  dump_stack_lvl+0xe8/0x140
[  120.299614][ T8360]  dump_stack+0x15/0x1b
[  120.299631][ T8360]  should_fail_ex+0x265/0x280
[  120.299654][ T8360]  should_failslab+0x8c/0xb0
[  120.299772][ T8360]  kmem_cache_alloc_noprof+0x50/0x480
[  120.299804][ T8360]  ? audit_log_start+0x342/0x720
[  120.299825][ T8360]  audit_log_start+0x342/0x720
[  120.299847][ T8360]  ? kstrtouint+0x76/0xc0
[  120.299919][ T8360]  audit_seccomp+0x48/0x100
[  120.300012][ T8360]  ? __seccomp_filter+0x82d/0x1250
[  120.300048][ T8360]  __seccomp_filter+0x83e/0x1250
[  120.300084][ T8360]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  120.300201][ T8360]  ? vfs_write+0x7e8/0x960
[  120.300234][ T8360]  ? __rcu_read_unlock+0x4f/0x70
[  120.300291][ T8360]  ? __fget_files+0x184/0x1c0
[  120.300327][ T8360]  __secure_computing+0x82/0x150
[  120.300384][ T8360]  syscall_trace_enter+0xcf/0x1e0
[  120.300420][ T8360]  do_syscall_64+0xac/0x200
[  120.300546][ T8360]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  120.300582][ T8360]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  120.300635][ T8360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.300662][ T8360] RIP: 0033:0x7f4ea16cefc9
[  120.300683][ T8360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.300768][ T8360] RSP: 002b:00007f4ea0116038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e2
[  120.300836][ T8360] RAX: ffffffffffffffda RBX: 00007f4ea1926090 RCX: 00007f4ea16cefc9
[  120.300852][ T8360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.300868][ T8360] RBP: 00007f4ea0116090 R08: 0000000000000000 R09: 0000000000000000
[  120.300884][ T8360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.300899][ T8360] R13: 00007f4ea1926128 R14: 00007f4ea1926090 R15: 00007ffe1a91c9b8
[  120.300923][ T8360]  </TASK>
[  120.697702][ T8371] sctp: [Deprecated]: syz.0.1382 (pid 8371) Use of struct sctp_assoc_value in delayed_ack socket option.
[  120.697702][ T8371] Use struct sctp_sack_info instead
[  120.733345][ T8371] loop0: detected capacity change from 0 to 1024
[  120.746851][ T8371] EXT4-fs: Ignoring removed nobh option
[  120.752549][ T8371] EXT4-fs: Ignoring removed bh option
[  120.796801][ T8371] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  120.815376][ T8371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.876038][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.899830][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.991592][ T8376] loop2: detected capacity change from 0 to 8192
[  121.004119][ T8380] FAULT_INJECTION: forcing a failure.
[  121.004119][ T8380] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.017327][ T8380] CPU: 1 UID: 0 PID: 8380 Comm: syz.0.1386 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  121.017417][ T8380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  121.017430][ T8380] Call Trace:
[  121.017439][ T8380]  <TASK>
[  121.017448][ T8380]  __dump_stack+0x1d/0x30
[  121.017474][ T8380]  dump_stack_lvl+0xe8/0x140
[  121.017577][ T8380]  dump_stack+0x15/0x1b
[  121.017598][ T8380]  should_fail_ex+0x265/0x280
[  121.017680][ T8380]  should_fail+0xb/0x20
[  121.017698][ T8380]  should_fail_usercopy+0x1a/0x20
[  121.017796][ T8380]  _copy_from_user+0x1c/0xb0
[  121.017819][ T8380]  ___sys_sendmsg+0xc1/0x1d0
[  121.017874][ T8380]  __x64_sys_sendmsg+0xd4/0x160
[  121.017981][ T8380]  x64_sys_call+0x191e/0x3000
[  121.018043][ T8380]  do_syscall_64+0xd2/0x200
[  121.018065][ T8380]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  121.018113][ T8380]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  121.018149][ T8380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.018242][ T8380] RIP: 0033:0x7f6fe95eefc9
[  121.018260][ T8380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.018281][ T8380] RSP: 002b:00007f6fe8057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.018350][ T8380] RAX: ffffffffffffffda RBX: 00007f6fe9845fa0 RCX: 00007f6fe95eefc9
[  121.018364][ T8380] RDX: 0000000000040000 RSI: 0000200000000340 RDI: 0000000000000005
[  121.018379][ T8380] RBP: 00007f6fe8057090 R08: 0000000000000000 R09: 0000000000000000
[  121.018390][ T8380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.018401][ T8380] R13: 00007f6fe9846038 R14: 00007f6fe9845fa0 R15: 00007ffd632b32d8
[  121.018433][ T8380]  </TASK>
[  121.238601][   T29] kauditd_printk_skb: 257 callbacks suppressed
[  121.238616][   T29] audit: type=1400 audit(1761589974.315:9316): avc:  denied  { create } for  pid=8382 comm="syz.0.1387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  121.247000][ T8383] syzkaller1: entered promiscuous mode
[  121.270196][ T8383] syzkaller1: entered allmulticast mode
[  121.334504][ T8383] loop0: detected capacity change from 0 to 512
[  121.349185][ T8383] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  121.389751][   T29] audit: type=1400 audit(1761589974.315:9317): avc:  denied  { setopt } for  pid=8382 comm="syz.0.1387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  121.409596][   T29] audit: type=1400 audit(1761589974.315:9318): avc:  denied  { ioctl } for  pid=8382 comm="syz.0.1387" path="socket:[19256]" dev="sockfs" ino=19256 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  121.434515][   T29] audit: type=1400 audit(1761589974.405:9319): avc:  denied  { ioctl } for  pid=8382 comm="syz.0.1387" path="socket:[19259]" dev="sockfs" ino=19259 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  121.506957][ T8383] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.549557][ T8388] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not security
[  121.651773][   T29] audit: type=1400 audit(1761589974.725:9320): avc:  denied  { create } for  pid=8382 comm="syz.0.1387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  121.688980][ T8391] sctp: [Deprecated]: syz.4.1389 (pid 8391) Use of struct sctp_assoc_value in delayed_ack socket option.
[  121.688980][ T8391] Use struct sctp_sack_info instead
[  121.771219][ T8391] loop4: detected capacity change from 0 to 1024
[  121.796826][ T8391] EXT4-fs: Ignoring removed nobh option
[  121.802534][ T8391] EXT4-fs: Ignoring removed bh option
[  121.845974][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.865906][ T8391] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  121.887025][ T8391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  121.910115][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.944998][ T8395] loop0: detected capacity change from 0 to 1024
[  121.968570][ T8395] EXT4-fs: inline encryption not supported
[  121.993524][   T29] audit: type=1326 audit(1761589975.065:9321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[  122.027748][ T8395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.057366][   T29] audit: type=1326 audit(1761589975.065:9322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[  122.080909][   T29] audit: type=1326 audit(1761589975.095:9323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[  122.104335][   T29] audit: type=1326 audit(1761589975.095:9324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[  122.127806][   T29] audit: type=1326 audit(1761589975.095:9325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd21c4efc9 code=0x7ffc0000
[  122.222890][ T8395] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1390'.
[  122.252674][ T8395] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1390'.
[  122.298496][ T8410] sctp: [Deprecated]: syz.4.1395 (pid 8410) Use of struct sctp_assoc_value in delayed_ack socket option.
[  122.298496][ T8410] Use struct sctp_sack_info instead
[  122.332068][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.377475][ T8414] loop0: detected capacity change from 0 to 512
[  122.395968][ T8410] loop4: detected capacity change from 0 to 1024
[  122.402770][ T8414] EXT4-fs: Ignoring removed nobh option
[  122.418910][ T8410] EXT4-fs: Ignoring removed nobh option
[  122.424544][ T8410] EXT4-fs: Ignoring removed bh option
[  122.454280][ T8414] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #3: comm syz.0.1397: corrupted inode contents
[  122.495047][ T8410] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  122.506429][ T8414] EXT4-fs (loop0): Remounting filesystem read-only
[  122.523557][ T8414] EXT4-fs (loop0): 1 truncate cleaned up
[  122.533800][ T8410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  122.564943][ T8414] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.596931][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.606274][ T8414] ext4 filesystem being mounted at /274/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.606782][ T8423] loop2: detected capacity change from 0 to 1024
[  122.643264][ T8423] EXT4-fs: Ignoring removed nomblk_io_submit option
[  122.651473][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.666587][ T8423] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  122.671337][ T8425] loop4: detected capacity change from 0 to 512
[  122.691300][ T8423] xt_hashlimit: max too large, truncated to 1048576
[  122.717365][ T8425] EXT4-fs (loop4): too many log groups per flexible block group
[  122.728267][ T8425] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  122.735314][ T8425] EXT4-fs (loop4): mount failed
[  122.754262][ T8432] loop2: detected capacity change from 0 to 1024
[  122.761240][ T8432] EXT4-fs: Ignoring removed nobh option
[  122.766899][ T8432] EXT4-fs: Ignoring removed bh option
[  122.780778][ T8433] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1401'.
[  122.806971][ T8432] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  122.900010][ T8442] loop4: detected capacity change from 0 to 164
[  122.921410][ T8442] iso9660: Bad value for 'uid'
[  122.926397][ T8442] iso9660: Bad value for 'uid'
[  122.953942][ T8442] siw: device registration error -23
[  122.971399][ T8447] FAULT_INJECTION: forcing a failure.
[  122.971399][ T8447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.984664][ T8447] CPU: 0 UID: 0 PID: 8447 Comm: syz.2.1407 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.984758][ T8447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  122.984831][ T8447] Call Trace:
[  122.984839][ T8447]  <TASK>
[  122.984847][ T8447]  __dump_stack+0x1d/0x30
[  122.984869][ T8447]  dump_stack_lvl+0xe8/0x140
[  122.984893][ T8447]  dump_stack+0x15/0x1b
[  122.984916][ T8447]  should_fail_ex+0x265/0x280
[  122.984941][ T8447]  should_fail+0xb/0x20
[  122.984961][ T8447]  should_fail_usercopy+0x1a/0x20
[  122.985016][ T8447]  _copy_from_user+0x1c/0xb0
[  122.985056][ T8447]  ___sys_recvmsg+0xaa/0x370
[  122.985094][ T8447]  do_recvmmsg+0x1ef/0x540
[  122.985264][ T8447]  ? fput+0x8f/0xc0
[  122.985287][ T8447]  __x64_sys_recvmmsg+0xe5/0x170
[  122.985308][ T8447]  x64_sys_call+0x27aa/0x3000
[  122.985367][ T8447]  do_syscall_64+0xd2/0x200
[  122.985387][ T8447]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  122.985414][ T8447]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  122.985447][ T8447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.985504][ T8447] RIP: 0033:0x7f4ea16cefc9
[  122.985523][ T8447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.985546][ T8447] RSP: 002b:00007f4ea0137038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  122.985569][ T8447] RAX: ffffffffffffffda RBX: 00007f4ea1925fa0 RCX: 00007f4ea16cefc9
[  122.985585][ T8447] RDX: 040000000000038f RSI: 0000200000000d40 RDI: 0000000000000006
[  122.985600][ T8447] RBP: 00007f4ea0137090 R08: 0000000000000000 R09: 0000000000000000
[  122.985616][ T8447] R10: 0000000000010020 R11: 0000000000000246 R12: 0000000000000001
[  122.985677][ T8447] R13: 00007f4ea1926038 R14: 00007f4ea1925fa0 R15: 00007ffe1a91c9b8
[  122.985695][ T8447]  </TASK>
[  123.483492][ T8460] loop4: detected capacity change from 0 to 256
[  123.630463][ T8466] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  123.639045][ T8468] loop0: detected capacity change from 0 to 512
[  123.639262][ T8466] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1414'.
[  123.658517][ T8468] EXT4-fs (loop0): too many log groups per flexible block group
[  123.666530][ T8468] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  123.673647][ T8468] EXT4-fs (loop0): mount failed
[  124.078140][ T8504] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  124.086578][ T8504] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1426'.
[  124.119675][ T8506] loop3: detected capacity change from 0 to 1024
[  124.128835][ T8506] EXT4-fs: Ignoring removed nobh option
[  124.134450][ T8506] EXT4-fs: Ignoring removed bh option
[  124.138727][ T8508] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1428'.
[  124.161050][ T8506] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  124.228179][ T8524] loop3: detected capacity change from 0 to 1024
[  124.235077][ T8524] EXT4-fs: Ignoring removed orlov option
[  124.241658][ T8524] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  124.339980][ T8535] loop3: detected capacity change from 0 to 1024
[  124.346856][ T8535] EXT4-fs: inline encryption not supported
[  124.376804][ T8540] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  124.385739][ T8540] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1438'.
[  124.417689][ T8545] loop0: detected capacity change from 0 to 1024
[  124.424823][ T8545] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.432020][ T8545] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.443340][ T8545] xt_hashlimit: max too large, truncated to 1048576
[  124.708158][ T8570] loop1: detected capacity change from 0 to 1024
[  124.715233][ T8570] EXT4-fs: Ignoring removed nomblk_io_submit option
[  124.722235][ T8570] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.743607][ T8570] xt_hashlimit: max too large, truncated to 1048576
[  124.779497][ T8574] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  124.789485][ T8574] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1450'.
[  124.861978][ T8580] loop1: detected capacity change from 0 to 256
[  125.000810][ T8590] loop4: detected capacity change from 0 to 256
[  125.032834][ T8594] FAULT_INJECTION: forcing a failure.
[  125.032834][ T8594] name failslab, interval 1, probability 0, space 0, times 0
[  125.045568][ T8594] CPU: 1 UID: 0 PID: 8594 Comm: syz.1.1458 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  125.045661][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.045675][ T8594] Call Trace:
[  125.045684][ T8594]  <TASK>
[  125.045694][ T8594]  __dump_stack+0x1d/0x30
[  125.045779][ T8594]  dump_stack_lvl+0xe8/0x140
[  125.045802][ T8594]  dump_stack+0x15/0x1b
[  125.045825][ T8594]  should_fail_ex+0x265/0x280
[  125.045888][ T8594]  should_failslab+0x8c/0xb0
[  125.045927][ T8594]  kmem_cache_alloc_noprof+0x50/0x480
[  125.045965][ T8594]  ? getname_flags+0x80/0x3b0
[  125.046010][ T8594]  getname_flags+0x80/0x3b0
[  125.046051][ T8594]  getname_uflags+0x21/0x30
[  125.046101][ T8594]  __x64_sys_execveat+0x5d/0x90
[  125.046131][ T8594]  x64_sys_call+0x1fec/0x3000
[  125.046156][ T8594]  do_syscall_64+0xd2/0x200
[  125.046181][ T8594]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  125.046299][ T8594]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  125.046339][ T8594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.046367][ T8594] RIP: 0033:0x7f0780e3efc9
[  125.046385][ T8594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.046453][ T8594] RSP: 002b:00007f077f89f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  125.046479][ T8594] RAX: ffffffffffffffda RBX: 00007f0781095fa0 RCX: 00007f0780e3efc9
[  125.046496][ T8594] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  125.046511][ T8594] RBP: 00007f077f89f090 R08: 0000000000000400 R09: 0000000000000000
[  125.046527][ T8594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.046543][ T8594] R13: 00007f0781096038 R14: 00007f0781095fa0 R15: 00007ffdedf37088
[  125.046569][ T8594]  </TASK>
[  125.309297][ T8605] FAULT_INJECTION: forcing a failure.
[  125.309297][ T8605] name failslab, interval 1, probability 0, space 0, times 0
[  125.322110][ T8605] CPU: 0 UID: 0 PID: 8605 Comm: syz.1.1461 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  125.322144][ T8605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.322161][ T8605] Call Trace:
[  125.322170][ T8605]  <TASK>
[  125.322180][ T8605]  __dump_stack+0x1d/0x30
[  125.322210][ T8605]  dump_stack_lvl+0xe8/0x140
[  125.322239][ T8605]  dump_stack+0x15/0x1b
[  125.322259][ T8605]  should_fail_ex+0x265/0x280
[  125.322300][ T8605]  ? __scm_send+0x3dd/0xb30
[  125.322325][ T8605]  should_failslab+0x8c/0xb0
[  125.322357][ T8605]  __kmalloc_cache_noprof+0x4c/0x4a0
[  125.322410][ T8605]  ? _raw_spin_unlock_irq+0x26/0x50
[  125.322446][ T8605]  __scm_send+0x3dd/0xb30
[  125.322477][ T8605]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  125.322582][ T8605]  unix_stream_sendmsg+0xb9/0xb90
[  125.322632][ T8605]  ? selinux_socket_sendmsg+0x175/0x1b0
[  125.322665][ T8605]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  125.322694][ T8605]  __sock_sendmsg+0x145/0x180
[  125.322731][ T8605]  ____sys_sendmsg+0x31e/0x4e0
[  125.322780][ T8605]  ___sys_sendmsg+0x17b/0x1d0
[  125.322842][ T8605]  __x64_sys_sendmsg+0xd4/0x160
[  125.322962][ T8605]  x64_sys_call+0x191e/0x3000
[  125.322993][ T8605]  do_syscall_64+0xd2/0x200
[  125.323014][ T8605]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  125.323056][ T8605]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  125.323096][ T8605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.323117][ T8605] RIP: 0033:0x7f0780e3efc9
[  125.323131][ T8605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.323215][ T8605] RSP: 002b:00007f077f89f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.323240][ T8605] RAX: ffffffffffffffda RBX: 00007f0781095fa0 RCX: 00007f0780e3efc9
[  125.323256][ T8605] RDX: 0000000004004881 RSI: 0000200000000600 RDI: 0000000000000008
[  125.323272][ T8605] RBP: 00007f077f89f090 R08: 0000000000000000 R09: 0000000000000000
[  125.323289][ T8605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.323304][ T8605] R13: 00007f0781096038 R14: 00007f0781095fa0 R15: 00007ffdedf37088
[  125.323326][ T8605]  </TASK>
[  125.769986][ T8611] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  125.778922][ T8611] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1463'.
[  126.082588][ T8619] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1466'.
[  126.094585][ T8621] loop0: detected capacity change from 0 to 256
[  126.217885][ T8628] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not security
[  126.286636][   T29] kauditd_printk_skb: 437 callbacks suppressed
[  126.286709][   T29] audit: type=1326 audit(1761589979.365:9761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.318291][ T8632] FAULT_INJECTION: forcing a failure.
[  126.318291][ T8632] name failslab, interval 1, probability 0, space 0, times 0
[  126.331134][ T8632] CPU: 0 UID: 0 PID: 8632 Comm: syz.2.1467 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  126.331182][ T8632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.331198][ T8632] Call Trace:
[  126.331206][ T8632]  <TASK>
[  126.331214][ T8632]  __dump_stack+0x1d/0x30
[  126.331236][ T8632]  dump_stack_lvl+0xe8/0x140
[  126.331256][ T8632]  dump_stack+0x15/0x1b
[  126.331278][ T8632]  should_fail_ex+0x265/0x280
[  126.331367][ T8632]  should_failslab+0x8c/0xb0
[  126.331406][ T8632]  __kvmalloc_node_noprof+0x12e/0x670
[  126.331449][ T8632]  ? alloc_fdtable+0x115/0x1d0
[  126.331484][ T8632]  alloc_fdtable+0x115/0x1d0
[  126.331583][ T8632]  dup_fd+0x4c7/0x540
[  126.331688][ T8632]  ? _raw_spin_unlock+0x26/0x50
[  126.331722][ T8632]  ksys_unshare+0x346/0x6d0
[  126.331775][ T8632]  ? ksys_write+0x192/0x1a0
[  126.331857][ T8632]  __x64_sys_unshare+0x1f/0x30
[  126.331899][ T8632]  x64_sys_call+0x2915/0x3000
[  126.331929][ T8632]  do_syscall_64+0xd2/0x200
[  126.331953][ T8632]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  126.331991][ T8632]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  126.332109][ T8632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.332137][ T8632] RIP: 0033:0x7f4ea16cefc9
[  126.332157][ T8632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.332177][ T8632] RSP: 002b:00007f4ea00f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  126.332254][ T8632] RAX: ffffffffffffffda RBX: 00007f4ea1926180 RCX: 00007f4ea16cefc9
[  126.332271][ T8632] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000600
[  126.332287][ T8632] RBP: 00007f4ea00f5090 R08: 0000000000000000 R09: 0000000000000000
[  126.332303][ T8632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.332320][ T8632] R13: 00007f4ea1926218 R14: 00007f4ea1926180 R15: 00007ffe1a91c9b8
[  126.332416][ T8632]  </TASK>
[  126.536240][   T29] audit: type=1326 audit(1761589979.395:9762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.559745][   T29] audit: type=1326 audit(1761589979.395:9763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.662845][   T29] audit: type=1326 audit(1761589979.655:9764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.686373][   T29] audit: type=1326 audit(1761589979.655:9765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.709842][   T29] audit: type=1326 audit(1761589979.655:9766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.793062][   T29] audit: type=1326 audit(1761589979.805:9767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.816646][   T29] audit: type=1326 audit(1761589979.815:9768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8637 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f6fe9621885 code=0x7ffc0000
[  126.840190][   T29] audit: type=1326 audit(1761589979.815:9769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.863654][   T29] audit: type=1326 audit(1761589979.815:9770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8629 comm="syz.0.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fe95eefc9 code=0x7ffc0000
[  126.955892][ T8644] loop1: detected capacity change from 0 to 164
[  126.962550][ T8644] iso9660: Bad value for 'uid'
[  126.967391][ T8644] iso9660: Bad value for 'uid'
[  126.976783][ T8644] siw: device registration error -23
[  127.184433][ T8652] loop0: detected capacity change from 0 to 512
[  127.206423][ T8652] EXT4-fs (loop0): too many log groups per flexible block group
[  127.206525][ T8652] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  127.206547][ T8652] EXT4-fs (loop0): mount failed
[  127.276171][ T8658] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1478'.
[  127.366122][ T8606] lo speed is unknown, defaulting to 1000
[  127.467456][ T8665] lo speed is unknown, defaulting to 1000
[  127.569420][ T8671] loop0: detected capacity change from 0 to 128
[  127.669032][ T8682] loop1: detected capacity change from 0 to 1024
[  127.670554][ T8682] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.676499][ T8682] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.685441][ T8682] xt_hashlimit: max too large, truncated to 1048576
[  127.942030][ T8703] FAULT_INJECTION: forcing a failure.
[  127.942030][ T8703] name failslab, interval 1, probability 0, space 0, times 0
[  127.962650][ T8703] CPU: 0 UID: 0 PID: 8703 Comm: syz.1.1496 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  127.962682][ T8703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  127.962694][ T8703] Call Trace:
[  127.962701][ T8703]  <TASK>
[  127.962711][ T8703]  __dump_stack+0x1d/0x30
[  127.962738][ T8703]  dump_stack_lvl+0xe8/0x140
[  127.962763][ T8703]  dump_stack+0x15/0x1b
[  127.962784][ T8703]  should_fail_ex+0x265/0x280
[  127.962807][ T8703]  should_failslab+0x8c/0xb0
[  127.962840][ T8703]  kmem_cache_alloc_noprof+0x50/0x480
[  127.962874][ T8703]  ? vm_area_alloc+0x2c/0xb0
[  127.962908][ T8703]  vm_area_alloc+0x2c/0xb0
[  127.962938][ T8703]  mmap_region+0xa99/0x1620
[  127.962997][ T8703]  do_mmap+0x9b3/0xbe0
[  127.963022][ T8703]  vm_mmap_pgoff+0x17a/0x2e0
[  127.963053][ T8703]  ksys_mmap_pgoff+0x268/0x310
[  127.963072][ T8703]  x64_sys_call+0x14a3/0x3000
[  127.963093][ T8703]  do_syscall_64+0xd2/0x200
[  127.963114][ T8703]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  127.963151][ T8703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.963172][ T8703] RIP: 0033:0x7f0780e3efc9
[  127.963186][ T8703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.963204][ T8703] RSP: 002b:00007f077f89f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  127.963225][ T8703] RAX: ffffffffffffffda RBX: 00007f0781095fa0 RCX: 00007f0780e3efc9
[  127.963236][ T8703] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000ffd000
[  127.963248][ T8703] RBP: 00007f077f89f090 R08: 000000000000000b R09: 0000000000000000
[  127.963259][ T8703] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  127.963270][ T8703] R13: 00007f0781096038 R14: 00007f0781095fa0 R15: 00007ffdedf37088
[  127.963288][ T8703]  </TASK>
[  128.229870][ T8713] loop3: detected capacity change from 0 to 512
[  128.241497][ T8718] loop2: detected capacity change from 0 to 1024
[  128.246616][ T8713] EXT4-fs: Ignoring removed orlov option
[  128.248786][ T8718] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.262757][ T8718] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.285371][ T8713] ext4 filesystem being mounted at /299/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  128.308631][ T8718] xt_hashlimit: max too large, truncated to 1048576
[  128.319305][ T8713] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  128.368327][ T8713] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.420052][ T8713] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.1497: mark_inode_dirty error
[  128.434373][ T8713] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.460243][ T8725] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.472896][ T8725] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.1497: mark_inode_dirty error
[  128.485640][ T8725] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.518421][ T8732] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1503'.
[  128.533916][ T8737] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not security
[  128.561873][ T8725] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1497: mark_inode_dirty error
[  128.590912][ T8725] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.605639][ T8725] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.1497: mark_inode_dirty error
[  128.615847][ T8742] loop4: detected capacity change from 0 to 1024
[  128.623794][ T8742] EXT4-fs: Ignoring removed orlov option
[  128.632410][ T8728] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.1497: corrupted inode contents
[  128.644582][ T8742] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  128.674315][ T8746] loop0: detected capacity change from 0 to 1024
[  128.681380][ T8746] EXT4-fs: inline encryption not supported
[  128.724017][ T8748] lo speed is unknown, defaulting to 1000
[  128.747181][ T8752] loop3: detected capacity change from 0 to 128
[  128.756748][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.756748][ T8752] loop3: rw=2049, sector=154, nr_sectors = 8 limit=128
[  128.772981][ T8756] loop4: detected capacity change from 0 to 1024
[  128.786971][ T8756] EXT4-fs: Ignoring removed nobh option
[  128.792770][ T8756] EXT4-fs: Ignoring removed bh option
[  128.798550][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.798550][ T8752] loop3: rw=2049, sector=160, nr_sectors = 2 limit=128
[  128.812094][ T8752] Buffer I/O error on dev loop3, logical block 80, lost async page write
[  128.822274][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.822274][ T8752] loop3: rw=2049, sector=162, nr_sectors = 8 limit=128
[  128.836258][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.836258][ T8752] loop3: rw=2049, sector=168, nr_sectors = 2 limit=128
[  128.849740][ T8752] Buffer I/O error on dev loop3, logical block 84, lost async page write
[  128.859202][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.859202][ T8752] loop3: rw=2049, sector=186, nr_sectors = 8 limit=128
[  128.873111][ T8756] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  128.886964][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.886964][ T8752] loop3: rw=2049, sector=192, nr_sectors = 2 limit=128
[  128.900479][ T8752] Buffer I/O error on dev loop3, logical block 96, lost async page write
[  128.924639][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.924639][ T8752] loop3: rw=2049, sector=194, nr_sectors = 8 limit=128
[  128.967962][ T8766] loop4: detected capacity change from 0 to 1024
[  128.985657][ T8752] syz.3.1513: attempt to access beyond end of device
[  128.985657][ T8752] loop3: rw=2049, sector=200, nr_sectors = 2 limit=128
[  128.986466][ T8766] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.999202][ T8752] Buffer I/O error on dev loop3, logical block 100, lost async page write
[  129.006633][ T8766] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  129.027786][ T8767] loop2: detected capacity change from 0 to 8192
[  129.044714][ T8752] syz.3.1513: attempt to access beyond end of device
[  129.044714][ T8752] loop3: rw=2049, sector=218, nr_sectors = 8 limit=128
[  129.062893][ T8752] syz.3.1513: attempt to access beyond end of device
[  129.062893][ T8752] loop3: rw=2049, sector=224, nr_sectors = 2 limit=128
[  129.065467][ T8767] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  129.076387][ T8752] Buffer I/O error on dev loop3, logical block 112, lost async page write
[  129.077638][ T8752] Buffer I/O error on dev loop3, logical block 116, lost async page write
[  129.107392][ T8752] Buffer I/O error on dev loop3, logical block 88, lost async page write
[  129.116570][ T8752] Buffer I/O error on dev loop3, logical block 92, lost async page write
[  129.117023][ T8766] xt_hashlimit: max too large, truncated to 1048576
[  129.125736][ T8752] Buffer I/O error on dev loop3, logical block 120, lost async page write
[  129.140883][ T8752] Buffer I/O error on dev loop3, logical block 124, lost async page write
[  129.173888][ T8775] loop0: detected capacity change from 0 to 8192
[  129.226263][ T8775] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  129.321845][ T8775] ==================================================================
[  129.329992][ T8775] BUG: KCSAN: data-race in fat12_ent_put / fat_mirror_bhs
[  129.337134][ T8775] 
[  129.339460][ T8775] write to 0xffff88811e58c5de of 1 bytes by task 8784 on cpu 0:
[  129.347097][ T8775]  fat12_ent_put+0x74/0x170
[  129.351607][ T8775]  fat_alloc_clusters+0x4d1/0xa80
[  129.356641][ T8775]  fat_get_block+0x258/0x5e0
[  129.361241][ T8775]  __block_write_begin_int+0x400/0xf90
[  129.366719][ T8775]  cont_write_begin+0x5fc/0x970
[  129.371587][ T8775]  fat_write_begin+0x4f/0xe0
[  129.376190][ T8775]  cont_write_begin+0x1b0/0x970
[  129.381062][ T8775]  fat_write_begin+0x4f/0xe0
[  129.385675][ T8775]  generic_cont_expand_simple+0xb0/0x150
[  129.391328][ T8775]  fat_cont_expand+0x3e/0x170
[  129.396015][ T8775]  fat_setattr+0x2a5/0x8a0
[  129.400440][ T8775]  notify_change+0x872/0x8f0
[  129.405042][ T8775]  do_ftruncate+0x34b/0x450
[  129.409557][ T8775]  __x64_sys_ftruncate+0x68/0xc0
[  129.414513][ T8775]  x64_sys_call+0x2d61/0x3000
[  129.419220][ T8775]  do_syscall_64+0xd2/0x200
[  129.423729][ T8775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.429637][ T8775] 
[  129.431961][ T8775] read to 0xffff88811e58c400 of 512 bytes by task 8775 on cpu 1:
[  129.439677][ T8775]  fat_mirror_bhs+0x1df/0x320
[  129.444447][ T8775]  fat_alloc_clusters+0x98b/0xa80
[  129.449485][ T8775]  fat_get_block+0x258/0x5e0
[  129.454089][ T8775]  __block_write_begin_int+0x400/0xf90
[  129.459563][ T8775]  cont_write_begin+0x5fc/0x970
[  129.464431][ T8775]  fat_write_begin+0x4f/0xe0
[  129.469035][ T8775]  generic_perform_write+0x184/0x490
[  129.474330][ T8775]  __generic_file_write_iter+0x9e/0x120
[  129.479882][ T8775]  generic_file_write_iter+0x8d/0x2f0
[  129.485283][ T8775]  vfs_write+0x52a/0x960
[  129.489542][ T8775]  __x64_sys_pwrite64+0xfd/0x150
[  129.494499][ T8775]  x64_sys_call+0xc4d/0x3000
[  129.499096][ T8775]  do_syscall_64+0xd2/0x200
[  129.503643][ T8775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.509562][ T8775] 
[  129.511885][ T8775] Reported by Kernel Concurrency Sanitizer on:
[  129.518121][ T8775] CPU: 1 UID: 0 PID: 8775 Comm: syz.0.1519 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  129.528021][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  129.538080][ T8775] ==================================================================
[  129.557525][ T8786] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[  129.566135][ T8786] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1523'.