last executing test programs:

45.01151511s ago: executing program 3 (id=253):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
arch_prctl$ARCH_SET_GS(0x1001, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x18)
sendmsg$tipc(r0, &(0x7f0000001500)={&(0x7f0000000340)=@id={0x1e, 0x3, 0x3, {0x4e23, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4090}, 0x2000c041)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f00000002c0)=0x1, 0x4)
r3 = socket$inet6(0xa, 0x6, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private=0xa010101, @in=@empty, 0x0, 0xbf, 0x3, 0x0, 0x2, 0x20, 0x20}, {0xfffffffffffffffb, 0xfffffffffffffffd, 0x1}, {0x0, 0x0, 0x4, 0x2}, 0x0, 0x0, 0x1}, {{@in=@local, 0xffffffff, 0x32}, 0x0, @in=@broadcast, 0x0, 0x3, 0x1, 0x0, 0xf000000, 0xfffffff6}}, 0xe8)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x14)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000000)=@known='trusted.overlay.nlink\x00')

44.829789604s ago: executing program 3 (id=257):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip_vti0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000080))
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, 0x0)
chdir(0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x3, 0x0, 0x0, 0xf}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
unshare(0x42000000)

43.917037267s ago: executing program 3 (id=265):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x121042, 0x81)
fallocate(r0, 0x0, 0x0, 0x8000c62)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r1, r1, 0x0, 0x800000009)

42.826383975s ago: executing program 3 (id=271):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file1\x00', 0x0, 0x5000, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x0)
close(0x3)
write$binfmt_register(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x58)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xfffffffff7ffffe9}, 0x18)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0)
r4 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x110)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)

41.88977s ago: executing program 3 (id=283):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)

41.714174004s ago: executing program 3 (id=287):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
r3 = socket$kcm(0x2a, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x891c, 0x0)
recvfrom(r2, &(0x7f0000000280)=""/225, 0xe1, 0x40010141, 0x0, 0x0)

41.697864956s ago: executing program 32 (id=287):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
r3 = socket$kcm(0x2a, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x891c, 0x0)
recvfrom(r2, &(0x7f0000000280)=""/225, 0xe1, 0x40010141, 0x0, 0x0)

5.631864569s ago: executing program 2 (id=723):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_UNBLANKSCREEN(r0, 0x541c, &(0x7f0000004500))
r1 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r1, &(0x7f0000000180)="e502", 0x2)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

5.592841852s ago: executing program 2 (id=725):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000300))
r3 = inotify_init()
readv(r3, &(0x7f0000000140)=[{&(0x7f0000000340)=""/263, 0x107}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setstatus(r3, 0x4, 0x42800)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSBRKP(r4, 0x5425, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
write(r5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000006c0), r7)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000000000000000040000e41300050003030000000a0000005dc000000000010800020005000000140006"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x1000, 0x0, 0x8, 0x1, 0xe3, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB=',pcr=00000000000000000056,rootcontext='])

5.121959469s ago: executing program 2 (id=734):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f00000008c0)=[{0x6, 0x0, 0x0, 0x6}]})
r1 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socket$inet(0x2, 0x4000000000000001, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect$hid(0x2, 0x3f, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0xff0a)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r3, &(0x7f00000000c0)=""/44, 0x2c)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f0000000100)={0x1d, r5, 0x2, {0x3}}, 0x18)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r4)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="29748b00", @ANYRES16=r6, @ANYBLOB="00082cbd7000fddbdf2517000000"], 0x14}}, 0x10)

4.153167957s ago: executing program 4 (id=753):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x100000000}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

4.11715648s ago: executing program 4 (id=755):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r1, 0x201, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (fail_nth: 3)

4.034305947s ago: executing program 4 (id=756):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x28, 0x5, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000100)={r3}, &(0x7f00000002c0)=0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r4, 0x0, 0x5}, 0x18)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
getsockname$packet(r0, &(0x7f0000000180), &(0x7f0000000200)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000380)={'bond0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

3.986057941s ago: executing program 4 (id=758):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file1\x00', 0x0, 0x5000, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x0)
close(0x3)
write$binfmt_register(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x58)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xfffffffff7ffffe9}, 0x18)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0)
r4 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x110)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)

3.110786791s ago: executing program 4 (id=771):
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = syz_clone(0x80200, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

2.900989268s ago: executing program 1 (id=775):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
truncate(&(0x7f0000000180)='./file1\x00', 0xc1a)
truncate(&(0x7f00000002c0)='./file1\x00', 0x42d9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f0000001f80)={@random="61fe71b72b5f", @local, @val={@val={0x88a8, 0x2, 0x0, 0x3}, {0x8100, 0x4, 0x1, 0x4}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x380, 0x3a, 0xff, @remote, @mcast2, {[@srh={0x2e, 0x0, 0x4, 0x0, 0xfe, 0x10, 0x3, [@rand_addr=' \x01\x00', @mcast1]}], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x2, 0x2, 0x0, 0x0, [{0x0, 0xa, "a78ce5400659808000000003004023493b87aafaffffffffffffff23732472eefa450796579269748e254c1e4a8a8b3f0ab0c43053be27df3e34066d42c60a5c15b37a008000000000000041e5af1802"}, {0x0, 0x1, "000000000000000026000400"}, {0x2, 0x200000000000035a, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d036397a0acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c21bc943afcb846197a38e3946b0730a18d5c38cf7dead830f2dc8674b87ba8b58f81ece27975cc39e595e9af9094fe92a38d25551c2eeebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094020000002a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5c6186c0d3baa75af390dab262500b0c0272479611e4f7f4299ec4d926fe98efc5ac5185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd562db212baa39eb8164e240069f656d3a05fecf894222a000023f5acaa556bbf30dcab2b90aa235a670670ffc5dc49f1b58d893100000000000c578fa6568efb98b5bf4165ac5e7bb529f870763360ff782f3ad67a7c5f42068371f65a3d41dc13618daaeb46935b820907da92969f123f7f9ba5a33a356160000000008306f8413f9289e20423905edc3135a33bdec8fad59c662b0291e5c1f1c4667188595b40456361c2576da14298937dccfe25ae9900"/363}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743474671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68f2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "fcc1876d4ec1876d4e6fa3ee2dfdb43a6fab0059ff5c2d6b3d9363ed09bd9201c9fe68a3000000006f0000044e43e740e077e1d16212fb"}, {0x1, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1eb91a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d96967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c000000000000000000"}, {0x0, 0x5, "090000010900000036da018dff16e70b8b1400000000e18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000240)='./file0\x00', 0x200810, &(0x7f0000000340)=ANY=[], 0x1, 0x377, &(0x7f0000000f80)="$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")
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x2, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
r3 = gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0x1ffffffffffffffd}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x2000)
io_submit(0x0, 0x3, &(0x7f0000000180)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000000)="96", 0x1}, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x7, r1, 0x0, 0x0, 0x8}])
fchdir(0xffffffffffffffff)
socket$inet(0x2, 0xa, 0x200000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f00000007c0)='GPL\x00', 0x4000000, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.755940569s ago: executing program 4 (id=777):
bpf$ENABLE_STATS(0x20, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000c40)='./file0\x00', 0x808080, &(0x7f0000000c80)={[{@discard}, {@bh}, {@noblock_validity}]}, 0x2c, 0x52c, &(0x7f0000000640)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002680)=ANY=[@ANYBLOB="140000001000010000000000000007000000000a60000000060a0b0400000000000000000200000034000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000090001007379"], 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x0)

2.730354832s ago: executing program 33 (id=777):
bpf$ENABLE_STATS(0x20, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000c40)='./file0\x00', 0x808080, &(0x7f0000000c80)={[{@discard}, {@bh}, {@noblock_validity}]}, 0x2c, 0x52c, &(0x7f0000000640)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002680)=ANY=[@ANYBLOB="140000001000010000000000000007000000000a60000000060a0b0400000000000000000200000034000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000090001007379"], 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x0)

2.717567782s ago: executing program 0 (id=779):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x28, 0x5, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000100)={r3}, &(0x7f00000002c0)=0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r4, 0x0, 0x5}, 0x18)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
getsockname$packet(r0, &(0x7f0000000180), &(0x7f0000000200)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000380)={'bond0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

2.564984344s ago: executing program 0 (id=780):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x100000000}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

2.514440879s ago: executing program 0 (id=781):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x2, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000300)={[{@dioread_lock}, {@jqfmt_vfsv1}, {@nouid32}, {@grpquota}]}, 0xfc, 0x580, &(0x7f0000000f80)="$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")
statfs(&(0x7f0000000000)='./file1\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080), 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000020000000000002000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)

2.49298443s ago: executing program 1 (id=783):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x28, 0x3, 0x8, 0x301, 0x0, 0x0, {0x7, 0x0, 0x9}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0x5}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}]}, 0x28}, 0x1, 0x0, 0x0, 0x8811}, 0x44000) (fail_nth: 3)

2.434561205s ago: executing program 5 (id=784):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffe000) (async)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x74, 0x10, 0x800, 0x70bd27, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_VF_PORTS={0x54, 0x18, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "14bd69fe147c97ccc3a9bafbac34c152"}]}, {0x38, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xb, 0x2, '*-:[\'%\x00'}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "676d514bfcf035045bb395b577983c80"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "490867bce553dc1d08bac34dddc15025"}]}]}]}, 0x74}}, 0x40800)

2.434346045s ago: executing program 1 (id=785):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000005c0)='m &', 0x3}], 0x1}, 0x855)
recvmsg$unix(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002)

2.211095054s ago: executing program 5 (id=786):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

2.172765906s ago: executing program 5 (id=787):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400})
close(r0)

2.090129823s ago: executing program 2 (id=788):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x8, 0xcc38b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24048881}, 0x2000c800)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000280)={0x0, @remote, @empty}, &(0x7f00000002c0)=0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$IP_SET_OP_GET_FNAME(r1, 0x1, 0x53, &(0x7f0000000240)={0x8, 0x7, 0x0, 'syz2\x00'}, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0002}]})
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'veth1_vlan\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x3, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

2.048103936s ago: executing program 0 (id=789):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)

1.963102323s ago: executing program 5 (id=790):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x28, 0x5, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r3=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000100)={r3}, &(0x7f00000002c0)=0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r4, 0x0, 0x5}, 0x18)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
getsockname$packet(r0, &(0x7f0000000180), &(0x7f0000000200)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000380)={'bond0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

1.956686313s ago: executing program 0 (id=791):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$eJzs3D1rW1cYB/AjWa6tlhZPhXbpoV3a5bb10qVDS3GhVNCSRCEv0zWWEyFFAl8NksmgOVM+RwhkCWQL+QL+DFmymYDx5Ck3OJKs2NixE0dy4vx+ix6e/z1X5+jARVy9bP5+91ZjNUtW004ozRdC8Y/QDzuFsBCKYaQffnpwZfvOxavX/v2zUlm6MDvsx/jVd4+v377//ZPOF5cf7nYKIYStxWcbX298s/ni0s16FutZbLU7MY3L7XYnXW7W4ko9ayQx/t+spVkt1ltZbW1fvtpsj5861LIspq1ebNR6sdOOnbVeTG+k9VZMkiTOB06lem8nz8NWnuf5XD/kef62JyhMZl5Myyn3n4/c3kU97l5Nn/e71W518DjI//6nsvRLfGVhPGq7263O7OW/DvK4P58Nnw/zxUPzz8KPPwzy3eyv/yoH8nJYmfzyAQAAAADgXErinkPv7yfJUfmgeu3zgQP370vh29K4MzP5pQAAAABHyHrrjbS5Mrs2KJq1Myvmwv7Ob4+GUzxu+M9Pjz9mQsWXwyK843nKIYSjjymGM9+U6RSj75EPO6PfF5xseOl9TaP8gbwao2I+HBaVw3pjbjqbAgAAnC/jN/0nHlKc6IQAAAAAAAAAAAAAAAAAAADgEzSNPzM76zUCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALzJywAAAP//ixdW4w==")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
truncate(&(0x7f0000000180)='./file1\x00', 0xc1a)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x2, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
r1 = gettid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
io_setup(0x7d, &(0x7f0000000600))
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.603856082s ago: executing program 5 (id=792):
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = syz_clone(0x80200, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

1.545776506s ago: executing program 2 (id=793):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

1.38231371s ago: executing program 1 (id=794):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
truncate(&(0x7f0000000180)='./file1\x00', 0xc1a)
truncate(&(0x7f00000002c0)='./file1\x00', 0x42d9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f0000001f80)={@random="61fe71b72b5f", @local, @val={@val={0x88a8, 0x2, 0x0, 0x3}, {0x8100, 0x4, 0x1, 0x4}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x380, 0x3a, 0xff, @remote, @mcast2, {[@srh={0x2e, 0x0, 0x4, 0x0, 0xfe, 0x10, 0x3, [@rand_addr=' \x01\x00', @mcast1]}], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x2, 0x2, 0x0, 0x0, [{0x0, 0xa, "a78ce5400659808000000003004023493b87aafaffffffffffffff23732472eefa450796579269748e254c1e4a8a8b3f0ab0c43053be27df3e34066d42c60a5c15b37a008000000000000041e5af1802"}, {0x0, 0x1, "000000000000000026000400"}, {0x2, 0x200000000000035a, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d036397a0acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "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"/363}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743474671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68f2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "fcc1876d4ec1876d4e6fa3ee2dfdb43a6fab0059ff5c2d6b3d9363ed09bd9201c9fe68a3000000006f0000044e43e740e077e1d16212fb"}, {0x1, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1eb91a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d96967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c000000000000000000"}, {0x0, 0x5, "090000010900000036da018dff16e70b8b1400000000e18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000240)='./file0\x00', 0x200810, &(0x7f0000000340)=ANY=[], 0x1, 0x377, &(0x7f0000000f80)="$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")
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x2, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0x1ffffffffffffffd}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x2000)
io_submit(0x0, 0x3, &(0x7f0000000180)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000000)="96", 0x1}, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x7, r1, 0x0, 0x0, 0x8}])
fchdir(0xffffffffffffffff)
socket$inet(0x2, 0xa, 0x200000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f00000007c0)='GPL\x00', 0x4000000, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.278243828s ago: executing program 1 (id=795):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip_vti0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000080))
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, 0x0)
chdir(0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x3, 0x0, 0x0, 0xf}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
unshare(0x42000000)

1.246104521s ago: executing program 5 (id=796):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip_vti0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000080))
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, 0x0)
chdir(0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x3, 0x0, 0x0, 0xf}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2}, {0x0, [0x0]}}, &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2}, 0x20)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
unshare(0x42000000)

1.156220198s ago: executing program 0 (id=797):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f00000008c0)=[{0x6, 0x0, 0x0, 0x6}]})
r1 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socket$inet(0x2, 0x4000000000000001, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect$hid(0x2, 0x3f, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0xff0a)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r3, &(0x7f00000000c0)=""/44, 0x2c)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f0000000100)={0x1d, r5, 0x2, {0x3}}, 0x18)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r4)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="29748b00", @ANYRES16=r6, @ANYBLOB="00082cbd7000fddbdf2517000000"], 0x14}}, 0x10)

30.468808ms ago: executing program 2 (id=798):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r5, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="001300"})

0s ago: executing program 1 (id=799):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r5, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="001300"})

kernel console output (not intermixed with test programs):

 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.636719][ T4435] RSP: 002b:00007fe8e252f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.636743][ T4435] RAX: ffffffffffffffda RBX: 00007fe8e3cf5fa0 RCX: 00007fe8e3acebe9
[   67.636760][ T4435] RDX: 0000000000000080 RSI: 00002000000008c0 RDI: 0000000000000006
[   67.636777][ T4435] RBP: 00007fe8e252f090 R08: 0000000000000000 R09: 0000000000000000
[   67.636793][ T4435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.636831][ T4435] R13: 00007fe8e3cf6038 R14: 00007fe8e3cf5fa0 R15: 00007ffffd02ae28
[   67.636856][ T4435]  </TASK>
[   67.899201][ T4446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.304'.
[   67.902971][ T4348] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.921363][ T4348] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.929760][ T4348] bridge_slave_1: entered allmulticast mode
[   67.937091][ T4348] bridge_slave_1: entered promiscuous mode
[   67.954230][ T4448] loop0: detected capacity change from 0 to 128
[   67.989521][ T4448] bio_check_eod: 11 callbacks suppressed
[   67.989535][ T4448] syz.0.303: attempt to access beyond end of device
[   67.989535][ T4448] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   67.996738][ T4348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.000186][ T4448] syz.0.303: attempt to access beyond end of device
[   68.000186][ T4448] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   68.040057][ T4348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.041146][ T4448] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   68.088765][ T2771] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.148704][ T4450] syz.0.303: attempt to access beyond end of device
[   68.148704][ T4450] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   68.166646][ T4450] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   68.183810][ T2771] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.194099][ T4348] team0: Port device team_slave_0 added
[   68.219810][ T4450] syz.0.303: attempt to access beyond end of device
[   68.219810][ T4450] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[   68.226978][ T4348] team0: Port device team_slave_1 added
[   68.274012][ T4450] syz.0.303: attempt to access beyond end of device
[   68.274012][ T4450] loop0: rw=2049, sector=170, nr_sectors = 8 limit=128
[   68.299117][ T2771] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.320733][ T4470] syz.0.303: attempt to access beyond end of device
[   68.320733][ T4470] loop0: rw=2049, sector=186, nr_sectors = 64 limit=128
[   68.338428][ T4450] syz.0.303: attempt to access beyond end of device
[   68.338428][ T4450] loop0: rw=2049, sector=176, nr_sectors = 2 limit=128
[   68.353250][ T4450] Buffer I/O error on dev loop0, logical block 88, lost async page write
[   68.369278][ T4450] syz.0.303: attempt to access beyond end of device
[   68.369278][ T4450] loop0: rw=2049, sector=178, nr_sectors = 8 limit=128
[   68.386350][ T2771] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.397975][ T4450] syz.0.303: attempt to access beyond end of device
[   68.397975][ T4450] loop0: rw=2049, sector=184, nr_sectors = 2 limit=128
[   68.398126][ T4348] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.413739][ T4450] Buffer I/O error on dev loop0, logical block 92, lost async page write
[   68.421527][ T4348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.421559][ T4348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.497160][ T4348] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.507674][ T4348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.540850][ T4348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.630755][ T4478] random: crng reseeded on system resumption
[   68.650490][ T4477] loop4: detected capacity change from 0 to 1024
[   68.677473][ T4471] Restarting kernel threads ...
[   68.684503][ T4471] Done restarting kernel threads.
[   68.712632][ T4348] hsr_slave_0: entered promiscuous mode
[   68.725970][ T4348] hsr_slave_1: entered promiscuous mode
[   68.736910][ T4348] debugfs: 'hsr0' already exists in 'hsr'
[   68.744066][ T4348] Cannot create hsr debugfs directory
[   68.768105][ T4477] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.787498][ T4485] loop1: detected capacity change from 0 to 1024
[   68.805995][ T4485] EXT4-fs: Ignoring removed oldalloc option
[   68.812865][ T4485] EXT4-fs: Ignoring removed bh option
[   68.893739][ T4477] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.931411][ T4492] loop1: detected capacity change from 0 to 512
[   68.981696][ T4492] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   69.005275][ T4492] EXT4-fs (loop1): mount failed
[   69.062123][ T4503] loop1: detected capacity change from 0 to 512
[   69.112876][ T4477] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.128809][ T4503] EXT4-fs (loop1): 1 orphan inode deleted
[   69.144504][ T4503] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.159107][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   69.206667][ T4477] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.569180][ T4348] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   69.612629][ T4348] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   69.642001][   T12] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.655123][ T4348] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   69.667607][ T4348] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   69.691853][   T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.745091][   T37] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.762961][   T37] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.865810][ T4348] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.887014][ T4348] 8021q: adding VLAN 0 to HW filter on device team0
[   69.899532][ T2771] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.907786][ T2771] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.940136][ T2771] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.949284][ T2771] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.966215][ T4537] loop4: detected capacity change from 0 to 2048
[   70.003734][ T4537]  loop4: p2 p3 p7
[   70.027276][ T4536] FAULT_INJECTION: forcing a failure.
[   70.027276][ T4536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.044095][ T4536] CPU: 1 UID: 0 PID: 4536 Comm: syz.4.319 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   70.044126][ T4536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.044149][ T4536] Call Trace:
[   70.044186][ T4536]  <TASK>
[   70.044193][ T4536]  __dump_stack+0x1d/0x30
[   70.044215][ T4536]  dump_stack_lvl+0xe8/0x140
[   70.044236][ T4536]  dump_stack+0x15/0x1b
[   70.044256][ T4536]  should_fail_ex+0x265/0x280
[   70.044282][ T4536]  should_fail+0xb/0x20
[   70.044303][ T4536]  should_fail_usercopy+0x1a/0x20
[   70.044384][ T4536]  _copy_from_user+0x1c/0xb0
[   70.044419][ T4536]  __ia32_sys_rt_sigreturn+0x128/0x350
[   70.044452][ T4536]  x64_sys_call+0x2d3c/0x2ff0
[   70.044524][ T4536]  do_syscall_64+0xd2/0x200
[   70.044557][ T4536]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.044616][ T4536]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.044661][ T4536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.044716][ T4536] RIP: 0033:0x7fe8e3a6add9
[   70.044734][ T4536] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   70.044814][ T4536] RSP: 002b:00007fe8e252ea80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   70.044838][ T4536] RAX: ffffffffffffffda RBX: 00007fe8e3cf5fa0 RCX: 00007fe8e3a6add9
[   70.044853][ T4536] RDX: 00007fe8e252ea80 RSI: 00007fe8e252ebb0 RDI: 0000000000000021
[   70.044868][ T4536] RBP: 00007fe8e252f090 R08: 0000000000000000 R09: 0000000000000000
[   70.044882][ T4536] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   70.044905][ T4536] R13: 00007fe8e3cf6038 R14: 00007fe8e3cf5fa0 R15: 00007ffffd02ae28
[   70.044929][ T4536]  </TASK>
[   70.341771][ T4544] loop1: detected capacity change from 0 to 1024
[   70.428878][ T4544] EXT4-fs mount: 22 callbacks suppressed
[   70.428943][ T4544] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.461988][ T4547] vhci_hcd: invalid port number 96
[   70.467402][ T4547] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   70.512203][ T4348] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.521739][ T4550] loop4: detected capacity change from 0 to 1024
[   70.575682][ T4544] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   70.595163][ T4550] EXT4-fs: Ignoring removed oldalloc option
[   70.601718][ T4550] EXT4-fs: Ignoring removed bh option
[   70.616142][ T4554] FAULT_INJECTION: forcing a failure.
[   70.616142][ T4554] name failslab, interval 1, probability 0, space 0, times 0
[   70.630714][ T4554] CPU: 1 UID: 0 PID: 4554 Comm: syz.0.323 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   70.630816][ T4554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.630834][ T4554] Call Trace:
[   70.630842][ T4554]  <TASK>
[   70.630853][ T4554]  __dump_stack+0x1d/0x30
[   70.630950][ T4554]  dump_stack_lvl+0xe8/0x140
[   70.630976][ T4554]  dump_stack+0x15/0x1b
[   70.630997][ T4554]  should_fail_ex+0x265/0x280
[   70.631026][ T4554]  ? proc_do_submiturb+0x83d/0x1d20
[   70.631094][ T4554]  should_failslab+0x8c/0xb0
[   70.631158][ T4554]  __kmalloc_cache_noprof+0x4c/0x320
[   70.631281][ T4554]  proc_do_submiturb+0x83d/0x1d20
[   70.631345][ T4554]  ? proc_do_submiturb+0xe1/0x1d20
[   70.632221][ T4554]  ? should_fail_ex+0xdb/0x280
[   70.632255][ T4554]  proc_submiturb+0x7b/0xa0
[   70.632314][ T4554]  usbdev_ioctl+0xcc2/0x1710
[   70.632350][ T4554]  ? __pfx_usbdev_ioctl+0x10/0x10
[   70.632379][ T4554]  __se_sys_ioctl+0xcb/0x140
[   70.632465][ T4554]  __x64_sys_ioctl+0x43/0x50
[   70.632503][ T4554]  x64_sys_call+0x1816/0x2ff0
[   70.632534][ T4554]  do_syscall_64+0xd2/0x200
[   70.632571][ T4554]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.632604][ T4554]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.632701][ T4554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.632729][ T4554] RIP: 0033:0x7feeba2aebe9
[   70.632750][ T4554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.632774][ T4554] RSP: 002b:00007feeb8d0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   70.632802][ T4554] RAX: ffffffffffffffda RBX: 00007feeba4d5fa0 RCX: 00007feeba2aebe9
[   70.632820][ T4554] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000006
[   70.632902][ T4554] RBP: 00007feeb8d0f090 R08: 0000000000000000 R09: 0000000000000000
[   70.632977][ T4554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.632993][ T4554] R13: 00007feeba4d6038 R14: 00007feeba4d5fa0 R15: 00007ffd5d6abeb8
[   70.633016][ T4554]  </TASK>
[   70.637040][ T4544] EXT4-fs (loop1): pa ffff8881072b8930: logic 16, phys. 129, len 24
[   70.682718][ T4558] loop0: detected capacity change from 0 to 128
[   70.687419][ T4544] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   70.822688][ T4561] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   70.822688][ T4561]    program syz.2.325 not setting count and/or reply_len properly
[   70.848530][ T4550] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.866486][ T4558] syz.0.324: attempt to access beyond end of device
[   70.866486][ T4558] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   70.967531][   T29] kauditd_printk_skb: 70 callbacks suppressed
[   70.967545][   T29] audit: type=1326 audit(1755501138.916:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.005787][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.017706][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.022079][ T4566] loop2: detected capacity change from 0 to 512
[   71.030620][   T29] audit: type=1326 audit(1755501138.956:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.037007][ T4568] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   71.062820][   T29] audit: type=1326 audit(1755501138.956:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.098328][   T29] audit: type=1326 audit(1755501138.976:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.124585][   T29] audit: type=1326 audit(1755501138.976:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.152822][   T29] audit: type=1326 audit(1755501138.976:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.178875][   T29] audit: type=1326 audit(1755501138.976:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.205601][   T29] audit: type=1326 audit(1755501138.976:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.231824][   T29] audit: type=1326 audit(1755501138.976:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.258346][   T29] audit: type=1326 audit(1755501138.976:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4565 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   71.285356][ T4566] EXT4-fs (loop2): orphan cleanup on readonly fs
[   71.318697][ T4579] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   71.327265][ T4579] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   71.338875][ T4579] vhci_hcd vhci_hcd.0: Device attached
[   71.350681][ T4566] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.328: Failed to acquire dquot type 1
[   71.365459][ T4568] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   71.376768][ T4580] vhci_hcd: connection closed
[   71.377288][   T37] vhci_hcd: stop threads
[   71.388766][   T37] vhci_hcd: release socket
[   71.394424][   T37] vhci_hcd: disconnect device
[   71.403011][ T4566] EXT4-fs (loop2): 1 truncate cleaned up
[   71.411452][ T4566] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.428857][ T4568] Buffer I/O error on dev loop0, logical block 88, lost async page write
[   71.449909][ T4568] Buffer I/O error on dev loop0, logical block 92, lost async page write
[   71.470936][ T4348] veth0_vlan: entered promiscuous mode
[   71.482389][ T4348] veth1_vlan: entered promiscuous mode
[   71.500838][ T4348] veth0_macvtap: entered promiscuous mode
[   71.510154][ T4348] veth1_macvtap: entered promiscuous mode
[   71.524951][ T4348] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.538679][ T4348] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.554279][ T1751] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.564841][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.577557][ T1751] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.593857][ T1751] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.605436][ T1751] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.674758][ T4597] loop5: detected capacity change from 0 to 1024
[   71.702039][ T4597] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.726401][ T4597] netlink: 'syz.5.288': attribute type 10 has an invalid length.
[   71.738089][ T4597] team0: Port device dummy0 added
[   71.837598][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.914957][ T4606] vhci_hcd: invalid port number 96
[   71.921093][ T4606] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   72.036402][ T4612] FAULT_INJECTION: forcing a failure.
[   72.036402][ T4612] name failslab, interval 1, probability 0, space 0, times 0
[   72.049886][ T4612] CPU: 0 UID: 0 PID: 4612 Comm: syz.1.335 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   72.049987][ T4612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.050004][ T4612] Call Trace:
[   72.050012][ T4612]  <TASK>
[   72.050022][ T4612]  __dump_stack+0x1d/0x30
[   72.050049][ T4612]  dump_stack_lvl+0xe8/0x140
[   72.050067][ T4612]  dump_stack+0x15/0x1b
[   72.050083][ T4612]  should_fail_ex+0x265/0x280
[   72.050172][ T4612]  should_failslab+0x8c/0xb0
[   72.050204][ T4612]  kmem_cache_alloc_noprof+0x50/0x310
[   72.050238][ T4612]  ? alloc_pid+0x7a/0x720
[   72.050262][ T4612]  alloc_pid+0x7a/0x720
[   72.050285][ T4612]  copy_process+0xe25/0x2000
[   72.050390][ T4612]  ? __pfx_io_wq_worker+0x10/0x10
[   72.050413][ T4612]  create_io_thread+0x93/0xc0
[   72.050512][ T4612]  ? __pfx_io_wq_worker+0x10/0x10
[   72.050530][ T4612]  create_io_worker+0xe0/0x370
[   72.050549][ T4612]  io_wq_enqueue+0x2c1/0x3a0
[   72.050583][ T4612]  ? __pfx_io_wq_work_match_item+0x10/0x10
[   72.050677][ T4612]  io_queue_iowq+0x201/0x2e0
[   72.050719][ T4612]  io_queue_sqe_fallback+0xe6/0x140
[   72.050745][ T4612]  io_submit_sqes+0xc1d/0x1050
[   72.050842][ T4612]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   72.050899][ T4612]  ? 0xffffffff81000000
[   72.050972][ T4612]  ? __rcu_read_unlock+0x4f/0x70
[   72.050999][ T4612]  ? get_pid_task+0x96/0xd0
[   72.051104][ T4612]  ? proc_fail_nth_write+0x13b/0x160
[   72.051138][ T4612]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   72.051250][ T4612]  ? vfs_write+0x7e8/0x960
[   72.051275][ T4612]  ? __rcu_read_unlock+0x4f/0x70
[   72.051301][ T4612]  ? __fget_files+0x184/0x1c0
[   72.051325][ T4612]  ? fput+0x8f/0xc0
[   72.051375][ T4612]  __x64_sys_io_uring_enter+0x78/0x90
[   72.051403][ T4612]  x64_sys_call+0x2de1/0x2ff0
[   72.051427][ T4612]  do_syscall_64+0xd2/0x200
[   72.051457][ T4612]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.051483][ T4612]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.051585][ T4612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.051607][ T4612] RIP: 0033:0x7f535d6cebe9
[   72.051621][ T4612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.051638][ T4612] RSP: 002b:00007f535c137038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   72.051658][ T4612] RAX: ffffffffffffffda RBX: 00007f535d8f5fa0 RCX: 00007f535d6cebe9
[   72.051746][ T4612] RDX: 0000000000001e43 RSI: 00000000000047f8 RDI: 0000000000000006
[   72.051760][ T4612] RBP: 00007f535c137090 R08: 0000000000000000 R09: 0000000000000000
[   72.051798][ T4612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.051813][ T4612] R13: 00007f535d8f6038 R14: 00007f535d8f5fa0 R15: 00007ffddf6874c8
[   72.051837][ T4612]  </TASK>
[   72.435374][ T4620] loop4: detected capacity change from 0 to 512
[   72.502196][ T4620] EXT4-fs: Ignoring removed bh option
[   72.539658][ T4620] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.549531][ T4620] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   72.667725][ T4620] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   72.740506][ T4620] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   72.759835][ T4632] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   72.778835][ T4620] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.803491][ T4632] SELinux: failed to load policy
[   72.827622][ T4641] loop0: detected capacity change from 0 to 1024
[   72.840532][ T4641] EXT4-fs: inline encryption not supported
[   72.848195][ T4641] EXT4-fs: Ignoring removed i_version option
[   72.882450][ T4641] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   72.914955][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.915258][ T4641] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #3: block 1: comm syz.0.343: lblock 1 mapped to illegal pblock 1 (length 1)
[   72.949277][ T4641] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.343: Failed to acquire dquot type 0
[   72.991975][ T4653] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.346'.
[   73.010052][ T4641] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.343: Freeing blocks not in datazone - block = 0, count = 4096
[   73.043004][ T4633] loop2: detected capacity change from 0 to 8192
[   73.052772][ T4656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.340'.
[   73.062345][ T4656] netlink: 20 bytes leftover after parsing attributes in process `syz.2.340'.
[   73.075371][ T4641] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.343: Invalid inode bitmap blk 0 in block_group 0
[   73.119020][ T4641] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   73.122160][ T4661] loop5: detected capacity change from 0 to 1024
[   73.140572][ T4641] EXT4-fs (loop0): 1 orphan inode deleted
[   73.141119][ T1751] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   73.147076][ T4633]  loop2: p1 p2 p4 < >
[   73.168089][ T4663] loop4: detected capacity change from 0 to 128
[   73.172697][ T4641] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.195828][ T4661] EXT4-fs: Ignoring removed oldalloc option
[   73.203167][ T4661] EXT4-fs: Ignoring removed bh option
[   73.218572][ T1751] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   73.239900][ T4663] bio_check_eod: 8 callbacks suppressed
[   73.239937][ T4663] syz.4.350: attempt to access beyond end of device
[   73.239937][ T4663] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[   73.246244][ T4633] loop2: p1 start 4261412864 is beyond EOD, truncated
[   73.268833][ T4633] loop2: p2 start 4009754624 is beyond EOD, truncated
[   73.280534][ T4661] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.295089][ T4663] syz.4.350: attempt to access beyond end of device
[   73.295089][ T4663] loop4: rw=2049, sector=144, nr_sectors = 2 limit=128
[   73.310597][ T4663] Buffer I/O error on dev loop4, logical block 72, lost async page write
[   73.341178][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.363595][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.426749][ T4678] FAULT_INJECTION: forcing a failure.
[   73.426749][ T4678] name failslab, interval 1, probability 0, space 0, times 0
[   73.441752][ T4678] CPU: 0 UID: 0 PID: 4678 Comm: syz.0.351 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   73.441782][ T4678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.441877][ T4678] Call Trace:
[   73.441884][ T4678]  <TASK>
[   73.441893][ T4678]  __dump_stack+0x1d/0x30
[   73.441919][ T4678]  dump_stack_lvl+0xe8/0x140
[   73.441942][ T4678]  dump_stack+0x15/0x1b
[   73.442050][ T4678]  should_fail_ex+0x265/0x280
[   73.442072][ T4678]  should_failslab+0x8c/0xb0
[   73.442099][ T4678]  kmem_cache_alloc_noprof+0x50/0x310
[   73.442133][ T4678]  ? security_inode_alloc+0x37/0x100
[   73.442165][ T4678]  security_inode_alloc+0x37/0x100
[   73.442270][ T4678]  inode_init_always_gfp+0x4b7/0x500
[   73.442336][ T4678]  ? __pfx_proc_alloc_inode+0x10/0x10
[   73.442371][ T4678]  alloc_inode+0x58/0x170
[   73.442391][ T4678]  new_inode+0x1d/0xe0
[   73.442413][ T4678]  proc_pid_make_inode+0x1f/0xd0
[   73.442432][ T4678]  proc_pident_instantiate+0x44/0x180
[   73.442474][ T4678]  proc_pident_lookup+0x115/0x1a0
[   73.442501][ T4678]  proc_tgid_base_lookup+0x2b/0x40
[   73.442525][ T4678]  __lookup_slow+0x190/0x250
[   73.442561][ T4678]  lookup_slow+0x3c/0x60
[   73.442611][ T4678]  link_path_walk+0x753/0x900
[   73.442706][ T4678]  path_openat+0x1de/0x2170
[   73.442791][ T4678]  ? _parse_integer_limit+0x170/0x190
[   73.442902][ T4678]  do_filp_open+0x109/0x230
[   73.442924][ T4678]  ? __pfx_kfree_link+0x10/0x10
[   73.442956][ T4678]  do_sys_openat2+0xa6/0x110
[   73.442996][ T4678]  __x64_sys_openat+0xf2/0x120
[   73.443094][ T4678]  x64_sys_call+0x2e9c/0x2ff0
[   73.443162][ T4678]  do_syscall_64+0xd2/0x200
[   73.443194][ T4678]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.443231][ T4678]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.443261][ T4678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.443288][ T4678] RIP: 0033:0x7feeba2ad550
[   73.443308][ T4678] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   73.443324][ T4678] RSP: 002b:00007feeb8d0ef70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   73.443342][ T4678] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feeba2ad550
[   73.443353][ T4678] RDX: 0000000000000000 RSI: 00007feeba331f06 RDI: 00000000ffffff9c
[   73.443365][ T4678] RBP: 00007feeba331f06 R08: 0000000000000000 R09: 0000000000000000
[   73.443379][ T4678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   73.443390][ T4678] R13: 00007feeba4d6038 R14: 00007feeba4d5fa0 R15: 00007ffd5d6abeb8
[   73.443479][ T4678]  </TASK>
[   73.806920][ T4685] loop0: detected capacity change from 0 to 2048
[   73.821172][ T4685] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.873393][ T4685] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.354: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   73.964918][ T4685] EXT4-fs (loop0): Remounting filesystem read-only
[   73.987095][ T4694] netlink: 12 bytes leftover after parsing attributes in process `syz.2.353'.
[   74.012221][ T4697] loop5: detected capacity change from 0 to 512
[   74.031549][ T4697] EXT4-fs: Ignoring removed bh option
[   74.037976][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.049158][ T4697] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.059653][ T4697] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[   74.105908][ T4697] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[   74.158610][ T4697] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   74.180587][ T4697] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.204994][ T4711] loop0: detected capacity change from 0 to 1024
[   74.246403][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.258458][ T4711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.281380][ T4711] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   74.349264][ T4709] vhci_hcd: invalid port number 96
[   74.355392][ T4709] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   74.372313][ T4711] EXT4-fs (loop0): pa ffff888104a002a0: logic 16, phys. 129, len 24
[   74.382517][ T4711] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   74.407784][ T4725] loop2: detected capacity change from 0 to 1024
[   74.440293][ T4728] loop5: detected capacity change from 0 to 2048
[   74.449046][ T4725] EXT4-fs: Ignoring removed oldalloc option
[   74.455849][ T4725] EXT4-fs: Ignoring removed bh option
[   74.474957][ T4728] loop5: detected capacity change from 0 to 512
[   74.482336][ T4728] EXT4-fs: dax option not supported
[   74.490030][ T4728] netlink: 12 bytes leftover after parsing attributes in process `syz.5.363'.
[   74.511960][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.512763][ T4725] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.629040][ T4744] loop4: detected capacity change from 0 to 1024
[   74.653768][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.671092][ T4755] loop0: detected capacity change from 0 to 512
[   74.710212][ T4744] EXT4-fs: Ignoring removed bh option
[   74.740103][ T4744] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[   74.781848][ T4769] loop5: detected capacity change from 0 to 1024
[   74.802953][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[   74.832334][ T4771] loop0: detected capacity change from 0 to 1024
[   74.862326][ T4769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.886200][ T4778] FAULT_INJECTION: forcing a failure.
[   74.886200][ T4778] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   74.900637][ T4778] CPU: 1 UID: 0 PID: 4778 Comm: syz.2.368 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   74.900683][ T4778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   74.900700][ T4778] Call Trace:
[   74.900709][ T4778]  <TASK>
[   74.900718][ T4778]  __dump_stack+0x1d/0x30
[   74.900745][ T4778]  dump_stack_lvl+0xe8/0x140
[   74.900776][ T4778]  dump_stack+0x15/0x1b
[   74.900792][ T4778]  should_fail_ex+0x265/0x280
[   74.900813][ T4778]  should_fail_alloc_page+0xf2/0x100
[   74.900862][ T4778]  __alloc_frozen_pages_noprof+0xff/0x360
[   74.900900][ T4778]  alloc_pages_mpol+0xb3/0x250
[   74.900939][ T4778]  vma_alloc_folio_noprof+0x1aa/0x300
[   74.900999][ T4778]  handle_mm_fault+0xec2/0x2c20
[   74.901027][ T4778]  ? __rcu_read_unlock+0x4f/0x70
[   74.901081][ T4778]  do_user_addr_fault+0x3fe/0x1090
[   74.901141][ T4778]  exc_page_fault+0x62/0xa0
[   74.901198][ T4778]  asm_exc_page_fault+0x26/0x30
[   74.901217][ T4778] RIP: 0010:rep_stos_alternative+0x40/0x80
[   74.901249][ T4778] Code: c9 75 f6 e9 52 04 02 00 48 89 07 48 83 c7 08 83 e9 08 74 ef 83 f9 08 73 ef eb de 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 <48> 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47
[   74.901309][ T4778] RSP: 0018:ffffc90001a9bd98 EFLAGS: 00050246
[   74.901329][ T4778] RAX: 0000000000000000 RBX: 0000000000007000 RCX: 0000000000000040
[   74.901345][ T4778] RDX: 0000000000000000 RSI: 0000200000007040 RDI: 0000200000008000
[   74.901370][ T4778] RBP: 0000200000007040 R08: 0001ffff86847f7f R09: 0000000000000000
[   74.901382][ T4778] R10: ffffc900000c7c70 R11: 0001c900000c7c70 R12: 0000000000001000
[   74.901453][ T4778] R13: 00007ffffffff000 R14: 000000007fff8000 R15: 0000000000000000
[   74.901479][ T4778]  read_zero+0x77/0x160
[   74.901504][ T4778]  ? __pfx_read_zero+0x10/0x10
[   74.901528][ T4778]  vfs_read+0x1a8/0x770
[   74.901547][ T4778]  ? __rcu_read_unlock+0x4f/0x70
[   74.901567][ T4778]  ? __fget_files+0x184/0x1c0
[   74.901601][ T4778]  ksys_read+0xda/0x1a0
[   74.901629][ T4778]  __x64_sys_read+0x40/0x50
[   74.901757][ T4778]  x64_sys_call+0x27bc/0x2ff0
[   74.901830][ T4778]  do_syscall_64+0xd2/0x200
[   74.901859][ T4778]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.901882][ T4778]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   74.901937][ T4778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.901969][ T4778] RIP: 0033:0x7f6f3bcbebe9
[   74.901985][ T4778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.902006][ T4778] RSP: 002b:00007f6f3a71f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   74.902029][ T4778] RAX: ffffffffffffffda RBX: 00007f6f3bee5fa0 RCX: 00007f6f3bcbebe9
[   74.902085][ T4778] RDX: 00000000ffffff96 RSI: 0000200000000040 RDI: 0000000000000003
[   74.902096][ T4778] RBP: 00007f6f3a71f090 R08: 0000000000000000 R09: 0000000000000000
[   74.902107][ T4778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.902118][ T4778] R13: 00007f6f3bee6038 R14: 00007f6f3bee5fa0 R15: 00007ffec5967c08
[   74.902137][ T4778]  </TASK>
[   74.964626][ T4769] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   75.053008][ T4771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.351384][ T4788] EXT4-fs (loop5): pa ffff8881072b89a0: logic 16, phys. 129, len 24
[   75.361401][ T4788] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   75.429913][ T4771] netlink: 'syz.0.370': attribute type 10 has an invalid length.
[   75.444287][ T4791] netlink: 4 bytes leftover after parsing attributes in process `syz.2.373'.
[   75.480844][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.520111][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.571704][ T4802] loop0: detected capacity change from 0 to 128
[   75.590039][ T4802] syz.0.375: attempt to access beyond end of device
[   75.590039][ T4802] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   75.624582][ T4802] syz.0.375: attempt to access beyond end of device
[   75.624582][ T4802] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   75.639997][ T4802] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   75.718501][ T4813] netlink: 8 bytes leftover after parsing attributes in process `syz.5.374'.
[   75.730027][ T4813] SELinux: security_context_str_to_sid () failed with errno=-22
[   75.747086][ T4802] syz.0.375: attempt to access beyond end of device
[   75.747086][ T4802] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   75.762736][ T4802] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   75.812894][ T4802] syz.0.375: attempt to access beyond end of device
[   75.812894][ T4802] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[   75.883204][ T4802] syz.0.375: attempt to access beyond end of device
[   75.883204][ T4802] loop0: rw=2049, sector=170, nr_sectors = 8 limit=128
[   75.927457][ T4802] syz.0.375: attempt to access beyond end of device
[   75.927457][ T4802] loop0: rw=2049, sector=176, nr_sectors = 2 limit=128
[   75.943294][ T4802] Buffer I/O error on dev loop0, logical block 88, lost async page write
[   75.953371][ T4826] loop4: detected capacity change from 0 to 1024
[   75.963150][ T4829] FAULT_INJECTION: forcing a failure.
[   75.963150][ T4829] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.978101][ T4829] CPU: 0 UID: 0 PID: 4829 Comm: syz.2.384 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   75.978140][ T4829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.978188][ T4829] Call Trace:
[   75.978195][ T4829]  <TASK>
[   75.978203][ T4829]  __dump_stack+0x1d/0x30
[   75.978227][ T4829]  dump_stack_lvl+0xe8/0x140
[   75.978252][ T4829]  dump_stack+0x15/0x1b
[   75.978273][ T4829]  should_fail_ex+0x265/0x280
[   75.978333][ T4829]  should_fail+0xb/0x20
[   75.978356][ T4829]  should_fail_usercopy+0x1a/0x20
[   75.978380][ T4829]  _copy_from_user+0x1c/0xb0
[   75.978493][ T4829]  kstrtouint_from_user+0x69/0xf0
[   75.978516][ T4829]  ? 0xffffffff81000000
[   75.978528][ T4829]  ? selinux_file_permission+0x1e4/0x320
[   75.978557][ T4829]  proc_fail_nth_write+0x50/0x160
[   75.978597][ T4829]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   75.978686][ T4829]  vfs_write+0x269/0x960
[   75.978708][ T4829]  ? vfs_read+0x4e6/0x770
[   75.978727][ T4829]  ? __rcu_read_unlock+0x4f/0x70
[   75.978751][ T4829]  ? __fget_files+0x184/0x1c0
[   75.978786][ T4829]  ksys_write+0xda/0x1a0
[   75.978923][ T4829]  __x64_sys_write+0x40/0x50
[   75.978982][ T4829]  x64_sys_call+0x27fe/0x2ff0
[   75.979068][ T4829]  do_syscall_64+0xd2/0x200
[   75.979117][ T4829]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.979146][ T4829]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.979193][ T4829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.979216][ T4829] RIP: 0033:0x7f6f3bcbd69f
[   75.979235][ T4829] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   75.979257][ T4829] RSP: 002b:00007f6f3a6fe030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   75.979280][ T4829] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6f3bcbd69f
[   75.979300][ T4829] RDX: 0000000000000001 RSI: 00007f6f3a6fe0a0 RDI: 0000000000000004
[   75.979316][ T4829] RBP: 00007f6f3a6fe090 R08: 0000000000000000 R09: 0000000000000000
[   75.979330][ T4829] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   75.979345][ T4829] R13: 00007f6f3bee6128 R14: 00007f6f3bee6090 R15: 00007ffec5967c08
[   75.979369][ T4829]  </TASK>
[   76.264145][ T4802] syz.0.375: attempt to access beyond end of device
[   76.264145][ T4802] loop0: rw=2049, sector=178, nr_sectors = 8 limit=128
[   76.341896][ T4832] netlink: 12 bytes leftover after parsing attributes in process `syz.5.385'.
[   76.356094][ T4802] syz.0.375: attempt to access beyond end of device
[   76.356094][ T4802] loop0: rw=2049, sector=184, nr_sectors = 2 limit=128
[   76.372262][ T4802] Buffer I/O error on dev loop0, logical block 92, lost async page write
[   76.388962][ T4802] Buffer I/O error on dev loop0, logical block 104, lost async page write
[   76.404420][ T4802] Buffer I/O error on dev loop0, logical block 108, lost async page write
[   76.426288][ T4826] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.454346][ T4826] netlink: 'syz.4.383': attribute type 10 has an invalid length.
[   76.471032][ T4802] Buffer I/O error on dev loop0, logical block 120, lost async page write
[   76.489950][ T4840] FAULT_INJECTION: forcing a failure.
[   76.489950][ T4840] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.505078][ T4840] CPU: 0 UID: 0 PID: 4840 Comm: syz.2.386 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   76.505171][ T4840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.505189][ T4840] Call Trace:
[   76.505196][ T4840]  <TASK>
[   76.505205][ T4840]  __dump_stack+0x1d/0x30
[   76.505230][ T4840]  dump_stack_lvl+0xe8/0x140
[   76.505253][ T4840]  dump_stack+0x15/0x1b
[   76.505324][ T4840]  should_fail_ex+0x265/0x280
[   76.505345][ T4840]  should_fail+0xb/0x20
[   76.505361][ T4840]  should_fail_usercopy+0x1a/0x20
[   76.505383][ T4840]  _copy_from_iter+0xcf/0xe40
[   76.505447][ T4840]  ? __build_skb_around+0x1a0/0x200
[   76.505482][ T4840]  ? __alloc_skb+0x223/0x320
[   76.505531][ T4840]  netlink_sendmsg+0x471/0x6b0
[   76.505555][ T4840]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.505623][ T4840]  __sock_sendmsg+0x142/0x180
[   76.505757][ T4840]  ____sys_sendmsg+0x31e/0x4e0
[   76.505846][ T4840]  ___sys_sendmsg+0x17b/0x1d0
[   76.505887][ T4840]  __x64_sys_sendmsg+0xd4/0x160
[   76.505912][ T4840]  x64_sys_call+0x191e/0x2ff0
[   76.505971][ T4840]  do_syscall_64+0xd2/0x200
[   76.506069][ T4840]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.506165][ T4840]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.506197][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.506225][ T4840] RIP: 0033:0x7f6f3bcbebe9
[   76.506242][ T4840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.506260][ T4840] RSP: 002b:00007f6f3a71f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.506298][ T4840] RAX: ffffffffffffffda RBX: 00007f6f3bee5fa0 RCX: 00007f6f3bcbebe9
[   76.506310][ T4840] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007
[   76.506323][ T4840] RBP: 00007f6f3a71f090 R08: 0000000000000000 R09: 0000000000000000
[   76.506338][ T4840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.506354][ T4840] R13: 00007f6f3bee6038 R14: 00007f6f3bee5fa0 R15: 00007ffec5967c08
[   76.506378][ T4840]  </TASK>
[   76.749434][ T4802] Buffer I/O error on dev loop0, logical block 124, lost async page write
[   76.750223][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.793417][ T4802] Buffer I/O error on dev loop0, logical block 96, lost async page write
[   76.794196][ T4842] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   76.794196][ T4842]    program syz.5.387 not setting count and/or reply_len properly
[   76.898083][ T4851] netlink: 4 bytes leftover after parsing attributes in process `syz.4.390'.
[   76.949269][ T4860] loop2: detected capacity change from 0 to 512
[   76.961442][ T4860] EXT4-fs: Ignoring removed bh option
[   76.974109][ T4860] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.984737][ T4860] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   77.014280][ T4860] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   77.035337][ T4860] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   77.048133][ T4867] vhci_hcd: invalid port number 96
[   77.055857][ T4867] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   77.087344][ T4860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.143724][ T4871] netlink: 8 bytes leftover after parsing attributes in process `syz.4.395'.
[   77.182832][ T4871] SELinux: security_context_str_to_sid () failed with errno=-22
[   77.223529][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.366068][ T4882] loop2: detected capacity change from 0 to 1024
[   77.368928][ T4883] unsupported nlmsg_type 40
[   77.393502][   T29] kauditd_printk_skb: 72 callbacks suppressed
[   77.393520][   T29] audit: type=1326 audit(1755501145.346:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.477743][ T4887] loop4: detected capacity change from 0 to 128
[   77.487246][ T4882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.572881][ T4882] netlink: 'syz.2.399': attribute type 10 has an invalid length.
[   77.582438][   T29] audit: type=1326 audit(1755501145.386:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.609197][   T29] audit: type=1326 audit(1755501145.386:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.638506][   T29] audit: type=1326 audit(1755501145.386:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.669645][   T29] audit: type=1326 audit(1755501145.386:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.698878][   T29] audit: type=1326 audit(1755501145.386:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f97d730d69f code=0x7ffc0000
[   77.724984][   T29] audit: type=1326 audit(1755501145.386:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.751678][   T29] audit: type=1326 audit(1755501145.386:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.780701][   T29] audit: type=1326 audit(1755501145.386:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.808386][   T29] audit: type=1326 audit(1755501145.386:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4872 comm="syz.5.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   77.848801][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.883155][ T4910] loop2: detected capacity change from 0 to 1024
[   77.893286][ T4910] EXT4-fs: Ignoring removed oldalloc option
[   77.900046][ T4910] EXT4-fs: Ignoring removed bh option
[   77.920534][ T4910] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.961094][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.116670][ T4926] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   78.132010][ T4930] loop5: detected capacity change from 0 to 128
[   78.167461][ T4939] __nla_validate_parse: 3 callbacks suppressed
[   78.167477][ T4939] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'.
[   78.187612][ T4939] SELinux: security_context_str_to_sid () failed with errno=-22
[   78.216918][ T4941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.416'.
[   78.270719][ T4942] bio_check_eod: 40 callbacks suppressed
[   78.270741][ T4942] syz.5.412: attempt to access beyond end of device
[   78.270741][ T4942] loop5: rw=2049, sector=218, nr_sectors = 8 limit=128
[   78.302185][ T4946] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   78.302185][ T4946]    program syz.1.418 not setting count and/or reply_len properly
[   78.362739][ T4942] syz.5.412: attempt to access beyond end of device
[   78.362739][ T4942] loop5: rw=2049, sector=224, nr_sectors = 2 limit=128
[   78.377133][ T4942] buffer_io_error: 15 callbacks suppressed
[   78.377149][ T4942] Buffer I/O error on dev loop5, logical block 112, lost async page write
[   78.400652][ T4942] syz.5.412: attempt to access beyond end of device
[   78.400652][ T4942] loop5: rw=2049, sector=226, nr_sectors = 8 limit=128
[   78.432762][ T4942] syz.5.412: attempt to access beyond end of device
[   78.432762][ T4942] loop5: rw=2049, sector=232, nr_sectors = 2 limit=128
[   78.447521][ T4942] Buffer I/O error on dev loop5, logical block 116, lost async page write
[   78.497516][ T4950] loop2: detected capacity change from 0 to 512
[   78.548645][ T4950] EXT4-fs: Ignoring removed bh option
[   78.555030][ T4950] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.565935][ T4950] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   78.591170][ T4952] netlink: 'syz.1.419': attribute type 10 has an invalid length.
[   78.600818][ T4950] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   78.622264][ T4950] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   78.632427][ T4950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.669137][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.691066][ T4958] netlink: 4 bytes leftover after parsing attributes in process `syz.4.421'.
[   79.181481][ T4995] loop0: detected capacity change from 0 to 128
[   79.191383][ T4991] netlink: 4 bytes leftover after parsing attributes in process `syz.2.429'.
[   79.193071][ T4995] syz.0.431: attempt to access beyond end of device
[   79.193071][ T4995] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   79.237405][ T4994] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   79.237405][ T4994]    program syz.4.430 not setting count and/or reply_len properly
[   79.258147][ T4998] syz.0.431: attempt to access beyond end of device
[   79.258147][ T4998] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   79.273237][ T4998] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   79.308746][ T4999] netlink: 64 bytes leftover after parsing attributes in process `syz.1.428'.
[   79.326840][ T5001] loop2: detected capacity change from 0 to 512
[   79.334213][ T5001] EXT4-fs: Ignoring removed bh option
[   79.342008][ T5001] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.354150][ T5001] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   79.385186][ T5006] loop4: detected capacity change from 0 to 1024
[   79.423549][ T5009] vhci_hcd: invalid port number 96
[   79.429676][ T5009] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   79.433230][ T5001] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   79.468664][ T5001] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   79.478294][ T5001] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.565278][ T4993] syz.0.431: attempt to access beyond end of device
[   79.565278][ T4993] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   79.579923][ T4993] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   79.589864][ T5006] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.614869][ T5006] netlink: 'syz.4.434': attribute type 10 has an invalid length.
[   79.626886][ T4993] syz.0.431: attempt to access beyond end of device
[   79.626886][ T4993] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[   79.654217][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.716837][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.130484][ T5044] netlink: 12 bytes leftover after parsing attributes in process `syz.5.439'.
[   80.176647][ T5054] netlink: 296 bytes leftover after parsing attributes in process `syz.5.442'.
[   80.268063][ T5061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.444'.
[   80.375919][ T5065] vhci_hcd: invalid port number 96
[   80.382104][ T5065] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   80.400910][ T5068] loop0: detected capacity change from 0 to 1024
[   80.416344][ T5068] EXT4-fs: Ignoring removed oldalloc option
[   80.424235][ T5068] EXT4-fs: Ignoring removed bh option
[   80.459661][ T5068] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.632692][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.690989][ T5089] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   80.690989][ T5089]    program syz.5.452 not setting count and/or reply_len properly
[   80.717477][ T5084] 9pnet_fd: p9_fd_create_unix (5084): problem connecting socket: ./file0: -111
[   80.746140][ T5100] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   80.746140][ T5100]    program syz.4.453 not setting count and/or reply_len properly
[   80.891458][ T5107] loop4: detected capacity change from 0 to 128
[   80.907653][ T5107] syz.4.455: attempt to access beyond end of device
[   80.907653][ T5107] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[   80.960026][ T5112] loop2: detected capacity change from 0 to 128
[   80.980560][ T5117] syz.4.455: attempt to access beyond end of device
[   80.980560][ T5117] loop4: rw=2049, sector=144, nr_sectors = 2 limit=128
[   80.999057][ T5117] Buffer I/O error on dev loop4, logical block 72, lost async page write
[   81.065936][ T5105] Buffer I/O error on dev loop4, logical block 72, lost async page write
[   81.078427][ T5112] Buffer I/O error on dev loop2, logical block 72, lost async page write
[   81.382209][ T5150] Buffer I/O error on dev loop2, logical block 72, lost async page write
[   81.410212][ T5150] Buffer I/O error on dev loop2, logical block 88, lost async page write
[   81.448985][ T5150] Buffer I/O error on dev loop2, logical block 92, lost async page write
[   81.472707][ T5162] loop0: detected capacity change from 0 to 512
[   81.548637][ T5162] EXT4-fs: Ignoring removed bh option
[   81.575150][ T5167] netlink: 'syz.1.464': attribute type 10 has an invalid length.
[   81.630767][ T5162] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.640687][ T5162] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   81.751697][ T5162] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   81.852810][ T5162] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   81.939108][ T5162] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.060696][ T5199] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   82.060696][ T5199]    program syz.5.469 not setting count and/or reply_len properly
[   82.103000][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.152820][ T5207] vhci_hcd: invalid port number 96
[   82.158920][ T5207] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   82.267581][ T5220] loop5: detected capacity change from 0 to 1024
[   82.274743][ T5220] EXT4-fs: Ignoring removed oldalloc option
[   82.281502][ T5220] EXT4-fs: Ignoring removed bh option
[   82.322382][ T5223] bridge0: port 3(batadv1) entered blocking state
[   82.329691][ T5223] bridge0: port 3(batadv1) entered disabled state
[   82.348950][ T5223] batadv1: entered allmulticast mode
[   82.365990][ T5220] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.389083][ T5223] batadv1: entered promiscuous mode
[   82.480956][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.515648][ T5236] loop4: detected capacity change from 0 to 1024
[   82.582096][ T5236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.675028][ T5236] netlink: 'syz.4.478': attribute type 10 has an invalid length.
[   82.766479][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.791290][ T5247] loop2: detected capacity change from 0 to 512
[   82.805845][ T5247] EXT4-fs: Ignoring removed bh option
[   82.819585][ T5247] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   82.829785][ T5247] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   82.841023][ T5252] FAULT_INJECTION: forcing a failure.
[   82.841023][ T5252] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   82.856073][ T5252] CPU: 1 UID: 0 PID: 5252 Comm: syz.4.480 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   82.856111][ T5252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   82.856127][ T5252] Call Trace:
[   82.856182][ T5252]  <TASK>
[   82.856193][ T5252]  __dump_stack+0x1d/0x30
[   82.856220][ T5252]  dump_stack_lvl+0xe8/0x140
[   82.856252][ T5252]  dump_stack+0x15/0x1b
[   82.856269][ T5252]  should_fail_ex+0x265/0x280
[   82.856340][ T5252]  should_fail_alloc_page+0xf2/0x100
[   82.856372][ T5252]  __alloc_frozen_pages_noprof+0xff/0x360
[   82.856422][ T5252]  alloc_pages_mpol+0xb3/0x250
[   82.856454][ T5252]  folio_alloc_mpol_noprof+0x39/0x80
[   82.856494][ T5252]  shmem_get_folio_gfp+0x3cf/0xd60
[   82.856571][ T5252]  shmem_write_begin+0xa8/0x190
[   82.856598][ T5252]  generic_perform_write+0x184/0x490
[   82.856655][ T5252]  shmem_file_write_iter+0xc5/0xf0
[   82.856679][ T5252]  do_iter_readv_writev+0x49c/0x540
[   82.856707][ T5252]  vfs_writev+0x2df/0x8b0
[   82.856767][ T5252]  __se_sys_pwritev2+0xfc/0x1c0
[   82.856795][ T5252]  __x64_sys_pwritev2+0x67/0x80
[   82.856860][ T5252]  x64_sys_call+0x2c55/0x2ff0
[   82.856881][ T5252]  do_syscall_64+0xd2/0x200
[   82.856906][ T5252]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.856933][ T5252]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   82.856958][ T5252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.857010][ T5252] RIP: 0033:0x7fe8e3acebe9
[   82.857030][ T5252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.857051][ T5252] RSP: 002b:00007fe8e252f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   82.857070][ T5252] RAX: ffffffffffffffda RBX: 00007fe8e3cf5fa0 RCX: 00007fe8e3acebe9
[   82.857082][ T5252] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000006
[   82.857097][ T5252] RBP: 00007fe8e252f090 R08: 0000000000000000 R09: 0000000000000000
[   82.857175][ T5252] R10: 0000000000001400 R11: 0000000000000246 R12: 0000000000000001
[   82.857202][ T5252] R13: 00007fe8e3cf6038 R14: 00007fe8e3cf5fa0 R15: 00007ffffd02ae28
[   82.857236][ T5252]  </TASK>
[   83.094807][ T5247] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   83.120653][ T1751] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[   83.129709][ T5247] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   83.130833][ T1751] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[   83.169278][ T5247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.186775][   T29] kauditd_printk_skb: 75 callbacks suppressed
[   83.186790][   T29] audit: type=1326 audit(1755501151.136:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.402843][ T5263] netlink: 40 bytes leftover after parsing attributes in process `syz.0.482'.
[   83.441987][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.477906][   T29] audit: type=1326 audit(1755501151.176:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.503094][   T29] audit: type=1326 audit(1755501151.176:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.527524][   T29] audit: type=1326 audit(1755501151.176:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.553608][   T29] audit: type=1326 audit(1755501151.176:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.579609][   T29] audit: type=1326 audit(1755501151.216:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.4.483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fe8e3acebe9 code=0x7ffc0000
[   83.634651][ T5277] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[   83.643897][ T5277] audit: out of memory in audit_log_start
[   83.819471][   T29] audit: type=1326 audit(1755501151.586:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5276 comm="syz.5.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[   83.845331][   T29] audit: type=1326 audit(1755501151.586:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5276 comm="syz.5.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f97d730d550 code=0x7ffc0000
[   83.908863][ T5288] loop5: detected capacity change from 0 to 1024
[   83.978599][ T5288] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.022854][ T5288] netlink: 'syz.5.491': attribute type 10 has an invalid length.
[   84.048161][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.103971][ T5319] loop5: detected capacity change from 0 to 1024
[   84.111513][ T5319] EXT4-fs: Ignoring removed oldalloc option
[   84.118084][ T5319] EXT4-fs: Ignoring removed bh option
[   84.137940][ T5319] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.184555][ T4348] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.265261][ T5331] loop0: detected capacity change from 0 to 512
[   84.317143][ T5331] EXT4-fs: Ignoring removed bh option
[   84.699153][ T5331] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.708675][ T5331] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   84.731178][ T5343] vhci_hcd: invalid port number 96
[   84.736766][ T5343] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   84.900382][ T5345] vhci_hcd: invalid port number 96
[   84.906404][ T5345] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   84.980939][ T5331] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   85.055870][ T5331] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   85.114771][ T5331] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.181160][ T5353] loop5: detected capacity change from 0 to 128
[   85.215507][ T5353] bio_check_eod: 12 callbacks suppressed
[   85.215530][ T5353] syz.5.503: attempt to access beyond end of device
[   85.215530][ T5353] loop5: rw=2049, sector=138, nr_sectors = 112 limit=128
[   85.251145][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.270937][ T5358] syz.5.503: attempt to access beyond end of device
[   85.270937][ T5358] loop5: rw=2049, sector=144, nr_sectors = 2 limit=128
[   85.287438][ T5358] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   85.395334][ T5369] loop0: detected capacity change from 0 to 1024
[   85.424650][ T5371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.508'.
[   85.461705][ T5369] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.507325][ T5377] loop2: detected capacity change from 0 to 1024
[   85.541232][ T5369] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   85.558182][ T5377] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.578596][ T5369] EXT4-fs (loop0): pa ffff8881072b8930: logic 16, phys. 129, len 24
[   85.588684][ T5369] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   85.590954][ T5377] netlink: 'syz.2.509': attribute type 10 has an invalid length.
[   85.626865][ T5352] syz.5.503: attempt to access beyond end of device
[   85.626865][ T5352] loop5: rw=2049, sector=144, nr_sectors = 2 limit=128
[   85.643330][ T5352] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   85.660806][ T5383] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   85.660806][ T5383]    program syz.4.510 not setting count and/or reply_len properly
[   85.685089][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.710899][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.728407][ T5352] syz.5.503: attempt to access beyond end of device
[   85.728407][ T5352] loop5: rw=2049, sector=146, nr_sectors = 26 limit=128
[   85.889969][ T5419] loop0: detected capacity change from 0 to 512
[   85.905498][ T5419] EXT4-fs: Ignoring removed bh option
[   85.920054][ T5419] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   85.929604][ T5419] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   85.951096][ T5419] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   86.122314][ T5419] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   86.135193][ T5419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.256488][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.333867][ T5430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.516'.
[   86.385821][ T5430] SELinux: security_context_str_to_sid () failed with errno=-22
[   86.490246][ T5439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.520'.
[   86.607695][ T5441] vhci_hcd: invalid port number 96
[   86.613355][ T5441] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   86.622802][ T5445] loop2: detected capacity change from 0 to 1024
[   86.645637][ T5443] loop4: detected capacity change from 0 to 1024
[   86.749951][ T5445] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   86.771855][ T5450] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   86.771855][ T5450]    program syz.0.524 not setting count and/or reply_len properly
[   86.821590][ T5444] EXT4-fs (loop2): pa ffff888104a00230: logic 16, phys. 129, len 24
[   86.830215][ T5444] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   86.899707][ T5457] netlink: 36 bytes leftover after parsing attributes in process `syz.0.525'.
[   86.950989][ T5443] netlink: 'syz.4.522': attribute type 10 has an invalid length.
[   87.091199][ T5466] loop0: detected capacity change from 0 to 512
[   87.121153][ T5466] EXT4-fs: Ignoring removed bh option
[   87.157412][ T5466] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.167459][ T5466] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   87.211583][ T5466] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   87.228561][ T5466] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   87.258515][ T5475] loop4: detected capacity change from 0 to 128
[   87.278509][ T5475] syz.4.530: attempt to access beyond end of device
[   87.278509][ T5475] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[   87.297465][ T5475] syz.4.530: attempt to access beyond end of device
[   87.297465][ T5475] loop4: rw=2049, sector=144, nr_sectors = 2 limit=128
[   87.312776][ T5475] Buffer I/O error on dev loop4, logical block 72, lost async page write
[   87.325662][ T5484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.533'.
[   87.372089][ T5486] vhci_hcd: invalid port number 96
[   87.378839][ T5486] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   87.402506][ T5489] netlink: 8 bytes leftover after parsing attributes in process `syz.2.532'.
[   87.415415][ T5489] SELinux: security_context_str_to_sid () failed with errno=-22
[   87.440930][ T5491] loop5: detected capacity change from 0 to 128
[   87.463772][ T5491] syz.5.537: attempt to access beyond end of device
[   87.463772][ T5491] loop5: rw=2049, sector=138, nr_sectors = 112 limit=128
[   87.489865][ T5491] syz.5.537: attempt to access beyond end of device
[   87.489865][ T5491] loop5: rw=2049, sector=144, nr_sectors = 2 limit=128
[   87.494883][ T5494] loop0: detected capacity change from 0 to 1024
[   87.505511][ T5491] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   87.576419][ T5494] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   87.597619][ T5501] loop2: detected capacity change from 0 to 128
[   87.622559][ T5497] syz.5.537: attempt to access beyond end of device
[   87.622559][ T5497] loop5: rw=2049, sector=186, nr_sectors = 64 limit=128
[   87.654550][ T5501] syz.2.538: attempt to access beyond end of device
[   87.654550][ T5501] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128
[   87.686364][ T5503] EXT4-fs (loop0): pa ffff8881072b8a80: logic 16, phys. 129, len 24
[   87.695431][ T5503] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   87.726976][ T5501] Buffer I/O error on dev loop2, logical block 72, lost async page write
[   87.810147][ T5473] Buffer I/O error on dev loop4, logical block 72, lost async page write
[   87.831932][ T5508] netlink: 36 bytes leftover after parsing attributes in process `syz.0.539'.
[   87.859245][ T5510] loop0: detected capacity change from 0 to 128
[   87.873554][ T5510] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   87.887640][ T5510] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   87.894721][ T5512] Buffer I/O error on dev loop2, logical block 72, lost async page write
[   87.898100][ T5510] Buffer I/O error on dev loop0, logical block 88, lost async page write
[   88.021628][ T5467] erspan1: entered allmulticast mode
[   88.075687][ T5519] netlink: 'syz.1.541': attribute type 10 has an invalid length.
[   88.209682][ T5530] FAULT_INJECTION: forcing a failure.
[   88.209682][ T5530] name failslab, interval 1, probability 0, space 0, times 0
[   88.222509][ T5530] CPU: 0 UID: 0 PID: 5530 Comm: syz.1.545 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   88.222597][ T5530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.222617][ T5530] Call Trace:
[   88.222624][ T5530]  <TASK>
[   88.222634][ T5530]  __dump_stack+0x1d/0x30
[   88.222706][ T5530]  dump_stack_lvl+0xe8/0x140
[   88.222729][ T5530]  dump_stack+0x15/0x1b
[   88.222751][ T5530]  should_fail_ex+0x265/0x280
[   88.222772][ T5530]  should_failslab+0x8c/0xb0
[   88.222833][ T5530]  kmem_cache_alloc_node_noprof+0x57/0x320
[   88.222869][ T5530]  ? __alloc_skb+0x101/0x320
[   88.222908][ T5530]  __alloc_skb+0x101/0x320
[   88.223011][ T5530]  netlink_ack+0xfd/0x500
[   88.223121][ T5530]  netlink_rcv_skb+0x192/0x220
[   88.223144][ T5530]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.223180][ T5530]  rtnetlink_rcv+0x1c/0x30
[   88.223207][ T5530]  netlink_unicast+0x5bd/0x690
[   88.223274][ T5530]  netlink_sendmsg+0x58b/0x6b0
[   88.223297][ T5530]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.223318][ T5530]  __sock_sendmsg+0x142/0x180
[   88.223350][ T5530]  ____sys_sendmsg+0x31e/0x4e0
[   88.223386][ T5530]  ___sys_sendmsg+0x17b/0x1d0
[   88.223493][ T5530]  __x64_sys_sendmsg+0xd4/0x160
[   88.223594][ T5530]  x64_sys_call+0x191e/0x2ff0
[   88.223615][ T5530]  do_syscall_64+0xd2/0x200
[   88.223640][ T5530]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.223721][ T5530]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   88.223756][ T5530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.223776][ T5530] RIP: 0033:0x7f535d6cebe9
[   88.223791][ T5530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.223879][ T5530] RSP: 002b:00007f535c137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.223902][ T5530] RAX: ffffffffffffffda RBX: 00007f535d8f5fa0 RCX: 00007f535d6cebe9
[   88.223918][ T5530] RDX: 0000000000000090 RSI: 0000200000000100 RDI: 0000000000000004
[   88.223933][ T5530] RBP: 00007f535c137090 R08: 0000000000000000 R09: 0000000000000000
[   88.223948][ T5530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.224040][ T5530] R13: 00007f535d8f6038 R14: 00007f535d8f5fa0 R15: 00007ffddf6874c8
[   88.224061][ T5530]  </TASK>
[   88.552253][ T5532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.546'.
[   88.613947][ T5536] netlink: 4 bytes leftover after parsing attributes in process `syz.0.547'.
[   88.694913][ T5538] vhci_hcd: invalid port number 96
[   88.701228][ T5538] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   88.772050][   T29] kauditd_printk_skb: 25 callbacks suppressed
[   88.772074][   T29] audit: type=1400 audit(1755501156.726:1002): avc:  denied  { name_bind } for  pid=5544 comm="syz.0.551" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   88.825746][   T29] audit: type=1326 audit(1755501156.776:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.853583][   T29] audit: type=1326 audit(1755501156.776:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.880729][   T29] audit: type=1326 audit(1755501156.776:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.907215][   T29] audit: type=1326 audit(1755501156.776:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.921298][ T5549] netlink: 8 bytes leftover after parsing attributes in process `syz.1.548'.
[   88.933637][   T29] audit: type=1326 audit(1755501156.776:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.967868][   T29] audit: type=1326 audit(1755501156.776:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   88.992938][   T29] audit: type=1326 audit(1755501156.776:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   89.020215][   T29] audit: type=1326 audit(1755501156.776:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   89.046221][   T29] audit: type=1326 audit(1755501156.776:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.0.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeba2aebe9 code=0x7ffc0000
[   89.085588][ T5540] SELinux: security_context_str_to_sid () failed with errno=-22
[   89.094519][ T5553] loop0: detected capacity change from 0 to 2048
[   89.149593][ T5553]  loop0: p1 < > p4 < >
[   89.183422][ T5556] netlink: 268 bytes leftover after parsing attributes in process `syz.4.552'.
[   89.293520][ T5573] loop2: detected capacity change from 0 to 512
[   89.320281][ T5573] EXT4-fs: Ignoring removed bh option
[   89.339084][ T5573] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   89.350628][ T5573] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   89.375230][ T5573] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   89.398837][ T5573] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   89.449181][ T5591] loop2: detected capacity change from 0 to 128
[   89.484597][ T5593] loop4: detected capacity change from 0 to 1024
[   89.565032][ T5603] loop4: detected capacity change from 0 to 128
[   89.693523][ T5614] netlink: 4 bytes leftover after parsing attributes in process `syz.1.564'.
[   89.747104][ T5619] netlink: 40 bytes leftover after parsing attributes in process `syz.5.566'.
[   89.804954][ T5624] loop5: detected capacity change from 0 to 512
[   89.812219][ T5624] EXT4-fs: Ignoring removed bh option
[   89.819809][ T5624] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   89.823979][ T5626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.563'.
[   89.830413][ T5624] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[   89.850922][ T5626] SELinux: security_context_str_to_sid () failed with errno=-22
[   89.860643][ T5624] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[   89.877471][ T5624] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   90.027759][ T5635] loop0: detected capacity change from 0 to 1024
[   90.060458][ T5635] netlink: 'syz.0.571': attribute type 10 has an invalid length.
[   90.109152][ T5647] loop5: detected capacity change from 0 to 1024
[   90.124387][ T5651] netlink: 28 bytes leftover after parsing attributes in process `syz.0.574'.
[   90.137449][ T5652] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[   90.166558][ T5647] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm +}[@: Allocating blocks 385-513 which overlap fs metadata
[   90.190134][ T5647] EXT4-fs (loop5): pa ffff8881072b8a80: logic 16, phys. 129, len 24
[   90.198632][ T5647] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   90.251330][ T5665] netlink: 4 bytes leftover after parsing attributes in process `syz.0.577'.
[   90.299203][ T5675] loop0: detected capacity change from 0 to 128
[   90.306495][ T5669] netlink: 4 bytes leftover after parsing attributes in process `syz.5.578'.
[   90.327668][ T5675] bio_check_eod: 77 callbacks suppressed
[   90.327688][ T5675] syz.0.580: attempt to access beyond end of device
[   90.327688][ T5675] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   90.351850][ T5679] FAULT_INJECTION: forcing a failure.
[   90.351850][ T5679] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   90.368237][ T5679] CPU: 1 UID: 0 PID: 5679 Comm: syz.4.579 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   90.368383][ T5679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.368401][ T5679] Call Trace:
[   90.368421][ T5679]  <TASK>
[   90.368431][ T5679]  __dump_stack+0x1d/0x30
[   90.368483][ T5679]  dump_stack_lvl+0xe8/0x140
[   90.368508][ T5679]  dump_stack+0x15/0x1b
[   90.368524][ T5679]  should_fail_ex+0x265/0x280
[   90.368547][ T5679]  should_fail_alloc_page+0xf2/0x100
[   90.368582][ T5679]  __alloc_frozen_pages_noprof+0xff/0x360
[   90.368765][ T5679]  alloc_pages_mpol+0xb3/0x250
[   90.368805][ T5679]  vma_alloc_folio_noprof+0x1aa/0x300
[   90.368852][ T5679]  handle_mm_fault+0xec2/0x2c20
[   90.368882][ T5679]  ? __rcu_read_lock+0x37/0x50
[   90.368904][ T5679]  ? __pte_offset_map_lock+0x1d4/0x230
[   90.368943][ T5679]  __get_user_pages+0x102e/0x1fa0
[   90.369027][ T5679]  __gup_longterm_locked+0x2fb/0xe60
[   90.369098][ T5679]  pin_user_pages+0x89/0xc0
[   90.369142][ T5679]  xdp_umem_pin_pages+0xbc/0x210
[   90.369176][ T5679]  xdp_umem_create+0x519/0x5c0
[   90.369211][ T5679]  xsk_setsockopt+0x5ea/0x640
[   90.369322][ T5679]  ? __pfx_xsk_setsockopt+0x10/0x10
[   90.369351][ T5679]  __sys_setsockopt+0x181/0x200
[   90.369382][ T5679]  __x64_sys_setsockopt+0x64/0x80
[   90.369444][ T5679]  x64_sys_call+0x20ec/0x2ff0
[   90.369469][ T5679]  do_syscall_64+0xd2/0x200
[   90.369495][ T5679]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.369956][ T5679]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.370007][ T5679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.370030][ T5679] RIP: 0033:0x7fe8e3acebe9
[   90.370046][ T5679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.370069][ T5679] RSP: 002b:00007fe8e250e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   90.370102][ T5679] RAX: ffffffffffffffda RBX: 00007fe8e3cf6090 RCX: 00007fe8e3acebe9
[   90.370149][ T5679] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000003
[   90.370167][ T5679] RBP: 00007fe8e250e090 R08: 0000000000000020 R09: 0000000000000000
[   90.370183][ T5679] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   90.370200][ T5679] R13: 00007fe8e3cf6128 R14: 00007fe8e3cf6090 R15: 00007ffffd02ae28
[   90.370224][ T5679]  </TASK>
[   90.642508][ T5675] syz.0.580: attempt to access beyond end of device
[   90.642508][ T5675] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   90.656753][ T5675] buffer_io_error: 32 callbacks suppressed
[   90.656807][ T5675] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   90.754617][ T5690] loop4: detected capacity change from 0 to 512
[   90.767582][ T5690] EXT4-fs: Ignoring removed bh option
[   90.779078][ T5690] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   90.788555][ T5690] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   90.797767][ T5681] syz.0.580: attempt to access beyond end of device
[   90.797767][ T5681] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   90.811617][ T5681] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   90.815165][ T5694] SELinux: security_context_str_to_sid () failed with errno=-22
[   90.840077][ T5688] syz.0.580: attempt to access beyond end of device
[   90.840077][ T5688] loop0: rw=2049, sector=186, nr_sectors = 64 limit=128
[   90.877909][ T5690] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   90.902189][ T5681] syz.0.580: attempt to access beyond end of device
[   90.902189][ T5681] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[   90.921144][ T5697] FAULT_INJECTION: forcing a failure.
[   90.921144][ T5697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.935397][ T5697] CPU: 1 UID: 0 PID: 5697 Comm: syz.5.586 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   90.935430][ T5697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.935443][ T5697] Call Trace:
[   90.935450][ T5697]  <TASK>
[   90.935459][ T5697]  __dump_stack+0x1d/0x30
[   90.935523][ T5697]  dump_stack_lvl+0xe8/0x140
[   90.935549][ T5697]  dump_stack+0x15/0x1b
[   90.935571][ T5697]  should_fail_ex+0x265/0x280
[   90.935599][ T5697]  should_fail+0xb/0x20
[   90.935620][ T5697]  should_fail_usercopy+0x1a/0x20
[   90.935651][ T5697]  _copy_from_user+0x1c/0xb0
[   90.935689][ T5697]  memdup_user+0x5e/0xd0
[   90.935786][ T5697]  strndup_user+0x68/0xb0
[   90.935813][ T5697]  perf_uprobe_init+0x48/0x150
[   90.935918][ T5697]  perf_uprobe_event_init+0xc4/0x140
[   90.935953][ T5697]  perf_try_init_event+0xd9/0x540
[   90.935985][ T5697]  ? perf_event_alloc+0xb1c/0x1740
[   90.936085][ T5697]  perf_event_alloc+0xb27/0x1740
[   90.936123][ T5697]  __se_sys_perf_event_open+0x4a5/0x11c0
[   90.936170][ T5697]  ? __rcu_read_unlock+0x4f/0x70
[   90.936207][ T5697]  __x64_sys_perf_event_open+0x67/0x80
[   90.936255][ T5697]  x64_sys_call+0x7bd/0x2ff0
[   90.936305][ T5697]  do_syscall_64+0xd2/0x200
[   90.936357][ T5697]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.936442][ T5697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.936463][ T5697] RIP: 0033:0x7f97d730ebe9
[   90.936481][ T5697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.936504][ T5697] RSP: 002b:00007f97d5d6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   90.936529][ T5697] RAX: ffffffffffffffda RBX: 00007f97d7535fa0 RCX: 00007f97d730ebe9
[   90.936584][ T5697] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000180
[   90.936599][ T5697] RBP: 00007f97d5d6f090 R08: 0000000000000000 R09: 0000000000000000
[   90.936611][ T5697] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   90.936704][ T5697] R13: 00007f97d7536038 R14: 00007f97d7535fa0 R15: 00007ffcbb128988
[   90.936729][ T5697]  </TASK>
[   91.168656][ T5681] syz.0.580: attempt to access beyond end of device
[   91.168656][ T5681] loop0: rw=2049, sector=170, nr_sectors = 8 limit=128
[   91.187198][ T5681] syz.0.580: attempt to access beyond end of device
[   91.187198][ T5681] loop0: rw=2049, sector=176, nr_sectors = 2 limit=128
[   91.201478][ T5681] Buffer I/O error on dev loop0, logical block 88, lost async page write
[   91.212357][ T5690] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   91.233048][ T5701] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[   91.277052][ T5709] loop5: detected capacity change from 0 to 128
[   91.325094][ T5709] syz.5.591: attempt to access beyond end of device
[   91.325094][ T5709] loop5: rw=2049, sector=138, nr_sectors = 112 limit=128
[   91.332268][ T5681] syz.0.580: attempt to access beyond end of device
[   91.332268][ T5681] loop0: rw=2049, sector=178, nr_sectors = 8 limit=128
[   91.374054][ T5681] syz.0.580: attempt to access beyond end of device
[   91.374054][ T5681] loop0: rw=2049, sector=184, nr_sectors = 2 limit=128
[   91.388411][ T5681] Buffer I/O error on dev loop0, logical block 92, lost async page write
[   91.400355][ T5718] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   91.417446][ T5722] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.427000][ T5722] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.549626][ T5708] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   91.804843][ T5760] FAULT_INJECTION: forcing a failure.
[   91.804843][ T5760] name failslab, interval 1, probability 0, space 0, times 0
[   91.818033][ T5760] CPU: 0 UID: 0 PID: 5760 Comm: syz.0.595 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   91.818134][ T5760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.818151][ T5760] Call Trace:
[   91.818160][ T5760]  <TASK>
[   91.818170][ T5760]  __dump_stack+0x1d/0x30
[   91.818204][ T5760]  dump_stack_lvl+0xe8/0x140
[   91.818277][ T5760]  dump_stack+0x15/0x1b
[   91.818298][ T5760]  should_fail_ex+0x265/0x280
[   91.818338][ T5760]  should_failslab+0x8c/0xb0
[   91.818429][ T5760]  kmem_cache_alloc_node_noprof+0x57/0x320
[   91.818631][ T5760]  ? __alloc_skb+0x101/0x320
[   91.818676][ T5760]  __alloc_skb+0x101/0x320
[   91.818734][ T5760]  ? audit_log_start+0x365/0x6c0
[   91.818770][ T5760]  audit_log_start+0x380/0x6c0
[   91.818803][ T5760]  audit_seccomp+0x48/0x100
[   91.818831][ T5760]  ? __seccomp_filter+0x68c/0x10d0
[   91.818876][ T5760]  __seccomp_filter+0x69d/0x10d0
[   91.818905][ T5760]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   91.818940][ T5760]  ? vfs_write+0x7e8/0x960
[   91.818999][ T5760]  ? __rcu_read_unlock+0x4f/0x70
[   91.819023][ T5760]  ? __fget_files+0x184/0x1c0
[   91.819056][ T5760]  __secure_computing+0x82/0x150
[   91.819082][ T5760]  syscall_trace_enter+0xcf/0x1e0
[   91.819129][ T5760]  do_syscall_64+0xac/0x200
[   91.819163][ T5760]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   91.819203][ T5760]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   91.819235][ T5760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.819333][ T5760] RIP: 0033:0x7feeba2aebe9
[   91.819349][ T5760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.819371][ T5760] RSP: 002b:00007feeb8d0f038 EFLAGS: 00000246 ORIG_RAX: 000000000000003f
[   91.819395][ T5760] RAX: ffffffffffffffda RBX: 00007feeba4d5fa0 RCX: 00007feeba2aebe9
[   91.819412][ T5760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[   91.819486][ T5760] RBP: 00007feeb8d0f090 R08: 0000000000000000 R09: 0000000000000000
[   91.819501][ T5760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.819516][ T5760] R13: 00007feeba4d6038 R14: 00007feeba4d5fa0 R15: 00007ffd5d6abeb8
[   91.819540][ T5760]  </TASK>
[   92.307328][ T5780] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[   92.379029][ T5783] netlink: 'syz.1.602': attribute type 10 has an invalid length.
[   92.391237][ T5791] SELinux: security_context_str_to_sid () failed with errno=-22
[   92.581326][ T5812] loop5: detected capacity change from 0 to 128
[   92.624088][ T5812] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   92.704378][ T5815] Buffer I/O error on dev loop5, logical block 72, lost async page write
[   92.771801][ T5815] Buffer I/O error on dev loop5, logical block 88, lost async page write
[   92.858944][ T5815] Buffer I/O error on dev loop5, logical block 92, lost async page write
[   93.367310][ T5825] FAULT_INJECTION: forcing a failure.
[   93.367310][ T5825] name failslab, interval 1, probability 0, space 0, times 0
[   93.382006][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz.5.609 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   93.382128][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.382145][ T5825] Call Trace:
[   93.382153][ T5825]  <TASK>
[   93.382163][ T5825]  __dump_stack+0x1d/0x30
[   93.382253][ T5825]  dump_stack_lvl+0xe8/0x140
[   93.382276][ T5825]  dump_stack+0x15/0x1b
[   93.382319][ T5825]  should_fail_ex+0x265/0x280
[   93.382345][ T5825]  should_failslab+0x8c/0xb0
[   93.382416][ T5825]  kmem_cache_alloc_node_noprof+0x57/0x320
[   93.382452][ T5825]  ? __alloc_skb+0x101/0x320
[   93.382486][ T5825]  __alloc_skb+0x101/0x320
[   93.382571][ T5825]  netlink_ack+0xfd/0x500
[   93.382591][ T5825]  netlink_rcv_skb+0x192/0x220
[   93.382608][ T5825]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   93.382666][ T5825]  rtnetlink_rcv+0x1c/0x30
[   93.382692][ T5825]  netlink_unicast+0x5bd/0x690
[   93.382805][ T5825]  netlink_sendmsg+0x58b/0x6b0
[   93.382867][ T5825]  ? __pfx_netlink_sendmsg+0x10/0x10
[   93.382960][ T5825]  __sock_sendmsg+0x142/0x180
[   93.382987][ T5825]  ____sys_sendmsg+0x31e/0x4e0
[   93.383076][ T5825]  ___sys_sendmsg+0x17b/0x1d0
[   93.383183][ T5825]  __x64_sys_sendmsg+0xd4/0x160
[   93.383214][ T5825]  x64_sys_call+0x191e/0x2ff0
[   93.383240][ T5825]  do_syscall_64+0xd2/0x200
[   93.383313][ T5825]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.383359][ T5825]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.383391][ T5825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.383471][ T5825] RIP: 0033:0x7f97d730ebe9
[   93.383515][ T5825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.383615][ T5825] RSP: 002b:00007f97d5d6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.383637][ T5825] RAX: ffffffffffffffda RBX: 00007f97d7535fa0 RCX: 00007f97d730ebe9
[   93.383653][ T5825] RDX: 0000000000000090 RSI: 0000200000000100 RDI: 0000000000000004
[   93.383715][ T5825] RBP: 00007f97d5d6f090 R08: 0000000000000000 R09: 0000000000000000
[   93.383726][ T5825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.383737][ T5825] R13: 00007f97d7536038 R14: 00007f97d7535fa0 R15: 00007ffcbb128988
[   93.383754][ T5825]  </TASK>
[   93.699511][ T5830] __nla_validate_parse: 6 callbacks suppressed
[   93.699533][ T5830] netlink: 28 bytes leftover after parsing attributes in process `syz.5.610'.
[   93.769330][ T5855] netlink: 8 bytes leftover after parsing attributes in process `syz.5.612'.
[   93.789606][ T5857] loop4: detected capacity change from 0 to 512
[   93.807756][ T5857] EXT4-fs: Ignoring removed bh option
[   93.815943][ T5857] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.826258][ T5857] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   93.836655][ T5860] netlink: 4 bytes leftover after parsing attributes in process `syz.5.614'.
[   93.850165][ T5857] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   93.875149][ T5857] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   93.902682][ T5865] loop5: detected capacity change from 0 to 128
[   94.085931][ T5882] netlink: 8 bytes leftover after parsing attributes in process `syz.4.616'.
[   94.104788][ T5882] SELinux: security_context_str_to_sid () failed with errno=-22
[   94.156686][ T5885] loop0: detected capacity change from 0 to 1024
[   94.165757][ T5886] netlink: 'syz.1.618': attribute type 10 has an invalid length.
[   94.192085][ T5885] netlink: 'syz.0.628': attribute type 10 has an invalid length.
[   94.331632][ T5902] netlink: 4 bytes leftover after parsing attributes in process `syz.0.620'.
[   94.365285][ T5907] FAULT_INJECTION: forcing a failure.
[   94.365285][ T5907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.380319][ T5907] CPU: 0 UID: 0 PID: 5907 Comm: syz.4.623 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   94.380442][ T5907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.380457][ T5907] Call Trace:
[   94.380535][ T5907]  <TASK>
[   94.380543][ T5907]  __dump_stack+0x1d/0x30
[   94.380565][ T5907]  dump_stack_lvl+0xe8/0x140
[   94.380583][ T5907]  dump_stack+0x15/0x1b
[   94.380644][ T5907]  should_fail_ex+0x265/0x280
[   94.380669][ T5907]  should_fail+0xb/0x20
[   94.380690][ T5907]  should_fail_usercopy+0x1a/0x20
[   94.380719][ T5907]  _copy_from_iter+0xcf/0xe40
[   94.380750][ T5907]  ? __build_skb_around+0x1a0/0x200
[   94.380783][ T5907]  ? __alloc_skb+0x223/0x320
[   94.380825][ T5907]  netlink_sendmsg+0x471/0x6b0
[   94.380888][ T5907]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.381082][ T5907]  __sock_sendmsg+0x142/0x180
[   94.381403][ T5907]  ____sys_sendmsg+0x31e/0x4e0
[   94.381429][ T5907]  ___sys_sendmsg+0x17b/0x1d0
[   94.381471][ T5907]  __x64_sys_sendmsg+0xd4/0x160
[   94.381578][ T5907]  x64_sys_call+0x191e/0x2ff0
[   94.381600][ T5907]  do_syscall_64+0xd2/0x200
[   94.381634][ T5907]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.381735][ T5907]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.381838][ T5907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.381865][ T5907] RIP: 0033:0x7fe8e3acebe9
[   94.382014][ T5907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.382037][ T5907] RSP: 002b:00007fe8e252f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.382060][ T5907] RAX: ffffffffffffffda RBX: 00007fe8e3cf5fa0 RCX: 00007fe8e3acebe9
[   94.382077][ T5907] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000006
[   94.382131][ T5907] RBP: 00007fe8e252f090 R08: 0000000000000000 R09: 0000000000000000
[   94.382146][ T5907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.382162][ T5907] R13: 00007fe8e3cf6038 R14: 00007fe8e3cf5fa0 R15: 00007ffffd02ae28
[   94.382187][ T5907]  </TASK>
[   94.743280][ T5909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.624'.
[   94.853366][ T5955] netlink: 4 bytes leftover after parsing attributes in process `syz.2.625'.
[   94.872768][ T5953] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   94.872768][ T5953]    program syz.0.627 not setting count and/or reply_len properly
[   94.896880][ T5959] loop4: detected capacity change from 0 to 512
[   94.908767][ T5959] EXT4-fs: Ignoring removed bh option
[   94.916468][ T5959] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.926244][ T5959] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   94.936917][ T5959] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   94.946733][ T5959] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   94.960499][ T5959] netlink: 12 bytes leftover after parsing attributes in process `syz.4.626'.
[   94.969857][ T5959] netlink: 24 bytes leftover after parsing attributes in process `syz.4.626'.
[   94.995455][ T5981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.641'.
[   95.018670][ T5980] loop2: detected capacity change from 0 to 1024
[   95.040431][   T29] kauditd_printk_skb: 164 callbacks suppressed
[   95.040514][   T29] audit: type=1326 audit(1755501162.996:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5989 comm="syz.5.634" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x0
[   95.136510][ T5980] netlink: 'syz.2.631': attribute type 10 has an invalid length.
[   95.157534][ T6002] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.171646][ T5986] SELinux: security_context_str_to_sid () failed with errno=-22
[   95.185756][ T6002] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.220925][   T29] audit: type=1400 audit(1755501163.166:1175): avc:  denied  { connect } for  pid=6009 comm="syz.2.638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   95.242435][   T29] audit: type=1400 audit(1755501163.166:1176): avc:  denied  { ioctl } for  pid=6009 comm="syz.2.638" path="socket:[12622]" dev="sockfs" ino=12622 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   95.267770][   T29] audit: type=1400 audit(1755501163.166:1177): avc:  denied  { create } for  pid=6009 comm="syz.2.638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   95.289290][   T29] audit: type=1400 audit(1755501163.226:1178): avc:  denied  { create } for  pid=6016 comm="syz.1.642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   95.308978][ T6019] loop0: detected capacity change from 0 to 128
[   95.320394][ T6022] loop4: detected capacity change from 0 to 128
[   95.328621][   T29] audit: type=1400 audit(1755501163.286:1179): avc:  denied  { write } for  pid=6016 comm="syz.1.642" path="socket:[12625]" dev="sockfs" ino=12625 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   95.355977][ T6019] bio_check_eod: 17 callbacks suppressed
[   95.355993][ T6019] syz.0.640: attempt to access beyond end of device
[   95.355993][ T6019] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   95.358132][ T6022] syz.4.643: attempt to access beyond end of device
[   95.358132][ T6022] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[   95.364439][ T6019] syz.0.640: attempt to access beyond end of device
[   95.364439][ T6019] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   95.380315][ T6022] syz.4.643: attempt to access beyond end of device
[   95.380315][ T6022] loop4: rw=2049, sector=144, nr_sectors = 2 limit=128
[   95.434854][ T6026] syz.0.640: attempt to access beyond end of device
[   95.434854][ T6026] loop0: rw=2049, sector=186, nr_sectors = 64 limit=128
[   95.515426][   T29] audit: type=1326 audit(1755501163.466:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6035 comm="syz.2.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   95.527689][ T6031] syz.4.643: attempt to access beyond end of device
[   95.527689][ T6031] loop4: rw=2049, sector=144, nr_sectors = 2 limit=128
[   95.541987][   T29] audit: type=1326 audit(1755501163.466:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6035 comm="syz.2.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   95.583615][   T29] audit: type=1326 audit(1755501163.466:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6035 comm="syz.2.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   95.620402][   T29] audit: type=1326 audit(1755501163.566:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6035 comm="syz.2.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[   95.624200][ T6031] syz.4.643: attempt to access beyond end of device
[   95.624200][ T6031] loop4: rw=2049, sector=146, nr_sectors = 26 limit=128
[   95.688399][ T6014] syz.0.640: attempt to access beyond end of device
[   95.688399][ T6014] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[   95.704087][ T6014] buffer_io_error: 5 callbacks suppressed
[   95.704104][ T6014] Buffer I/O error on dev loop0, logical block 72, lost async page write
[   95.737680][ T6014] syz.0.640: attempt to access beyond end of device
[   95.737680][ T6014] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[   95.768012][ T6031] syz.4.643: attempt to access beyond end of device
[   95.768012][ T6031] loop4: rw=2049, sector=170, nr_sectors = 8 limit=128
[   95.786760][ T6031] Buffer I/O error on dev loop4, logical block 88, lost async page write
[   95.797554][ T6031] Buffer I/O error on dev loop4, logical block 92, lost async page write
[   95.809870][ T6031] Buffer I/O error on dev loop4, logical block 104, lost async page write
[   95.821599][ T6031] Buffer I/O error on dev loop4, logical block 108, lost async page write
[   95.831106][ T6031] Buffer I/O error on dev loop4, logical block 120, lost async page write
[   95.843404][ T6031] Buffer I/O error on dev loop4, logical block 124, lost async page write
[   95.854995][ T6031] Buffer I/O error on dev loop4, logical block 96, lost async page write
[   95.872120][ T6031] Buffer I/O error on dev loop4, logical block 100, lost async page write
[   95.885514][ T6031] Buffer I/O error on dev loop4, logical block 112, lost async page write
[   96.018151][ T6068] SELinux: security_context_str_to_sid () failed with errno=-22
[   96.297246][ T6070] loop2: detected capacity change from 0 to 128
[   96.560211][ T6092] loop0: detected capacity change from 0 to 1024
[   96.586327][ T6092] netlink: 'syz.0.659': attribute type 10 has an invalid length.
[   96.657040][ T6109] loop0: detected capacity change from 0 to 1024
[   96.698045][ T6109] netlink: 'syz.0.670': attribute type 10 has an invalid length.
[   96.742356][ T6123] loop0: detected capacity change from 0 to 128
[   96.885176][ T6126] SELinux: security_context_str_to_sid () failed with errno=-22
[   97.071326][ T2771] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   97.092337][ T2771] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   97.107269][ T2771] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   97.117516][ T2771] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   98.043918][ T6201] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   98.043918][ T6201]    program syz.2.680 not setting count and/or reply_len properly
[   98.147019][ T6203] loop5: detected capacity change from 0 to 512
[   98.165401][ T6203] EXT4-fs warning (device loop5): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[   98.246631][ T6232] loop2: detected capacity change from 0 to 128
[   99.447934][ T6315] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[   99.447934][ T6315]    program syz.1.693 not setting count and/or reply_len properly
[   99.606381][ T6327] __nla_validate_parse: 19 callbacks suppressed
[   99.606403][ T6327] netlink: 4 bytes leftover after parsing attributes in process `syz.5.697'.
[   99.961570][ T6343] loop0: detected capacity change from 0 to 1024
[  100.139630][ T6343] netlink: 'syz.0.702': attribute type 10 has an invalid length.
[  100.308468][ T6355] FAULT_INJECTION: forcing a failure.
[  100.308468][ T6355] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.322448][ T6355] CPU: 0 UID: 0 PID: 6355 Comm: syz.0.703 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[  100.322522][ T6355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.322536][ T6355] Call Trace:
[  100.322542][ T6355]  <TASK>
[  100.322575][ T6355]  __dump_stack+0x1d/0x30
[  100.322600][ T6355]  dump_stack_lvl+0xe8/0x140
[  100.322678][ T6355]  dump_stack+0x15/0x1b
[  100.322704][ T6355]  should_fail_ex+0x265/0x280
[  100.322730][ T6355]  should_fail+0xb/0x20
[  100.322750][ T6355]  should_fail_usercopy+0x1a/0x20
[  100.322775][ T6355]  strncpy_from_user+0x25/0x230
[  100.322802][ T6355]  ? kmem_cache_alloc_noprof+0x186/0x310
[  100.322828][ T6355]  ? getname_flags+0x80/0x3b0
[  100.322880][ T6355]  getname_flags+0xae/0x3b0
[  100.322913][ T6355]  user_path_at+0x28/0x130
[  100.322983][ T6355]  __se_sys_mount+0x25b/0x2e0
[  100.323007][ T6355]  ? fput+0x8f/0xc0
[  100.323038][ T6355]  __x64_sys_mount+0x67/0x80
[  100.323061][ T6355]  x64_sys_call+0x2b4d/0x2ff0
[  100.323086][ T6355]  do_syscall_64+0xd2/0x200
[  100.323147][ T6355]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.323216][ T6355]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  100.323241][ T6355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.323336][ T6355] RIP: 0033:0x7feeba2aebe9
[  100.323364][ T6355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.323382][ T6355] RSP: 002b:00007feeb8d0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  100.323401][ T6355] RAX: ffffffffffffffda RBX: 00007feeba4d5fa0 RCX: 00007feeba2aebe9
[  100.323419][ T6355] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000200000000480
[  100.323483][ T6355] RBP: 00007feeb8d0f090 R08: 0000000000000000 R09: 0000000000000000
[  100.323497][ T6355] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  100.323545][ T6355] R13: 00007feeba4d6038 R14: 00007feeba4d5fa0 R15: 00007ffd5d6abeb8
[  100.323563][ T6355]  </TASK>
[  100.587514][ T6359] loop0: detected capacity change from 0 to 128
[  100.627910][ T6367] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[  100.627910][ T6367]    program syz.1.707 not setting count and/or reply_len properly
[  100.651343][ T6359] bio_check_eod: 53 callbacks suppressed
[  100.651367][ T6359] syz.0.705: attempt to access beyond end of device
[  100.651367][ T6359] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[  100.677800][ T6359] syz.0.705: attempt to access beyond end of device
[  100.677800][ T6359] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[  100.718056][ T6359] syz.0.705: attempt to access beyond end of device
[  100.718056][ T6359] loop0: rw=2049, sector=186, nr_sectors = 64 limit=128
[  100.758448][   T29] kauditd_printk_skb: 92 callbacks suppressed
[  100.758468][   T29] audit: type=1326 audit(1755501168.706:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  100.792577][   T29] audit: type=1326 audit(1755501168.706:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  100.817819][   T29] audit: type=1326 audit(1755501168.706:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  100.844285][   T29] audit: type=1326 audit(1755501168.706:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  100.845136][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.709'.
[  100.868682][   T29] audit: type=1326 audit(1755501168.706:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  100.942082][ T6382] loop5: detected capacity change from 0 to 128
[  100.978421][ T6357] syz.0.705: attempt to access beyond end of device
[  100.978421][ T6357] loop0: rw=2049, sector=144, nr_sectors = 2 limit=128
[  100.993584][ T6357] buffer_io_error: 18 callbacks suppressed
[  100.993603][ T6357] Buffer I/O error on dev loop0, logical block 72, lost async page write
[  101.020278][ T6357] syz.0.705: attempt to access beyond end of device
[  101.020278][ T6357] loop0: rw=2049, sector=146, nr_sectors = 26 limit=128
[  101.059916][ T6390] FAULT_INJECTION: forcing a failure.
[  101.059916][ T6390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.073950][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.1.716 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[  101.074015][ T6390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  101.074029][ T6390] Call Trace:
[  101.074038][ T6390]  <TASK>
[  101.074049][ T6390]  __dump_stack+0x1d/0x30
[  101.074078][ T6390]  dump_stack_lvl+0xe8/0x140
[  101.074138][ T6390]  dump_stack+0x15/0x1b
[  101.074154][ T6390]  should_fail_ex+0x265/0x280
[  101.074176][ T6390]  should_fail+0xb/0x20
[  101.074210][ T6390]  should_fail_usercopy+0x1a/0x20
[  101.074238][ T6390]  _copy_from_user+0x1c/0xb0
[  101.074274][ T6390]  vmemdup_user+0x59/0xd0
[  101.074336][ T6390]  path_setxattrat+0x1b6/0x310
[  101.074437][ T6390]  __x64_sys_lsetxattr+0x71/0x90
[  101.074476][ T6390]  x64_sys_call+0x2877/0x2ff0
[  101.074498][ T6390]  do_syscall_64+0xd2/0x200
[  101.074583][ T6390]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  101.074675][ T6390]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  101.074701][ T6390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.074727][ T6390] RIP: 0033:0x7f535d6cebe9
[  101.074742][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.074761][ T6390] RSP: 002b:00007f535c137038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  101.074780][ T6390] RAX: ffffffffffffffda RBX: 00007f535d8f5fa0 RCX: 00007f535d6cebe9
[  101.074830][ T6390] RDX: 0000200000000140 RSI: 00002000000003c0 RDI: 0000200000000000
[  101.074845][ T6390] RBP: 00007f535c137090 R08: 0000000000000000 R09: 0000000000000000
[  101.074859][ T6390] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000001
[  101.074874][ T6390] R13: 00007f535d8f6038 R14: 00007f535d8f5fa0 R15: 00007ffddf6874c8
[  101.074896][ T6390]  </TASK>
[  101.082225][   T29] audit: type=1326 audit(1755501168.716:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  101.100075][ T6382] syz.5.712: attempt to access beyond end of device
[  101.100075][ T6382] loop5: rw=2049, sector=138, nr_sectors = 112 limit=128
[  101.103200][   T29] audit: type=1326 audit(1755501168.716:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6374 comm="syz.5.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  101.168561][ T6393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.714'.
[  101.368010][ T6382] syz.5.712: attempt to access beyond end of device
[  101.368010][ T6382] loop5: rw=2049, sector=170, nr_sectors = 2 limit=128
[  101.374574][ T6389] SELinux: security_context_str_to_sid () failed with errno=-22
[  101.408528][ T6391] syz.5.712: attempt to access beyond end of device
[  101.408528][ T6391] loop5: rw=2049, sector=144, nr_sectors = 2 limit=128
[  101.423194][ T6391] Buffer I/O error on dev loop5, logical block 72, lost async page write
[  101.466177][   T29] audit: type=1400 audit(1755501169.416:1283): avc:  denied  { name_bind } for  pid=6399 comm="syz.0.718" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  101.544442][   T29] audit: type=1400 audit(1755501169.416:1284): avc:  denied  { node_bind } for  pid=6399 comm="syz.0.718" saddr=255.255.255.255 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  101.570335][   T29] audit: type=1400 audit(1755501169.476:1285): avc:  denied  { mount } for  pid=6399 comm="syz.0.718" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  101.781084][ T6409] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[  101.781084][ T6409]    program syz.2.721 not setting count and/or reply_len properly
[  101.913324][ T6415] netlink: 4 bytes leftover after parsing attributes in process `syz.4.724'.
[  101.967583][ T6419] netlink: 4 bytes leftover after parsing attributes in process `syz.4.726'.
[  102.059236][ T6422] loop4: detected capacity change from 0 to 1024
[  102.108018][ T6428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.725'.
[  102.121743][ T6422] EXT4-fs mount: 34 callbacks suppressed
[  102.121761][ T6422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.143038][ T6428] SELinux: security_context_str_to_sid () failed with errno=-22
[  102.172667][ T6422] netlink: 'syz.4.727': attribute type 10 has an invalid length.
[  102.217322][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.631882][ T6451] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[  102.631882][ T6451]    program syz.1.735 not setting count and/or reply_len properly
[  102.685460][ T6478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.737'.
[  102.862550][ T6485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.739'.
[  102.923444][ T6489] netlink: 12 bytes leftover after parsing attributes in process `syz.1.741'.
[  102.956897][ T6496] loop5: detected capacity change from 0 to 128
[  102.981626][ T6496] syz.5.744: attempt to access beyond end of device
[  102.981626][ T6496] loop5: rw=2049, sector=138, nr_sectors = 112 limit=128
[  103.022465][ T6496] syz.5.744: attempt to access beyond end of device
[  103.022465][ T6496] loop5: rw=2049, sector=144, nr_sectors = 2 limit=128
[  103.036678][ T6496] Buffer I/O error on dev loop5, logical block 72, lost async page write
[  103.065296][ T6495] Buffer I/O error on dev loop5, logical block 72, lost async page write
[  103.178111][ T6512] netlink: 4 bytes leftover after parsing attributes in process `syz.0.747'.
[  103.277723][ T6520] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[  103.277723][ T6520]    program syz.0.750 not setting count and/or reply_len properly
[  103.413598][ T6530] loop0: detected capacity change from 0 to 1024
[  103.444463][ T6530] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.524269][ T6530] netlink: 'syz.0.754': attribute type 10 has an invalid length.
[  103.547967][ T6542] loop4: detected capacity change from 0 to 512
[  103.552743][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.587325][ T6542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.647270][ T6542] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.754966][ T6559] netlink: 'syz.4.758': attribute type 10 has an invalid length.
[  103.793157][ T6559] team0: Device hsr_slave_0 failed to register rx_handler
[  103.870335][ T6564] sg_write: data in/out 1048540/10 bytes for SCSI command 0xc0-- guessing data in;
[  103.870335][ T6564]    program syz.5.764 not setting count and/or reply_len properly
[  103.892820][ T6561] loop4: detected capacity change from 512 to 64
[  104.199719][ T6577] loop5: detected capacity change from 0 to 128
[  104.225739][ T6577] Buffer I/O error on dev loop5, logical block 72, lost async page write
[  104.394046][ T3311] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Out of memory
[  104.458533][ T3311] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #2: comm syz-executor: mark_inode_dirty error
[  104.629323][ T6585] __nla_validate_parse: 6 callbacks suppressed
[  104.629342][ T6585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.773'.
[  104.680016][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.680876][   T37] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.796517][   T37] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.884694][   T37] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.945827][ T6603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.780'.
[  104.970269][   T37] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.029759][ T6611] loop0: detected capacity change from 0 to 1024
[  105.076090][ T6611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.144567][   T37] batadv1: left allmulticast mode
[  105.150024][   T37] batadv1: left promiscuous mode
[  105.155434][   T37] bridge0: port 3(batadv1) entered disabled state
[  105.173838][ T6611] netlink: 'syz.0.781': attribute type 10 has an invalid length.
[  105.193303][   T37] bridge_slave_1: left allmulticast mode
[  105.199561][   T37] bridge_slave_1: left promiscuous mode
[  105.205711][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.233285][   T37] bridge_slave_0: left allmulticast mode
[  105.239248][   T37] bridge_slave_0: left promiscuous mode
[  105.245248][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.310274][ T6722] netlink: 4 bytes leftover after parsing attributes in process `syz.5.786'.
[  105.341282][   T37] team0: Port device geneve1 removed
[  105.380983][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  105.401588][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  105.414185][   T37] bond0 (unregistering): Released all slaves
[  105.456626][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.478044][   T37] tipc: Left network mode
[  105.478134][ T6598] chnl_net:caif_netlink_parms(): no params data found
[  105.501209][ T6727] netlink: 4 bytes leftover after parsing attributes in process `syz.2.788'.
[  105.525062][   T37] hsr_slave_0: left promiscuous mode
[  105.538748][   T37] hsr_slave_1: left promiscuous mode
[  105.545691][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.554034][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.566695][ T6786] loop0: detected capacity change from 0 to 128
[  105.577773][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.581645][ T6786] Buffer I/O error on dev loop0, logical block 72, lost async page write
[  105.585945][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.640497][   T37] veth1_macvtap: left promiscuous mode
[  105.655345][   T37] veth0_macvtap: left promiscuous mode
[  105.761298][   T37] team0 (unregistering): Port device team_slave_1 removed
[  105.772125][   T37] team0 (unregistering): Port device team_slave_0 removed
[  105.806818][   T37] team0 (unregistering): Port device dummy0 removed
[  105.821377][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  105.821391][   T29] audit: type=1326 audit(1755501173.776:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[  105.852293][   T29] audit: type=1326 audit(1755501173.776:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3bcbebe9 code=0x7ffc0000
[  105.921175][ T6598] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.930368][ T6598] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.944568][ T6598] bridge_slave_0: entered allmulticast mode
[  105.952610][ T6598] bridge_slave_0: entered promiscuous mode
[  105.957378][   T29] audit: type=1326 audit(1755501173.876:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  105.960822][ T6598] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.985111][   T29] audit: type=1326 audit(1755501173.876:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  105.985150][   T29] audit: type=1326 audit(1755501173.876:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  105.993192][ T6598] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.019250][   T29] audit: type=1326 audit(1755501173.896:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  106.082405][   T29] audit: type=1326 audit(1755501173.896:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  106.108846][ T6598] bridge_slave_1: entered allmulticast mode
[  106.115872][ T6598] bridge_slave_1: entered promiscuous mode
[  106.133827][   T29] audit: type=1326 audit(1755501174.086:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  106.160266][   T29] audit: type=1326 audit(1755501174.086:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6818 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97d730ebe9 code=0x7ffc0000
[  106.205483][ T6598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.228159][ T6598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.266098][ T6598] team0: Port device team_slave_0 added
[  106.273906][ T6598] team0: Port device team_slave_1 added
[  106.356149][ T6598] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.364184][ T6598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.393816][ T6598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.420519][   T29] audit: type=1326 audit(1755501174.376:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6920 comm="syz.0.797" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feeba2aebe9 code=0x0
[  107.506310][ T1751] ==================================================================
[  107.515819][ T1751] BUG: KCSAN: data-race in copy_process / free_pid
[  107.523567][ T1751] 
[  107.526299][ T1751] read-write to 0xffffffff8685fc48 of 4 bytes by task 6950 on cpu 1:
[  107.535454][ T1751]  free_pid+0x77/0x180
[  107.539940][ T1751]  free_pids+0x7a/0xb0
[  107.544123][ T1751]  release_task+0x9a9/0xb60
[  107.548660][ T1751]  do_exit+0xd81/0x15c0
[  107.553204][ T1751]  call_usermodehelper_exec_async+0x247/0x250
[  107.559485][ T1751]  ret_from_fork+0xda/0x150
[  107.564274][ T1751]  ret_from_fork_asm+0x1a/0x30
[  107.569181][ T1751] 
[  107.571779][ T1751] read to 0xffffffff8685fc48 of 4 bytes by task 1751 on cpu 0:
[  107.579948][ T1751]  copy_process+0x14a6/0x2000
[  107.585611][ T1751]  kernel_clone+0x16c/0x5c0
[  107.590737][ T1751]  user_mode_thread+0x7d/0xb0
[  107.595713][ T1751]  call_usermodehelper_exec_work+0x41/0x160
[  107.602079][ T1751]  process_scheduled_works+0x4cb/0x9d0
[  107.607760][ T1751]  worker_thread+0x582/0x770
[  107.612734][ T1751]  kthread+0x489/0x510
[  107.617714][ T1751]  ret_from_fork+0xda/0x150
[  107.622744][ T1751]  ret_from_fork_asm+0x1a/0x30
[  107.628325][ T1751] 
[  107.631293][ T1751] value changed: 0x800000dc -> 0x800000db
[  107.638049][ T1751] 
[  107.640574][ T1751] Reported by Kernel Concurrency Sanitizer on:
[  107.646834][ T1751] CPU: 0 UID: 0 PID: 1751 Comm: kworker/u8:6 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[  107.660749][ T1751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.671818][ T1751] Workqueue: events_unbound call_usermodehelper_exec_work
[  107.679157][ T1751] ==================================================================
[  107.776946][ T6598] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.784323][ T6598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.813441][ T6598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.853475][ T6598] hsr_slave_0: entered promiscuous mode
[  107.861692][ T6598] hsr_slave_1: entered promiscuous mode
[  107.868003][ T6598] debugfs: 'hsr0' already exists in 'hsr'
[  107.874576][ T6598] Cannot create hsr debugfs directory
[  108.026803][ T6598] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  108.036930][ T6598] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  108.052376][ T6598] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  108.067038][ T6598] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  108.111771][ T6598] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.129255][ T6598] 8021q: adding VLAN 0 to HW filter on device team0
[  108.142525][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.150474][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.173292][ T6598] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  108.184853][ T6598] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.199887][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.208426][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.275347][ T6598] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.411900][ T6598] veth0_vlan: entered promiscuous mode
[  108.421425][ T6598] veth1_vlan: entered promiscuous mode
[  108.442806][ T6598] veth0_macvtap: entered promiscuous mode
[  108.451676][ T6598] veth1_macvtap: entered promiscuous mode
[  108.464399][ T6598] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.476305][ T6598] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.488676][ T1751] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.503284][ T1751] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.516951][ T1751] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.526682][ T1751] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0