last executing test programs:

47.309119979s ago: executing program 0 (id=81):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1d4, 0x0, 0x0, 0x0, 0x3ff}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@map_idx_val={0x18, 0xb, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x6}, @func], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000140)='GPL\x00', 0x1, 0x5c, &(0x7f0000000180)=""/92, 0x41000, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000240)=[{0x2, 0x3, 0xe, 0xa}, {0x5, 0x1, 0xb, 0x5}, {0x0, 0x1, 0xb, 0xc}, {0x4, 0x5, 0x5, 0xa}, {0x2, 0x1, 0xc, 0xc}, {0x2, 0x2, 0x2, 0xc}, {0x4, 0x4, 0xd, 0x1}, {0x3, 0x2, 0x5, 0x7}], 0x10, 0x10001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='dlm_bast\x00', r1, 0x0, 0x1ff}, 0x18)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2400c09d}, 0x20)

47.245378955s ago: executing program 0 (id=83):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xdd}}, &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x97a3}, 0x18)
sendmsg$inet(r1, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}, [@alu={0x7}, @jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)

47.222507906s ago: executing program 0 (id=85):
kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)

47.166993221s ago: executing program 0 (id=86):
r0 = syz_clone3(&(0x7f0000001880)={0x1008c0600, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
rt_sigqueueinfo(r0, 0x21, &(0x7f0000000ac0)={0x0, 0x9, 0xfffffffe})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x80, 0x0, 0x7, 0x430, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20001, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xc, 0xffffffffffffffff, 0x2)
syz_open_dev$tty1(0xc, 0x4, 0x4)
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000480)={&(0x7f00000008c0)=ANY=[@ANYBLOB="340000000f06010200000000000000000100000605000100070007000000010007000000050001000700000006000b00020000009900604bde26f31136952c3e1ccbacd0d9918b5f5d636141867ec96e4404f36c6500c1ffac67973247bdae97407b86ee00945a91f44eac5b204b7d9a991a741f26c13a27429fc4"], 0x34}}, 0x804)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94)
r2 = getpid()
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d80)=ANY=[@ANYBLOB="18000000000000000c007f000000000018110000", @ANYRES64=<r5=>r3, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x89f1, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000040)=@ethtool_cmd={0x2e, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x87, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000045, [0x2, 0x89ff]}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r3}, &(0x7f0000000800), &(0x7f0000000840)=r4}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
statx(0xffffffffffffff9c, 0x0, 0x1000, 0xffff4a9c0080ffff, &(0x7f0000000700))
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f0000001040)=[{{&(0x7f0000000280)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000001140)=[{&(0x7f0000000200)="9c", 0x1}], 0x1}}], 0x1, 0x48000)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r8=>0x0}, &(0x7f0000000000)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r7, 0x84, 0xa, &(0x7f0000000400)={0x93de, 0x1, 0x0, 0x3, 0x1ff, 0x7, 0xdff8, 0xb, r8}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
syz_pidfd_open(0x0, 0x0)
process_vm_readv(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000680)=ANY=[@ANYRES8=r5, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c00028008000400000000000800150000000000050016"], 0x4c}, 0x1, 0x0, 0x0, 0x200480a0}, 0x0)
r10 = timerfd_create(0x8, 0xfef30851e19e555e)
timerfd_settime(r10, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0)
readv(r10, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/52, 0x34}], 0x1)

46.596254997s ago: executing program 0 (id=95):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x80042, 0x0)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000080)=0xe)
ioctl$TCFLSH(r0, 0x80047456, 0x1)

45.69908069s ago: executing program 0 (id=105):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x0, 0x14}, @ipv4=@tcp={{0x6, 0x4, 0x0, 0x8, 0xfc0, 0x68, 0x0, 0x3, 0x6, 0x0, @private=0xa010100, @remote, {[@end]}}, {{0x4e20, 0x4e22, 0x41424344, 0x41424344, 0x1, 0x0, 0x6, 0x10, 0x1, 0x0, 0x8, {[@mss={0x2, 0x4, 0xb}]}}, {"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"}}}}, 0xfce)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0xf7ff, 0x3}, 0x36)
io_setup(0x8, &(0x7f0000000380)=<r3=>0x0)
r4 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r4, 0x400448c8, &(0x7f00000003c0)={r5, r2, 0x2, 0x111, &(0x7f0000000480)="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", 0x2, 0x5, 0x9, 0x70, 0x7fff, 0x0, 0x40, 'syz0\x00'})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
io_submit(r3, 0x0, &(0x7f0000000100))

45.650385674s ago: executing program 32 (id=105):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x0, 0x14}, @ipv4=@tcp={{0x6, 0x4, 0x0, 0x8, 0xfc0, 0x68, 0x0, 0x3, 0x6, 0x0, @private=0xa010100, @remote, {[@end]}}, {{0x4e20, 0x4e22, 0x41424344, 0x41424344, 0x1, 0x0, 0x6, 0x10, 0x1, 0x0, 0x8, {[@mss={0x2, 0x4, 0xb}]}}, {"ff09eb92334ce7bdbce1cc8ea7c31c4233f717f38859083e7244d871b6582e4b77453efb5c862f933cb39161906e8b6c78ab07fe1b3fe07565e76f3049a8f11350ffa159ce18eb0ce3712cc785657be76b1587f708924c9feb2e292ab97040cca863de23b3b516cc537105bb0404f84119e4260762c50671dc5aab1358ab653fbfb4bbcd3b4664ec16d8f9ec7829cd1af4a5450585bb1de8f968728adf5dec1de9e1e4a8ababf331c67b6c63551249f96344f4f4656e7cd6bf657857a8af5d2df76f377033b968501e40ed92b801d6efaaa61bdc158a6194b1fd1d6380bb7300a70b1d36c1a76ca97d8aec866053ca0d0d4830f966f48a3461bc25fba4dec31acaa7571527df4164e4f6a96c48ac714f8a8e0a4cd14617b52de88f0bee1cffccc96655f4fc658b5a0510e050f6f40aa3d28453590c3af7a4460719f9106f81797c856d60ec8528cc0c9487e69aa50cea9f374fa68593421c48bae1999c875cb205cc55f3c991416ff38e4f093a4c86ad36f19d1b3578242eedcfafd2c931fd2868dc24d9892f790ed560f40a848dd0670f0f611a61640053a2641ddc8ea149145bc5669b176bf12f40d9e0664760a3e476a93a362dd7dfcc3fd9f8be8ee2cd7a0a5fe189031bacbc1ed8e7c15a2bae104b7650c38ed42128a21ad834bac63ed73159e680f90d41475f28567eef33b4c21860ea1cd7a3f56ca286f87608ed49b72d36a1e6b04e4e0ba9ba7f76bece6426a6cad503c8ab33f28772edee91ab52fa29ff4da3893fa0629d1084b2a87f00a468feed92e5fe5aef33ae040aeb89098033fa81bec4535683391297f750f184f06ccb58dfa50ae2d6c159a0208481450bf38bca83f26c50fffe1449895cb8c990aa1cc0dd4cd2d0b4b3cc0006626898fdf274ecfaa1650c61e17f303f41559d75d470da40196aa5dff545903db275a12166b1692f334c70e4c5cf2ca2410989b429e3bc6e2e630adc5d6a039ad7872c4b4754cceeec43a3323d4594fcc28623e65f3067444e098c8817c9eb3f6dc06b6ec407438c09f2c137009c06505d88e0337c765f6c3b16f53bb0d1b235dbdc509ea3fd0996c8cad5bce70eea4d8852e7adfc222b06552d250e70211228251bfb5b95dd3b09bc30fc52337505a6f0689bfca144db622dead3525fbb73056d1b7fa7b08535af3952a8d77a1f34655eb69616c963f4e8b34e88b8405e0e3cd5130c4f98c4e180bfe76ec6cd6ac5e8ccf5d1cf99fdd79bca0a227ee78d2037a55c8593f7ff10bd42d82cd6c4931df7fa6c0c6a8246cef83599095269fb7841aec2cf1afb41d1c7c54136b2737d2c2ae2be604058b657eec27669b99fa669c92a9ebc8e817ed6860070d2fe6bad743ee65d35633de56f026710729102ed175e2ec0af8cc2840af173c71862e90bd370cd3d277a7d2622a5f00946649c1d7894f2a69c3cf8e21276d72c4536149038f9967ec0c748de34376da7971495e0cd783056cdf20cddab2e2201ea43e657e36c54d42c47d1e6a1c9dede599e6c0baac06c2e3fcc5687c5d4706f32337ab639633822dd98089ba20c532fbe4a5e72963d53a86ec34d6a4aa536015a3272c0d4cc0a3a3ab2196ec7a92bf2daf638ba5957941ff0facfe6a161da6a6cbf8e6b40c8b6a601ee91e592f6bb9dc85f84c99e088004ed3f650404934c8b1d436500f3c83333b33be5532076d1a718f80c139db1ac28c953cc23394a5a137567cde82fc681f32e66aa415c2358d02486cb6cb4d6a77e5b27d729e0116773725410332c58b4cc3683fc9dc5235b19a60ea8794986e56e5e8e2ce65655f261ee0c33c8c0b99e7b5bc61fb55040d9e109a3a1182a0f81c2ca081b14cc207b11dad4592add90ff543d2d237421f938af8a010cd197502dbf42f14f1572aabc9f16593a735c07484d61bc43b5f300eb66abe2052cec153f89c1819512316ad728eca65949bf1f903a556ae67871a0d35b0fcb5485e8fae70695cf90547784da27450d6c3e6049bf2f1b923fab49cf4caebccc7a0171aee4364db173c795cc486475427fb92efdbf161ab7a35aecb8e1d5435ea2733cc8dc3f824b00c6d3e05e406de563d1fc6aa77ef76351a3be04557d915df5ed1fd52207872666bbff9ffb84a6e91ae863af42b3e9dd6da62115ab71c6db508875db1a83e631c4cd658a6492cb1a8bd4a42b4546afb74484d519cb5b1a8db29d91ea575a09dc45f63b51b0ace075511556116db62507ed8b163430eea2dcc171890c51afe0ffb22d6595c15112730ce041648d543abf1871bb62b40303b277b2084eaee4895a9e552bcb2d319cbf733d2682940050095fc9499f116e3c828727c2f0755e2c624891a794a1bd9ff52237f13ccf144e67b5311e556333c5b11816fecd78fffb72190480b93e7fe13682b465aad1c2cf564c16d3e8fb07aed4b415f781a52dda6822ed0023b93c07b61e7740470216f29cb9c770ffd33837a6a0bc2990899778c74af304996ec13c1fc935b6d67b23f5190bf8b1bb3cc4e42bb2b9f1e3b330f24fe172396da0c8b52cdb4351a80fcebfcc85e54436327d8ad72d288551540f9a7bda7ecf2f2c41c3e775e26313de86c1b41ea1199321d533abe105ebfd90c9defd30ce9c7ea7a342b310eeca3dd88732dd9d7751c0ae685fbaed556727d2ece266a66ec7adc3a20f377b386ca7c909aba90fef9605ac37d43dd89e4da8455f086c1d2ce9c5b0eb4296ac64b7c244b28b4fd66a8be0442cbeacc7ba871efb11069d7c28dcdaf5798d0025741e461adabb3f270d056b1fe961e6626fc9a533924364687e80aa10e8ae081d743487bcfa97c0e1938dd47fc9075c3b0772284d98e683f0314c4a261845a3e50106e9c0a529b77293c251472a8eb6213ae49b0cc9d569e0a0c4fa1fb10663e4e0b6b0f9cee796aace2a1b42e42758a0180c2ee89119bf9359c6a277a062eda92a932ccf4b72ec1f998224acbe9eb8d594b8861b65ac276f1d401418c7be4d9344b52eb07aa74ba352e347f06e7e923b86cae5c0beb9f7aa0201b6537a82ea8f9281ac6e82a327ea7b879209dd30c1d40c22c402d3e6f09f4b4146b28cac26532eafbb5f6a67f6f734601ab352c804083570087124b23d7d3bff4d31569fcb8c091f157336d11e0e388a91ddf82b05b22dc3cc2ba4355a9453d9329cbca9d52489f15da5849ba32eb11d91184c6a352fe064aae6e85de05288282f911ebf2a932d43413c9bff9cb50f86af7eecca5eb9e3ce7fe9bc1743bcf24d01d02961116a87e4b55ddc1f217fb488c002cd85bb79db625bded4360983abf1e4574a9a46cfe05f0e45da2dd28703599adbae4703aad3ba1cc44813bcdf2432f0e5e9dd67ee8c6b34a9107fb81f21d87dd8fdf270068528685ea3c989beddc08410a59b5ad68d2fd9b37f8b3fddef393433de51b01314e3d6bb08fd7ea5b9abb4d4ccc5a5a43820004ac3870491b8df621be5388e2c3e2c40843d6798c493b308bef505d9f2d2734990a30150b4cefcaeb590118d21f331f201569c778cd5e54e34ec30a73d1fd48cd5d64d444a2a58856a71fa8173713136bdaef1b9cf1776cd7d5be3179ae7a2a95d7138334add686c5b50ca87e41b4c3f5343387cc491e97c280becefd3d72ae959a4fb3e51c15d6dea3210c480342c1748a040879f005f98a8b0d6a32fad631f557694179d117f71ae5fa6d54d4208aca72c5d1e03d34e80b221522c04b1bc7bc1ee008550a1757a1b74a0fea1d22778fd7e7a5f58e41cf72edf60d751bc35223646397457e8f9036838fd3b72e2bc176acc3e1e99a392b1d496cbfbdaa641b2212ef41c1728dd587272849b3a5cbe3b66f7eaf622d2cdf72ada32ccd3e16dddba2c890beaa8dba3773c88415fbcb733084a9bac52b6844f28377ba01fa3a09f74a57d87f31468ee2c64ae05b35fe3d660bcc6ed908b710a1216974db0232d90a124a4e8ee30322a20455feb4d0bef13ce0fafb56f492a99c3fb1c57900330bf75246147b44f23c77554119f1d96a4558d8fff90922af4f9299407344d7292d29ce3446e39bd9277e513e6068394584a08b356e6a0c641108f6e89390290844548a6c8122d8a83cc6c7d7f0c10d330a537d832bc779ea245a37c850b85858885541da0f914e1a41ec5b49ad9b3b41814f66c50bd1f49cd514d027ecd1bd2f002f1989fc621f23d6d5f1b9976ce95c305fa34ebd3404919c3414fd97227a590684ce5af0a18fb4fa6f41d4a3951fb49cc8184b547e9aa2ceb4912975ecf8e956bb29389789b8ceab72e7ae88fb402795ba7712323409fc83cbaf10a523dd4602d9ae7c158a56fee8df04ba4c48cdd63b1ce09bc697ca138f01f261f51bdc05480b7cf5f64836bf8e029d4883d4bc2f53115129cee1d9a9e57b4a5fb4ebef2237a2bdad349baeab05e6b24167ba67ea94f808d9d1386b08b0fd3c92a80ed253db5bb40e6a0c308339c615af56e554ed0d78881228da41706acd8596c52e33abc8a4a3317847dd50b8d77b341063fb29dd02594a540fa737a4dcf9c57ca8717d36e8a8a84eecf9ebb7bb0f4d8cb0f247f982e4fb7a29a7072f08eb1479e278b1084f4faba3c75b6c33438e24e7b454f1e8ee7c64507ef34f37e8655f49cf6871e8012bbf80d2fe2ad9424464d0a408ca50037f1b1221c2d3dbe4dfa75c236f6b59b8a9c8e3a4b1ef73bae3f8d44affc10c72485dee42b73671867221778a6f9ba1ddd5715a6115845af2da8687e0e75f35cca527cb21a07bb2018a574a7e1eb626ad6939990038588cabc63aaafada2c88336f2c764d52cf5c3740371c79ed30f4b7325768c43b9daab5532b4778bdc380bc56bf656eaeea1f7987db28672850e46fce9c9d7dcc7df7b01e9f98ae98890491949c3a9af72cf35227fe88e79d1853ab46903dffd8ceb6060b5a2da5ee061db21e07124b510af4be93a2eda5c9469c73ef661e52d1d3ddf6d0dbd58715730485d26b731da17fb67b1bdedd400cdd472ab88c059e99452b932202fa8500e9b14ec63791857fc33fb97a21469dc318e9799d6b8d3155a9b9ddae7704457f9fbafd0756fcf8464e2398a88b2b4ea3f655cacd390f6df7b195b35b25c6873f0c53ba2939efe513e448ec1c406380ca4e0a6ef53cb183f05bfe99b003429aa5a4709dbf9b6da2fcbc243bcc6b6e8840ed0636af84b6dd3c3b9e50f19c7fda40185dd542f8ff32e7ca9fad274847238e05cf0db24cf7ac1e2cecbcb20bbfe4868b6245899d8e6717a1f9321fd38b87c0c02bb24ed937e9460d03a5a38fa8e0d222105c8527d898f889bbe298b368fff9b951d1b0780352ce8ad10a5dea883292d6cf149618406fc33ca1539da60a1922ee27b7b74aa3507e6a5731bf2c42c879e9efa0750c8bacc63e2225589eab7bf237c259f715248b61278e4ef6f6d238d5bc9bde650795243874b294f228597cf687df0aa8ab1e58548991a1bd903f70408cd4c23f2db7f2ad3f9a0b12a4e52f09270d8f79aa0cde1ffd268d50fcf47c5b2a41898a076e8467cc40de311c26a1f5ff5d1a6693402f927077083490b65e594d5f4e848dc76e03adb210826926ef65e1f63346ad6a14b732cd7a23bf393e72b3c264258d7ea827d03e67140c89ceaaad28cb7f229db"}}}}, 0xfce)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0xf7ff, 0x3}, 0x36)
io_setup(0x8, &(0x7f0000000380)=<r3=>0x0)
r4 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r4, 0x400448c8, &(0x7f00000003c0)={r5, r2, 0x2, 0x111, &(0x7f0000000480)="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", 0x2, 0x5, 0x9, 0x70, 0x7fff, 0x0, 0x40, 'syz0\x00'})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
io_submit(r3, 0x0, &(0x7f0000000100))

2.292498754s ago: executing program 4 (id=854):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cf84ded40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c86e00f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec231fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895012f1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c3405000000000000003871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d37261774cc5a3bf6b466cb72812da518ff602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d50a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a31b16ac5fb73fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953f88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a5fe1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9d66ebbc8bab4ea81232fbef665f6212f875b2a00000000000000aceb111b66a500ca52fd8f848088c67ee65dfdcc4c580e9bc18c1699dca07d019bf1bf9dd3da480d6c155d7e60674ce88ab5ae07a9d16e22792d99986b531ab4e592ab5925da779e700cf20309a2137877690dc5c07956fc82d7b3bb46d3138041af18508938c9be4e5d0a98073463a5cff6c146d020743da474cb81677a6f389f0e00c33b70b7f8bab95435c27167f365a29fb09cbf35bf192f6a65616fa2ad9a6c7ca3a3ecd96aaecd993e8badb40e7eb8a22b0015e70c885cd519e28448168c6d914265998bff74ea1b0e651a6cae9419096248a0e41573827ad60fafce6e6540734c1f23f75337d836c31497e8112969a039d65aa297e2b046b5f4d11116a89f9f65693d4dc3e70fbfe0b2044fdb3f87e887d1daae8e38a0c19f668f776e19a02bb2449ee4384f6536879c85d7e41bc0276ee2b125d41ff358323311703ec01d64a573bdeb75bdcc87d01de38365ab9222713d2d1640a742d62fefb5403b2ed9969c32a0841e8c36b0107bb888eb14ac62e6d4bdfaeb9ee7436b97bf3825a19d6c8997ce285edf1d277ed703f560460417bfe702af833e83c5b987befb6d1fcf765ab7ea537d9dafb622a1ba8686cb9b1c63b84470364942e90d1cf856cead864f5e38"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f00000004c0)={0xa, 0x4e22, 0x2, @mcast1, 0x3}, 0x1c)
sendmmsg$inet6(r1, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="5e54e574da93883e8c628a600b17cbe584d2e73c68141965f3fbcf0e16db6e759d420151c6c57504", 0x28}], 0x1}}], 0x1, 0x44080)

2.263704927s ago: executing program 5 (id=855):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x40, 0x0, 0x7, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x5}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c)
shutdown(r2, 0x1)
splice(r2, 0x0, r0, 0x0, 0x2, 0x0)

2.260147677s ago: executing program 4 (id=856):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x88dd166524a5dbb8, 0x2010, r0, 0x3000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)

2.106716629s ago: executing program 5 (id=860):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000000000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000007044f16c01b1fbfd000000000000008af65f0df9928941994cc8c173fac5688671085a86d143c59fed0e57feb97f422c51d8e63b4ed9e295df3ccd1a55752dfc2f32f14b6c8f0e7413c3e9caaad30dcb412d0f54623f388bb2c63d2b1f7d83cd0cc021867bb4aee9967a6ee83e1b18fd8beca7d7eddcd96634"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0xffffffffffffffd0}, 0x80)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000f80)={{0x7f, 0x45, 0x4c, 0x46, 0xea, 0x0, 0x0, 0x6, 0x1, 0x2, 0x3, 0x5, 0x1d4, 0x38, 0x161, 0x3ff, 0x8, 0x20, 0x3, 0x8, 0x7, 0x9}, [{0x4, 0x0, 0x401, 0x4, 0x401, 0x101, 0x9, 0x5}, {0x1, 0x6, 0x1000, 0x3, 0x6, 0x1, 0x8, 0x4}, {0x5, 0x1, 0x0, 0x2, 0x4, 0xd}], "ddfc4a9ff243e1392452fb17b497d46d5ddd4a2e89ba4dc6fe605d121768c17c5079b7f0199928c0988f41af23a994e3577790fa4bffb7eed8c27f6f286b4ee83d64d00c1bf119398af1f185f274a260453ee53c8da95a909690b674c3ee3d1ab9c645b3db2c78c7a858134814f09740115c8c1e0c7e43664ef472ae621503dfe5b8d4532488884fe4dd87e72e10fcc7301b7c30ec1c82ce562b0cfc3fdf1ca103980bbd9c9bcc1075db66ad043d1f7d3c2a4758b6c0a49e8c42576011676255", ['\x00', '\x00', '\x00', '\x00']}, 0x558)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r3, 0x0, 0x200000000000006}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0xf)
r4 = socket$kcm(0x1e, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x8a, &(0x7f0000000040)=r6, 0x4)
r7 = syz_io_uring_setup(0x27bf, &(0x7f0000000340)={0x0, 0x3780, 0x0, 0x0, 0x7f, 0x0, r6}, &(0x7f0000000100), &(0x7f00000001c0))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r7, 0xb, &(0x7f0000000180), 0x0)

1.349247941s ago: executing program 4 (id=868):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
chown(0x0, 0x0, 0xee01)
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002100050100000000000000000200000000000000010001000c001400", @ANYRES32], 0x28}}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000100)={0x67, @private=0xa010100, 0x4e24, 0x3, 'none\x00', 0x20, 0x0, 0x36}, 0x2c)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x8, &(0x7f0000000f80)={[{@nodelalloc}, {@auto_da_alloc}, {@nomblk_io_submit}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5}}, {@nouid32}, {@min_batch_time={'min_batch_time', 0x3d, 0x8bc}}, {@journal_checksum}, {@bh}, {@init_itable}], [{@fowner_gt={'fowner>', 0xee01}}, {@subj_user}, {@smackfstransmute={'smackfstransmute', 0x3d, 'nodelalloc'}}]}, 0xf8, 0x573, &(0x7f0000000a00)="$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")
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f0000000000)={0x1d, r4}, 0x10)
bind$can_raw(r3, &(0x7f0000000080), 0x10)

1.271751076s ago: executing program 2 (id=870):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x40, 0x0, 0x7, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x5}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c)
shutdown(r2, 0x1)
splice(r2, 0x0, r0, 0x0, 0x2, 0x0)

1.240279959s ago: executing program 5 (id=871):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r1)
sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r2, 0x1}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.23305084s ago: executing program 5 (id=873):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = syz_clone(0x20000000, 0x0, 0xf, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x9, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000500), 0xce, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r2}, 0x10)
socketpair(0x3, 0xa, 0x0, &(0x7f0000000040))
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1.203142342s ago: executing program 3 (id=874):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
perf_event_open(0x0, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000740), &(0x7f00000007c0), 0xffffd6c0, 0xffffffffffffffff, 0x0, 0x20}, 0x38)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, 0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r0=>0x0}, &(0x7f0000cab000)=0xc)
setregid(r0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x1, 0x3000)

1.157713136s ago: executing program 3 (id=875):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
time(0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000340)='\x00!G', 0x3}], 0x1, 0x73a, 0x21)

1.11108478s ago: executing program 2 (id=877):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r1, 0x0, 0x4ab}, 0x18)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x24040084)

1.11080273s ago: executing program 5 (id=878):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x88dd166524a5dbb8, 0x2010, r0, 0x3000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)

1.085448362s ago: executing program 2 (id=879):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)=ANY=[@ANYRES64=r0])

1.041443496s ago: executing program 2 (id=880):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$igmp6(0xa, 0x3, 0x2)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
sendto$packet(r0, 0x0, 0x0, 0x4c001, &(0x7f00000002c0)={0x11, 0x9, r1, 0x1, 0xd, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x14)

1.041137255s ago: executing program 3 (id=881):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
nanosleep(&(0x7f0000000180)={0x0, 0x3938700}, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1.003394599s ago: executing program 2 (id=882):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_clone(0xc4011, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, 0x0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x7fffffffffffffff)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c00028005001900f6000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_io_uring_setup(0x52, &(0x7f0000000080)={0x0, 0x8b48, 0x2, 0x0, 0x3d8}, &(0x7f0000000040), 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
ioperm(0xc, 0x1ff, 0x8)
socket(0x21, 0x803, 0x9)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = syz_clone(0x4000, &(0x7f0000000a40), 0x0, 0x0, 0x0, 0x0)
get_robust_list(r7, 0x0, 0x0)
r8 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
readv(r8, &(0x7f0000001180)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000140)=ANY=[@ANYBLOB="011a8aeea000ece65fbcee5586dd6001010000101100fe8000000000000000f6ffffffffffbafe7ffffffd00000000000000000000aa00000e22001090780203000000000000"], 0x0)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6866f59e001406fffc010000000000000000000000000001ff"], 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000000200), &(0x7f0000000240)=0xc)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x5, 0x59, 0x739, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x7af}, 0x48)

821.789593ms ago: executing program 4 (id=883):
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x97a3}, 0x18)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d4", 0x5}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

751.008409ms ago: executing program 4 (id=884):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x201, 0xe4340000, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x100}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x6}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

731.00005ms ago: executing program 4 (id=886):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x6, 0x8000b, 0x20005, 0x6, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r1, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000840)="2a17a6ef4a2a", 0x6}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x2, 0x844)
getresgid(&(0x7f0000000580), &(0x7f00000005c0), &(0x7f0000000640))
readv(r0, &(0x7f0000000700)=[{&(0x7f0000000000)=""/84, 0x54}, {0x0}], 0x2)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0xad)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000180)=0x1, 0x4)
setsockopt(r3, 0x1, 0x10000000000009, &(0x7f00000000c0)="f5c89e1e", 0x4)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e1e, 0x5, @empty, 0x6}, 0x1c)
r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000002140)=""/4096, 0x1000}], 0x1, 0x141, 0x0)
fcntl$setstatus(r2, 0x4, 0x46100)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x70bd2d, 0xffffffff, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x3, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x86dd}}}]}, 0x38}}, 0x40c8480)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000000000000000000100000000c00018008000100", @ANYRES32=r9, @ANYBLOB="080011"], 0x28}, 0x1, 0x0, 0x0, 0x40000c5}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5, <r10=>0xffffffffffffffff}, 0x4)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x17, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa236}, @generic={0x7b, 0x3, 0x0, 0x1b, 0x9}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x4}, @map_fd={0x18, 0x6, 0x1, 0x0, r5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @jmp={0x5, 0x0, 0x2, 0xb, 0x6, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0xca}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7ff}}]}, &(0x7f0000000040)='GPL\x00', 0x5, 0x4f, &(0x7f0000000140)=""/79, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x4, 0x7, 0x4, 0x2}, 0x10, 0x0, 0x0, 0x7, 0x0, &(0x7f0000000340)=[{0x2, 0x4, 0xd, 0x4}, {0x2, 0x1, 0x5, 0x5}, {0x1, 0x4, 0x3, 0x5}, {0x3, 0x5, 0x4, 0xc}, {0x1, 0x2, 0xf, 0x2}, {0x3, 0x4, 0xa, 0x1}, {0x3, 0x5, 0x5, 0x6}]}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c094, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r12 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r12, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
dup3(r5, r10, 0x80000)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000807040000f0ffffffb70200000000000018230000", @ANYRES64=0x0, @ANYRES64=r10], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r11, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r13}, 0x10)

608.66355ms ago: executing program 1 (id=887):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
unshare(0xa000200)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x2, 0x40, 0x1800}], 0x1, 0x0)

560.485425ms ago: executing program 3 (id=888):
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x40, 0x0, 0x7, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x5}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c)
shutdown(r2, 0x1)
splice(r2, 0x0, r0, 0x0, 0x2, 0x0)

512.211648ms ago: executing program 1 (id=889):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e0000008500000007000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r1, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r1, &(0x7f0000000040)=[{&(0x7f0000000340)='\x00!G', 0x3}], 0x1, 0x73a, 0x21)

415.047816ms ago: executing program 3 (id=890):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b000000"], 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x10c, 0x0, 0x0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
faccessat(0xffffffffffffffff, 0x0, 0x1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c40), r3)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r3, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x4c, r4, 0x1, 0x0, 0x0, {0x6, 0x0, 0x900}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010101}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast1=0xe0000002}, @NLBL_UNLABEL_A_SECCTX={0x28, 0x7, 'system_u:object_r:useradd_exec_t:s0\x00'}]}, 0x4c}, 0x2, 0x34005}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$tipc(r6, &(0x7f0000000080)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x3}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x34040011}, 0x2000081)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000300240248ff050005001200", 0x2e}], 0x1}, 0x0)

396.254718ms ago: executing program 1 (id=891):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)=ANY=[@ANYRES64=r0])

341.033652ms ago: executing program 1 (id=892):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="0015954d97357ea18147bbbf64fc9943f9ab1d751664006eef4c5dc3db033e7f79eed817d87a283f22a929830c2e04b6df5b86bdf2f9"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0xaa)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000580)='mm_page_alloc\x00', r0}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
unshare(0x68040200)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000001ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000001ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
io_uring_enter(0xffffffffffffffff, 0x37f7, 0x27f6, 0x29, &(0x7f0000000340)={[0x7]}, 0x8) (async)
io_uring_enter(0xffffffffffffffff, 0x37f7, 0x27f6, 0x29, &(0x7f0000000340)={[0x7]}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x10, 0x8, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000049df310b5b27b145bb00551a000000000000000018120000000000", @ANYRES32=r3, @ANYRES32=r1], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x224}, &(0x7f0000000040), &(0x7f00000000c0)) (async)
r5 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x224}, &(0x7f0000000040), &(0x7f00000000c0))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000040)={@multicast2, @multicast1, 0x2, "4f6fb4d1af0f724e6118ecd4ac1100843af297baebb0efcdf5a284da144a011a", 0x4}, 0x3c)
setsockopt$MRT_DEL_MFC_PROXY(r6, 0x0, 0xd3, &(0x7f0000000100)={@multicast2, @multicast1, 0x4, "c6c0e6ec8755b5dc4e305886d95f086707764f8d0e5a0358ea21274f844a69e9", 0x0, 0x200, 0x489c}, 0x3c) (async)
setsockopt$MRT_DEL_MFC_PROXY(r6, 0x0, 0xd3, &(0x7f0000000100)={@multicast2, @multicast1, 0x4, "c6c0e6ec8755b5dc4e305886d95f086707764f8d0e5a0358ea21274f844a69e9", 0x0, 0x200, 0x489c}, 0x3c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x18)
socket$rds(0x15, 0x5, 0x0) (async)
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r8, 0xc0105500, &(0x7f0000000080)={0x0, 0x9, 0x3, 0x0, 0x0, 0x8, 0x0})
sendmsg$rds(r7, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x8014) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x8014)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r9, 0x5608, 0x3f00)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

173.930476ms ago: executing program 3 (id=893):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x0, 0x40, 0x9, 0x0, 0x0, 0xc9295, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x2, @perf_bp={0x0, 0x4}, 0x102882, 0x7, 0x800, 0x3, 0xb, 0x2, 0x3fa, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x62, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0xfffd, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x109a88, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(0x0)
faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x300)
ioperm(0x3c, 0x1, 0x8)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r1, 0x2000009)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00'})

112.1529ms ago: executing program 1 (id=894):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
time(0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000340)='\x00!G', 0x3}], 0x1, 0x73a, 0x21)

111.620551ms ago: executing program 5 (id=895):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
chown(0x0, 0x0, 0xee01)
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002100050100000000000000000200000000000000010001000c001400", @ANYRES32], 0x28}}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040))
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r3=>0x0})
bind$can_raw(r2, &(0x7f0000000000)={0x1d, r3}, 0x10)
bind$can_raw(r2, &(0x7f0000000080), 0x10)

72.965794ms ago: executing program 2 (id=896):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x201, 0xe4340000, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x100}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x6}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

0s ago: executing program 1 (id=897):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003980)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000074000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021380011800a0001006c696d6974000000280002800c00024000000000000000030c00014000000000000001010c0001400000000000000101b81700"], 0x1874}}, 0x0)

kernel console output (not intermixed with test programs):

h2
[   43.153109][ T3944] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   43.172752][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   43.263113][ T4127] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.287478][ T4141] FAULT_INJECTION: forcing a failure.
[   43.287478][ T4141] name failslab, interval 1, probability 0, space 0, times 0
[   43.300265][ T4141] CPU: 1 UID: 0 PID: 4141 Comm: syz.2.144 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   43.300293][ T4141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   43.300305][ T4141] Call Trace:
[   43.300341][ T4141]  <TASK>
[   43.300350][ T4141]  __dump_stack+0x1d/0x30
[   43.300372][ T4141]  dump_stack_lvl+0xe8/0x140
[   43.300388][ T4141]  dump_stack+0x15/0x1b
[   43.300401][ T4141]  should_fail_ex+0x265/0x280
[   43.300475][ T4141]  should_failslab+0x8c/0xb0
[   43.300498][ T4141]  kmem_cache_alloc_noprof+0x50/0x310
[   43.300596][ T4141]  ? getname_flags+0x80/0x3b0
[   43.300618][ T4141]  getname_flags+0x80/0x3b0
[   43.300656][ T4141]  do_sys_openat2+0x60/0x110
[   43.300682][ T4141]  __x64_sys_openat+0xf2/0x120
[   43.300707][ T4141]  x64_sys_call+0x2e9c/0x2ff0
[   43.300747][ T4141]  do_syscall_64+0xd2/0x200
[   43.300828][ T4141]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.300849][ T4141]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   43.300869][ T4141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.300890][ T4141] RIP: 0033:0x7f134ecaebe9
[   43.300956][ T4141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.300971][ T4141] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   43.300988][ T4141] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   43.300999][ T4141] RDX: 0000000000000000 RSI: 00002000000037c0 RDI: 00000000ffffff9c
[   43.301010][ T4141] RBP: 00007f134d70f090 R08: 0000000000000000 R09: 0000000000000000
[   43.301020][ T4141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.301033][ T4141] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   43.301052][ T4141]  </TASK>
[   43.496644][ T4143] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.576910][ T4145] loop3: detected capacity change from 0 to 1024
[   43.608578][ T4161] FAULT_INJECTION: forcing a failure.
[   43.608578][ T4161] name failslab, interval 1, probability 0, space 0, times 0
[   43.621535][ T4161] CPU: 1 UID: 0 PID: 4161 Comm: syz.2.146 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   43.621566][ T4161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   43.621598][ T4161] Call Trace:
[   43.621605][ T4161]  <TASK>
[   43.621613][ T4161]  __dump_stack+0x1d/0x30
[   43.621637][ T4161]  dump_stack_lvl+0xe8/0x140
[   43.621653][ T4161]  dump_stack+0x15/0x1b
[   43.621667][ T4161]  should_fail_ex+0x265/0x280
[   43.621750][ T4161]  ? bpf_prog_alloc_no_stats+0xc4/0x3a0
[   43.621889][ T4161]  should_failslab+0x8c/0xb0
[   43.621992][ T4161]  __kmalloc_cache_noprof+0x4c/0x320
[   43.622023][ T4161]  bpf_prog_alloc_no_stats+0xc4/0x3a0
[   43.622048][ T4161]  bpf_prog_alloc+0x3c/0x150
[   43.622069][ T4161]  bpf_prog_load+0x514/0x1070
[   43.622175][ T4161]  ? security_bpf+0x2b/0x90
[   43.622202][ T4161]  __sys_bpf+0x462/0x7b0
[   43.622240][ T4161]  __x64_sys_bpf+0x41/0x50
[   43.622261][ T4161]  x64_sys_call+0x2aea/0x2ff0
[   43.622290][ T4161]  do_syscall_64+0xd2/0x200
[   43.622353][ T4161]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.622373][ T4161]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   43.622394][ T4161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.622412][ T4161] RIP: 0033:0x7f134ecaebe9
[   43.622465][ T4161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.622481][ T4161] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   43.622533][ T4161] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   43.622544][ T4161] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[   43.622555][ T4161] RBP: 00007f134d70f090 R08: 0000000000000000 R09: 0000000000000000
[   43.622568][ T4161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.622581][ T4161] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   43.622600][ T4161]  </TASK>
[   43.839035][ T4127] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.866449][ T4145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.897293][ T4143] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.961177][ T4127] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.979509][ T3944] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.996334][ T3944] 8021q: adding VLAN 0 to HW filter on device team0
[   44.007369][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.014698][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.044230][ T4143] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.057538][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.064814][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.106417][ T3944] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   44.135929][ T4127] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.159429][ T4180] loop2: detected capacity change from 0 to 1024
[   44.185962][ T4143] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.190377][ T4180] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.242257][ T3456] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.267384][ T3944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.275391][ T3456] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.286705][ T3456] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.315246][ T4191] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   44.315246][ T4191]    program syz.4.152 not setting count and/or reply_len properly
[   44.337212][ T4191] pimreg: entered allmulticast mode
[   44.344795][ T4191] pimreg: left allmulticast mode
[   44.359401][ T3456] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.382565][ T3456] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.394963][ T3456] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.405251][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.468383][ T3456] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.524443][   T51] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.546391][ T4206] FAULT_INJECTION: forcing a failure.
[   44.546391][ T4206] name failslab, interval 1, probability 0, space 0, times 0
[   44.559486][ T4206] CPU: 1 UID: 0 PID: 4206 Comm: syz.3.155 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.559534][ T4206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.559546][ T4206] Call Trace:
[   44.559555][ T4206]  <TASK>
[   44.559564][ T4206]  __dump_stack+0x1d/0x30
[   44.559588][ T4206]  dump_stack_lvl+0xe8/0x140
[   44.559606][ T4206]  dump_stack+0x15/0x1b
[   44.559622][ T4206]  should_fail_ex+0x265/0x280
[   44.559643][ T4206]  should_failslab+0x8c/0xb0
[   44.559740][ T4206]  kmem_cache_alloc_node_noprof+0x57/0x320
[   44.559897][ T4206]  ? __alloc_skb+0x101/0x320
[   44.559951][ T4206]  __alloc_skb+0x101/0x320
[   44.559981][ T4206]  netlink_alloc_large_skb+0xba/0xf0
[   44.560012][ T4206]  netlink_sendmsg+0x3cf/0x6b0
[   44.560033][ T4206]  ? __pfx_netlink_sendmsg+0x10/0x10
[   44.560099][ T4206]  __sock_sendmsg+0x142/0x180
[   44.560190][ T4206]  ____sys_sendmsg+0x31e/0x4e0
[   44.560212][ T4206]  ___sys_sendmsg+0x17b/0x1d0
[   44.560241][ T4206]  __x64_sys_sendmsg+0xd4/0x160
[   44.560351][ T4206]  x64_sys_call+0x191e/0x2ff0
[   44.560373][ T4206]  do_syscall_64+0xd2/0x200
[   44.560396][ T4206]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.560432][ T4206]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.560505][ T4206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.560523][ T4206] RIP: 0033:0x7ffafd25ebe9
[   44.560537][ T4206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.560626][ T4206] RSP: 002b:00007ffafbcbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   44.560644][ T4206] RAX: ffffffffffffffda RBX: 00007ffafd485fa0 RCX: 00007ffafd25ebe9
[   44.560655][ T4206] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000005
[   44.560665][ T4206] RBP: 00007ffafbcbf090 R08: 0000000000000000 R09: 0000000000000000
[   44.560675][ T4206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.560686][ T4206] R13: 00007ffafd486038 R14: 00007ffafd485fa0 R15: 00007ffd0918e9e8
[   44.560719][ T4206]  </TASK>
[   44.814866][ T3944] veth0_vlan: entered promiscuous mode
[   44.835215][ T3944] veth1_vlan: entered promiscuous mode
[   44.868536][ T3944] veth0_macvtap: entered promiscuous mode
[   44.884137][ T3944] veth1_macvtap: entered promiscuous mode
[   44.884530][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.897322][ T3944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   44.911456][ T3944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   44.928817][ T3456] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.947790][   T29] kauditd_printk_skb: 335 callbacks suppressed
[   44.947805][   T29] audit: type=1400 audit(1755782078.759:1304): avc:  denied  { name_bind } for  pid=4216 comm="syz.2.157" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   44.978520][ T3456] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.992290][  T176] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.015257][  T176] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.031084][   T29] audit: type=1400 audit(1755782078.799:1305): avc:  denied  { setopt } for  pid=4216 comm="syz.2.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   45.050948][   T29] audit: type=1400 audit(1755782078.829:1306): avc:  denied  { mount } for  pid=3944 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   45.073667][   T29] audit: type=1400 audit(1755782078.829:1307): avc:  denied  { mounton } for  pid=3944 comm="syz-executor" path="/root/syzkaller.mvUzzE/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   45.142035][ T4229] loop5: detected capacity change from 0 to 512
[   45.170856][ T4229] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.161: bg 0: block 131: padding at end of block bitmap is not set
[   45.220972][   T29] audit: type=1326 audit(1755782079.029:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4232 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   45.221055][ T4229] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   45.244616][   T29] audit: type=1326 audit(1755782079.029:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4232 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   45.265425][ T4229] EXT4-fs (loop5): 1 truncate cleaned up
[   45.276931][   T29] audit: type=1326 audit(1755782079.029:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4232 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   45.276960][   T29] audit: type=1326 audit(1755782079.029:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4232 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   45.283146][ T4229] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.306127][   T29] audit: type=1326 audit(1755782079.029:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4232 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   45.344989][ T4229] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   45.401644][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.421061][ T4240] loop4: detected capacity change from 0 to 512
[   45.430937][ T4240] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.165: bg 0: block 131: padding at end of block bitmap is not set
[   45.458405][ T4240] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   45.477841][ T4240] EXT4-fs (loop4): 1 truncate cleaned up
[   45.514380][ T4240] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.561601][ T4245] loop2: detected capacity change from 0 to 2048
[   45.604046][ T4245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   45.617803][ T4255] __nla_validate_parse: 9 callbacks suppressed
[   45.617816][ T4255] netlink: 4 bytes leftover after parsing attributes in process `syz.1.168'.
[   45.651590][ T4255] bridge0: entered promiscuous mode
[   45.660839][ T4255] bridge0: port 3(macvlan2) entered blocking state
[   45.667671][ T4255] bridge0: port 3(macvlan2) entered disabled state
[   45.674887][ T4255] macvlan2: entered allmulticast mode
[   45.680473][ T4255] bridge0: entered allmulticast mode
[   45.686452][ T4259] FAULT_INJECTION: forcing a failure.
[   45.686452][ T4259] name failslab, interval 1, probability 0, space 0, times 0
[   45.699531][ T4259] CPU: 1 UID: 0 PID: 4259 Comm: syz.3.170 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.699556][ T4259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   45.699567][ T4259] Call Trace:
[   45.699575][ T4259]  <TASK>
[   45.699583][ T4259]  __dump_stack+0x1d/0x30
[   45.699647][ T4259]  dump_stack_lvl+0xe8/0x140
[   45.699666][ T4259]  dump_stack+0x15/0x1b
[   45.699683][ T4259]  should_fail_ex+0x265/0x280
[   45.699704][ T4259]  ? hid_allocate_device+0x2f/0x1c0
[   45.699747][ T4259]  should_failslab+0x8c/0xb0
[   45.699772][ T4259]  __kmalloc_cache_noprof+0x4c/0x320
[   45.699836][ T4259]  hid_allocate_device+0x2f/0x1c0
[   45.699859][ T4259]  uhid_dev_create2+0xc0/0x440
[   45.699879][ T4259]  uhid_dev_create+0x22e/0x280
[   45.699986][ T4259]  uhid_char_write+0x5a3/0x650
[   45.700010][ T4259]  ? __pfx_uhid_char_write+0x10/0x10
[   45.700082][ T4259]  vfs_write+0x269/0x960
[   45.700103][ T4259]  ? __rcu_read_unlock+0x4f/0x70
[   45.700126][ T4259]  ? __fget_files+0x184/0x1c0
[   45.700158][ T4259]  ksys_write+0xda/0x1a0
[   45.700182][ T4259]  __x64_sys_write+0x40/0x50
[   45.700211][ T4259]  x64_sys_call+0x27fe/0x2ff0
[   45.700232][ T4259]  do_syscall_64+0xd2/0x200
[   45.700269][ T4259]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.700289][ T4259]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.700309][ T4259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.700348][ T4259] RIP: 0033:0x7ffafd25ebe9
[   45.700361][ T4259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.700375][ T4259] RSP: 002b:00007ffafbcbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   45.700392][ T4259] RAX: ffffffffffffffda RBX: 00007ffafd485fa0 RCX: 00007ffafd25ebe9
[   45.700403][ T4259] RDX: 0000000000000120 RSI: 0000200000000a00 RDI: 0000000000000005
[   45.700415][ T4259] RBP: 00007ffafbcbf090 R08: 0000000000000000 R09: 0000000000000000
[   45.700427][ T4259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.700440][ T4259] R13: 00007ffafd486038 R14: 00007ffafd485fa0 R15: 00007ffd0918e9e8
[   45.700517][ T4259]  </TASK>
[   45.916640][ T4255] macvlan2: left allmulticast mode
[   45.922102][ T4255] bridge0: left allmulticast mode
[   45.928740][ T4255] bridge0: left promiscuous mode
[   45.940544][ T4265] FAULT_INJECTION: forcing a failure.
[   45.940544][ T4265] name failslab, interval 1, probability 0, space 0, times 0
[   45.953713][ T4265] CPU: 0 UID: 0 PID: 4265 Comm: syz.3.171 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.953741][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   45.953753][ T4265] Call Trace:
[   45.953760][ T4265]  <TASK>
[   45.953768][ T4265]  __dump_stack+0x1d/0x30
[   45.953817][ T4265]  dump_stack_lvl+0xe8/0x140
[   45.953837][ T4265]  dump_stack+0x15/0x1b
[   45.953855][ T4265]  should_fail_ex+0x265/0x280
[   45.953877][ T4265]  should_failslab+0x8c/0xb0
[   45.953932][ T4265]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   45.953961][ T4265]  ? __d_alloc+0x3d/0x340
[   45.954009][ T4265]  __d_alloc+0x3d/0x340
[   45.954035][ T4265]  ? ramfs_init_fs_context+0x31/0x90
[   45.954057][ T4265]  d_alloc_pseudo+0x1e/0x80
[   45.954085][ T4265]  alloc_file_pseudo+0x71/0x160
[   45.954222][ T4265]  anon_inode_getfd+0xc1/0x150
[   45.954254][ T4265]  __se_sys_fsopen+0x193/0x1e0
[   45.954278][ T4265]  __x64_sys_fsopen+0x31/0x40
[   45.954300][ T4265]  x64_sys_call+0x2a9d/0x2ff0
[   45.954327][ T4265]  do_syscall_64+0xd2/0x200
[   45.954429][ T4265]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.954454][ T4265]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.954528][ T4265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.954557][ T4265] RIP: 0033:0x7ffafd25ebe9
[   45.954574][ T4265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.954592][ T4265] RSP: 002b:00007ffafbcbf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[   45.954613][ T4265] RAX: ffffffffffffffda RBX: 00007ffafd485fa0 RCX: 00007ffafd25ebe9
[   45.954626][ T4265] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000100
[   45.954669][ T4265] RBP: 00007ffafbcbf090 R08: 0000000000000000 R09: 0000000000000000
[   45.954681][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.954693][ T4265] R13: 00007ffafd486038 R14: 00007ffafd485fa0 R15: 00007ffd0918e9e8
[   45.954711][ T4265]  </TASK>
[   45.962973][ T4262] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, 
[   46.066972][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.073085][ T4262] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   46.079860][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.213076][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.237130][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.246412][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.271474][ T4267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.166'.
[   46.282301][ T4270] FAULT_INJECTION: forcing a failure.
[   46.282301][ T4270] name failslab, interval 1, probability 0, space 0, times 0
[   46.295212][ T4270] CPU: 1 UID: 0 PID: 4270 Comm: syz.3.172 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.295243][ T4270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.295254][ T4270] Call Trace:
[   46.295261][ T4270]  <TASK>
[   46.295269][ T4270]  __dump_stack+0x1d/0x30
[   46.295293][ T4270]  dump_stack_lvl+0xe8/0x140
[   46.295312][ T4270]  dump_stack+0x15/0x1b
[   46.295396][ T4270]  should_fail_ex+0x265/0x280
[   46.295419][ T4270]  should_failslab+0x8c/0xb0
[   46.295445][ T4270]  kmem_cache_alloc_noprof+0x50/0x310
[   46.295471][ T4270]  ? skb_clone+0x151/0x1f0
[   46.295547][ T4270]  skb_clone+0x151/0x1f0
[   46.295568][ T4270]  nfnetlink_rcv+0x305/0x1690
[   46.295596][ T4270]  ? nlmon_xmit+0x4f/0x60
[   46.295630][ T4270]  ? consume_skb+0x49/0x150
[   46.295656][ T4270]  ? nlmon_xmit+0x4f/0x60
[   46.295675][ T4270]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   46.295777][ T4270]  ? __dev_queue_xmit+0x1200/0x2000
[   46.295794][ T4270]  ? __dev_queue_xmit+0x182/0x2000
[   46.295910][ T4270]  ? ref_tracker_free+0x37d/0x3e0
[   46.295974][ T4270]  netlink_unicast+0x5bd/0x690
[   46.296009][ T4270]  netlink_sendmsg+0x58b/0x6b0
[   46.296028][ T4270]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.296087][ T4270]  __sock_sendmsg+0x142/0x180
[   46.296115][ T4270]  ____sys_sendmsg+0x31e/0x4e0
[   46.296222][ T4270]  ___sys_sendmsg+0x17b/0x1d0
[   46.296252][ T4270]  __x64_sys_sendmsg+0xd4/0x160
[   46.296276][ T4270]  x64_sys_call+0x191e/0x2ff0
[   46.296361][ T4270]  do_syscall_64+0xd2/0x200
[   46.296397][ T4270]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.296420][ T4270]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   46.296524][ T4270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.296547][ T4270] RIP: 0033:0x7ffafd25ebe9
[   46.296600][ T4270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.296642][ T4270] RSP: 002b:00007ffafbcbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.296663][ T4270] RAX: ffffffffffffffda RBX: 00007ffafd485fa0 RCX: 00007ffafd25ebe9
[   46.296740][ T4270] RDX: 0000000000000840 RSI: 0000200000009b40 RDI: 0000000000000008
[   46.296750][ T4270] RBP: 00007ffafbcbf090 R08: 0000000000000000 R09: 0000000000000000
[   46.296760][ T4270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.296771][ T4270] R13: 00007ffafd486038 R14: 00007ffafd485fa0 R15: 00007ffd0918e9e8
[   46.296787][ T4270]  </TASK>
[   46.550197][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.563405][ T4272] netlink: 'syz.5.173': attribute type 4 has an invalid length.
[   46.621971][ T4272] netlink: 'syz.5.173': attribute type 4 has an invalid length.
[   46.638782][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   46.683697][ T4284] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   46.762893][ T4296] sctp: [Deprecated]: syz.1.183 (pid 4296) Use of struct sctp_assoc_value in delayed_ack socket option.
[   46.762893][ T4296] Use struct sctp_sack_info instead
[   46.796743][ T4296] loop1: detected capacity change from 0 to 512
[   46.813581][ T4296] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   46.830253][ T4299] netlink: 12 bytes leftover after parsing attributes in process `syz.5.184'.
[   46.847221][ T4299] vhci_hcd: invalid port number 96
[   46.852502][ T4299] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   46.861894][ T4296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   46.874868][ T4296] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.877818][ T4308] loop2: detected capacity change from 0 to 512
[   46.905360][ T4290] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.922023][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   46.931481][ T4308] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   46.957249][ T4308] EXT4-fs (loop2): 1 truncate cleaned up
[   46.996391][ T4308] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.015706][ T4308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.073739][ T4290] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.101485][ T4308] loop2: detected capacity change from 0 to 2048
[   47.159240][ T3635]  loop2: p1 < > p4
[   47.164517][ T3635] loop2: p4 size 8388608 extends beyond EOD, truncated
[   47.185981][ T4308]  loop2: p1 < > p4
[   47.190958][ T4308] loop2: p4 size 8388608 extends beyond EOD, truncated
[   47.277494][ T4290] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.330198][ T4331] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.379385][ T4290] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.406852][ T4331] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.449835][ T4331] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.529760][ T4331] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.585003][   T41] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.596424][   T41] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.661491][ T4336] loop5: detected capacity change from 0 to 512
[   47.671675][ T4336] FAULT_INJECTION: forcing a failure.
[   47.671675][ T4336] name failslab, interval 1, probability 0, space 0, times 0
[   47.685520][ T4336] CPU: 0 UID: 0 PID: 4336 Comm: syz.5.197 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.685551][ T4336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   47.685565][ T4336] Call Trace:
[   47.685573][ T4336]  <TASK>
[   47.685582][ T4336]  __dump_stack+0x1d/0x30
[   47.685607][ T4336]  dump_stack_lvl+0xe8/0x140
[   47.685632][ T4336]  dump_stack+0x15/0x1b
[   47.685650][ T4336]  should_fail_ex+0x265/0x280
[   47.685746][ T4336]  should_failslab+0x8c/0xb0
[   47.685790][ T4336]  __kvmalloc_node_noprof+0x123/0x4e0
[   47.685900][ T4336]  ? alloc_fdtable+0xbd/0x1d0
[   47.685917][ T4336]  ? __kmalloc_cache_noprof+0x22e/0x320
[   47.685941][ T4336]  alloc_fdtable+0xbd/0x1d0
[   47.685958][ T4336]  dup_fd+0x4c7/0x540
[   47.686020][ T4336]  copy_files+0x98/0xf0
[   47.686169][ T4336]  copy_process+0xc5b/0x2000
[   47.686197][ T4336]  kernel_clone+0x16c/0x5c0
[   47.686221][ T4336]  __x64_sys_clone+0xe6/0x120
[   47.686318][ T4336]  x64_sys_call+0x119c/0x2ff0
[   47.686348][ T4336]  do_syscall_64+0xd2/0x200
[   47.686371][ T4336]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.686395][ T4336]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   47.686425][ T4336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.686449][ T4336] RIP: 0033:0x7fc08d0eebe9
[   47.686468][ T4336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.686484][ T4336] RSP: 002b:00007fc08bb0cfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   47.686505][ T4336] RAX: ffffffffffffffda RBX: 00007fc08d316180 RCX: 00007fc08d0eebe9
[   47.686531][ T4336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020000
[   47.686552][ T4336] RBP: 00007fc08bb0d090 R08: 0000000000000000 R09: 0000000000000000
[   47.686566][ T4336] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   47.686579][ T4336] R13: 00007fc08d316218 R14: 00007fc08d316180 R15: 00007fff14a695c8
[   47.686600][ T4336]  </TASK>
[   47.927270][   T41] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.948667][ T4338] sctp: [Deprecated]: syz.2.198 (pid 4338) Use of struct sctp_assoc_value in delayed_ack socket option.
[   47.948667][ T4338] Use struct sctp_sack_info instead
[   47.948704][   T41] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.985129][ T4338] loop2: detected capacity change from 0 to 512
[   48.001607][ T4338] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   48.020094][ T4338] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   48.034283][ T4338] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.059354][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   48.108793][ T4349] FAULT_INJECTION: forcing a failure.
[   48.108793][ T4349] name failslab, interval 1, probability 0, space 0, times 0
[   48.124352][ T4349] CPU: 0 UID: 0 PID: 4349 Comm: syz.2.202 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   48.124375][ T4349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   48.124386][ T4349] Call Trace:
[   48.124392][ T4349]  <TASK>
[   48.124400][ T4349]  __dump_stack+0x1d/0x30
[   48.124423][ T4349]  dump_stack_lvl+0xe8/0x140
[   48.124511][ T4349]  dump_stack+0x15/0x1b
[   48.124524][ T4349]  should_fail_ex+0x265/0x280
[   48.124543][ T4349]  should_failslab+0x8c/0xb0
[   48.124566][ T4349]  kmem_cache_alloc_noprof+0x50/0x310
[   48.124654][ T4349]  ? skb_clone+0x151/0x1f0
[   48.124729][ T4349]  skb_clone+0x151/0x1f0
[   48.124758][ T4349]  nfnetlink_rcv+0x305/0x1690
[   48.124790][ T4349]  ? nlmon_xmit+0x4f/0x60
[   48.124814][ T4349]  ? consume_skb+0x49/0x150
[   48.125197][ T4349]  ? nlmon_xmit+0x4f/0x60
[   48.125221][ T4349]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   48.125245][ T4349]  ? __dev_queue_xmit+0x1200/0x2000
[   48.125265][ T4349]  ? __dev_queue_xmit+0x182/0x2000
[   48.125357][ T4349]  ? ref_tracker_free+0x37d/0x3e0
[   48.125383][ T4349]  netlink_unicast+0x5bd/0x690
[   48.125412][ T4349]  netlink_sendmsg+0x58b/0x6b0
[   48.125526][ T4349]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.125544][ T4349]  __sock_sendmsg+0x142/0x180
[   48.125579][ T4349]  ____sys_sendmsg+0x31e/0x4e0
[   48.125626][ T4349]  ___sys_sendmsg+0x17b/0x1d0
[   48.125657][ T4349]  __x64_sys_sendmsg+0xd4/0x160
[   48.125695][ T4349]  x64_sys_call+0x191e/0x2ff0
[   48.125715][ T4349]  do_syscall_64+0xd2/0x200
[   48.125771][ T4349]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.125794][ T4349]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   48.125877][ T4349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.125897][ T4349] RIP: 0033:0x7f134ecaebe9
[   48.126154][ T4349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.126170][ T4349] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.126187][ T4349] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   48.126197][ T4349] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[   48.126207][ T4349] RBP: 00007f134d70f090 R08: 0000000000000000 R09: 0000000000000000
[   48.126217][ T4349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.126229][ T4349] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   48.126307][ T4349]  </TASK>
[   48.446097][ T4353] loop2: detected capacity change from 0 to 1024
[   48.460328][ T4357] loop1: detected capacity change from 0 to 1024
[   48.492339][ T4357] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.506499][ T4353] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.521830][ T4357] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.550610][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.562438][ T4357] netlink: 112 bytes leftover after parsing attributes in process `syz.1.204'.
[   48.572744][ T4357] netlink: 4 bytes leftover after parsing attributes in process `syz.1.204'.
[   48.619513][ T4372] sctp: [Deprecated]: syz.2.210 (pid 4372) Use of struct sctp_assoc_value in delayed_ack socket option.
[   48.619513][ T4372] Use struct sctp_sack_info instead
[   48.642898][ T4372] loop2: detected capacity change from 0 to 512
[   48.654655][ T4372] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   48.684706][ T4372] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   48.710106][ T4357] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   48.711585][ T4372] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.718435][ T4377] bridge0: port 3(syz_tun) entered blocking state
[   48.734694][ T4377] bridge0: port 3(syz_tun) entered disabled state
[   48.755066][ T4377] syz_tun: entered allmulticast mode
[   48.762304][ T4377] syz_tun: entered promiscuous mode
[   48.768336][ T4377] bridge0: port 3(syz_tun) entered blocking state
[   48.769998][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.775253][ T4377] bridge0: port 3(syz_tun) entered forwarding state
[   48.785896][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   48.841974][ T4382] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   48.942215][ T4395] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   48.942215][ T4395]    program syz.1.217 not setting count and/or reply_len properly
[   48.972582][ T4395] pimreg: entered allmulticast mode
[   48.994578][ T4395] pimreg: left allmulticast mode
[   49.238457][ T4406] loop1: detected capacity change from 0 to 2048
[   49.260693][ T4406] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   49.680944][ T4411] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   49.742202][ T4413] sctp: [Deprecated]: syz.4.222 (pid 4413) Use of struct sctp_assoc_value in delayed_ack socket option.
[   49.742202][ T4413] Use struct sctp_sack_info instead
[   49.799639][ T4415] loop4: detected capacity change from 0 to 512
[   49.844965][ T4415] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   49.919864][ T4415] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   49.937029][ T4417] loop5: detected capacity change from 0 to 2048
[   49.968112][ T4415] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.979924][ T4417] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   50.003129][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   50.030027][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   50.067739][ T4429] loop2: detected capacity change from 0 to 1024
[   50.079943][   T29] kauditd_printk_skb: 286 callbacks suppressed
[   50.079957][   T29] audit: type=1326 audit(1755782083.899:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.123543][   T29] audit: type=1326 audit(1755782083.939:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.147856][   T29] audit: type=1326 audit(1755782083.939:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.172807][   T29] audit: type=1326 audit(1755782083.939:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.182161][ T4429] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.199208][   T29] audit: type=1326 audit(1755782083.939:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.213718][ T4429] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.239407][   T29] audit: type=1326 audit(1755782083.939:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.274240][   T29] audit: type=1326 audit(1755782083.939:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.300302][   T29] audit: type=1326 audit(1755782083.939:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4433 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   50.341455][ T4442] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   50.341455][ T4442]    program syz.1.231 not setting count and/or reply_len properly
[   50.408004][   T29] audit: type=1400 audit(1755782084.189:1606): avc:  denied  { map } for  pid=4430 comm="syz.5.229" path="socket:[7741]" dev="sockfs" ino=7741 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   50.428113][ T4442] pimreg: entered allmulticast mode
[   50.432994][   T29] audit: type=1400 audit(1755782084.199:1607): avc:  denied  { name_connect } for  pid=4430 comm="syz.5.229" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   50.460246][ T4442] pimreg: left allmulticast mode
[   50.494535][ T3456] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.509241][ T2073] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.524865][ T2073] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.541720][ T2073] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.722511][ T4460] sctp: [Deprecated]: syz.1.237 (pid 4460) Use of struct sctp_assoc_value in delayed_ack socket option.
[   50.722511][ T4460] Use struct sctp_sack_info instead
[   50.768383][ T4429] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   50.788466][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.813045][ T4460] loop1: detected capacity change from 0 to 512
[   50.824581][ T4460] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.857210][ T4460] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   50.918086][ T4460] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.920190][ T4472] vlan2: entered promiscuous mode
[   50.936991][ T4472] vlan2: entered allmulticast mode
[   50.942412][ T4472] hsr_slave_1: entered allmulticast mode
[   50.988363][ T4472] __nla_validate_parse: 14 callbacks suppressed
[   50.988376][ T4472] netlink: 8 bytes leftover after parsing attributes in process `syz.4.242'.
[   51.006747][ T4472] netlink: 4 bytes leftover after parsing attributes in process `syz.4.242'.
[   51.031533][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   51.095056][ T4489] siw: device registration error -23
[   51.174584][ T4493] nfs: Unknown parameter ''
[   51.238252][ T4493] SELinux: failed to load policy
[   51.433222][ T4528] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   51.726203][ T4542] loop4: detected capacity change from 0 to 512
[   51.736155][ T4542] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   51.766857][ T4542] EXT4-fs (loop4): 1 truncate cleaned up
[   51.773589][ T4542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.922983][ T4550] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.981736][ T4550] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.011835][ T4550] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.062422][ T4550] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.126878][   T41] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.141925][   T41] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.153363][   T41] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.162405][   T41] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.216577][ T4563] loop2: detected capacity change from 0 to 1024
[   52.240551][ T4563] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.256966][ T4563] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.342368][ T4563] netlink: 112 bytes leftover after parsing attributes in process `syz.2.261'.
[   52.376797][ T4563] netlink: 4 bytes leftover after parsing attributes in process `syz.2.261'.
[   52.386166][ T4563] netlink: 8 bytes leftover after parsing attributes in process `syz.2.261'.
[   52.501357][ T4587] loop1: detected capacity change from 0 to 2048
[   52.509434][ T4587] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   52.570256][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.760384][ T4606] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   52.783558][ T4563] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   52.863067][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.023125][ T4641] loop5: detected capacity change from 0 to 2048
[   53.035657][ T4641] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   53.038382][ T4643] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'.
[   53.061492][ T4643] bridge0: entered promiscuous mode
[   53.069281][ T4643] bridge0: port 4(macvlan2) entered blocking state
[   53.076169][ T4643] bridge0: port 4(macvlan2) entered disabled state
[   53.086395][ T4652] FAULT_INJECTION: forcing a failure.
[   53.086395][ T4652] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.100466][ T4652] CPU: 1 UID: 0 PID: 4652 Comm: syz.4.285 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.100493][ T4652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   53.100550][ T4652] Call Trace:
[   53.100555][ T4652]  <TASK>
[   53.100563][ T4652]  __dump_stack+0x1d/0x30
[   53.100584][ T4652]  dump_stack_lvl+0xe8/0x140
[   53.100602][ T4652]  dump_stack+0x15/0x1b
[   53.100713][ T4652]  should_fail_ex+0x265/0x280
[   53.100732][ T4652]  should_fail+0xb/0x20
[   53.100747][ T4652]  should_fail_usercopy+0x1a/0x20
[   53.100790][ T4652]  _copy_to_user+0x20/0xa0
[   53.100813][ T4652]  simple_read_from_buffer+0xb5/0x130
[   53.100833][ T4652]  proc_fail_nth_read+0x10e/0x150
[   53.100873][ T4652]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   53.100901][ T4652]  vfs_read+0x1a8/0x770
[   53.100921][ T4652]  ? __rcu_read_unlock+0x4f/0x70
[   53.100943][ T4652]  ? __fget_files+0x184/0x1c0
[   53.100964][ T4652]  ksys_read+0xda/0x1a0
[   53.100982][ T4652]  __x64_sys_read+0x40/0x50
[   53.101074][ T4652]  x64_sys_call+0x27bc/0x2ff0
[   53.101092][ T4652]  do_syscall_64+0xd2/0x200
[   53.101113][ T4652]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.101133][ T4652]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.101233][ T4652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.101273][ T4652] RIP: 0033:0x7f75fb68d5fc
[   53.101289][ T4652] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   53.101304][ T4652] RSP: 002b:00007f75fa0f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.101321][ T4652] RAX: ffffffffffffffda RBX: 00007f75fb8b5fa0 RCX: 00007f75fb68d5fc
[   53.101332][ T4652] RDX: 000000000000000f RSI: 00007f75fa0f70a0 RDI: 0000000000000003
[   53.101349][ T4652] RBP: 00007f75fa0f7090 R08: 0000000000000000 R09: 0000000000000000
[   53.101362][ T4652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.101417][ T4652] R13: 00007f75fb8b6038 R14: 00007f75fb8b5fa0 R15: 00007ffda9231ad8
[   53.101435][ T4652]  </TASK>
[   53.107512][ T4643] macvlan2: entered allmulticast mode
[   53.319819][ T4643] bridge0: entered allmulticast mode
[   53.329397][ T4643] macvlan2: left allmulticast mode
[   53.329423][ T4643] bridge0: left allmulticast mode
[   53.329775][ T4643] bridge0: left promiscuous mode
[   53.353463][ T4664] loop3: detected capacity change from 0 to 2048
[   53.370447][ T4664] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   53.443238][ T4674] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   53.443827][ T4674] netlink: 4 bytes leftover after parsing attributes in process `syz.3.288'.
[   53.443846][ T4674] netlink: 4 bytes leftover after parsing attributes in process `syz.3.288'.
[   53.443920][ T4674] netlink: 4 bytes leftover after parsing attributes in process `syz.3.288'.
[   53.483161][ T4674] netlink: 4 bytes leftover after parsing attributes in process `syz.3.288'.
[   53.751710][ T4700] loop5: detected capacity change from 0 to 512
[   53.764637][ T4697] loop2: detected capacity change from 0 to 2048
[   53.800641][ T4697] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   54.074883][ T4729] bridge0: entered promiscuous mode
[   54.082849][ T4729] bridge0: port 4(macvlan2) entered blocking state
[   54.089599][ T4729] bridge0: port 4(macvlan2) entered disabled state
[   54.098206][ T4729] macvlan2: entered allmulticast mode
[   54.104145][ T4729] bridge0: entered allmulticast mode
[   54.112003][ T4729] macvlan2: left allmulticast mode
[   54.117442][ T4729] bridge0: left allmulticast mode
[   54.124927][ T4729] bridge0: left promiscuous mode
[   54.197425][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   54.226137][ T4746] loop4: detected capacity change from 0 to 164
[   54.234132][ T4746] iso9660: Unknown parameter '/proc/sys/fs/binfmt_misc/syz0'
[   54.332323][ T4756] loop2: detected capacity change from 0 to 2048
[   54.344218][ T4756] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   54.582184][ T4766] loop2: detected capacity change from 0 to 512
[   54.592768][ T4766] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.315: error while reading EA inode 32 err=-116
[   54.605609][ T4766] EXT4-fs (loop2): Remounting filesystem read-only
[   54.612316][ T4766] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   54.624186][ T4766] EXT4-fs (loop2): 1 orphan inode deleted
[   54.632816][ T4766] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.646122][ T4766] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.825807][ T4779] loop2: detected capacity change from 0 to 2048
[   54.857032][ T4779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   54.888174][ T4790] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.940508][ T4792] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   54.959865][ T4790] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.062804][ T4790] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.093430][ T4799] loop5: detected capacity change from 0 to 2048
[   55.100428][ T4799] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   55.155768][ T4803] loop3: detected capacity change from 0 to 1024
[   55.223655][   T29] kauditd_printk_skb: 754 callbacks suppressed
[   55.223673][   T29] audit: type=1326 audit(1755782088.999:2362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4759 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   55.254845][   T29] audit: type=1326 audit(1755782088.999:2363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4759 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   55.291751][ T4790] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.302638][ T4803] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #2: comm syz.3.327: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   55.334102][ T4803] EXT4-fs (loop3): get root inode failed
[   55.340793][ T4803] EXT4-fs (loop3): mount failed
[   55.367185][   T51] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.381367][   T51] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.394813][   T51] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.410786][   T51] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.421622][ T4803] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4803 comm=syz.3.327
[   55.508466][ T4812] Illegal XDP return value 4294967262 on prog  (id 230) dev N/A, expect packet loss!
[   55.528524][   T29] audit: type=1400 audit(1755782089.319:2364): avc:  denied  { write } for  pid=4804 comm="syz.4.328" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   55.637488][   T29] audit: type=1326 audit(1755782089.449:2365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.662261][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   55.689687][   T29] audit: type=1326 audit(1755782089.489:2366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.714051][   T29] audit: type=1326 audit(1755782089.489:2367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.738226][   T29] audit: type=1326 audit(1755782089.489:2368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.762405][   T29] audit: type=1326 audit(1755782089.489:2369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.787691][   T29] audit: type=1326 audit(1755782089.489:2370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.812181][   T29] audit: type=1326 audit(1755782089.489:2371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4826 comm="syz.1.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   55.827326][ T4835] loop3: detected capacity change from 0 to 2048
[   55.900760][ T4835] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   55.938236][ T4852] smc: net device bond0 applied user defined pnetid SYZ0
[   55.945886][ T4852] smc: net device bond0 erased user defined pnetid SYZ0
[   55.954337][ T4852] Zero length message leads to an empty skb
[   55.990214][ T4855] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   55.990214][ T4855]    program syz.1.341 not setting count and/or reply_len properly
[   56.044076][ T4855] pimreg: entered allmulticast mode
[   56.070845][ T4855] pimreg: left allmulticast mode
[   56.092279][ T4867] __nla_validate_parse: 20 callbacks suppressed
[   56.092298][ T4867] netlink: 24 bytes leftover after parsing attributes in process `syz.3.344'.
[   56.156746][ T4876] netlink: 'syz.5.347': attribute type 10 has an invalid length.
[   56.215675][ T4876] bridge0: port 3(syz_tun) entered disabled state
[   56.218099][ T4891] netlink: 'syz.5.347': attribute type 10 has an invalid length.
[   56.228945][ T4888] capability: warning: `syz.3.349' uses deprecated v2 capabilities in a way that may be insecure
[   56.269384][ T4876] syz_tun: left allmulticast mode
[   56.274608][ T4876] bridge0: port 3(syz_tun) entered disabled state
[   56.285759][ T4876] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   56.312605][ T4876] netlink: 4 bytes leftover after parsing attributes in process `syz.5.347'.
[   56.366278][ T4891] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.375832][ T4891] team0: Port device bond0 added
[   56.470051][ T4912] loop4: detected capacity change from 0 to 1024
[   56.477515][ T4912] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   56.490150][ T4914] sch_tbf: peakrate 3444 is lower than or equals to rate 7638673054850489933 !
[   56.515480][ T4912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.535604][ T4912] FAULT_INJECTION: forcing a failure.
[   56.535604][ T4912] name failslab, interval 1, probability 0, space 0, times 0
[   56.549731][ T4912] CPU: 0 UID: 0 PID: 4912 Comm: syz.4.356 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.549758][ T4912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   56.549769][ T4912] Call Trace:
[   56.549776][ T4912]  <TASK>
[   56.549785][ T4912]  __dump_stack+0x1d/0x30
[   56.549861][ T4912]  dump_stack_lvl+0xe8/0x140
[   56.549881][ T4912]  dump_stack+0x15/0x1b
[   56.549896][ T4912]  should_fail_ex+0x265/0x280
[   56.549918][ T4912]  ? ext4_expand_extra_isize_ea+0x777/0x11f0
[   56.549950][ T4912]  should_failslab+0x8c/0xb0
[   56.549974][ T4912]  __kmalloc_cache_noprof+0x4c/0x320
[   56.550001][ T4912]  ext4_expand_extra_isize_ea+0x777/0x11f0
[   56.550034][ T4912]  ? ext4_fc_track_inode+0x9f/0x530
[   56.550130][ T4912]  __ext4_expand_extra_isize+0x246/0x280
[   56.550154][ T4912]  __ext4_mark_inode_dirty+0x29d/0x3f0
[   56.550184][ T4912]  ext4_setattr+0xed0/0xfd0
[   56.550216][ T4912]  ? __pfx_ext4_setattr+0x10/0x10
[   56.550305][ T4912]  notify_change+0x809/0x890
[   56.550340][ T4912]  do_truncate+0x13b/0x180
[   56.550371][ T4912]  vfs_truncate+0x1e8/0x220
[   56.550421][ T4912]  do_sys_truncate+0x91/0x130
[   56.550442][ T4912]  __x64_sys_truncate+0x31/0x40
[   56.550466][ T4912]  x64_sys_call+0x1a2f/0x2ff0
[   56.550546][ T4912]  do_syscall_64+0xd2/0x200
[   56.550629][ T4912]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.550651][ T4912]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.550849][ T4912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.550872][ T4912] RIP: 0033:0x7f75fb68ebe9
[   56.550959][ T4912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.550973][ T4912] RSP: 002b:00007f75fa0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[   56.550993][ T4912] RAX: ffffffffffffffda RBX: 00007f75fb8b5fa0 RCX: 00007f75fb68ebe9
[   56.551034][ T4912] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000200000000100
[   56.551045][ T4912] RBP: 00007f75fa0f7090 R08: 0000000000000000 R09: 0000000000000000
[   56.551055][ T4912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.551065][ T4912] R13: 00007f75fb8b6038 R14: 00007f75fb8b5fa0 R15: 00007ffda9231ad8
[   56.551082][ T4912]  </TASK>
[   56.604280][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.075278][ T4960] siw: device registration error -23
[   57.353998][ T4977] sctp: [Deprecated]: syz.3.367 (pid 4977) Use of struct sctp_assoc_value in delayed_ack socket option.
[   57.353998][ T4977] Use struct sctp_sack_info instead
[   57.501157][ T4990] sctp: [Deprecated]: syz.1.375 (pid 4990) Use of struct sctp_assoc_value in delayed_ack socket option.
[   57.501157][ T4990] Use struct sctp_sack_info instead
[   57.518711][ T4992] FAULT_INJECTION: forcing a failure.
[   57.518711][ T4992] name failslab, interval 1, probability 0, space 0, times 0
[   57.531871][ T4992] CPU: 1 UID: 0 PID: 4992 Comm: syz.2.377 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.531902][ T4992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.531913][ T4992] Call Trace:
[   57.531922][ T4992]  <TASK>
[   57.531932][ T4992]  __dump_stack+0x1d/0x30
[   57.531956][ T4992]  dump_stack_lvl+0xe8/0x140
[   57.532041][ T4992]  dump_stack+0x15/0x1b
[   57.532113][ T4992]  should_fail_ex+0x265/0x280
[   57.532135][ T4992]  should_failslab+0x8c/0xb0
[   57.532295][ T4992]  kmem_cache_alloc_node_noprof+0x57/0x320
[   57.532331][ T4992]  ? __alloc_skb+0x101/0x320
[   57.532363][ T4992]  __alloc_skb+0x101/0x320
[   57.532394][ T4992]  alloc_skb_with_frags+0x7d/0x470
[   57.532472][ T4992]  ? avc_has_perm_noaudit+0x1b1/0x200
[   57.532577][ T4992]  sock_alloc_send_pskb+0x43a/0x4f0
[   57.532611][ T4992]  hci_sock_sendmsg+0x129/0x910
[   57.532642][ T4992]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[   57.532751][ T4992]  __sock_sendmsg+0x142/0x180
[   57.532796][ T4992]  sock_write_iter+0x165/0x1b0
[   57.532821][ T4992]  aio_write+0x2e5/0x410
[   57.532850][ T4992]  io_submit_one+0xacd/0x11d0
[   57.532879][ T4992]  __se_sys_io_submit+0xfb/0x280
[   57.532944][ T4992]  __x64_sys_io_submit+0x43/0x50
[   57.532967][ T4992]  x64_sys_call+0x2d5d/0x2ff0
[   57.532989][ T4992]  do_syscall_64+0xd2/0x200
[   57.533024][ T4992]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.533045][ T4992]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.533064][ T4992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.533081][ T4992] RIP: 0033:0x7f134ecaebe9
[   57.533095][ T4992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.533145][ T4992] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   57.533237][ T4992] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   57.533248][ T4992] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 00007f134fa10000
[   57.533258][ T4992] RBP: 00007f134d70f090 R08: 0000000000000000 R09: 0000000000000000
[   57.533334][ T4992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.533346][ T4992] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   57.533365][ T4992]  </TASK>
[   57.786331][ T4994] loop3: detected capacity change from 0 to 512
[   57.795614][ T4994] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   57.825045][ T4994] EXT4-fs (loop3): 1 truncate cleaned up
[   57.915878][ T4997] sg_write: data in/out 601/33 bytes for SCSI command 0x0-- guessing data in;
[   57.915878][ T4997]    program syz.1.378 not setting count and/or reply_len properly
[   57.972644][ T5001] loop5: detected capacity change from 0 to 1024
[   58.011143][ T5007] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   58.038448][ T5001] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.098513][ T5018] sctp: [Deprecated]: syz.3.386 (pid 5018) Use of struct sctp_assoc_value in delayed_ack socket option.
[   58.098513][ T5018] Use struct sctp_sack_info instead
[   58.113230][ T5001] netlink: 104 bytes leftover after parsing attributes in process `syz.5.380'.
[   58.126614][ T5001] netlink: 104 bytes leftover after parsing attributes in process `syz.5.380'.
[   58.168215][ T5001] netlink: 4 bytes leftover after parsing attributes in process `syz.5.380'.
[   58.179114][ T5001] netlink: 8 bytes leftover after parsing attributes in process `syz.5.380'.
[   58.372088][ T5038] FAULT_INJECTION: forcing a failure.
[   58.372088][ T5038] name failslab, interval 1, probability 0, space 0, times 0
[   58.385847][ T5038] CPU: 0 UID: 0 PID: 5038 Comm: syz.2.390 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.385910][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.385921][ T5038] Call Trace:
[   58.385930][ T5038]  <TASK>
[   58.385941][ T5038]  __dump_stack+0x1d/0x30
[   58.385989][ T5038]  dump_stack_lvl+0xe8/0x140
[   58.386005][ T5038]  dump_stack+0x15/0x1b
[   58.386086][ T5038]  should_fail_ex+0x265/0x280
[   58.386107][ T5038]  ? alloc_pipe_info+0xae/0x350
[   58.386132][ T5038]  should_failslab+0x8c/0xb0
[   58.386192][ T5038]  __kmalloc_cache_noprof+0x4c/0x320
[   58.386221][ T5038]  ? path_openat+0x1bf8/0x2170
[   58.386317][ T5038]  alloc_pipe_info+0xae/0x350
[   58.386336][ T5038]  splice_direct_to_actor+0x592/0x680
[   58.386354][ T5038]  ? _parse_integer+0x27/0x40
[   58.386373][ T5038]  ? __pfx_direct_splice_actor+0x10/0x10
[   58.386454][ T5038]  ? kstrtouint+0x76/0xc0
[   58.386474][ T5038]  do_splice_direct+0xda/0x150
[   58.386492][ T5038]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   58.386517][ T5038]  vfs_copy_file_range+0x978/0xf30
[   58.386546][ T5038]  __se_sys_copy_file_range+0x269/0x3b0
[   58.386654][ T5038]  __x64_sys_copy_file_range+0x78/0x90
[   58.386747][ T5038]  x64_sys_call+0x2c34/0x2ff0
[   58.386766][ T5038]  do_syscall_64+0xd2/0x200
[   58.386790][ T5038]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.386855][ T5038]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.386875][ T5038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.386895][ T5038] RIP: 0033:0x7f134ecaebe9
[   58.386979][ T5038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.386993][ T5038] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[   58.387010][ T5038] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   58.387093][ T5038] RDX: 0000000000000003 RSI: 0000200000000000 RDI: 0000000000000003
[   58.387105][ T5038] RBP: 00007f134d70f090 R08: 0000000000000004 R09: 0000000000000000
[   58.387116][ T5038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.387126][ T5038] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   58.387141][ T5038]  </TASK>
[   58.663607][ T5040] loop2: detected capacity change from 0 to 1024
[   58.693482][ T5040] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.721536][ T5001] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   58.727692][ T5040] netlink: 96 bytes leftover after parsing attributes in process `syz.2.393'.
[   58.738916][ T5040] netlink: 96 bytes leftover after parsing attributes in process `syz.2.393'.
[   58.835665][ T5045] netlink: 4 bytes leftover after parsing attributes in process `syz.2.393'.
[   58.845614][ T5045] netlink: 8 bytes leftover after parsing attributes in process `syz.2.393'.
[   58.895597][ T5052] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   58.926542][ T5054] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   58.926542][ T5054]    program syz.4.397 not setting count and/or reply_len properly
[   58.948410][ T5054] pimreg: entered allmulticast mode
[   59.041802][ T5051] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   59.139103][ T5053] pimreg: left allmulticast mode
[   59.315414][ T5069] sctp: [Deprecated]: syz.5.400 (pid 5069) Use of struct sctp_assoc_value in delayed_ack socket option.
[   59.315414][ T5069] Use struct sctp_sack_info instead
[   59.461860][ T5072] loop2: detected capacity change from 0 to 2048
[   59.499979][ T5072] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   59.672435][ T5085] loop2: detected capacity change from 0 to 2048
[   59.693843][ T5050] loop1: detected capacity change from 0 to 1024
[   59.711347][ T5050] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.735184][ T5050] EXT4-fs: Invalid want_extra_isize 5
[   59.871453][ T5117] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   59.932819][ T5121] loop3: detected capacity change from 0 to 1024
[   59.962000][ T5120] loop1: detected capacity change from 0 to 1024
[   60.013063][ T5120] EXT4-fs: Ignoring removed bh option
[   60.020595][ T5120] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   60.032348][ T5121] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.084574][ T5134] loop5: detected capacity change from 0 to 2048
[   60.112492][ T5120] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.410: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[   60.118507][ T5134] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   60.179258][ T5120] EXT4-fs (loop1): Remounting filesystem read-only
[   60.295222][ T5140] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   60.355193][   T29] kauditd_printk_skb: 617 callbacks suppressed
[   60.355209][   T29] audit: type=1326 audit(1755782094.169:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.355328][ T5146] loop1: detected capacity change from 0 to 1024
[   60.377004][   T29] audit: type=1326 audit(1755782094.169:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.508653][   T29] audit: type=1326 audit(1755782094.239:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.534557][   T29] audit: type=1326 audit(1755782094.239:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.560143][   T29] audit: type=1326 audit(1755782094.239:2993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.584808][   T29] audit: type=1326 audit(1755782094.239:2994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.608583][   T29] audit: type=1326 audit(1755782094.239:2995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.633266][   T29] audit: type=1326 audit(1755782094.249:2996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.657399][   T29] audit: type=1326 audit(1755782094.249:2997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.682118][   T29] audit: type=1326 audit(1755782094.249:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5147 comm="syz.5.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   60.733133][ T5146] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.010755][ T5180] loop2: detected capacity change from 0 to 2048
[   61.027482][ T5146] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   61.084528][ T5188] loop5: detected capacity change from 0 to 2048
[   61.129547][ T5198] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   61.162132][ T5198] __nla_validate_parse: 16 callbacks suppressed
[   61.162252][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.180979][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.213185][ T5204] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   61.216585][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.240518][ T5204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.429'.
[   61.247143][ T5201] syzkaller0: entered promiscuous mode
[   61.250045][ T5204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.429'.
[   61.256685][ T5201] syzkaller0: entered allmulticast mode
[   61.276741][ T5204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.429'.
[   61.295835][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.306073][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.316771][ T5198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[   61.336612][ T5204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.429'.
[   61.919048][ T5237] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   61.919048][ T5237]    program syz.5.442 not setting count and/or reply_len properly
[   61.947194][ T5231] loop2: detected capacity change from 0 to 2048
[   61.953548][ T5237] pimreg: entered allmulticast mode
[   61.966674][ T5237] pimreg: left allmulticast mode
[   62.032909][ T5231] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   62.252380][ T5249] vlan2: entered allmulticast mode
[   62.267885][ T5249] dummy0: entered allmulticast mode
[   62.479715][ T5269] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.539683][ T5269] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.609737][ T5269] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.649798][ T5269] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.657539][ T5292] loop5: detected capacity change from 0 to 2048
[   62.714650][ T5292] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   62.779269][   T31] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.825457][ T5315] netlink: 'syz.2.469': attribute type 10 has an invalid length.
[   62.835930][   T31] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.864608][ T5315] bridge0: port 3(syz_tun) entered disabled state
[   62.878781][ T5321] netlink: 'syz.2.469': attribute type 10 has an invalid length.
[   62.892713][ T5315] syz_tun: left allmulticast mode
[   62.898070][ T5315] bridge0: port 3(syz_tun) entered disabled state
[   62.928703][ T5315] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   62.937465][   T31] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.984408][ T5321] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.040079][ T5321] team0: Port device bond0 added
[   63.046022][   T51] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.193941][ T5360] bridge0: port 3(syz_tun) entered blocking state
[   63.200588][ T5360] bridge0: port 3(syz_tun) entered disabled state
[   63.225519][ T5360] syz_tun: entered allmulticast mode
[   63.248691][ T5360] syz_tun: entered promiscuous mode
[   63.254638][ T5360] bridge0: port 3(syz_tun) entered blocking state
[   63.261307][ T5360] bridge0: port 3(syz_tun) entered forwarding state
[   64.091824][ T5378] loop5: detected capacity change from 0 to 2048
[   64.130760][ T5387] FAULT_INJECTION: forcing a failure.
[   64.130760][ T5387] name failslab, interval 1, probability 0, space 0, times 0
[   64.145354][ T5387] CPU: 0 UID: 0 PID: 5387 Comm: syz.2.486 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.145428][ T5387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.145437][ T5387] Call Trace:
[   64.145443][ T5387]  <TASK>
[   64.145450][ T5387]  __dump_stack+0x1d/0x30
[   64.145474][ T5387]  dump_stack_lvl+0xe8/0x140
[   64.145557][ T5387]  dump_stack+0x15/0x1b
[   64.145574][ T5387]  should_fail_ex+0x265/0x280
[   64.145598][ T5387]  ? tcp_sendmsg_fastopen+0x172/0x520
[   64.145687][ T5387]  should_failslab+0x8c/0xb0
[   64.145787][ T5387]  __kmalloc_cache_noprof+0x4c/0x320
[   64.145817][ T5387]  tcp_sendmsg_fastopen+0x172/0x520
[   64.145854][ T5387]  tcp_sendmsg_locked+0x26e1/0x2c00
[   64.145878][ T5387]  ? mntput_no_expire+0x6f/0x460
[   64.145910][ T5387]  ? __rcu_read_unlock+0x4f/0x70
[   64.145937][ T5387]  ? avc_has_perm_noaudit+0x1b1/0x200
[   64.145962][ T5387]  ? avc_has_perm+0xf7/0x180
[   64.146001][ T5387]  ? _raw_spin_unlock_bh+0x36/0x40
[   64.146031][ T5387]  ? __pfx_tcp_sendmsg+0x10/0x10
[   64.146055][ T5387]  tcp_sendmsg+0x2f/0x50
[   64.146114][ T5387]  inet_sendmsg+0x76/0xd0
[   64.146149][ T5387]  __sock_sendmsg+0x102/0x180
[   64.146177][ T5387]  __sys_sendto+0x268/0x330
[   64.146256][ T5387]  __x64_sys_sendto+0x76/0x90
[   64.146295][ T5389] netlink: 'syz.1.487': attribute type 10 has an invalid length.
[   64.146294][ T5387]  x64_sys_call+0x2d05/0x2ff0
[   64.146317][ T5387]  do_syscall_64+0xd2/0x200
[   64.146337][ T5387]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.146433][ T5387]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.146458][ T5387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.146479][ T5387] RIP: 0033:0x7f134ecaebe9
[   64.146495][ T5387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.146511][ T5387] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   64.146529][ T5387] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   64.146614][ T5387] RDX: ffffffffffffff58 RSI: 0000200000000140 RDI: 0000000000000004
[   64.146627][ T5387] RBP: 00007f134d70f090 R08: 0000200000000100 R09: 0000000000000010
[   64.146638][ T5387] R10: 0000000020008005 R11: 0000000000000246 R12: 0000000000000001
[   64.146651][ T5387] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   64.146667][ T5387]  </TASK>
[   64.201902][ T5369] loop4: detected capacity change from 0 to 1024
[   64.256259][ T5390] netlink: 'syz.1.487': attribute type 10 has an invalid length.
[   64.269566][ T5369] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.313962][ T5390] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.335654][ T5369] EXT4-fs: Invalid want_extra_isize 5
[   64.387226][ T5390] team0: Port device bond0 added
[   64.495355][ T5389] bridge0: port 3(syz_tun) entered disabled state
[   64.510478][ T5389] syz_tun: left allmulticast mode
[   64.516412][ T5389] bridge0: port 3(syz_tun) entered disabled state
[   64.541892][ T5389] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   64.571071][ T5403] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   64.995989][ T5417] loop4: detected capacity change from 0 to 2048
[   65.259325][ T5417] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   65.408005][   T29] kauditd_printk_skb: 628 callbacks suppressed
[   65.408084][   T29] audit: type=1326 audit(1755782099.219:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5415 comm="syz.4.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.532644][   T29] audit: type=1326 audit(1755782099.329:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5415 comm="syz.4.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.558354][   T29] audit: type=1326 audit(1755782099.329:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5415 comm="syz.4.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.573493][ T5434] nfs: Unknown parameter ''
[   65.582818][   T29] audit: type=1326 audit(1755782099.329:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5415 comm="syz.4.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.613431][   T29] audit: type=1326 audit(1755782099.329:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5415 comm="syz.4.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.680689][ T5438] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.688382][ T5438] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.701491][ T5434] SELinux: failed to load policy
[   65.767457][ T5438] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.775301][ T5438] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.784074][   T29] audit: type=1400 audit(1755782099.389:3632): avc:  denied  { mounton } for  pid=5432 comm="syz.3.498" path="/93/file0" dev="tmpfs" ino=505 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   65.807370][   T29] audit: type=1400 audit(1755782099.499:3633): avc:  denied  { write } for  pid=5437 comm="syz.5.497" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   65.830613][   T29] audit: type=1400 audit(1755782099.499:3634): avc:  denied  { ioctl } for  pid=5437 comm="syz.5.497" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   65.869274][   T29] audit: type=1326 audit(1755782099.679:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5444 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.892635][   T29] audit: type=1326 audit(1755782099.679:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5444 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   65.962141][ T5447] loop1: detected capacity change from 0 to 512
[   65.993476][ T5447] EXT4-fs: Ignoring removed i_version option
[   65.999860][ T5447] EXT4-fs: Ignoring removed bh option
[   66.030736][ T5449] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.112829][ T5449] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.138243][ T5447] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.266784][ T5449] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.305727][ T5447] netlink: 'syz.1.500': attribute type 1 has an invalid length.
[   66.313840][ T5447] __nla_validate_parse: 23 callbacks suppressed
[   66.313856][ T5447] netlink: 224 bytes leftover after parsing attributes in process `syz.1.500'.
[   66.390169][ T5449] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.494616][   T31] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.518352][   T31] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.545332][   T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.575953][   T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.643065][ T5468] loop2: detected capacity change from 0 to 2048
[   66.724613][ T5479] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   66.724613][ T5479]    program syz.1.510 not setting count and/or reply_len properly
[   66.761121][ T5479] pimreg: entered allmulticast mode
[   66.789103][ T5479] pimreg: left allmulticast mode
[   66.816562][ T5463] loop3: detected capacity change from 0 to 1024
[   66.832859][ T5463] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.847227][ T5485] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   66.868065][ T5463] EXT4-fs: Invalid want_extra_isize 5
[   66.949771][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   66.959486][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   66.992810][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.051290][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.060391][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.072947][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.331975][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.341091][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.365631][ T5485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.507'.
[   67.419309][ T3309] EXT4-fs unmount: 25 callbacks suppressed
[   67.419325][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   67.483134][ T5505] loop4: detected capacity change from 0 to 2048
[   67.527341][ T5505] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   67.636713][ T5517] loop5: detected capacity change from 0 to 1024
[   67.730262][ T5517] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.744786][ T5512] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.756170][ T5517] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.899856][ T5512] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.948344][ T5517] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   67.991265][ T5512] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.032897][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.114860][ T5512] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.233824][   T31] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.260177][ T5538] loop3: detected capacity change from 0 to 512
[   68.284000][ T5540] netlink: 'syz.5.523': attribute type 10 has an invalid length.
[   68.295660][   T31] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.348167][ T5538] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   68.401604][   T31] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.427822][ T5538] EXT4-fs (loop3): 1 truncate cleaned up
[   68.457868][   T31] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.478524][ T5538] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.648822][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.707413][ T5561] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.786337][ T5564] loop5: detected capacity change from 0 to 1024
[   68.795239][ T5561] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.869696][ T5561] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.882346][ T5564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.921445][ T5561] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.018346][ T5564] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.062034][   T31] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.099015][   T31] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.148430][ T5573] netlink: 'syz.3.536': attribute type 10 has an invalid length.
[   69.191854][ T5576] netlink: 'syz.3.536': attribute type 10 has an invalid length.
[   69.223322][ T5573] bridge0: port 3(syz_tun) entered disabled state
[   69.248313][ T5573] syz_tun: left allmulticast mode
[   69.254724][ T5573] bridge0: port 3(syz_tun) entered disabled state
[   69.287470][ T5573] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   69.297014][   T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.324378][ T5571] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.429168][ T5576] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.436961][ T5576] team0: Port device bond0 added
[   69.443094][   T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.512220][ T5588] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   69.575777][ T5571] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.593353][ T5594] loop4: detected capacity change from 0 to 2048
[   69.601779][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.640771][ T5594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   69.751704][ T5571] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.792680][ T5605] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   69.843134][ T5571] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.919548][ T5620] netlink: 'syz.5.552': attribute type 10 has an invalid length.
[   69.927886][ T5610] loop3: detected capacity change from 0 to 512
[   69.938384][ T5620] netlink: 'syz.5.552': attribute type 10 has an invalid length.
[   69.949024][ T5610] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   69.963059][ T5610] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.549: invalid indirect mapped block 2683928664 (level 1)
[   69.992042][ T5610] EXT4-fs (loop3): 1 truncate cleaned up
[   69.998335][ T5610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.023539][ T5610] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.036222][ T5626] netlink: 'syz.5.554': attribute type 10 has an invalid length.
[   70.045642][ T5626] netlink: 'syz.5.554': attribute type 10 has an invalid length.
[   70.113975][ T5610] loop3: detected capacity change from 0 to 512
[   70.209556][ T5610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.229500][ T5610] ext4 filesystem being mounted at /104/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.261521][ T5610] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.549: bg 0: block 289: padding at end of block bitmap is not set
[   70.287380][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.316108][ T5638] loop3: detected capacity change from 0 to 2048
[   70.323163][ T5638] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   70.409414][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   70.466846][ T5653] netlink: 'syz.4.565': attribute type 10 has an invalid length.
[   70.482871][ T5653] bridge0: port 3(syz_tun) entered disabled state
[   70.490742][ T5653] syz_tun: left allmulticast mode
[   70.496243][ T5653] bridge0: port 3(syz_tun) entered disabled state
[   70.505962][ T5656] FAULT_INJECTION: forcing a failure.
[   70.505962][ T5656] name failslab, interval 1, probability 0, space 0, times 0
[   70.520457][ T5656] CPU: 1 UID: 0 PID: 5656 Comm: syz.3.566 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.520500][ T5656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.520510][ T5656] Call Trace:
[   70.520517][ T5656]  <TASK>
[   70.520525][ T5656]  __dump_stack+0x1d/0x30
[   70.520546][ T5656]  dump_stack_lvl+0xe8/0x140
[   70.520562][ T5656]  dump_stack+0x15/0x1b
[   70.520613][ T5656]  should_fail_ex+0x265/0x280
[   70.520632][ T5656]  should_failslab+0x8c/0xb0
[   70.520712][ T5656]  kmem_cache_alloc_noprof+0x50/0x310
[   70.520734][ T5656]  ? getname_flags+0x80/0x3b0
[   70.520757][ T5656]  ? __rcu_read_unlock+0x4f/0x70
[   70.520776][ T5656]  getname_flags+0x80/0x3b0
[   70.520797][ T5656]  io_renameat_prep+0x105/0x1b0
[   70.520822][ T5656]  io_submit_sqes+0x5db/0x1050
[   70.520884][ T5656]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   70.520902][ T5656]  ? 0xffffffff81000000
[   70.520974][ T5656]  ? __rcu_read_unlock+0x4f/0x70
[   70.520990][ T5656]  ? get_pid_task+0x96/0xd0
[   70.521006][ T5656]  ? proc_fail_nth_write+0x13b/0x160
[   70.521027][ T5656]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   70.521046][ T5656]  ? vfs_write+0x7e8/0x960
[   70.521092][ T5656]  ? __rcu_read_unlock+0x4f/0x70
[   70.521172][ T5656]  ? __fget_files+0x184/0x1c0
[   70.521192][ T5656]  ? fput+0x8f/0xc0
[   70.521214][ T5656]  __x64_sys_io_uring_enter+0x78/0x90
[   70.521237][ T5656]  x64_sys_call+0x2de1/0x2ff0
[   70.521254][ T5656]  do_syscall_64+0xd2/0x200
[   70.521276][ T5656]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.521295][ T5656]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.521325][ T5656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.521343][ T5656] RIP: 0033:0x7ffafd25ebe9
[   70.521356][ T5656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.521369][ T5656] RSP: 002b:00007ffafbcbf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   70.521420][ T5656] RAX: ffffffffffffffda RBX: 00007ffafd485fa0 RCX: 00007ffafd25ebe9
[   70.521430][ T5656] RDX: 00000000000096f0 RSI: 0000000010007b0f RDI: 0000000000000003
[   70.521463][ T5656] RBP: 00007ffafbcbf090 R08: 0000000000000000 R09: 0000000000000000
[   70.521473][ T5656] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   70.521483][ T5656] R13: 00007ffafd486038 R14: 00007ffafd485fa0 R15: 00007ffd0918e9e8
[   70.521498][ T5656]  </TASK>
[   70.526600][ T5657] netlink: 'syz.4.565': attribute type 10 has an invalid length.
[   70.566636][ T5658] loop3: detected capacity change from 0 to 512
[   70.730256][ T5653] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   70.743590][ T5658] ext4: Unknown parameter 'smackfsfloor'
[   70.760351][ T5657] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.830477][ T5657] team0: Port device bond0 added
[   70.881162][  T176] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.899943][  T176] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.913230][ T5666] loop1: detected capacity change from 0 to 2048
[   70.920162][  T176] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.930432][ T5666] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   70.942320][  T176] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.955519][   T29] kauditd_printk_skb: 412 callbacks suppressed
[   70.955537][   T29] audit: type=1326 audit(1755782104.769:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   70.992077][   T29] audit: type=1326 audit(1755782104.769:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.019345][   T29] audit: type=1326 audit(1755782104.769:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.046524][   T29] audit: type=1326 audit(1755782104.769:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.072308][   T29] audit: type=1326 audit(1755782104.769:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.198249][   T29] audit: type=1326 audit(1755782104.769:4054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.225359][   T29] audit: type=1326 audit(1755782104.769:4055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.276812][   T29] audit: type=1326 audit(1755782104.769:4056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.308265][   T29] audit: type=1326 audit(1755782104.849:4057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.342052][   T29] audit: type=1326 audit(1755782104.849:4058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5667 comm="syz.4.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fb68ebe9 code=0x7ffc0000
[   71.407567][ T5685] team0 (unregistering): Port device team_slave_0 removed
[   71.434917][ T5685] team0 (unregistering): Port device team_slave_1 removed
[   71.451585][ T5685] team0 (unregistering): Port device bond0 removed
[   71.481902][ T5698] __nla_validate_parse: 18 callbacks suppressed
[   71.481921][ T5698] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[   71.516630][ T5704] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   71.516630][ T5704]    program syz.1.581 not setting count and/or reply_len properly
[   71.551006][ T5704] pimreg: entered allmulticast mode
[   71.563804][ T5704] pimreg: left allmulticast mode
[   71.578648][ T5706] pimreg: entered allmulticast mode
[   71.586552][ T5706] pimreg: left allmulticast mode
[   71.599038][ T5698] loop2: detected capacity change from 0 to 1024
[   71.620147][ T5698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.684634][ T5715] loop5: detected capacity change from 0 to 512
[   71.697660][ T5715] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   71.715274][ T5715] EXT4-fs (loop5): 1 truncate cleaned up
[   71.731619][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.741114][ T5715] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.842770][ T5724] loop3: detected capacity change from 0 to 8192
[   71.858865][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.880232][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   71.889831][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   71.968936][ T5734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.592'.
[   71.972083][ T5728] fido_id[5728]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   72.038089][ T5734] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.046541][ T5734] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.046755][ T5738] loop5: detected capacity change from 0 to 2048
[   72.061937][ T5734] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.069793][ T5734] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.094949][ T5738] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   72.246881][ T5748] netlink: 24 bytes leftover after parsing attributes in process `syz.5.598'.
[   72.425142][ T5762] loop4: detected capacity change from 0 to 2048
[   72.483179][ T5762] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   72.536728][ T5772] netlink: 24 bytes leftover after parsing attributes in process `syz.5.610'.
[   72.912219][ T5796] netlink: 24 bytes leftover after parsing attributes in process `syz.3.621'.
[   72.964655][ T5780] loop1: detected capacity change from 0 to 1024
[   72.973266][ T5780] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.021024][ T5780] EXT4-fs: Invalid want_extra_isize 5
[   73.109011][ T5811] loop5: detected capacity change from 0 to 256
[   73.122906][ T5811] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.140980][ T5811] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   73.230822][ T5826] netlink: 24 bytes leftover after parsing attributes in process `syz.3.633'.
[   73.759436][ T5858] nfs: Unknown parameter ''
[   73.819627][ T5858] SELinux: failed to load policy
[   74.845379][ T5905] loop1: detected capacity change from 0 to 512
[   74.861082][ T5905] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.924866][ T5910] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[   74.927309][ T5905] EXT4-fs (loop1): 1 truncate cleaned up
[   74.942422][ T5905] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.051430][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.489161][ T5935] $Hÿ: renamed from bond0 (while UP)
[   75.530112][ T5935] $Hÿ: entered promiscuous mode
[   75.535447][ T5935] bond_slave_0: entered promiscuous mode
[   75.541799][ T5935] bond_slave_1: entered promiscuous mode
[   75.631566][ T5929] program syz.3.673 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.745452][ T5946] loop4: detected capacity change from 0 to 512
[   75.753150][ T5946] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.764998][ T5946] EXT4-fs (loop4): 1 truncate cleaned up
[   75.772456][ T5946] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.800203][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.857919][ T5951] netlink: 'syz.4.684': attribute type 10 has an invalid length.
[   75.871137][ T5951] netlink: 'syz.4.684': attribute type 10 has an invalid length.
[   75.970264][ T5959] nfs: Unknown parameter ''
[   75.989303][ T5959] SELinux: failed to load policy
[   76.066791][   T29] kauditd_printk_skb: 546 callbacks suppressed
[   76.066807][   T29] audit: type=1326 audit(1755782109.879:4605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.104720][   T29] audit: type=1326 audit(1755782109.879:4606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.158200][   T29] audit: type=1326 audit(1755782109.879:4607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.190971][   T29] audit: type=1326 audit(1755782109.879:4608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.221857][   T29] audit: type=1326 audit(1755782109.879:4609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.251036][   T29] audit: type=1326 audit(1755782109.899:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5952 comm="syz.5.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   76.276012][   T29] audit: type=1326 audit(1755782109.899:4611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5952 comm="syz.5.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   76.306689][   T29] audit: type=1326 audit(1755782109.919:4612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.333764][   T29] audit: type=1326 audit(1755782109.919:4613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.362256][   T29] audit: type=1326 audit(1755782109.919:4614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5964 comm="syz.3.690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7ffafd25ebe9 code=0x7ffc0000
[   76.427934][ T5977] loop3: detected capacity change from 0 to 512
[   76.455458][ T5977] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   76.462542][ T5979] netlink: 'syz.2.696': attribute type 10 has an invalid length.
[   76.477559][ T5977] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.695: invalid indirect mapped block 2683928664 (level 1)
[   76.483395][ T5979] netlink: 'syz.2.696': attribute type 10 has an invalid length.
[   76.494383][ T5977] EXT4-fs (loop3): 1 truncate cleaned up
[   76.509019][ T5977] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.532467][ T5982] FAULT_INJECTION: forcing a failure.
[   76.532467][ T5982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.532467][ T5977] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.558200][ T5982] CPU: 1 UID: 0 PID: 5982 Comm: syz.5.697 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   76.558297][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.558307][ T5982] Call Trace:
[   76.558315][ T5982]  <TASK>
[   76.558329][ T5982]  __dump_stack+0x1d/0x30
[   76.558353][ T5982]  dump_stack_lvl+0xe8/0x140
[   76.558400][ T5982]  dump_stack+0x15/0x1b
[   76.558414][ T5982]  should_fail_ex+0x265/0x280
[   76.558435][ T5982]  should_fail+0xb/0x20
[   76.558453][ T5982]  should_fail_usercopy+0x1a/0x20
[   76.558475][ T5982]  _copy_to_user+0x20/0xa0
[   76.558568][ T5982]  simple_read_from_buffer+0xb5/0x130
[   76.558592][ T5982]  proc_fail_nth_read+0x10e/0x150
[   76.558621][ T5982]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.558655][ T5982]  vfs_read+0x1a8/0x770
[   76.558757][ T5982]  ? __rcu_read_unlock+0x4f/0x70
[   76.558779][ T5982]  ? __fget_files+0x184/0x1c0
[   76.558804][ T5982]  ksys_read+0xda/0x1a0
[   76.558940][ T5982]  __x64_sys_read+0x40/0x50
[   76.558961][ T5982]  x64_sys_call+0x27bc/0x2ff0
[   76.558980][ T5982]  do_syscall_64+0xd2/0x200
[   76.559021][ T5982]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.559051][ T5982]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.559144][ T5982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.559163][ T5982] RIP: 0033:0x7fc08d0ed5fc
[   76.559176][ T5982] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   76.559190][ T5982] RSP: 002b:00007fc08bb4f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   76.559209][ T5982] RAX: ffffffffffffffda RBX: 00007fc08d315fa0 RCX: 00007fc08d0ed5fc
[   76.559222][ T5982] RDX: 000000000000000f RSI: 00007fc08bb4f0a0 RDI: 0000000000000005
[   76.559255][ T5982] RBP: 00007fc08bb4f090 R08: 0000000000000000 R09: 0000000000000000
[   76.559268][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.559280][ T5982] R13: 00007fc08d316038 R14: 00007fc08d315fa0 R15: 00007fff14a695c8
[   76.559300][ T5982]  </TASK>
[   76.958509][ T6001] nfs: Unknown parameter ''
[   76.971173][ T6006] netlink: 'syz.3.709': attribute type 10 has an invalid length.
[   76.974689][ T6001] SELinux: failed to load policy
[   76.986926][ T6006] netlink: 'syz.3.709': attribute type 10 has an invalid length.
[   77.002011][ T6008] pimreg: entered allmulticast mode
[   77.010459][ T6008] pimreg: left allmulticast mode
[   77.022860][ T6002] veth0: entered promiscuous mode
[   77.028751][ T6002] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   77.032928][ T6011] loop3: detected capacity change from 0 to 512
[   77.052090][ T6011] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   77.060569][ T6011] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.711: invalid indirect mapped block 2683928664 (level 1)
[   77.074939][ T6011] EXT4-fs (loop3): 1 truncate cleaned up
[   77.081152][ T6011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.095032][ T6011] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.210813][ T6029] usb usb7: usbfs: process 6029 (syz.5.718) did not claim interface 0 before use
[   77.275498][ T6039] netlink: 'syz.3.721': attribute type 10 has an invalid length.
[   77.283891][ T6039] netlink: 'syz.3.721': attribute type 10 has an invalid length.
[   77.352963][ T6044] pimreg: entered allmulticast mode
[   77.359129][ T6044] pimreg: left allmulticast mode
[   77.596494][ T6059] FAULT_INJECTION: forcing a failure.
[   77.596494][ T6059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.610836][ T6059] CPU: 0 UID: 0 PID: 6059 Comm: syz.4.731 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.610861][ T6059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.610871][ T6059] Call Trace:
[   77.610878][ T6059]  <TASK>
[   77.610928][ T6059]  __dump_stack+0x1d/0x30
[   77.610951][ T6059]  dump_stack_lvl+0xe8/0x140
[   77.610971][ T6059]  dump_stack+0x15/0x1b
[   77.611019][ T6059]  should_fail_ex+0x265/0x280
[   77.611096][ T6059]  should_fail+0xb/0x20
[   77.611114][ T6059]  should_fail_usercopy+0x1a/0x20
[   77.611163][ T6059]  strncpy_from_user+0x25/0x230
[   77.611222][ T6059]  ? kmem_cache_alloc_noprof+0x186/0x310
[   77.611251][ T6059]  ? getname_flags+0x80/0x3b0
[   77.611338][ T6059]  getname_flags+0xae/0x3b0
[   77.611364][ T6059]  __se_sys_move_mount+0x2d6/0x490
[   77.611391][ T6059]  __x64_sys_move_mount+0x67/0x80
[   77.611461][ T6059]  x64_sys_call+0xcfe/0x2ff0
[   77.611479][ T6059]  do_syscall_64+0xd2/0x200
[   77.611500][ T6059]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.611591][ T6059]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.611624][ T6059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.611648][ T6059] RIP: 0033:0x7f75fb68ebe9
[   77.611664][ T6059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.611681][ T6059] RSP: 002b:00007f75fa0f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   77.611701][ T6059] RAX: ffffffffffffffda RBX: 00007f75fb8b5fa0 RCX: 00007f75fb68ebe9
[   77.611714][ T6059] RDX: ffffffffffffff9c RSI: 0000200000000140 RDI: 0000000000000003
[   77.611728][ T6059] RBP: 00007f75fa0f7090 R08: 0000000000000000 R09: 0000000000000000
[   77.611741][ T6059] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[   77.611754][ T6059] R13: 00007f75fb8b6038 R14: 00007f75fb8b5fa0 R15: 00007ffda9231ad8
[   77.611770][ T6059]  </TASK>
[   77.859343][ T6063] usb usb7: usbfs: process 6063 (syz.4.732) did not claim interface 0 before use
[   77.991442][ T6078] pimreg: entered allmulticast mode
[   78.014639][ T6082] $Hÿ: renamed from bond0
[   78.022811][ T6082] $Hÿ: entered promiscuous mode
[   78.028206][ T6082] bond_slave_0: entered promiscuous mode
[   78.034096][ T6082] bond_slave_1: entered promiscuous mode
[   78.040849][ T6078] pimreg: left allmulticast mode
[   78.055194][ T6080] loop1: detected capacity change from 0 to 512
[   78.120048][ T6080] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   78.128772][ T6080] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.740: invalid indirect mapped block 2683928664 (level 1)
[   78.154677][ T6080] EXT4-fs (loop1): 1 truncate cleaned up
[   78.161191][ T6080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.177842][ T6080] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.230638][ T6092] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[   78.334499][ T6080] loop1: detected capacity change from 0 to 512
[   78.337555][ T6103] usb usb7: usbfs: process 6103 (syz.3.747) did not claim interface 0 before use
[   78.374057][ T6080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.390670][ T6080] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   78.443995][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.062864][ T6141] veth0: entered promiscuous mode
[   79.087689][ T6136] infiniband syz2: set down
[   79.092361][ T6136] infiniband syz2: added bond0
[   79.097218][ T6139] veth0: left promiscuous mode
[   79.116226][ T6136] RDS/IB: syz2: added
[   79.127867][ T6136] smc: adding ib device syz2 with port count 1
[   79.137465][ T6136] smc:    ib device syz2 port 1 has pnetid 
[   79.169869][ T6146] netlink: 4 bytes leftover after parsing attributes in process `syz.5.762'.
[   79.253612][ T6158] netlink: 4 bytes leftover after parsing attributes in process `syz.1.767'.
[   79.425079][ T6176] nfs: Unknown parameter ''
[   79.440256][ T6176] SELinux: failed to load policy
[   79.466499][ T6184] veth0: entered promiscuous mode
[   79.472056][ T6183] veth0: left promiscuous mode
[   79.549509][ T6189] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   80.062859][ T6203] loop5: detected capacity change from 0 to 1024
[   80.100405][ T6203] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.113266][ T6203] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.137548][ T6203] netlink: 96 bytes leftover after parsing attributes in process `syz.5.786'.
[   80.146776][ T6203] netlink: 96 bytes leftover after parsing attributes in process `syz.5.786'.
[   80.157109][ T6203] netlink: 4 bytes leftover after parsing attributes in process `syz.5.786'.
[   80.166052][ T6203] netlink: 8 bytes leftover after parsing attributes in process `syz.5.786'.
[   80.280636][ T6203] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   80.301531][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.427848][ T6225] $Hÿ: renamed from bond0
[   80.436018][ T6225] $Hÿ: entered promiscuous mode
[   80.441205][ T6225] bond_slave_0: entered promiscuous mode
[   80.447277][ T6225] bond_slave_1: entered promiscuous mode
[   80.536227][ T6239] loop5: detected capacity change from 0 to 1024
[   80.562288][ T6239] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.585673][ T6239] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.606149][ T6241] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[   80.640368][ T6239] netlink: 96 bytes leftover after parsing attributes in process `syz.5.802'.
[   80.873793][ T6239] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   80.933110][ T3944] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.123526][ T6297] pimreg: entered allmulticast mode
[   81.180869][ T6304] pimreg: left allmulticast mode
[   81.190071][ T6303] loop3: detected capacity change from 0 to 1024
[   81.240475][ T6303] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.253016][   T29] kauditd_printk_skb: 338 callbacks suppressed
[   81.253031][   T29] audit: type=1326 audit(1755782115.059:4953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6278 comm="syz.5.815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   81.284605][   T29] audit: type=1326 audit(1755782115.059:4954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6278 comm="syz.5.815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08d0eebe9 code=0x7ffc0000
[   81.309502][ T6301] loop4: detected capacity change from 0 to 8192
[   81.345131][ T6303] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.375767][   T29] audit: type=1400 audit(1755782115.189:4955): avc:  denied  { ioctl } for  pid=6308 comm="syz.1.827" path="socket:[15131]" dev="sockfs" ino=15131 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   81.412819][ T6309] siw: device registration error -23
[   81.429509][ T6309] loop1: detected capacity change from 0 to 2048
[   81.562110][ T6309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.577783][ T6309] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.616941][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.632360][ T6303] vhci_hcd: default hub control req: 0310 v0006 i0003 l0
[   81.760692][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.828039][ T6338] nfs: Unknown parameter ''
[   81.833694][ T6338] SELinux:  policydb magic number 0xc does not match expected magic number 0xf97cff8c
[   81.845791][ T6338] SELinux: failed to load policy
[   81.853140][ T6333] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.930569][   T29] audit: type=1326 audit(1755782115.749:4956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.028165][   T29] audit: type=1326 audit(1755782115.769:4957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.052862][   T29] audit: type=1326 audit(1755782115.769:4958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.077275][   T29] audit: type=1326 audit(1755782115.769:4959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.100951][   T29] audit: type=1326 audit(1755782115.769:4960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.125586][   T29] audit: type=1326 audit(1755782115.769:4961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.150006][   T29] audit: type=1326 audit(1755782115.769:4962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6343 comm="syz.1.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04421ebe9 code=0x7ffc0000
[   82.181487][ T6333] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.264671][ T6333] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.364571][ T6333] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.427257][ T6355] __nla_validate_parse: 9 callbacks suppressed
[   82.427272][ T6355] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[   82.512128][ T6361] netlink: 124 bytes leftover after parsing attributes in process `syz.4.841'.
[   82.523697][ T6361] netlink: 8 bytes leftover after parsing attributes in process `syz.4.841'.
[   82.658778][   T31] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.684359][   T31] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.703446][   T31] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.728664][ T6384] loop1: detected capacity change from 0 to 2048
[   82.728960][   T31] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.798737][ T6384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   82.899687][ T6396] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   82.926140][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   82.935264][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   82.958069][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   83.009293][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   83.018970][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   83.045965][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   83.139567][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[   83.217425][ T6415] loop3: detected capacity change from 0 to 512
[   83.228889][ T6415] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   83.241582][ T6415] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.858: invalid indirect mapped block 2683928664 (level 1)
[   83.260976][ T6415] EXT4-fs (loop3): 1 truncate cleaned up
[   83.267959][ T6415] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.270063][ T6412] loop2: detected capacity change from 0 to 512
[   83.302809][ T6415] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.309562][ T6412] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   83.323600][ T6412] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.859: invalid indirect mapped block 2683928664 (level 1)
[   83.356216][ T6412] EXT4-fs (loop2): 1 truncate cleaned up
[   83.366855][ T6412] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.381522][ T6412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.431758][ T6424] FAULT_INJECTION: forcing a failure.
[   83.431758][ T6424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.445130][ T6424] CPU: 0 UID: 0 PID: 6424 Comm: syz.2.861 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.445159][ T6424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.445248][ T6424] Call Trace:
[   83.445253][ T6424]  <TASK>
[   83.445259][ T6424]  __dump_stack+0x1d/0x30
[   83.445276][ T6424]  dump_stack_lvl+0xe8/0x140
[   83.445287][ T6424]  dump_stack+0x15/0x1b
[   83.445296][ T6424]  should_fail_ex+0x265/0x280
[   83.445310][ T6424]  should_fail+0xb/0x20
[   83.445319][ T6424]  should_fail_usercopy+0x1a/0x20
[   83.445414][ T6424]  strncpy_from_user+0x25/0x230
[   83.445431][ T6424]  ? kmem_cache_alloc_noprof+0x186/0x310
[   83.445506][ T6424]  ? getname_flags+0x80/0x3b0
[   83.445523][ T6424]  getname_flags+0xae/0x3b0
[   83.445537][ T6424]  __se_sys_move_mount+0x2d6/0x490
[   83.445554][ T6424]  __x64_sys_move_mount+0x67/0x80
[   83.445633][ T6424]  x64_sys_call+0xcfe/0x2ff0
[   83.445645][ T6424]  do_syscall_64+0xd2/0x200
[   83.445661][ T6424]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.445760][ T6424]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.445774][ T6424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.445837][ T6424] RIP: 0033:0x7f134ecaebe9
[   83.445848][ T6424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.445859][ T6424] RSP: 002b:00007f134d70f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   83.445928][ T6424] RAX: ffffffffffffffda RBX: 00007f134eed5fa0 RCX: 00007f134ecaebe9
[   83.445936][ T6424] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: 0000000000000003
[   83.445943][ T6424] RBP: 00007f134d70f090 R08: 0000000000000000 R09: 0000000000000000
[   83.446015][ T6424] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[   83.446026][ T6424] R13: 00007f134eed6038 R14: 00007f134eed5fa0 R15: 00007ffcfc746728
[   83.446042][ T6424]  </TASK>
[   83.665625][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   83.758186][ T6429] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.816803][ T6431] loop1: detected capacity change from 0 to 1024
[   83.826013][ T6429] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.837343][ T6431] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.858678][ T6431] EXT4-fs: Invalid want_extra_isize 5
[   83.900574][ T6429] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.951190][ T6429] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.014086][   T41] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.026966][   T41] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.051480][   T41] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.065230][   T41] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.367344][ T6473] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.379153][ T6442] loop4: detected capacity change from 0 to 1024
[   84.398048][ T6442] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.404946][ T6442] EXT4-fs: Invalid want_extra_isize 5
[   84.479192][ T6473] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.540137][ T6473] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.599646][ T6473] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.736806][   T41] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.777439][   T41] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.796437][   T41] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.824592][   T41] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.258506][ T6515] loop3: detected capacity change from 0 to 8192
[   85.375344][ T6525] ==================================================================
[   85.384074][ T6525] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[   85.391569][ T6525] 
[   85.393886][ T6525] write to 0xffff8881290ae27e of 2 bytes by task 6515 on cpu 1:
[   85.401957][ T6525]  fat16_ent_put+0x28/0x60
[   85.406472][ T6525]  fat_alloc_clusters+0x4ce/0xa80
[   85.411668][ T6525]  fat_get_block+0x258/0x5e0
[   85.416426][ T6525]  __block_write_begin_int+0x3fd/0xf90
[   85.422199][ T6525]  cont_write_begin+0x5fc/0x970
[   85.427305][ T6525]  fat_write_begin+0x4f/0xe0
[   85.431988][ T6525]  cont_write_begin+0x1ad/0x970
[   85.437071][ T6525]  fat_write_begin+0x4f/0xe0
[   85.441652][ T6525]  generic_cont_expand_simple+0xb0/0x150
[   85.447295][ T6525]  fat_cont_expand+0x3e/0x170
[   85.451984][ T6525]  fat_setattr+0x2a5/0x8a0
[   85.456404][ T6525]  notify_change+0x809/0x890
[   85.461116][ T6525]  do_ftruncate+0x34b/0x450
[   85.465703][ T6525]  __x64_sys_ftruncate+0x68/0xc0
[   85.470730][ T6525]  x64_sys_call+0x2d52/0x2ff0
[   85.475399][ T6525]  do_syscall_64+0xd2/0x200
[   85.479998][ T6525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.486052][ T6525] 
[   85.488464][ T6525] read to 0xffff8881290ae200 of 512 bytes by task 6525 on cpu 0:
[   85.496269][ T6525]  fat_mirror_bhs+0x1df/0x320
[   85.501032][ T6525]  fat_alloc_clusters+0x98b/0xa80
[   85.506078][ T6525]  fat_get_block+0x258/0x5e0
[   85.510753][ T6525]  __block_write_begin_int+0x3fd/0xf90
[   85.516573][ T6525]  cont_write_begin+0x5fc/0x970
[   85.521849][ T6525]  fat_write_begin+0x4f/0xe0
[   85.526615][ T6525]  cont_write_begin+0x66e/0x970
[   85.532181][ T6525]  fat_write_begin+0x4f/0xe0
[   85.536866][ T6525]  generic_perform_write+0x184/0x490
[   85.542236][ T6525]  __generic_file_write_iter+0x9e/0x120
[   85.547780][ T6525]  generic_file_write_iter+0x8d/0x2f0
[   85.553335][ T6525]  do_iter_readv_writev+0x499/0x540
[   85.558541][ T6525]  vfs_writev+0x2df/0x8b0
[   85.562999][ T6525]  __se_sys_pwritev2+0xfc/0x1c0
[   85.567848][ T6525]  __x64_sys_pwritev2+0x67/0x80
[   85.572711][ T6525]  x64_sys_call+0x2c55/0x2ff0
[   85.577483][ T6525]  do_syscall_64+0xd2/0x200
[   85.582086][ T6525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.588231][ T6525] 
[   85.590583][ T6525] Reported by Kernel Concurrency Sanitizer on:
[   85.596919][ T6525] CPU: 0 UID: 0 PID: 6525 Comm: syz.3.893 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.606813][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.617036][ T6525] ==================================================================