last executing test programs:

4.530107309s ago: executing program 3 (id=490):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000340)='./file2\x00', 0x0, &(0x7f0000000300)={[{@oldalloc}, {@quota}, {@quota}, {@stripe={'stripe', 0x3d, 0x3}}, {@jqfmt_vfsold}]}, 0xff, 0x4fa, &(0x7f0000001040)="$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")
r1 = creat(&(0x7f0000000e40)='./bus\x00', 0x19)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x40000008})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0xa0c42, 0x100)
socket(0xa, 0x1, 0x0)
fallocate(r1, 0x0, 0xbf5, 0x2000402)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
capset(0x0, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x44})
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000340)={[0xfffffffffffffffd]}, 0x8, 0x800)
utimensat(r3, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x0, 0x22, 0x0, 0x6})

4.437189982s ago: executing program 1 (id=492):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000d40)={0x2c, r1, 0x1, 0x4, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x2c}}, 0x3000c000)

4.374351484s ago: executing program 3 (id=493):
semop(0x0, &(0x7f0000000240)=[{0x3, 0x0, 0x1800}, {0x0, 0xe65b}], 0x1f4)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000680))
syz_open_dev$sg(0x0, 0x0, 0x802)
socket$kcm(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r4 = perf_event_open(&(0x7f00000012c0)={0x1, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xdfc, 0x9}, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x4000, &(0x7f0000000240)={[{@noinit_itable}]}, 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyad/4WOddkfE4rkC9NCpu9TeFvvybbR1EcGGJO9PaWzYrQAAoB/5Mf6HI+KT7eP/6RhrH80BAAAAoyR7eyr+lURkAAAAwMhKI2IqkrRSjAWYijStVDpjeD8a19N6o9n69HJje2MpnxdRjlK6vFqvzRRjhctRSvLybDHGdr/82pHyXEQ8FxE/nL7WLlcWG/WlYV/8AAAAgCvixouHz///OZ228wAAAMCIKfcsAAAAAKPCKT8AAACMPuf/AAAAMNK++u67ecr23+O99P7O9lrj/TtLteZaZX17sbLY2NqsrDQaK+1n9q2fVl+90dj8bGxs36u2as1Wtbmze3e9sb3Rurt66BXYAAAAwCV67sUHv0siYu/z19opiucAAhzyx2E3ABiksWE3ABia8WE3ABia0qlL2EPAqEtOmX988E7nWmH8+mLaAwAADN6tjx+//z9RzDv92gDw/8xYHwC4etzdg6urdNYRgDcH3RJgWD7U+Xim1/yeD+/o4/5/5xpDlp2pYQAAwMBMtVOSVorj9KlI00ol4tn2awFKyfJqvTZTnB/8drr0TF6eba+ZnDpmGAAAAAAAAAAAAAAAAAAAAAAAAADoyLIkMgAAAGCkRaR/TtpP84+4Nf3K1OGrA0fe+vXT9358b6HV2pqNmEj+Pp1PmoiI1k+K6a9lXgkAAAAAT4HOeXrxOTvs1gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwah4/+mBxP11m3L9+MSLK3eKPx2T7czJKEXH9H0mMH1gviYixAcTfux8RN7vFT+JJlmXlohXd4l+74Pjl9qbpHj+NiBsDiA9X2YN8//NOt+9fGi+1P7t//8aLdF6993/pf/d/Yz32P88eKffy/MNfVHvGvx/x/Hj3/c9+/KQT/1CIvPByn3385jd2d7vOOFBlt/gHY1Vb65vV5s7undX1hZXaSm1jbm72jfk351+fn6kur9Zrxd+uYX7wiV8+Oan/13vELx/u/7Ht/0pfvc/i3w/vPfpIp1DqFv/2y91/f2/2iJ8Wv32fKvL5/Fv7+b1O/qAXfv6bF07q/1KP/k+e0v/bffU/Pvfq1773h65zjm0NAOAyNHd21xbq9drWCZnJPpa55MzbT0czBpiJp6MZw8pk3+38P56vnnOufiyTnWf18RhAMyaOfU/H4qwVJhF7eV19/kMCAAAj5n8H/SfdQQIAAAAAAAAAAAAAAAAAAAAu0hkfSzYZEX0vfDTm3nC6CgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwov8EAAD//4kX0Xk=")
syz_io_uring_setup(0x63eb, &(0x7f0000000680)={0x0, 0x1200, 0x8, 0x2, 0x16b}, &(0x7f0000000700), &(0x7f0000000740), &(0x7f0000000780))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r5)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x18}}, 0x10)
r6 = syz_io_uring_setup(0x1972, &(0x7f0000000080)={0x0, 0x1000, 0x1000}, &(0x7f0000000140), &(0x7f0000000480), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="680000000206011800000000000000000000fffd1c00078005001500020000000800114000000000050015000c0000000500010006000000050005000a00000005000400000000000900020073797a300000000012000300686173683a6e65742c706f7274"], 0x68}}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000), 0xc)
add_key(&(0x7f00000028c0)='keyring\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000380)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x4}, 0x50)

4.361254024s ago: executing program 1 (id=494):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
timer_create(0x0, &(0x7f0000001040)={0x0, 0x21, 0x2}, &(0x7f0000001080))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
fsetxattr$security_selinux(r0, &(0x7f0000000ec0), &(0x7f0000000f00)='system_u:object_r:devicekit_var_lib_t:s0\x00', 0x29, 0x3)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$l2tp6(r1, &(0x7f0000000000)=""/11, 0xb, 0x40000000, 0x0, 0x0)

4.189162499s ago: executing program 0 (id=496):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
timer_create(0x0, &(0x7f0000001040)={0x0, 0x21, 0x2}, &(0x7f0000001080))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
r0 = syz_create_resource$binfmt(&(0x7f0000000000)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x41, 0x1ff)
fcntl$setlease(r1, 0x400, 0x1)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

3.319877937s ago: executing program 1 (id=497):
r0 = syz_mount_image$ext4(&(0x7f00000002c0)='ext3\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000001c0)={[{@barrier_val={'barrier', 0x3d, 0x101}}, {@errors_remount}, {@noblock_validity}]}, 0x1, 0x445, &(0x7f0000000b00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000480)='.\x00', 0x10000, 0x0)
socket$unix(0x1, 0x1, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x13f, 0x9}}, 0x20)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x552, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000240)={'netdevsim0\x00', &(0x7f0000000080)=@ethtool_ringparam={0x11, 0x4, 0x1000, 0x8, 0x1, 0xa84, 0xe0, 0xa, 0x3}})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4004000)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x40, &(0x7f00000000c0), 0xff, 0x4df, &(0x7f0000010a80)="$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")
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r2, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r3, 0x0, 0x0, 0x30, 0x0, @in6={0x1b, 0x0, 0x7, @empty, 0x3aa7}, @ib={0x1b, 0xffff, 0x0, {"000037e45bd17505546dd1caff00"}, 0x0, 0xfffffffffffffffc, 0x6}}}, 0x118)
socket$netlink(0x10, 0x3, 0x5)
write(r0, &(0x7f0000000040)="29000000140005b7ff000051915f95eb81010003a606a40e07fff00900000000000000000040000000e9f85d3d19ab34438a53ac5842b09e357ffe1c6b0ea0b3afbe6ef21def9589c4959ae534da71a3b5db63bc2b55e560b1f8333c453a8b74a87f761ff30bcc75be51cc987ef765acf39053623724e08362a1859163e3686a17", 0x81)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x400c6615, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4000, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
getsockopt$IP_VS_SO_GET_VERSION(r5, 0x0, 0x30, 0x0, &(0x7f0000000100))
r6 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000040)={'veth0_to_bond\x00', &(0x7f0000000080)=@ethtool_stats})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r7, 0x0, 0x8008000000010, &(0x7f0000000180)="17000000020001000003be8c5e687a8a12005fe50823e9d9a73d3300020300ecff3f0000000300000a0001000098fc5a53d3f5b7e4a96c6b06169da9c0f8d9485bbb6a880a00243c5197b29f9368bdd6c8db0000dba67e06000000e289c46f8ab8b4028a7a63c900000200df01800000c457681f009cee4a5acb3dac00001fb7315033bf79ac2df5bc080236e2b68c8eec25a02aff0601150b00009cd51a00010000000affff02dfccebf6ba00085d024f0298e9e9054ad8", 0xb8)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=@newtaction={0x148, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x4}, {0x130, 0x1, [@m_vlan={0x60, 0x9, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x172}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xf31}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x10, 0x8, 0xffffffffffffffff, 0x6, 0xb}, 0x3}}]}, {0x6, 0x6, "0229"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_csum={0xcc, 0x14, 0x0, 0x0, {{0x9}, {0x74, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x7fc0, 0x3, 0x2324}, 0x28}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x71c0000, 0x7, 0x101, 0x736}, 0x4f}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0xd, 0xcada9f9a831f5c61, 0xdf0, 0xfffffffc}, 0x3e}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0xa546, 0x4, 0x3, 0x10}, 0x2d}}]}, {0x2f, 0x6, "6d7c40a355750998346d4806ab3ee9d01c977ac627eb4328ad87bd7b417d52e3dc5454e732a13eba9dad95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x50}, 0x0)
dup(r8)

3.318753566s ago: executing program 0 (id=499):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
socketpair(0x1, 0x800, 0x20000, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x50, &(0x7f0000000400), 0xa5e)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x80000001, 0x30}, 0xc)
socket$rds(0x15, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x498, 0x1c8, 0x1c8, 0x1c8, 0x98, 0x360, 0x400, 0x400, 0x400, 0x400, 0x400, 0x6, 0x0, {[{{@ip={@dev={0xac, 0x14, 0x14, 0x2c}, @rand_addr=0x64010101, 0x11000000, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x50, 0x80, 0x1}}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x3, 0x3}}}, {{@ip={@broadcast, @multicast2, 0xff, 0x0, 'lo\x00', 'nr0\x00', {}, {}, 0x84}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x14}}}, {{@ip={@loopback, @empty, 0x0, 0xffffff00, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0xa, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4f8)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0xfffff000)
mknodat$null(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x8, 0x103)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"/738], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffcf8}, 0x48)

3.2149529s ago: executing program 2 (id=502):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xc, 0x5, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x1, 0xec02b, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_config_ext={0x1, 0xf60e}, 0x477, 0x2800000, 0x9, 0x2, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000c3707bf4000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, 0x0, 0x0)
io_uring_setup(0x2a6d, &(0x7f00000002c0)={0x0, 0xd610, 0x0, 0x1, 0x28b})
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xd, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xbc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xc}, 0xc000, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_getaffinity(r3, 0x8, &(0x7f00000000c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x8, 0xb, 0xfffff024}, {0x20, 0x81, 0x0, 0xfffff024}, {0x6, 0xfe, 0x0, 0x2000000}]}, 0x10)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = add_key$user(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000180)="269e", 0x2, 0xfffffffffffffffd)
r8 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f00000005c0)={0x0, "3ff4057cbe5924464c439b8f826f00a0b3ab198e40a55462c05d329ad8430d9611dc0ff693dd133cfb2979dc95ee34f9c3da5707ae00", 0x34}, 0x48, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r7, r8, 0x0, 0x0)

2.452457414s ago: executing program 3 (id=504):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000004c0)='./file0\x00', 0x1000c00, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRES32, @ANYRES32], 0xff, 0x248, &(0x7f0000000880)="$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")
r0 = creat(&(0x7f0000000240)='./file1\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106, 0x5}}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8}, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1080, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_bp={0x0, 0x1}, 0x100, 0xa88, 0x8406, 0x5, 0x0, 0x8000003c, 0x4, 0x0, 0x0, 0x0, 0x46}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x82c1, 0x0)
pwritev(r2, &(0x7f0000000280)=[{&(0x7f0000000800)="b5", 0x1}, {0x0}], 0x2, 0x7fffffffffffffff, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f00000001c0)={0x1d, r4}, 0x10)
sendmsg$can_raw(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{0x2, 0x0, 0x1, 0x1}, 0x8, 0x1}, 0x10}}, 0xd209f6d814827b13)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x652c0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x844, 0x32, 0x43a1bd76, 0x7, 0x9, 0x5, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800"/16], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, 0x0, 0x80)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x600)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
getdents64(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r10, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x0, @multicast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x60, r10, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x4c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffffffff}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)={0x3c, r7, 0x1, 0x0, 0x0, {{}, {}, {0x20, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'veth0_macvtap\x00'}}}}}, 0x3c}}, 0x0)
r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="b0040000", @ANYRES16=r11, @ANYBLOB="0b0226bd7000ffdbdf25090000000800060007000000080004000f0000000c000180060001000a00000008000400020000002c0003800500080005000000080005007f000001060004000010000008000300020000000500080005000000080004001500000034000380060007004e240000060007004e2300000800050000000000060007004e230000060004002d000000060004001000000008000600080000000800060010000000"], 0xb0}, 0x1, 0x0, 0x0, 0x4800}, 0x0)
r12 = dup3(r1, 0xffffffffffffffff, 0x80000)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r12, 0x8933, &(0x7f0000000380)={'wg2\x00'})

2.042965057s ago: executing program 2 (id=506):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="5f8225bd7000010080000f00000008000300", @ANYRES32=r4, @ANYBLOB='\b\x00:\x00\b\x00\x00\x00\b\x009'], 0x2c}}, 0x200008d0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@bridge_dellink={0x2c, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r7, 0x62000, 0x400}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4, 0x3}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000280)={&(0x7f00000000c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r3, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004040}, 0x1)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x20, 0x300, 0xc, 0xc, 0x2, [@struct={0x8, 0x0, 0x0, 0xf, 0x0, 0xffffffff}]}}, 0x0, 0x26, 0x0, 0x6}, 0x28)
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r9, 0x0, 0xcc, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c)
setsockopt$MRT_ADD_MFC_PROXY(r9, 0x0, 0xd2, &(0x7f0000000040)={@multicast2, @multicast1, 0x2, "4f6fb4d1af0f724e6118ecd4ac1100843af297baebb0efcdf5a284da144a011a", 0x4}, 0x3c)
setsockopt$MRT_DEL_MFC_PROXY(r9, 0x0, 0xd3, &(0x7f0000000100)={@multicast2, @multicast1, 0x0, "c6c0e6ec8755b5dc4e305886d95f086707764f8d0e5a0358ea21274f844a69e9", 0x0, 0x200, 0x489c, 0x2}, 0x3c)
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x7f, 0x1, 0x5, 0x4, 0x0, 0x2, 0x4000, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0xfff, 0x2}, 0x18029, 0x8b, 0x5, 0x6, 0x40000000000000, 0x3, 0x7c0, 0x0, 0x4f2f, 0x0, 0x548}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)
r10 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r10, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r10, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendmsg$SMC_PNETID_ADD(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000001000000020002000000090001"], 0x2c}}, 0x0)

1.960429119s ago: executing program 4 (id=507):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xc, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x3e8, 0xf, 0xfdff, &(0x7f0000000000)="c1df07000000d30a298ee68888a887", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)

1.900226821s ago: executing program 2 (id=508):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xd, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
unlink(&(0x7f0000000000)='./file0\x00')
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x2, @perf_bp={&(0x7f0000000a00), 0x4}, 0x0, 0x7, 0x800000, 0x7, 0x2, 0x2, 0x2, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xc}, 0x1d144, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000004ffffffff0000000003"], 0x0, 0x56}, 0x28)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x5, 0x2, 0x7, 0x44060, 0x1, 0x10000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r5)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffff7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000400)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$kcm(0x11, 0x200000000000002, 0x300)
ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x3)

1.774925345s ago: executing program 4 (id=509):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
timer_create(0x0, &(0x7f0000001040)={0x0, 0x21, 0x2}, &(0x7f0000001080))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
fsetxattr$security_selinux(r0, &(0x7f0000000ec0), &(0x7f0000000f00)='system_u:object_r:devicekit_var_lib_t:s0\x00', 0x29, 0x3)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$l2tp6(r1, &(0x7f0000000000)=""/11, 0xb, 0x40000000, 0x0, 0x0)

1.711678936s ago: executing program 1 (id=510):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000003c0)={'veth1_virt_wifi\x00', {0x2, 0x4e1f, @local}}) (fail_nth: 1)

1.142627685s ago: executing program 1 (id=511):
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x341080, 0x0)
close(r0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xb3}, 0x0, 0x0, 0x90a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000080), 0x3000000)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r1, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x11)
shutdown(r1, 0x1)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401f, 0x68180, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_bp={0x0, 0x1}, 0x400, 0x0, 0x7, 0x4, 0x6, 0x8001, 0x7fff}, 0x0, 0xff6fbfffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x80d0)
recvfrom(r1, &(0x7f0000000380)=""/183, 0xb7, 0x10121, &(0x7f0000000580)=@in6={0xa, 0x4e21, 0x9, @mcast2, 0x7}, 0x80)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1000000, &(0x7f0000006680))
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0xa, 0x2, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x26}, 0x4e1e, 0x3, 'sed\x00', 0x21, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000580)={{0x84, @broadcast, 0x4e23, 0x3, 'lc\x00', 0x2, 0x4, 0x7b}, {@private=0xa010102, 0x4e22, 0x2, 0xc8, 0x80012d58, 0x12d5c}}, 0x44)
umount2(0x0, 0x2)
ioctl$XFS_IOC_GOINGDOWN(0xffffffffffffffff, 0x8004587d, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0xc800}, 0x40)
ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, &(0x7f0000000040))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

1.096850406s ago: executing program 3 (id=512):
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000080)=0x5)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x101082, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x101}}, './file0\x00'})
readlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=""/254, 0xfe)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000280)=0x9)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x106, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000002c0)=0x1, r3, 0x0, 0x2, 0x4}}, 0x20)
recvfrom$phonet(r0, &(0x7f00000003c0)=""/24, 0x18, 0x20010000, &(0x7f0000000400)={0x23, 0x2, 0x4, 0x4}, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r2)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000480))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0)={r2, <r4=>0xffffffffffffffff}, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@bloom_filter={0x1e, 0x6, 0x7, 0x2, 0x20844, r4, 0x1000, '\x00', 0x0, r0, 0x4, 0x4, 0x4, 0xa}, 0x50)
r6 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x10480, 0x80)
ioctl$RTC_RD_TIME(r6, 0x80247009, &(0x7f0000000680))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000006c0)={{0x1, 0x1, 0x18, <r7=>r2, {0x2a6aef19}}, './file0\x00'})
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000700), 0x400, 0x0)
ioctl$TIOCGWINSZ(r2, 0x5413, &(0x7f0000000740))
sendmsg$nl_route_sched_retired(r7, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)=@newtclass={0x30, 0x28, 0x28, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0xa}, {0x2, 0x7}, {0xfff1, 0x2}}, [@c_cbq={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
ioctl$TIOCEXCL(r8, 0x540c)
r9 = openat(r6, &(0x7f00000008c0)='./file0\x00', 0x62100, 0x10)
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(r9, 0x4058587a, &(0x7f0000001000)={{<r10=>r8, &(0x7f0000000e80)='mangle\x00', 0x54000, &(0x7f0000000ec0)={@_ha_fsid={[0x2, 0x8]}, {0x9, 0x99, 0x10}}, 0xf7, &(0x7f0000000f00)={@_ha_fsid}, &(0x7f0000000f40)=0x7fff}, {[0x1, 0x6, 0xc, 0x2]}, 0xbef3, 0x46, &(0x7f0000000f80)=""/70})
ioctl$PPPIOCSFLAGS1(r10, 0x40047459, &(0x7f0000001080)=0x8024802)
r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001240)={0xffffffffffffffff}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0x1a, 0x8, &(0x7f00000010c0)=@raw=[@call={0x85, 0x0, 0x0, 0x14}, @map_val={0x18, 0x2, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0x7, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0x83}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @ldst={0x0, 0x1, 0x6, 0x2, 0xa, 0xfffffffffffffffc, 0x4}], &(0x7f0000001100)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x8, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001200)={0x0, 0x10, 0x7, 0x7}, 0x10, 0x0, r10, 0x1, &(0x7f0000001280)=[r7, r4, r11, r5, r10, 0xffffffffffffffff], &(0x7f00000012c0)=[{0x5, 0x2, 0xc, 0x5}], 0x10, 0x2}, 0x94)
dup2(r9, r9)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000014c0)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x1c, 0x0, 0x1, 0x70bd2c, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24048084}, 0x0)

1.055084147s ago: executing program 3 (id=513):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
timer_create(0x0, &(0x7f0000001040)={0x0, 0x21, 0x2}, &(0x7f0000001080)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
r1 = syz_create_resource$binfmt(&(0x7f0000000000)='./file0\x00')
r2 = openat$binfmt(0xffffffffffffff9c, r1, 0x41, 0x1ff)
fcntl$setlease(r2, 0x400, 0x1)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

1.004166499s ago: executing program 1 (id=514):
socket(0x400000000010, 0x3, 0x0)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40040}, 0x400c4)
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000240), 0x80080, 0x0)
r3 = epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x40f00, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = perf_event_open(&(0x7f00000012c0)={0x1, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xdfc, 0x9}, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000940)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20000}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0x2})
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x4}}, 0x10)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x20000003}}}, 0x10)
bind$tipc(r0, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r1, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)

891.203122ms ago: executing program 2 (id=515):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
socket$inet(0x2, 0x3, 0x2)

838.446584ms ago: executing program 4 (id=516):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp\x00')
readv(r0, &(0x7f0000000740)=[{0x0}], 0x1)

837.812984ms ago: executing program 2 (id=517):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401f, 0x68188, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_bp={0x0, 0x1}, 0x10c0e8, 0x0, 0x0, 0x3, 0x6, 0x8001, 0x7fff}, 0x0, 0xff6fbfffffffffff, 0xffffffffffffffff, 0x1)
openat$sndseq(0xffffffffffffff9c, 0x0, 0xd8a40)
r0 = memfd_create(&(0x7f0000000500)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x1c\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\x83\x11\v}k+\xeb\xc3\xc0O\xae\xd2\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb901nEy\x82\x83\x80\xd3O\x00|hP\x00\x00\x00\x00\x00\x00\x00\x05\x86\xfe\xd9\xa5\xc6\nSy\xa3N\xba-]\'q\xc6\xfb\x02\x9a\xa9Z\xa8\x80Bx\xbd74\xcf\"\xa5\xea$\x95\xfd\x06T\xef\x89\xe4j\x06\xdc\x15\xe7\xc3\xb5H\xf7\xdc\xee\x182\xab\xe2?\"\xbewm\x9d\xd8x\xd92\xeeS/\xd2\xcd[\x9dcO1\xcb\x12lZ$\xa7\x9d\xf8b\xf6}\xc5``\xfe0\x8a\'v-\x99`?\x97\x8c\xdd\xd6\xfa\xa2\x06>\xf3\xe2uI\xe65C\xdb\x84\xe6eU\xe8RK\xd6=s\xcd\x9d\x1f#3\xc5\x16\xd0\xbbD\xc5\xde\xc8/\v\xa5W\xbep\x87\x15\x10\xcdm\xa7\x93\x01\x1c,9V8\xdc\xfd\xb7\xc0\xfc\x04\x00p\xad\x12\xb2\xbf\xfbFZ\x1a\f\x99\x05\xe4\x1eP\xed\x87\x89\xbeo\xfbv\xb6\x8a\xee\xf6Oc8\xaf\x11[\xc3\x98w-\xf0\xb2z\xc7\xaf;\x92\xad4\x1b\x92L\x97<\xbdh\x80\xf2\xc0\xd0n)K\xf2#Ncp\xe4\xb4\xfb\x94\x18\xc2-TWA\x13\xfe\xea\xad\v\xc4\xa5\x02\xf9\xed]\xf4\\\x01\xab\xdc\xb6\xcdP\x93\xf2\xc3\x96\xf2\xc0\xd6-x\xd5\xd6\xc7\x9d\xa5\x1f\xd2t\xd7\x8f}b\x9749\xd4a7\x18\xe0\x91KV7[\xb8\x8dL\xc8\xc8\x8f>sbE\xf5\xa7\xdb|\xb0m\x16c\x84\r\"\xf2\x92s\xeb\xaf\x1c\x00\xf4\x8dL\xa5\x10\x89FB\xfb8\xf9\x9d\xcbm\x1c\x91\xe9fd$5\xdc\xad\xec\xef\x90\xd9\xefX\xd2m\x9e\xec\x94w\xb3\xf9\xd9\x0eu-z\x81\xbb\xa6\xc0\x00\xa1\xd9\xcbI\xda\xa3\b\x9e@\xb8\xc8k\xdeQ/\xb8X\x9c\xff4Np~\xc4\xc1_\x1c#zX\a\xd41\x1c\x7fH\x91\xd9k\x05\x1f\n\b\b\x88\xd6\xcf4i\xa0B\xe7\x9c\x9c\xe6\xcax\xca\xa1E#6\xe9\xf31W\xd0\x1bY3/\x00I#\xfa\xb0\f\xd5!\x9fR[\x0e\xdb`\xdb\x82M\'k\x16(\xfa\xc2\xec\x96e\\Q\xe9\x19\xe1u\x86\xcb\xc3\xb0\xb8\x19\xb9l\x1fk!R\xb1P\x8b\xda\xffE\x89\x97\n\x17m\xd10\x1a\xe7Qz\xd8\bi\x8dRw+\xa1^N\xaf\x1b\x1dg\x8f$\xbe\x93\x8d\x8b\xfd\r\xee<\x84\x95\x82)TH\xcac9\x98\x13WW@;\xb4\xd5\x0f\xa1\xb3xX(\x80\xe8\x89\xed e.\xe04\xba\x9c=\xc6\x04\f\xbf\x06\xce5\xf99GD8@\xd2\r\xd0\xdf@\xe3\xbe\"qq#]\x86W\tA\xa7\x91\x85\xae\x9c\x8dO\xa6\xa3\xf9i\x83\xc5\xa8C\x164\xef\xa4\\\a\xaa%\x94!3k]\xd5\xbe\'U\xf17', 0x7)
r1 = dup(r0)
clock_adjtime(0x0, 0x0)
r2 = memfd_create(&(0x7f0000002600)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00x\xdd\x02', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb228, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10006, 0x20da, 0x5, 0xa, 0x20005, 0x24, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a310000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a310000000094000000050a01020000000000000000010020000c00024000000000000000010900010073797a310000f8ff5b0004801400030076657468315f6d6163767461700000000800014000000005"], 0x130}}, 0x0)
copy_file_range(r2, 0x0, r1, 0x0, 0x7, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r1)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x8, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@updpolicy={0xc4, 0x19, 0x1, 0xffffffff, 0x0, {{@in=@multicast1=0xe0000002, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x3, 0xa, 0x0, 0x20, 0x87}, {0x0, 0x7fffffffffffffff, 0x0, 0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x4, 0x200000000000000}, 0x0, 0x0, 0x0, 0x1, 0x3, 0x2}, [@mark={0xc, 0x15, {0x35075a, 0x3}}]}, 0xc4}}, 0x2c000010)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x2}}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x10}, {0x8, 0x1, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffa}, 0x4, 0x6e6bb5, 0x0, 0x1, 0x3, 0x3}}, 0xb8}, 0x1, 0x0, 0x0, 0x810}, 0x0)

812.107025ms ago: executing program 4 (id=518):
r0 = shmget$private(0x0, 0x4000, 0x100, &(0x7f0000ff9000/0x4000)=nil)
r1 = shmat(r0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(r0, &(0x7f0000ffa000/0x3000)=nil, 0x1000)
shmdt(r1)

811.132545ms ago: executing program 0 (id=519):
socket$kcm(0x10, 0x2, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(0x0, r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x50, &(0x7f0000000440)={@local, @empty, @void, {@ipv6={0x86dd, @tipc_packet={0x6, 0x6, "9dbd8d", 0x1a, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {[], @payload_conn={{{0x1a, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, 0x2, 0xfffd, 0x0, 0x1, 0x6, 0x5, 0x0, 0x3, 0x0, 0x0, 0x4e22, 0x4e24}}, [0x0, 0x0]}}}}}}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='ns\x00')
renameat2(r1, &(0x7f0000000300)='./cgroup\x00', r1, &(0x7f00000002c0)='./cgroup\x00', 0x5)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401f, 0x68180, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_bp={0x0, 0x1}, 0x10c0e8, 0x0, 0x0, 0x3, 0x6, 0x8001, 0x7fff}, 0x0, 0xff6fbfffffffffff, 0xffffffffffffffff, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000850}, 0x40)
setitimer(0x0, &(0x7f0000000040)={{0x6, 0x9}, {0x1ff, 0x32e3}}, 0x0)
alarm(0x38)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x300, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x5}, 0x0, 0xf0, 0x138, 0x700, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xfffd}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x360)
alarm(0x7)
setsockopt$inet6_tcp_int(r3, 0x6, 0x4, &(0x7f0000000080)=0x3e, 0x4)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet6_tcp_int(r3, 0x6, 0x4, 0x0, &(0x7f0000000100))

773.315106ms ago: executing program 4 (id=520):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000340)='./file2\x00', 0x0, &(0x7f0000000300)={[{@oldalloc}, {@quota}, {@quota}, {@stripe={'stripe', 0x3d, 0x3}}, {@jqfmt_vfsold}]}, 0xff, 0x4fa, &(0x7f0000001040)="$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")
r1 = creat(&(0x7f0000000e40)='./bus\x00', 0x19)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x40000008})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0xa0c42, 0x100)
fallocate(r1, 0x0, 0xbf5, 0x2000402)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x0, 0x22, 0x0, 0x6})

495.467305ms ago: executing program 4 (id=521):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000240)=ANY=[@ANYBLOB='umask=00000000000000000000007,usefree,uid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRESHEX=0xee00, @ANYBLOB=',dots,check=strict,nfs,nodots,dots,dots,nodots,nodots,nodots,debug,debug,nodots,nodots,dots,flush,dots,dots,dots,showexec,dots,nodots,check=relaxed,\x00'], 0x1, 0x1f5, &(0x7f0000000600)="$eJzs3cFqE1EUANCbmCYTcdGdIAgjLnRV1C+oSAUxIFSy0J2gK7NqN6mb9jP8Bf/LD5CuspEncSadmKYxBDKj7Tmb3pn7Xt+7M2SSTW5SFL7f/RpZ1or2fuzHpBW70Y6ZswAArpNJSvEjFZreCwBQjzXe/3/WvCUAYMvevnv/+vlgcHCY51nE+dl4OB4Wf4v8y1eDgyf5b7vVrPPxeHjrIv80X/zsMM3vxO0y/6yYn1+kuxEx7Mbjh0V+mnvxZpD/Ob8XH7dcOwAAAAAAAAAAAAAAAAAAAAAANOV+5DNL+/vs7S3m+2W+OJrrD7TQv6cT9zrlYdUeKJ3WURQAAAAAAAAAAAAAAAAAAAD8Z45Pvnz+MBp9OqqCXkTMn+ksGXN10Cr/8VqDmw/asdn0flnmBou2yku03QL7y2/uOkF0/pW7s2mQ17BWf+XlTWkaLH8VzNpiXDm9GxGrV390uOnmJyml0bcHR8cnkVYOrp4RvVqfSAAAAAAAAAAAAAAAAAAAcHPNfev7kqyJDQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAA6rf/58Gl8+sDE4j4k78dfBsrZ3IGq0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+tXAAAA//85ziI4")
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x0, 0xec2bd, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x7, 0x800000000100}, 0x2402, 0x0, 0x43a1bd78, 0x7, 0x9, 0x10006, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffc46f}, 0x0, 0x4000000000, 0xffffffffffffffff, 0xb) (async)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x0, 0xec2bd, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x7, 0x800000000100}, 0x2402, 0x0, 0x43a1bd78, 0x7, 0x9, 0x10006, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffc46f}, 0x0, 0x4000000000, 0xffffffffffffffff, 0xb)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0x3e57}]}, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_sfeatures={0x33}})
socket$inet_tcp(0x2, 0x1, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
ptrace$ARCH_GET_FS(0x1e, r3, &(0x7f0000000340), 0x1003) (async)
ptrace$ARCH_GET_FS(0x1e, r3, &(0x7f0000000340), 0x1003)
move_pages(r3, 0x7, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x4000)=nil, &(0x7f000052a000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00008ae000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000078000/0x1000)=nil, &(0x7f00001b6000/0x4000)=nil], &(0x7f0000000100)=[0x2], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], 0x0)
r6 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18) (async)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) (async)
connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
syz_open_procfs(r3, &(0x7f0000000380)='net/dev_mcast\x00')
dup(r6) (async)
r7 = dup(r6)
sendmsg$key(r7, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020625bd707f5c3d7200fceadf258dd35b678100000020020000000000000b0000000000003141ebaf0000000089"], 0x30}}, 0x24000040) (async)
sendmsg$key(r7, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020625bd707f5c3d7200fceadf258dd35b678100000020020000000000000b0000000000003141ebaf0000000089"], 0x30}}, 0x24000040)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

444.469436ms ago: executing program 2 (id=522):
r0 = socket$kcm(0x10, 0x2, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x7, 0x520, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x1224, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x8, 0x3, 0x510, 0x1e8, 0xffffffff, 0xffffffff, 0x1e8, 0xffffffff, 0x440, 0xffffffff, 0xffffffff, 0x440, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1e8, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x10, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x4, 0x7a3, 0x6, 'snmp_trap\x00', {0x369bc443}}}}, {{@ipv6={@remote, @local, [0xffffff00, 0xffffffff, 0x0, 0xffffff00], [0xffffffff, 0xffffff00, 0xffffffff, 0xff000000], 'netpci0\x00', 'bridge_slave_1\x00', {}, {0xff}, 0x2b, 0x2, 0x5, 0x5}, 0x0, 0x230, 0x258, 0x0, {}, [@common=@rt={{0x138}, {0x0, [0x6], 0xffff94a7, 0xd78a4f1d57488402, 0xa, [@dev={0xfe, 0x80, '\x00', 0x1f}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x30}}, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00', @empty, @private2={0xfc, 0x2, '\x00', 0x1}, @private0, @loopback, @private2, @mcast1, @local], 0x6}}, @common=@inet=@set3={{0x50}, {{0x4, 0x1, 0x2}, {0x9, 0xfffffffffffff000}, {0x7, 0x7fff}, 0x1ff}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0xffff, 0x400}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(0x0, r2)
socket$inet6_tcp(0xa, 0x1, 0x0)
io_uring_enter(0xffffffffffffffff, 0x6179, 0x4337, 0x2c, &(0x7f0000000380), 0x8)
syz_emit_ethernet(0x50, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd669dbd8d001a0600200100000000000000000000000000012001000000000000000000832e0000020000000000000000000000000000000000004e2200004e240000"], 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='ns\x00')
renameat2(r3, &(0x7f0000000300)='./cgroup\x00', r3, &(0x7f00000002c0)='./cgroup\x00', 0x5)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401f, 0xe8140, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_bp={0x0, 0x1}, 0x11c162, 0x0, 0x0, 0x3, 0x4, 0x8001, 0x7fff}, 0x0, 0xff6fbffffffffffd, 0xffffffffffffffff, 0x2)
ioctl$XFS_IOC_FD_TO_HANDLE(r0, 0xc038586a, &(0x7f0000000540)={<r4=>r3, &(0x7f00000003c0)='\x00', 0x200000, &(0x7f0000000400)={@_ha_fsid={[0xc0, 0x5]}, {0x1, 0xb27f, 0x80000001}}, 0x8001, &(0x7f00000004c0)={@_ha_fsid}, &(0x7f0000000500)=0x3})
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000580)=0x20e01, 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000850}, 0x40)
setitimer(0x0, &(0x7f0000000040)={{0x6, 0x9}, {0x1ff, 0x32e3}}, 0x0)
alarm(0x38)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x300, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x5}, 0x0, 0xf0, 0x138, 0x700, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xfffd}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x360)
setsockopt$inet6_tcp_int(r6, 0x6, 0x4, &(0x7f0000000080)=0x3e, 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
timer_create(0xfffffffffffffffd, 0x0, &(0x7f0000000380))

271.697362ms ago: executing program 0 (id=523):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, 0x0, &(0x7f0000000040))

173.984805ms ago: executing program 0 (id=524):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x20082)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000040)={{0x9, 0x9}, 'port0\x00', 0x1, 0x21, 0x5, 0x70ba, 0x5d2, 0x2, 0x60000000, 0x0, 0x4, 0x1}) (async)
r1 = open$dir(&(0x7f0000000100)='\x00', 0x0, 0xac)
fcntl$setpipe(r1, 0x407, 0x6) (async)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCGFLAGS(r2, 0x8004745a, &(0x7f0000000140)) (async)
r3 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x480a02, 0x16)
ioctl$SG_GET_SCSI_ID(r3, 0x2276, &(0x7f00000001c0)) (async)
r4 = socket$inet(0x2, 0x0, 0x1)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000200)={0x1, 0xf, 0x9}) (async)
r5 = syz_open_dev$sg(&(0x7f0000000240), 0x1, 0x820c0)
ioctl$SG_NEXT_CMD_LEN(r5, 0x2283, &(0x7f0000000280)=0xcc)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/disk', 0x129101, 0x10)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r6, 0x84, 0x20, &(0x7f0000000300)=0x5, 0x4)
perf_event_open(&(0x7f0000000340)={0x4, 0x80, 0xfa, 0x1c, 0x8, 0x60, 0x0, 0x6, 0x4, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x98d, 0x80}, 0x8c, 0x7, 0x9, 0x7, 0x4, 0x0, 0x1, 0x0, 0x3, 0x0, 0xad9}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0xb) (async)
fgetxattr(r4, &(0x7f00000003c0)=@random={'trusted.', '&\\\x00'}, &(0x7f0000000400)=""/4096, 0x1000) (async)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000001500)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000014c0)={&(0x7f0000001440)={0x5c, 0x1, 0x1, 0x401, 0x0, 0x0, {0x7, 0x0, 0x5}, [@CTA_TUPLE_MASTER={0x10, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_NAT_SRC={0x38, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) (async)
quotactl_fd$Q_GETFMT(r1, 0xffffffff80000400, 0xee01, &(0x7f0000001540))
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001580), r6) (async)
ioctl$BTRFS_IOC_SPACE_INFO(r6, 0xc0109414, &(0x7f00000015c0)={0x182, 0x6, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000003a40)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r6, &(0x7f0000003b40)={&(0x7f0000003a00)={0x10, 0x0, 0x0, 0x42008010}, 0xc, &(0x7f0000003b00)={&(0x7f0000003a80)={0x58, r7, 0xe10, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xfffffff5, 0x55}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "76e97dd33567766ad1b6248cf0bdf6e7"}, @NL80211_ATTR_SSID={0x14, 0x34, @random="9093314e2319af907254a8376ea5c169"}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x7b82}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x20004) (async)
getsockopt$SO_J1939_ERRQUEUE(r6, 0x6b, 0x4, &(0x7f0000003b80), &(0x7f0000003bc0)=0x4) (async)
r9 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$bt_hci(r9, 0x0, 0x1, &(0x7f0000003c00)=""/212, &(0x7f0000003d00)=0xd4) (async)
r10 = openat$cgroup_pressure(r6, &(0x7f0000003d40)='memory.pressure\x00', 0x2, 0x0)
ioctl$NILFS_IOCTL_GET_SUSTAT(r10, 0x80306e85, &(0x7f0000003d80))
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r6, 0xc08c5336, &(0x7f0000003dc0)={0x6, 0xa3, 0x1, 'queue1\x00', 0xc0})
r11 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
close(r11)

173.394615ms ago: executing program 3 (id=525):
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000540)='./file1\x00', 0x3010018, &(0x7f0000000080)={[{@grpjquota}]}, 0x5, 0x4d0, &(0x7f00000013c0)="$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")
r1 = openat(r0, &(0x7f0000000040)='./file1\x00', 0x8000, 0x138)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000580)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000570600000fff07006706000002000000270600000ee60000bf2500000000000073350000000000006507000002001000070700004c0000001f75000000000000bf54000000000000070400004400f9d0ad32010000000000950000000000000005000000000000009500000000000000debfa255e44e4cc39f211fb04d7f202e6a53bd86bde99b679b4e6d24b8125690361eec3b181dcfd7c2fb2d1f8975b579a085bee32d414c1f3ab987a9de6385ae8021f4ca33b9b35fe817e98beb9cefe7f40fd6f0ea3affbdaaa897c70fb02f3a52e96864de7e579d9323307585b00104dafbb0b6c34f450d7ef872b9e32d902021c6407852d9fe0da0b9e9df0147cd247132a8f8e4c780a5f3af834faa4170a216d3394e5a5c079278e4b974"], 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4000, 0xa4, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8923, &(0x7f0000000100)={'bond_slave_0\x00'})
bind$rds(r1, &(0x7f00000001c0)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
r2 = add_key$user(&(0x7f0000000ec0), &(0x7f0000000f00)={'syz', 0x1}, &(0x7f0000000300)="da0a9ce43d", 0x5, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000080)=@keyring={'key_or_keyring:', r2})
add_key$keyring(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000740)='encrypted\x00', &(0x7f0000000780)=@keyring)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x2, 0xb, &(0x7f0000000300)=@framed={{0x18, 0x2}, [@printk={@ld={0x18, 0x0}, {}, {0x5, 0x1, 0xb, 0x1, 0x2, 0xffff}, {}, {0x5, 0x0, 0xb, 0x2, 0x0, 0x2}, {}, {0x85, 0x0, 0x0, 0xa4}}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x94)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shmget(0x1, 0x1000, 0x200, &(0x7f0000001000/0x1000)=nil)
shmget(0x1, 0x4000, 0x200, &(0x7f0000001000/0x4000)=nil)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000c0000004300000040000000c0000000", @ANYRES32=0x1, @ANYBLOB="00000000f7ffff0c00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x10f0, r3}, 0x38)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x2, 0x0, 0x4}}, 0x2e)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r6, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e21, @loopback}, 0x2, 0x4}}, 0x26)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x488, 0x0, 0xffffffff, 0xffffffff, 0x1c8, 0xffffffff, 0x3b8, 0xffffffff, 0xffffffff, 0x3b8, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c8, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x9, 0xffff0000, 0xc11270e446e71eb1, 0x0, 'syz1\x00'}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x1a, 0x1, 0x5}}}, {{@ipv6={@remote, @private2, [0xffffff00, 0xffffffff, 0x0, 0xffffff00], [0xffffffff, 0xffffff00, 0xffffffff, 0xff000000], 'netpci0\x00', 'bridge_slave_1\x00', {}, {0xff}, 0x2b, 0x2, 0x5, 0x5}, 0x0, 0x1d0, 0x1f0, 0x0, {}, [@common=@srh={{0x30}, {0x0, 0xb7, 0x4, 0xe8, 0x6, 0x1268, 0xb2a}}, @common=@inet=@recent0={{0xf8}, {0xfffffffe, 0x6, 0x4, 0x0, 'syz0\x00'}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8)
getsockopt$IP_VS_SO_GET_TIMEOUT(r5, 0x0, 0x486, &(0x7f0000000500), &(0x7f0000000700)=0xc)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000640), 0x16c5, r3}, 0x38)
copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xf000, 0x863, 0x0)

0s ago: executing program 0 (id=526):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
timer_create(0x0, &(0x7f0000001040)={0x0, 0x21, 0x2}, &(0x7f0000001080))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
fsetxattr$security_selinux(r0, &(0x7f0000000ec0), &(0x7f0000000f00)='system_u:object_r:devicekit_var_lib_t:s0\x00', 0x29, 0x3)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$l2tp6(r1, &(0x7f0000000000)=""/11, 0xb, 0x40000000, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   41.283794][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.484692][ T3613] ip6t_srh: unknown srh invflags 4000
[   41.497002][   T28] audit: type=1400 audit(1779617792.434:223): avc:  denied  { bind } for  pid=3607 comm="syz.4.29" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   41.497083][   T28] audit: type=1400 audit(1779617792.444:224): avc:  denied  { setopt } for  pid=3607 comm="syz.4.29" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   41.741343][ T3614] loop2: detected capacity change from 0 to 512
[   41.781225][ T3619] __nla_validate_parse: 4 callbacks suppressed
[   41.781251][ T3619] netlink: 12 bytes leftover after parsing attributes in process `syz.0.31'.
[   41.839122][ T3619] netlink: 59 bytes leftover after parsing attributes in process `syz.0.31'.
[   41.881540][ T3620] loop0: detected capacity change from 0 to 512
[   41.935733][   T28] audit: type=1326 audit(1779617792.884:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3625 comm="syz.3.33" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48232bce59 code=0x0
[   42.148502][ T3620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.185618][ T3620] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.207858][ T3619] netlink: 104 bytes leftover after parsing attributes in process `syz.0.31'.
[   42.452804][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.508493][ T3623] netlink: 32 bytes leftover after parsing attributes in process `syz.4.32'.
[   42.759327][   T28] audit: type=1400 audit(1779617793.704:226): avc:  denied  { name_connect } for  pid=3634 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   42.781862][ T3635] loop1: detected capacity change from 0 to 2048
[   42.803279][   T28] audit: type=1400 audit(1779617793.704:227): avc:  denied  { listen } for  pid=3634 comm="syz.1.35" lport=44281 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   42.826190][   T28] audit: type=1400 audit(1779617793.704:228): avc:  denied  { accept } for  pid=3634 comm="syz.1.35" lport=44281 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   42.886869][ T3635]  loop1: p2 p3 < > p4 < p5 >
[   42.900535][ T3635] loop1: partition table partially beyond EOD, truncated
[   42.926958][ T3637] loop4: detected capacity change from 0 to 512
[   42.937348][ T3635] loop1: p3 start 4284289 is beyond EOD, truncated
[   42.985081][   T28] audit: type=1400 audit(1779617793.924:229): avc:  denied  { create } for  pid=3634 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   43.026507][ T3648] loop3: detected capacity change from 0 to 512
[   43.047242][ T3648] EXT4-fs: Ignoring removed mblk_io_submit option
[   43.062303][   T28] audit: type=1400 audit(1779617793.974:230): avc:  denied  { setopt } for  pid=3634 comm="syz.1.35" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   43.129340][ T3648] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   43.152760][ T3648] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   43.179654][ T3648] EXT4-fs (loop3): orphan cleanup on readonly fs
[   43.245723][ T3648] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.38: Invalid block bitmap block 0 in block_group 0
[   43.295328][ T3648] loop3: lost filesystem error report for type 5 error -117
[   43.295830][ T3648] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.38: Invalid block bitmap block 0 in block_group 0
[   43.303274][    C1] EXT4-fs (loop3): error count since last fsck: 1
[   43.303287][    C1] EXT4-fs (loop3): last error at time 1779617794: ext4_read_block_bitmap_nowait:483
[   43.592337][ T3648] loop3: lost filesystem error report for type 5 error -117
[   43.592604][ T3648] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.38: Invalid block bitmap block 0 in block_group 0
[   44.000306][ T3641] netlink: 32 bytes leftover after parsing attributes in process `syz.2.37'.
[   44.028206][ T3648] loop3: lost filesystem error report for type 5 error -117
[   44.028458][ T3648] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.38: Failed to acquire dquot type 1
[   44.047063][   T23] IPVS: starting estimator thread 0...
[   44.066478][ T3655] netlink: 32 bytes leftover after parsing attributes in process `syz.0.39'.
[   44.093527][ T3648] loop3: lost filesystem error report for type 5 error -28
[   44.093844][ T3648] EXT4-fs (loop3): 1 orphan inode deleted
[   44.110125][  T227] EXT4-fs error (device loop3): ext4_release_dquot:7070: comm kworker/u8:6: Failed to release dquot type 1
[   44.139568][ T3650] IPVS: using max 2400 ests per chain, 120000 per kthread
[   44.149697][  T227] loop3: lost filesystem error report for type 5 error -117
[   44.152178][ T3648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.938532][ T3673] EXT4-fs error (device loop3): ext4_lookup:1789: inode #2: comm syz.3.38: deleted inode referenced: 12
[   44.970384][ T3674] loop0: detected capacity change from 0 to 512
[   45.029066][ T3674] EXT4-fs: Ignoring removed mblk_io_submit option
[   45.218481][ T3674] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   45.232868][ T3674] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   45.241311][ T3674] EXT4-fs (loop0): orphan cleanup on readonly fs
[   45.248104][ T3674] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.43: Invalid block bitmap block 0 in block_group 0
[   45.262591][ T3674] loop0: lost filesystem error report for type 5 error -117
[   45.263023][ T3674] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.43: Invalid block bitmap block 0 in block_group 0
[   45.270448][    C1] EXT4-fs (loop0): error count since last fsck: 1
[   45.270471][    C1] EXT4-fs (loop0): last error at time 1779617796: ext4_read_block_bitmap_nowait:483
[   45.304090][ T3674] loop0: lost filesystem error report for type 5 error -117
[   45.304411][ T3674] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.43: Invalid block bitmap block 0 in block_group 0
[   45.325273][ T3674] loop0: lost filesystem error report for type 5 error -117
[   45.329879][ T3674] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.43: Failed to acquire dquot type 1
[   45.385072][ T3674] loop0: lost filesystem error report for type 5 error -28
[   45.408057][ T3674] EXT4-fs (loop0): 1 orphan inode deleted
[   45.421212][   T36] EXT4-fs error (device loop0): ext4_release_dquot:7070: comm kworker/u8:2: Failed to release dquot type 1
[   45.519433][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.542019][   T36] loop0: lost filesystem error report for type 5 error -117
[   45.548206][ T3674] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   45.807762][ T3697] EXT4-fs error (device loop0): ext4_lookup:1789: inode #2: comm syz.0.43: deleted inode referenced: 12
[   45.835571][ T3689] loop3: detected capacity change from 0 to 512
[   45.890972][ T3677] netlink: 32 bytes leftover after parsing attributes in process `syz.1.44'.
[   45.968175][ T3686] netlink: 32 bytes leftover after parsing attributes in process `syz.2.48'.
[   45.987811][ T3696] loop4: detected capacity change from 0 to 512
[   46.067009][ T3696] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   46.080652][ T3696] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.183480][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.197046][ T3696] EXT4-fs (loop4): 1 truncate cleaned up
[   46.308122][ T3696] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.334753][   T28] kauditd_printk_skb: 80 callbacks suppressed
[   46.334770][   T28] audit: type=1400 audit(1779617797.284:305): avc:  denied  { write } for  pid=3702 comm="syz.1.51" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   46.394235][ T3705] capability: warning: `syz.0.50' uses 32-bit capabilities (legacy support in use)
[   46.411285][   T28] audit: type=1400 audit(1779617797.324:306): avc:  denied  { bind } for  pid=3704 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   46.447678][ T3706] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   46.454381][   T28] audit: type=1400 audit(1779617797.324:307): avc:  denied  { create } for  pid=3704 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   46.505947][   T28] audit: type=1400 audit(1779617797.324:308): avc:  denied  { connect } for  pid=3704 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   46.563365][   T28] audit: type=1326 audit(1779617797.394:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3707 comm="syz.1.52" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e5288ce59 code=0x0
[   46.628611][   T28] audit: type=1400 audit(1779617797.444:310): avc:  denied  { relabelto } for  pid=3704 comm="syz.0.50" name="8" dev="tmpfs" ino=59 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:hwdata_t:s0"
[   46.677540][   T28] audit: type=1400 audit(1779617797.444:311): avc:  denied  { associate } for  pid=3704 comm="syz.0.50" name="8" dev="tmpfs" ino=59 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:hwdata_t:s0"
[   46.737828][   T28] audit: type=1400 audit(1779617797.484:312): avc:  denied  { write } for  pid=3704 comm="syz.0.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   46.815340][   T28] audit: type=1400 audit(1779617797.624:313): avc:  denied  { ioctl } for  pid=3711 comm="syz.2.53" path="socket:[5406]" dev="sockfs" ino=5406 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   46.918976][   T28] audit: type=1400 audit(1779617797.634:314): avc:  denied  { create } for  pid=3711 comm="syz.2.53" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   46.945616][ T3719] loop2: detected capacity change from 0 to 512
[   47.018071][ T3719] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   47.070529][ T3712] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[   47.077273][ T3712] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   47.197393][ T3712] vhci_hcd vhci_hcd.0: Device attached
[   47.277755][ T3719] EXT4-fs (loop2): 1 orphan inode deleted
[   47.283939][ T3724] netlink: 4 bytes leftover after parsing attributes in process `syz.0.56'.
[   47.301008][ T3719] EXT4-fs (loop2): 1 truncate cleaned up
[   47.307828][ T3719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.346079][ T3717] vhci_hcd: connection closed
[   47.349523][   T83] vhci_hcd vhci_hcd.2: stop threads
[   47.376257][   T83] vhci_hcd vhci_hcd.2: release socket
[   47.479685][   T83] vhci_hcd vhci_hcd.2: disconnect device
[   47.529611][   T10] usb 6-1: enqueue for inactive port 0
[   47.605035][ T3729] loop3: detected capacity change from 0 to 8192
[   47.650158][ T3729]  loop3: p2 p3 p4 < >
[   47.654484][ T3729] loop3: p2 size 591360 extends beyond EOD, truncated
[   47.662790][ T3729] loop3: p3 start 9830145 is beyond EOD, truncated
[   47.741455][   T10] usb 6-1: enqueue for inactive port 0
[   47.748172][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   47.758718][ T3646] udevd[3646]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   47.840664][ T3736] loop0: detected capacity change from 0 to 512
[   47.892815][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.903961][ T3736] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   47.943076][ T3743] netlink: 'syz.3.64': attribute type 1 has an invalid length.
[   47.969086][ T3743] 8021q: VLANs not supported on xfrm0
[   47.990271][ T3743] netlink: 8 bytes leftover after parsing attributes in process `syz.3.64'.
[   47.997305][ T3748] loop2: detected capacity change from 0 to 512
[   48.016923][ T3736] EXT4-fs (loop0): 1 truncate cleaned up
[   48.053783][ T3748] EXT4-fs: Ignoring removed mblk_io_submit option
[   48.095600][ T3748] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   48.139279][ T3748] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   48.154603][ T3736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.271308][ T3748] EXT4-fs (loop2): orphan cleanup on readonly fs
[   48.278134][ T3748] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.63: Invalid block bitmap block 0 in block_group 0
[   48.291777][ T3748] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.63: Invalid block bitmap block 0 in block_group 0
[   48.305017][    C0] EXT4-fs (loop2): error count since last fsck: 1
[   48.305035][    C0] EXT4-fs (loop2): last error at time 1779617799: ext4_read_block_bitmap_nowait:483
[   48.346814][ T3748] fserror_report: 1 callbacks suppressed
[   48.346830][ T3748] loop2: lost filesystem error report for type 5 error -117
[   48.355248][ T3748] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.63: Invalid block bitmap block 0 in block_group 0
[   48.455890][ T3748] loop2: lost filesystem error report for type 5 error -117
[   48.456597][ T3748] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.63: Failed to acquire dquot type 1
[   48.511281][ T3748] loop2: lost filesystem error report for type 5 error -28
[   48.513178][ T3748] EXT4-fs (loop2): 1 orphan inode deleted
[   48.529618][   T12] EXT4-fs error (device loop2): ext4_release_dquot:7070: comm kworker/u8:0: Failed to release dquot type 1
[   48.607551][   T12] loop2: lost filesystem error report for type 5 error -117
[   48.631269][ T3748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   48.900116][   T10] usb usb6-port1: attempt power cycle
[   49.026727][ T3745] netlink: 32 bytes leftover after parsing attributes in process `syz.1.65'.
[   49.090532][ T3759] EXT4-fs error (device loop2): ext4_lookup:1789: inode #2: comm syz.2.63: deleted inode referenced: 12
[   49.131354][ T3761] tmpfs: Bad value for 'mpol'
[   49.149575][ T3761] xt_hashlimit: max too large, truncated to 1048576
[   49.170934][ T3761] ipt_REJECT: TCP_RESET invalid for non-tcp
[   49.351913][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.374664][ T3768] netlink: 12 bytes leftover after parsing attributes in process `syz.1.69'.
[   49.416726][ T3768] netlink: 59 bytes leftover after parsing attributes in process `syz.1.69'.
[   49.449984][ T3771] loop1: detected capacity change from 0 to 512
[   49.499591][ T3771] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.532568][ T3775] SELinux:  Context system_u:object_r:devicekit_var_lib_t:s0 is not valid (left unmapped).
[   49.549718][ T3771] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.610714][ T3768] netlink: 104 bytes leftover after parsing attributes in process `syz.1.69'.
[   49.727208][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.864025][ T3793] netlink: 12 bytes leftover after parsing attributes in process `syz.1.77'.
[   50.899528][ T3793] netlink: 59 bytes leftover after parsing attributes in process `syz.1.77'.
[   50.929248][ T3790] loop3: detected capacity change from 0 to 2048
[   50.964205][ T3794] loop2: detected capacity change from 0 to 512
[   50.985119][ T3790]  loop3: p1 p2 p3
[   51.000756][ T3790] loop3: p2 size 458752 extends beyond EOD, truncated
[   51.017404][ T3794] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   51.031321][ T3790] loop3: p3 start 65280 is beyond EOD, truncated
[   51.142670][ T3794] EXT4-fs (loop2): 1 truncate cleaned up
[   51.173540][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.201464][ T3799] loop1: detected capacity change from 0 to 512
[   51.217750][ T3794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.236402][   T10] usb usb6-port1: unable to enumerate USB device
[   51.254791][ T3799] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   51.378036][ T3807] netlink: 12 bytes leftover after parsing attributes in process `syz.3.82'.
[   51.401517][ T3807] netlink: 59 bytes leftover after parsing attributes in process `syz.3.82'.
[   51.471541][   T28] kauditd_printk_skb: 26 callbacks suppressed
[   51.471558][   T28] audit: type=1400 audit(1779617802.424:338): avc:  denied  { mount } for  pid=3808 comm="syz.1.83" name="/" dev="ramfs" ino=6550 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   51.543645][   T28] audit: type=1400 audit(1779617802.464:339): avc:  denied  { watch watch_reads } for  pid=3808 comm="syz.1.83" path="/" dev="ramfs" ino=6550 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[   51.601446][   T28] audit: type=1400 audit(1779617802.464:340): avc:  denied  { read } for  pid=3808 comm="syz.1.83" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   51.680441][   T28] audit: type=1400 audit(1779617802.464:341): avc:  denied  { open } for  pid=3808 comm="syz.1.83" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   51.823972][   T28] audit: type=1400 audit(1779617802.474:342): avc:  denied  { wake_alarm } for  pid=3808 comm="syz.1.83" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   51.909586][   T28] audit: type=1400 audit(1779617802.854:343): avc:  denied  { setopt } for  pid=3818 comm="syz.4.87" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   51.934325][ T3820] xt_hashlimit: size too large, truncated to 1048576
[   51.969157][   T28] audit: type=1326 audit(1779617802.884:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3819 comm="syz.3.86" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48232bce59 code=0x0
[   52.128480][ T3826] loop1: detected capacity change from 0 to 512
[   52.363595][ T3826] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   52.719512][ T3826] EXT4-fs (loop1): 1 truncate cleaned up
[   52.886312][ T3826] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.279955][   T28] audit: type=1400 audit(1779617804.196:345): avc:  denied  { write } for  pid=3836 comm="syz.3.91" name="protocols" dev="proc" ino=4026532441 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   53.339374][   T28] audit: type=1326 audit(1779617804.216:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3836 comm="syz.3.91" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f48232bce59 code=0x7ffb0000
[   53.802274][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.891846][ T3873] loop0: detected capacity change from 0 to 512
[   53.928950][ T3873] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   54.171069][ T3924] __nla_validate_parse: 2 callbacks suppressed
[   54.171111][ T3924] netlink: 12 bytes leftover after parsing attributes in process `syz.4.94'.
[   54.220096][ T3924] netlink: 59 bytes leftover after parsing attributes in process `syz.4.94'.
[   54.224745][ T3927] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   54.235478][ T3927] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   54.270766][ T3930] loop4: detected capacity change from 0 to 512
[   54.281912][   T28] audit: type=1400 audit(1779617805.167:347): avc:  denied  { setopt } for  pid=3926 comm="syz.0.95" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   54.301644][ T3927] vhci_hcd vhci_hcd.0: Device attached
[   54.332264][ T3928] vhci_hcd: connection closed
[   54.336796][ T3916] vhci_hcd vhci_hcd.0: stop threads
[   54.353361][ T3930] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.374034][ T3916] vhci_hcd vhci_hcd.0: release socket
[   54.389599][ T3916] vhci_hcd vhci_hcd.0: disconnect device
[   54.399960][ T3930] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.442547][ T3924] netlink: 104 bytes leftover after parsing attributes in process `syz.4.94'.
[   54.515725][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.601536][ T3935] netlink: 12 bytes leftover after parsing attributes in process `syz.4.96'.
[   54.626264][ T3935] netlink: 59 bytes leftover after parsing attributes in process `syz.4.96'.
[   54.686867][ T3935] loop4: detected capacity change from 0 to 512
[   54.737065][ T3935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.760851][ T3935] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.811911][ T3935] netlink: 104 bytes leftover after parsing attributes in process `syz.4.96'.
[   54.906204][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.918699][ T3939] FAULT_INJECTION: forcing a failure.
[   54.918699][ T3939] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   54.955129][ T3939] CPU: 1 UID: 0 PID: 3939 Comm: syz.0.97 Not tainted syzkaller #0 PREEMPT(full) 
[   54.955161][ T3939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   54.955176][ T3939] Call Trace:
[   54.955188][ T3939]  <TASK>
[   54.955195][ T3939]  __dump_stack+0x1d/0x30
[   54.955248][ T3939]  dump_stack_lvl+0x95/0xd0
[   54.955317][ T3939]  dump_stack+0x15/0x1b
[   54.955335][ T3939]  should_fail_ex+0x263/0x280
[   54.955369][ T3939]  should_fail+0xb/0x20
[   54.955401][ T3939]  should_fail_usercopy+0x1a/0x20
[   54.955570][ T3939]  _copy_to_user+0x20/0xa0
[   54.955601][ T3939]  simple_read_from_buffer+0xb5/0x130
[   54.955724][ T3939]  proc_fail_nth_read+0x10e/0x150
[   54.955753][ T3939]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   54.955783][ T3939]  vfs_read+0x1ab/0x7f0
[   54.955887][ T3939]  ? __rcu_read_unlock+0x4e/0x70
[   54.955906][ T3939]  ? __fget_files+0x184/0x1c0
[   54.955931][ T3939]  ? mutex_lock+0x57/0x90
[   54.956004][ T3939]  ksys_read+0xdc/0x1a0
[   54.956132][ T3939]  __x64_sys_read+0x40/0x50
[   54.956202][ T3939]  x64_sys_call+0x2886/0x3020
[   54.956231][ T3939]  do_syscall_64+0x12c/0x3b0
[   54.956269][ T3939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.956296][ T3939] RIP: 0033:0x7eff5083d68e
[   54.956352][ T3939] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   54.956373][ T3939] RSP: 002b:00007eff4f2d6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.956395][ T3939] RAX: ffffffffffffffda RBX: 00007eff4f2d76c0 RCX: 00007eff5083d68e
[   54.956408][ T3939] RDX: 000000000000000f RSI: 00007eff4f2d70a0 RDI: 0000000000000004
[   54.956550][ T3939] RBP: 00007eff4f2d7090 R08: 0000000000000000 R09: 0000000000000000
[   54.956565][ T3939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.956579][ T3939] R13: 00007eff50af6038 R14: 00007eff50af5fa0 R15: 00007ffc80ec30e8
[   54.956598][ T3939]  </TASK>
[   55.368958][ T3945] loop4: detected capacity change from 0 to 512
[   55.406868][ T3945] EXT4-fs (loop4): fragment/cluster size (4096) != block size (1024)
[   55.440156][ T3945] x_tables: ip_tables: policy.0 match: invalid size 312 (kernel) != (user) 320
[   55.473114][ T3945] loop4: detected capacity change from 0 to 512
[   55.504266][ T3945] EXT4-fs: Ignoring removed nobh option
[   55.532353][ T3945] EXT4-fs error (device loop4): ext4_acquire_dquot:7034: comm syz.4.98: Failed to acquire dquot type 0
[   55.549981][ T3945] loop4: lost filesystem error report for type 5 error -5
[   55.551082][ T3945] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #16: comm syz.4.98: corrupted inode contents
[   55.561588][ T3953] FAULT_INJECTION: forcing a failure.
[   55.561588][ T3953] name failslab, interval 1, probability 0, space 0, times 1
[   55.570002][    C1] EXT4-fs (loop4): error count since last fsck: 1
[   55.588965][    C1] EXT4-fs (loop4): initial error at time 1779617806: ext4_acquire_dquot:7034
[   55.597795][    C1] EXT4-fs (loop4): last error at time 1779617806: ext4_acquire_dquot:7034
[   55.606891][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   55.606968][ T3953] CPU: 1 UID: 0 PID: 3953 Comm: syz.0.103 Not tainted syzkaller #0 PREEMPT(full) 
[   55.607000][ T3953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   55.607016][ T3953] Call Trace:
[   55.607056][ T3953]  <TASK>
[   55.607063][ T3953]  __dump_stack+0x1d/0x30
[   55.607088][ T3953]  dump_stack_lvl+0x95/0xd0
[   55.607221][ T3953]  dump_stack+0x15/0x1b
[   55.607285][ T3953]  should_fail_ex+0x263/0x280
[   55.607321][ T3953]  ? tcp_sendmsg_fastopen+0x172/0x520
[   55.607349][ T3953]  should_failslab+0x8c/0xb0
[   55.607380][ T3953]  __kmalloc_cache_noprof+0x5f/0x400
[   55.607447][ T3953]  tcp_sendmsg_fastopen+0x172/0x520
[   55.607474][ T3953]  tcp_sendmsg_locked+0x2819/0x2cc0
[   55.607539][ T3953]  ? tcp_sendmsg_locked+0x251/0x2cc0
[   55.607564][ T3953]  ? __schedule+0x9b1/0xd40
[   55.607587][ T3953]  ? preempt_schedule_irq+0x2d/0x50
[   55.607608][ T3953]  ? raw_irqentry_exit_cond_resched+0x4b/0x60
[   55.607630][ T3953]  ? irqentry_exit_to_kernel_mode_preempt+0x2b/0x40
[   55.607723][ T3953]  ? irqentry_exit+0x7d/0x5d0
[   55.607747][ T3953]  ? avc_has_perm_noaudit+0xab/0x130
[   55.607851][ T3953]  ? sysvec_apic_timer_interrupt+0x44/0x80
[   55.607880][ T3953]  ? __pfx_tcp_sendmsg+0x10/0x10
[   55.607902][ T3953]  tcp_sendmsg+0x2f/0x50
[   55.607924][ T3953]  inet_sendmsg+0x76/0xd0
[   55.608006][ T3953]  smc_sendmsg+0x1c5/0x2f0
[   55.608105][ T3953]  ? __pfx_smc_sendmsg+0x10/0x10
[   55.608143][ T3953]  __sys_sendto+0x42e/0x490
[   55.608175][ T3953]  __x64_sys_sendto+0x76/0x90
[   55.608203][ T3953]  x64_sys_call+0x2d35/0x3020
[   55.608231][ T3953]  do_syscall_64+0x12c/0x3b0
[   55.608334][ T3953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.608354][ T3953] RIP: 0033:0x7eff5087ce59
[   55.608369][ T3953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   55.608386][ T3953] RSP: 002b:00007eff4f2d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   55.608409][ T3953] RAX: ffffffffffffffda RBX: 00007eff50af5fa0 RCX: 00007eff5087ce59
[   55.608465][ T3953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   55.608479][ T3953] RBP: 00007eff4f2d7090 R08: 0000200000e68000 R09: 0000000000000010
[   55.608492][ T3953] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001
[   55.608540][ T3953] R13: 00007eff50af6038 R14: 00007eff50af5fa0 R15: 00007ffc80ec30e8
[   55.608560][ T3953]  </TASK>
[   55.608590][ T3945] EXT4-fs error (device loop4): ext4_dirty_inode:6587: inode #16: comm syz.4.98: mark_inode_dirty error
[   55.872121][ T3955] Unsupported ieee802154 address type: 0
[   55.888391][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   55.888587][ T3945] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #16: comm syz.4.98: corrupted inode contents
[   55.921282][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   55.996099][ T3945] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #16: comm syz.4.98: mark_inode_dirty error
[   56.030537][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   56.032344][ T3945] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #16: comm syz.4.98: corrupted inode contents
[   56.090965][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   56.091181][ T3945] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[   56.177163][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.188104][ T3945] loop4: lost filesystem error report for type 5 error -117
[   56.189495][ T3945] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #16: comm syz.4.98: corrupted inode contents
[   56.246416][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   56.246999][ T3945] EXT4-fs error (device loop4): ext4_truncate:4690: inode #16: comm syz.4.98: mark_inode_dirty error
[   56.374573][ T3945] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[   56.375890][ T3945] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[   56.485612][ T3945] loop4: lost filesystem error report for type 5 error -117
[   56.488414][ T3945] EXT4-fs (loop4): 1 truncate cleaned up
[   56.570188][ T3945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.645777][ T3945] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.983683][ T3961] loop3: detected capacity change from 0 to 256
[   57.001171][ T3945] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.008904][ T3945] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.142775][ T3945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.176484][ T3945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.276682][ T3916] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.288032][ T3916] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.345765][ T3916] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.354775][ T3916] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   59.405143][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.518571][ T3986] loop3: detected capacity change from 0 to 8192
[   59.542290][   T28] kauditd_printk_skb: 6 callbacks suppressed
[   59.542312][   T28] audit: type=1326 audit(1779617810.253:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeeb63ce59 code=0x7ffc0000
[   59.618212][ T3991] loop2: detected capacity change from 0 to 1024
[   59.651409][ T3991] EXT4-fs: Ignoring removed bh option
[   59.661523][ T3986]  loop3: p2 p3 p4 < >
[   59.666564][   T28] audit: type=1326 audit(1779617810.253:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeeb63ce59 code=0x7ffc0000
[   59.677491][ T3986] loop3: p2 size 591360 extends beyond EOD, 
[   59.698011][   T28] audit: type=1326 audit(1779617810.253:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeeb63ce59 code=0x7ffc0000
[   59.731089][   T28] audit: type=1326 audit(1779617810.253:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faeeb63ce59 code=0x7ffc0000
[   59.747911][ T3990] loop4: detected capacity change from 0 to 512
[   59.758713][ T3986] truncated
[   59.769767][ T3994] loop0: detected capacity change from 0 to 512
[   59.776387][ T3986] loop3: p3 start 9830145 is beyond EOD, truncated
[   59.786794][   T28] audit: type=1326 audit(1779617810.263:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7faeeb63ce59 code=0x7ffc0000
[   59.817919][ T3991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.848169][   T28] audit: type=1326 audit(1779617810.263:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7faeeb63cbc2 code=0x7ffc0000
[   59.854738][ T2981]  loop3: p2 p3 p4 < >
[   59.883850][   T28] audit: type=1326 audit(1779617810.312:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7faeeb5fd68e code=0x7ffc0000
[   59.891394][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.910121][   T28] audit: type=1400 audit(1779617810.331:359): avc:  denied  { ioctl } for  pid=3992 comm="syz.0.118" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   59.943479][   T28] audit: type=1400 audit(1779617810.331:360): avc:  denied  { create } for  pid=3992 comm="syz.0.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   59.963145][ T2981] loop3: p2 size 591360 extends beyond EOD, truncated
[   59.970683][   T28] audit: type=1326 audit(1779617810.361:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3987 comm="syz.2.115" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7faeeb63cc87 code=0x7ffc0000
[   59.996065][ T2981] loop3: p3 start 9830145 is beyond EOD, truncated
[   60.067543][ T4002] loop1: detected capacity change from 0 to 512
[   60.091490][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   60.101597][ T3646] udevd[3646]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   60.124867][ T4002] EXT4-fs: Ignoring removed oldalloc option
[   60.149712][ T3646] udevd[3646]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   60.161167][ T3994] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.166207][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   60.188266][ T4002] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   60.206075][ T3994] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.237046][ T4002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.255418][ T3993] ieee802154 phy0 wpan0: encryption failed: -22
[   60.256581][ T4002] ext4 filesystem being mounted at /25/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.284477][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.307304][ T3916] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   60.370693][ T3916] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 2 with error 28
[   60.383461][ T3916] EXT4-fs (loop0): This should not happen!! Data will be lost
[   60.383461][ T3916] 
[   60.393451][ T3916] EXT4-fs (loop0): Total free blocks count 0
[   60.399524][ T3916] EXT4-fs (loop0): Free/Dirty block details
[   60.405438][ T3916] EXT4-fs (loop0): free_blocks=65280
[   60.410883][ T3916] EXT4-fs (loop0): dirty_blocks=2
[   60.416105][ T3916] EXT4-fs (loop0): Block reservation details
[   60.424746][ T3916] EXT4-fs (loop0): i_reserved_data_blocks=2
[   60.454134][ T3302] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[   60.481656][ T4023] netlink: 56 bytes leftover after parsing attributes in process `syz.2.121'.
[   60.494487][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.535651][ T4028] netlink: 12 bytes leftover after parsing attributes in process `syz.3.125'.
[   60.553470][ T4028] netlink: 59 bytes leftover after parsing attributes in process `syz.3.125'.
[   60.571196][ T4030] ieee802154 phy0 wpan0: encryption failed: -22
[   60.588956][ T4033] loop4: detected capacity change from 0 to 128
[   60.629702][ T4028] loop3: detected capacity change from 0 to 512
[   60.714398][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.757541][ T4028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.798796][ T4033] tipc: Started in network mode
[   60.866520][ T4033] tipc: Node identity ac1414aa, cluster identity 4711
[   60.894861][ T4028] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.950637][ T4042] loop1: detected capacity change from 0 to 1024
[   60.960152][ T4033] tipc: Enabled bearer <udp:syz2>, priority 10
[   61.039852][ T4042] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   61.097446][ T4028] netlink: 104 bytes leftover after parsing attributes in process `syz.3.125'.
[   61.188863][ T4042] EXT4-fs error (device loop1): ext4_map_blocks:833: inode #3: block 1: comm syz.1.128: lblock 1 mapped to illegal pblock 1 (length 1)
[   61.237282][ T4050] netlink: 'syz.0.130': attribute type 1 has an invalid length.
[   61.266160][ T4042] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[   61.266693][ T4042] EXT4-fs error (device loop1): ext4_acquire_dquot:7034: comm syz.1.128: Failed to acquire dquot type 0
[   61.276051][    C1] EXT4-fs (loop1): error count since last fsck: 1
[   61.276072][    C1] EXT4-fs (loop1): initial error at time 1779617811: ext4_map_blocks:833: inode 3: block 1
[   61.276105][    C1] EXT4-fs (loop1): last error at time 1779617811: ext4_map_blocks:833: inode 3: block 1
[   61.319203][ T4042] loop1: lost filesystem error report for type 5 error -117
[   61.319425][ T4042] EXT4-fs error (device loop1): ext4_free_blocks:6718: comm syz.1.128: Freeing blocks not in datazone - block = 0, count = 4096
[   61.340578][ T4042] loop1: lost filesystem error report for type 5 error -117
[   61.340784][ T4042] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.128: Invalid inode bitmap blk 0 in block_group 0
[   61.362044][   T36] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   61.376350][ T4042] loop1: lost filesystem error report for type 5 error -117
[   61.376425][   T36] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[   61.390019][ T4042] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   61.399241][   T36] EXT4-fs error (device loop1): ext4_release_dquot:7070: comm kworker/u8:2: Failed to release dquot type 0
[   61.399280][   T36] loop1: lost filesystem error report for type 5 error -117
[   61.409805][ T4042] loop1: lost filesystem error report for type 5 error -117
[   61.420724][ T4046] tipc: Enabled bearer <eth:veth0_macvtap>, priority 0
[   61.428767][ T4042] EXT4-fs (loop1): 1 orphan inode deleted
[   61.453446][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.463523][ T4042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.484337][ T4050] 8021q: adding VLAN 0 to HW filter on device bond1
[   61.502395][ T4053] vlan2: entered allmulticast mode
[   61.507592][ T4053] bond1: entered allmulticast mode
[   61.522366][ T4042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=25643 sclass=netlink_route_socket pid=4042 comm=syz.1.128
[   61.557141][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.663578][ T4064] loop3: detected capacity change from 0 to 512
[   61.874089][   T10] IPVS: starting estimator thread 0...
[   61.967603][ T4075] IPVS: using max 2640 ests per chain, 132000 per kthread
[   61.996098][ T4079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.137'.
[   62.043094][ T4085] syzkaller0: entered promiscuous mode
[   62.048672][ T4085] syzkaller0: entered allmulticast mode
[   62.069029][ T4086] netlink: 12 bytes leftover after parsing attributes in process `syz.2.137'.
[   62.445764][   T35] tipc: Node number set to 2886997162
[   62.524877][ T4092] loop0: detected capacity change from 0 to 1024
[   62.532137][ T4092] EXT4-fs: Ignoring removed bh option
[   62.556012][ T3911] Bluetooth: hci0: Frame reassembly failed (-84)
[   62.563907][ T4092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.586700][ T4099] Bluetooth: hci0: Received unexpected HCI Event 0x00
[   62.683054][ T4105] netlink: 12 bytes leftover after parsing attributes in process `syz.3.145'.
[   62.703953][ T4105] netlink: 59 bytes leftover after parsing attributes in process `syz.3.145'.
[   62.823101][ T4108] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.835850][ T4108] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.859240][ T4105] netlink: 104 bytes leftover after parsing attributes in process `syz.3.145'.
[   63.853730][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.968393][ T4121] netlink: 24 bytes leftover after parsing attributes in process `syz.3.148'.
[   64.694277][ T3581] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   65.236908][ T4137] set_capacity_and_notify: 1 callbacks suppressed
[   65.236936][ T4137] loop1: detected capacity change from 0 to 1024
[   65.288821][ T4137] EXT4-fs: Ignoring removed bh option
[   65.313549][ T4137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.438581][   T28] kauditd_printk_skb: 352 callbacks suppressed
[   65.438597][   T28] audit: type=1400 audit(1779617816.093:711): avc:  denied  { read write } for  pid=4130 comm="syz.1.152" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   65.513967][   T28] audit: type=1400 audit(1779617816.093:712): avc:  denied  { open } for  pid=4130 comm="syz.1.152" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   65.538473][ T4150] loop2: detected capacity change from 0 to 512
[   65.548058][   T28] audit: type=1400 audit(1779617816.132:713): avc:  denied  { ioctl } for  pid=4130 comm="syz.1.152" path="/dev/virtual_nci" dev="devtmpfs" ino=132 ioctlcmd=0x0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   65.552166][ T3079] IPVS: starting estimator thread 0...
[   65.573339][ T4150] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   65.591554][   T28] audit: type=1400 audit(1779617816.152:714): avc:  denied  { bind } for  pid=4148 comm="syz.4.156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   65.615555][ T4150] EXT4-fs (loop2): 1 truncate cleaned up
[   65.622599][   T28] audit: type=1400 audit(1779617816.152:715): avc:  denied  { setopt } for  pid=4148 comm="syz.4.156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   65.667226][ T4150] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.776134][ T4156] IPVS: using max 2256 ests per chain, 112800 per kthread
[   66.208386][ T4165] __nla_validate_parse: 2 callbacks suppressed
[   66.208407][ T4165] netlink: 32 bytes leftover after parsing attributes in process `syz.4.161'.
[   66.452778][   T28] audit: type=1326 audit(1779617817.089:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4170 comm="syz.3.162" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48232bce59 code=0x0
[   66.684768][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.039753][ T4176] netlink: 12 bytes leftover after parsing attributes in process `syz.4.164'.
[   67.080829][ T4176] netlink: 59 bytes leftover after parsing attributes in process `syz.4.164'.
[   67.176115][ T4176] loop4: detected capacity change from 0 to 512
[   67.234277][ T4176] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.250300][ T4137] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   67.274469][ T4176] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.335236][ T4176] netlink: 104 bytes leftover after parsing attributes in process `syz.4.164'.
[   67.353523][ T4183] netlink: 12 bytes leftover after parsing attributes in process `syz.0.165'.
[   67.355589][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.374130][ T4183] netlink: 59 bytes leftover after parsing attributes in process `syz.0.165'.
[   67.384258][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.475402][ T4185] loop0: detected capacity change from 0 to 512
[   67.524399][ T4185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.548961][ T4185] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.585671][ T4183] netlink: 104 bytes leftover after parsing attributes in process `syz.0.165'.
[   67.636233][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.852201][ T4188] netlink: 32 bytes leftover after parsing attributes in process `syz.3.168'.
[   67.925514][ T4208] loop3: detected capacity change from 0 to 2048
[   67.955343][ T4208] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.993696][ T4208] FAULT_INJECTION: forcing a failure.
[   67.993696][ T4208] name failslab, interval 1, probability 0, space 0, times 0
[   68.014860][ T4208] CPU: 1 UID: 0 PID: 4208 Comm: syz.3.174 Not tainted syzkaller #0 PREEMPT(full) 
[   68.014966][ T4208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   68.014976][ T4208] Call Trace:
[   68.014982][ T4208]  <TASK>
[   68.014990][ T4208]  __dump_stack+0x1d/0x30
[   68.015027][ T4208]  dump_stack_lvl+0x95/0xd0
[   68.015117][ T4208]  dump_stack+0x15/0x1b
[   68.015133][ T4208]  should_fail_ex+0x263/0x280
[   68.015289][ T4208]  should_failslab+0x8c/0xb0
[   68.015321][ T4208]  kmem_cache_alloc_noprof+0x66/0x3f0
[   68.015358][ T4208]  ? security_inode_alloc+0x37/0x100
[   68.015394][ T4208]  security_inode_alloc+0x37/0x100
[   68.015434][ T4208]  inode_init_always_gfp+0x4a0/0x4e0
[   68.015475][ T4208]  ? __pfx_ext4_alloc_inode+0x10/0x10
[   68.015502][ T4208]  alloc_inode+0x58/0x170
[   68.015612][ T4208]  iget_locked+0x101/0x440
[   68.015632][ T4208]  __ext4_iget+0x152/0x23f0
[   68.015653][ T4208]  ? __rcu_read_unlock+0x4e/0x70
[   68.015675][ T4208]  ? d_alloc_parallel+0xc01/0xce0
[   68.015860][ T4208]  ext4_lookup+0x173/0x3a0
[   68.015887][ T4208]  __lookup_slow+0x19d/0x260
[   68.015910][ T4208]  lookup_slow+0x3c/0x60
[   68.015985][ T4208]  path_lookupat+0x2f7/0x500
[   68.016053][ T4208]  filename_lookup+0x190/0x390
[   68.016091][ T4208]  do_readlinkat+0x74/0x2f0
[   68.016122][ T4208]  __x64_sys_readlink+0x47/0x60
[   68.016146][ T4208]  x64_sys_call+0x2b51/0x3020
[   68.016208][ T4208]  do_syscall_64+0x12c/0x3b0
[   68.016246][ T4208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.016267][ T4208] RIP: 0033:0x7f48232bce59
[   68.016289][ T4208] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   68.016305][ T4208] RSP: 002b:00007f4821d17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[   68.016326][ T4208] RAX: ffffffffffffffda RBX: 00007f4823535fa0 RCX: 00007f48232bce59
[   68.016391][ T4208] RDX: 000000000000000a RSI: 0000200000000140 RDI: 00002000000000c0
[   68.016404][ T4208] RBP: 00007f4821d17090 R08: 0000000000000000 R09: 0000000000000000
[   68.016416][ T4208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.016431][ T4208] R13: 00007f4823536038 R14: 00007f4823535fa0 R15: 00007ffd349bf858
[   68.016465][ T4208]  </TASK>
[   68.277972][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.357691][ T4219] netlink: 24 bytes leftover after parsing attributes in process `syz.3.178'.
[   68.371886][ T4222] loop4: detected capacity change from 0 to 512
[   68.416625][ T4222] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   68.418312][ T4210] netlink: 32 bytes leftover after parsing attributes in process `syz.0.175'.
[   68.445805][ T4222] EXT4-fs (loop4): 1 truncate cleaned up
[   68.454444][ T4222] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.531015][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.542569][ T4226] Zero length message leads to an empty skb
[   68.629816][   T28] audit: type=1400 audit(1779617819.243:717): avc:  denied  { ioctl } for  pid=4231 comm="syz.4.181" path="socket:[8213]" dev="sockfs" ino=8213 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   68.690073][   T28] audit: type=1400 audit(1779617819.302:718): avc:  denied  { mounton } for  pid=4231 comm="syz.4.181" path="/syzcgroup/unified/syz4" dev="cgroup2" ino=77 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   68.716605][ T4237] loop0: detected capacity change from 0 to 512
[   68.728361][ T4237] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   68.757182][ T4237] EXT4-fs (loop0): 1 truncate cleaned up
[   68.791334][ T4237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.804745][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.818492][   T28] audit: type=1400 audit(1779617819.430:719): avc:  denied  { create } for  pid=4242 comm="syz.3.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   68.856553][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.158135][   T28] audit: type=1400 audit(1779617819.777:720): avc:  denied  { mac_admin } for  pid=4251 comm="syz.1.191" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.431246][ T4262] loop0: detected capacity change from 0 to 512
[   69.499765][ T4262] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.545120][ T4262] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.622445][ T4268] loop4: detected capacity change from 0 to 512
[   69.693511][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.823610][ T4274] loop4: detected capacity change from 0 to 512
[   69.843650][ T4274] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   69.889119][ T4278] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43032 sclass=netlink_route_socket pid=4278 comm=syz.2.201
[   69.897439][ T4274] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.945763][ T4274] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.977546][ T4274] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.199: corrupted xattr block 32: overlapping e_value 
[   70.025097][ T4274] EXT4-fs (loop4): Remounting filesystem read-only
[   70.043139][ T4282] netlink: 'syz.1.202': attribute type 1 has an invalid length.
[   70.061821][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.071004][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.099683][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.106540][ T4282] 8021q: adding VLAN 0 to HW filter on device bond1
[   70.116762][ T4288] ext4: Unknown parameter 'smackfstransmute'
[   70.124104][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.138576][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.183356][ T4286] vlan2: entered allmulticast mode
[   70.199388][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.215641][ T4286] bond1: entered allmulticast mode
[   70.234536][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.265407][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.277511][ T4274] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   70.407212][ T4301] set_capacity_and_notify: 1 callbacks suppressed
[   70.407233][ T4301] loop1: detected capacity change from 0 to 512
[   70.421919][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.559922][ T4312] loop0: detected capacity change from 0 to 512
[   71.760312][ T4323] loop4: detected capacity change from 0 to 4096
[   71.819710][ T4323] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.868990][   T28] kauditd_printk_skb: 14 callbacks suppressed
[   71.869006][   T28] audit: type=1400 audit(1779617822.449:735): avc:  denied  { write } for  pid=4322 comm="syz.4.215" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   72.162480][ T4338] netlink: 'syz.2.218': attribute type 1 has an invalid length.
[   72.195521][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.292464][ T4341] __nla_validate_parse: 7 callbacks suppressed
[   72.292477][ T4341] netlink: 56 bytes leftover after parsing attributes in process `syz.2.218'.
[   72.404251][ T4338] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.505310][ T4339] vlan2: entered allmulticast mode
[   72.536552][ T4339] bond1: entered allmulticast mode
[   72.670626][ T4344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.220'.
[   72.691859][ T4344] netlink: 'syz.2.220': attribute type 26 has an invalid length.
[   72.700334][ T4344] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'.
[   72.711120][ T4344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.220'.
[   72.720166][ T4344] netlink: 'syz.2.220': attribute type 26 has an invalid length.
[   72.728061][ T4344] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'.
[   72.918373][ T4357] loop4: detected capacity change from 0 to 4096
[   72.961787][ T4357] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.022017][   T28] audit: type=1400 audit(1779617823.589:736): avc:  denied  { write } for  pid=4356 comm="syz.4.219" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   73.095206][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.190404][ T4353] netlink: 32 bytes leftover after parsing attributes in process `syz.2.222'.
[   73.587895][ T4367] loop4: detected capacity change from 0 to 512
[   73.663521][ T4371] netlink: 48 bytes leftover after parsing attributes in process `syz.0.226'.
[   73.914094][   T28] audit: type=1326 audit(1779617824.472:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.0.230" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7eff5087ce59 code=0x0
[   74.113653][ T4382] loop1: detected capacity change from 0 to 512
[   74.169680][ T4388] netlink: 'syz.3.231': attribute type 1 has an invalid length.
[   74.347202][ T4382] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.389196][ T4388] 8021q: adding VLAN 0 to HW filter on device bond1
[   74.441752][ T4392] netlink: 56 bytes leftover after parsing attributes in process `syz.3.231'.
[   74.479836][ T4382] EXT4-fs (loop1): 1 truncate cleaned up
[   74.528119][ T4382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.583706][ T4390] vlan3: entered allmulticast mode
[   74.589890][ T4390] bond1: entered allmulticast mode
[   74.739954][ T4398] loop3: detected capacity change from 0 to 512
[   74.837105][ T4402] netlink: 12 bytes leftover after parsing attributes in process `syz.4.234'.
[   74.874551][ T4402] netlink: 59 bytes leftover after parsing attributes in process `syz.4.234'.
[   74.969600][ T4400] loop4: detected capacity change from 0 to 512
[   75.028754][ T4400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.058736][   T28] audit: type=1400 audit(1779617825.603:738): avc:  denied  { audit_write } for  pid=4403 comm="syz.0.235" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   75.082167][ T4400] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.084650][ T4404] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   75.115409][   T28] audit: type=1400 audit(1779617825.653:739): avc:  denied  { create } for  pid=4369 comm="syz.2.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   75.131906][ T4404] audit: out of memory in audit_log_start
[   75.144434][ T4409] loop0: detected capacity change from 0 to 164
[   75.152743][   T28] audit: type=1400 audit(1779617825.712:740): avc:  denied  { mount } for  pid=4403 comm="syz.0.235" name="/" dev="loop0" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   75.207880][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.228642][   T28] audit: type=1400 audit(1779617825.782:741): avc:  denied  { module_load } for  pid=4403 comm="syz.0.235" path="/52/file2/file2" dev="loop0" ino=1811 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=system permissive=1
[   75.255904][ T4404] Invalid ELF header magic: != ELF
[   75.266540][   T28] audit: type=1400 audit(1779617825.821:742): avc:  denied  { setopt } for  pid=4369 comm="syz.2.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   75.465053][ T4421] loop0: detected capacity change from 0 to 512
[   75.496887][ T4421] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.549715][ T4421] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.620132][ T4430] syzkaller1: entered promiscuous mode
[   75.642435][ T4430] syzkaller1: entered allmulticast mode
[   75.658104][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.840199][ T4437] netlink: 'syz.4.244': attribute type 1 has an invalid length.
[   75.884507][ T4437] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.897396][ T4441] vlan2: entered allmulticast mode
[   75.902636][ T4441] bond1: entered allmulticast mode
[   76.128013][ T4452] program syz.4.249 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   76.234633][ T4463] loop0: detected capacity change from 0 to 128
[   76.258435][ T4465] syz.3.255 uses obsolete (PF_INET,SOCK_PACKET)
[   76.285118][ T4465] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   76.296659][ T4461] loop4: detected capacity change from 0 to 512
[   76.307798][ T4454] loop2: detected capacity change from 0 to 512
[   76.346864][ T4461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.360936][ T4461] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.393520][ T4454] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   76.422307][ T4454] System zones: 0-2, 18-18, 34-34
[   76.440715][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.500286][ T4454] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.250: bg 0: block 248: padding at end of block bitmap is not set
[   76.568640][ T4454] loop2: lost filesystem error report for type 5 error -117
[   76.571927][    C0] EXT4-fs (loop2): error count since last fsck: 1
[   76.585727][    C0] EXT4-fs (loop2): last error at time 1779617827: ext4_validate_block_bitmap:441
[   76.592576][ T4454] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.250: Failed to acquire dquot type 1
[   76.625186][ T4454] loop2: lost filesystem error report for type 5 error -117
[   76.642237][ T4454] EXT4-fs (loop2): 1 truncate cleaned up
[   76.657255][ T4454] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.672494][ T4454] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.688648][ T4478] netlink: 'syz.4.258': attribute type 1 has an invalid length.
[   76.745154][ T4478] 8021q: adding VLAN 0 to HW filter on device bond3
[   76.807418][ T4481] vlan3: entered allmulticast mode
[   76.807439][ T4481] bond3: entered allmulticast mode
[   76.877014][ T4487] openvswitch: netlink: Missing key (keys=40, expected=100)
[   76.882070][ T4487] SELinux:  Context system_u: is not valid (left unmapped).
[   77.040267][ T4454] syz.2.250 (4454) used greatest stack depth: 7704 bytes left
[   77.084717][    T9] IPVS: starting estimator thread 0...
[   77.099957][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.236426][ T4496] IPVS: using max 2592 ests per chain, 129600 per kthread
[   78.234720][ T4491] loop3: detected capacity change from 0 to 512
[   78.335504][ T4512] loop4: detected capacity change from 0 to 512
[   78.367438][ T4512] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   78.385390][ T4512] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.618145][ T4491] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   78.732588][ T4491] System zones: 0-2, 18-18, 34-34
[   78.777610][ T4521] __nla_validate_parse: 15 callbacks suppressed
[   78.777685][ T4521] netlink: 12 bytes leftover after parsing attributes in process `syz.0.269'.
[   78.825345][ T4491] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.262: bg 0: block 248: padding at end of block bitmap is not set
[   78.850603][ T4521] netlink: 59 bytes leftover after parsing attributes in process `syz.0.269'.
[   78.864427][ T4524] loop0: detected capacity change from 0 to 512
[   78.871240][ T4491] loop3: lost filesystem error report for type 5 error -117
[   78.874001][ T4491] __quota_error: 22 callbacks suppressed
[   78.875263][ T4491] Quota error (device loop3): write_blk: dquota write failed
[   78.883321][    C0] EXT4-fs (loop3): error count since last fsck: 1
[   78.883378][    C0] EXT4-fs (loop3): last error at time 1779617829: ext4_validate_block_bitmap:441
[   78.916101][ T4491] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   78.935698][ T4524] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.948913][ T4524] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.966241][ T4491] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.262: Failed to acquire dquot type 1
[   78.987513][ T4491] loop3: lost filesystem error report for type 5 error -117
[   78.996752][ T4521] netlink: 104 bytes leftover after parsing attributes in process `syz.0.269'.
[   79.002344][ T4491] EXT4-fs (loop3): 1 truncate cleaned up
[   79.013844][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.020545][ T4491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.057102][ T4491] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.070706][ T4523] netlink: 32 bytes leftover after parsing attributes in process `syz.2.270'.
[   79.103844][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.143065][ T4532] netlink: 'syz.2.272': attribute type 1 has an invalid length.
[   79.191533][ T4538] loop0: detected capacity change from 0 to 256
[   79.225797][ T4532] 8021q: adding VLAN 0 to HW filter on device bond2
[   79.226440][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   79.262926][ T4539] vlan3: entered allmulticast mode
[   79.262945][ T4539] bond2: entered allmulticast mode
[   79.286401][ T4532] netlink: 56 bytes leftover after parsing attributes in process `syz.2.272'.
[   79.364330][ T4548] netlink: 20 bytes leftover after parsing attributes in process `syz.1.278'.
[   79.376563][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.429616][ T4551] netlink: 12 bytes leftover after parsing attributes in process `syz.2.279'.
[   79.443458][ T4551] netlink: 59 bytes leftover after parsing attributes in process `syz.2.279'.
[   79.460955][ T4555] loop3: detected capacity change from 0 to 164
[   79.471977][ T4555] Invalid ELF header magic: != ELF
[   79.505249][ T4558] FAULT_INJECTION: forcing a failure.
[   79.505249][ T4558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.505274][ T4558] CPU: 1 UID: 0 PID: 4558 Comm: syz.1.281 Not tainted syzkaller #0 PREEMPT(full) 
[   79.505298][ T4558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   79.505311][ T4558] Call Trace:
[   79.505317][ T4558]  <TASK>
[   79.505324][ T4558]  __dump_stack+0x1d/0x30
[   79.505414][ T4558]  dump_stack_lvl+0x95/0xd0
[   79.505434][ T4558]  dump_stack+0x15/0x1b
[   79.505501][ T4558]  should_fail_ex+0x263/0x280
[   79.505534][ T4558]  should_fail+0xb/0x20
[   79.505558][ T4558]  should_fail_usercopy+0x1a/0x20
[   79.505603][ T4558]  strncpy_from_user+0x27/0x250
[   79.505626][ T4558]  path_setxattrat+0xeb/0x310
[   79.505675][ T4558]  __x64_sys_lsetxattr+0x71/0x90
[   79.505694][ T4558]  x64_sys_call+0x1300/0x3020
[   79.505792][ T4558]  do_syscall_64+0x12c/0x3b0
[   79.505822][ T4558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.505842][ T4558] RIP: 0033:0x7f2e5288ce59
[   79.505874][ T4558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.505892][ T4558] RSP: 002b:00007f2e512df028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   79.505986][ T4558] RAX: ffffffffffffffda RBX: 00007f2e52b05fa0 RCX: 00007f2e5288ce59
[   79.506040][ T4558] RDX: 0000200000000040 RSI: 0000200000000240 RDI: 00002000000001c0
[   79.506054][ T4558] RBP: 00007f2e512df090 R08: 0000000000000000 R09: 0000000000000000
[   79.506067][ T4558] R10: 0000000000000025 R11: 0000000000000246 R12: 0000000000000001
[   79.506085][ T4558] R13: 00007f2e52b06038 R14: 00007f2e52b05fa0 R15: 00007fff0455d918
[   79.506104][ T4558]  </TASK>
[   79.533321][ T4559] loop2: detected capacity change from 0 to 512
[   79.556382][ T4546] netlink: 32 bytes leftover after parsing attributes in process `syz.0.276'.
[   79.582490][ T4559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.582596][ T4559] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.590494][ T4559] netlink: 104 bytes leftover after parsing attributes in process `syz.2.279'.
[   79.868371][ T4568] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.893634][ T4568] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.923628][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.960745][ T4569]  loop3: p1 < > p2 p4 < p5 >
[   79.974553][ T4569] loop3: partition table partially beyond EOD, truncated
[   79.983760][ T4569] loop3: p1 start 134217728 is beyond EOD, truncated
[   80.019568][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.033088][ T4569] loop3: p2 size 591360 extends beyond EOD, truncated
[   80.048607][ T4583] FAULT_INJECTION: forcing a failure.
[   80.048607][ T4583] name failslab, interval 1, probability 0, space 0, times 0
[   80.064811][ T4569] loop3: p5 size 591360 extends beyond EOD, truncated
[   80.080840][ T4586] netlink: 'syz.1.289': attribute type 1 has an invalid length.
[   80.088756][ T4583] CPU: 0 UID: 0 PID: 4583 Comm: syz.2.287 Not tainted syzkaller #0 PREEMPT(full) 
[   80.088785][ T4583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   80.088796][ T4583] Call Trace:
[   80.088801][ T4583]  <TASK>
[   80.088808][ T4583]  __dump_stack+0x1d/0x30
[   80.088836][ T4583]  dump_stack_lvl+0x95/0xd0
[   80.088972][ T4583]  dump_stack+0x15/0x1b
[   80.088994][ T4583]  should_fail_ex+0x263/0x280
[   80.089033][ T4583]  should_failslab+0x8c/0xb0
[   80.089060][ T4583]  __kmalloc_noprof+0xb8/0x4d0
[   80.089092][ T4583]  ? security_sk_alloc+0x52/0x120
[   80.089253][ T4583]  ? should_failslab+0x8c/0xb0
[   80.089283][ T4583]  security_sk_alloc+0x52/0x120
[   80.089386][ T4583]  sk_prot_alloc+0xc2/0x180
[   80.089416][ T4583]  sk_alloc+0x35/0x3e0
[   80.089468][ T4583]  bpf_prog_test_run_skb+0x320/0x11c0
[   80.089531][ T4583]  ? kstrtoull+0x111/0x140
[   80.089563][ T4583]  ? __rcu_read_unlock+0x4e/0x70
[   80.089590][ T4583]  ? __fget_files+0x184/0x1c0
[   80.089679][ T4583]  ? __rcu_read_unlock+0x4e/0x70
[   80.089716][ T4583]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   80.089753][ T4583]  bpf_prog_test_run+0x204/0x340
[   80.089840][ T4583]  __sys_bpf+0x52e/0x7e0
[   80.089880][ T4583]  __x64_sys_bpf+0x41/0x50
[   80.089982][ T4583]  x64_sys_call+0x10cb/0x3020
[   80.090005][ T4583]  do_syscall_64+0x12c/0x3b0
[   80.090116][ T4583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.090144][ T4583] RIP: 0033:0x7faeeb63ce59
[   80.090165][ T4583] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.090188][ T4583] RSP: 002b:00007faeea097028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   80.090227][ T4583] RAX: ffffffffffffffda RBX: 00007faeeb8b5fa0 RCX: 00007faeeb63ce59
[   80.090244][ T4583] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[   80.090260][ T4583] RBP: 00007faeea097090 R08: 0000000000000000 R09: 0000000000000000
[   80.090276][ T4583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.090292][ T4583] R13: 00007faeeb8b6038 R14: 00007faeeb8b5fa0 R15: 00007ffe7ce62c68
[   80.090317][ T4583]  </TASK>
[   80.332167][ T2981]  loop3: p1 < > p2 p4 < p5 >
[   80.340195][ T2981] loop3: partition table partially beyond EOD, truncated
[   80.347563][ T4586] 8021q: adding VLAN 0 to HW filter on device bond2
[   80.354336][ T2981] loop3: p1 start 134217728 is beyond EOD, truncated
[   80.362923][ T2981] loop3: p2 size 591360 extends beyond EOD, truncated
[   80.371144][ T2981] loop3: p5 size 591360 extends beyond EOD, truncated
[   80.396186][   T28] audit: type=1400 audit(1779617830.919:763): avc:  denied  { create } for  pid=4598 comm="syz.4.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   80.425013][ T4586] vlan3: entered allmulticast mode
[   80.446105][   T28] audit: type=1400 audit(1779617830.949:764): avc:  denied  { connect } for  pid=4598 comm="syz.4.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   80.466273][   T28] audit: type=1400 audit(1779617830.949:765): avc:  denied  { name_bind } for  pid=4598 comm="syz.4.293" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   80.467033][ T4586] bond2: entered allmulticast mode
[   80.513759][ T4605] FAULT_INJECTION: forcing a failure.
[   80.513759][ T4605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.527348][ T4605] CPU: 1 UID: 0 PID: 4605 Comm: syz.4.295 Not tainted syzkaller #0 PREEMPT(full) 
[   80.527469][ T4605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   80.527484][ T4605] Call Trace:
[   80.527490][ T4605]  <TASK>
[   80.527496][ T4605]  __dump_stack+0x1d/0x30
[   80.527519][ T4605]  dump_stack_lvl+0x95/0xd0
[   80.527540][ T4605]  dump_stack+0x15/0x1b
[   80.527557][ T4605]  should_fail_ex+0x263/0x280
[   80.527632][ T4605]  should_fail+0xb/0x20
[   80.527661][ T4605]  should_fail_usercopy+0x1a/0x20
[   80.527722][ T4605]  _copy_from_iter+0xcf/0xea0
[   80.527823][ T4605]  ? __alloc_skb+0x4f6/0x690
[   80.527901][ T4605]  ? __alloc_skb+0x200/0x690
[   80.527920][ T4605]  netlink_sendmsg+0x4ae/0x6f0
[   80.527959][ T4605]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.528055][ T4605]  ____sys_sendmsg+0x563/0x5b0
[   80.528086][ T4605]  ___sys_sendmsg+0x195/0x1e0
[   80.528178][ T4605]  __x64_sys_sendmsg+0xd4/0x160
[   80.528243][ T4605]  x64_sys_call+0x194c/0x3020
[   80.528328][ T4605]  do_syscall_64+0x12c/0x3b0
[   80.528366][ T4605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.528391][ T4605] RIP: 0033:0x7f334d0fce59
[   80.528409][ T4605] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.528556][ T4605] RSP: 002b:00007f334bb57028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.528576][ T4605] RAX: ffffffffffffffda RBX: 00007f334d375fa0 RCX: 00007f334d0fce59
[   80.528612][ T4605] RDX: 0000000004000000 RSI: 0000200000000380 RDI: 0000000000000004
[   80.528625][ T4605] RBP: 00007f334bb57090 R08: 0000000000000000 R09: 0000000000000000
[   80.528637][ T4605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.528648][ T4605] R13: 00007f334d376038 R14: 00007f334d375fa0 R15: 00007fff21811998
[   80.528667][ T4605]  </TASK>
[   80.770305][ T4609] sg_write: data in/out 410588/66 bytes for SCSI command 0x0-- guessing data in;
[   80.770305][ T4609]    program syz.0.297 not setting count and/or reply_len properly
[   80.806245][ T4616] IPv6: NLM_F_REPLACE set, but no existing node found!
[   80.867323][ T4612] set_capacity_and_notify: 3 callbacks suppressed
[   80.890093][ T4612] loop4: detected capacity change from 0 to 512
[   81.007289][ T4612] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.020685][   T28] audit: type=1400 audit(1779617831.526:766): avc:  denied  { create } for  pid=4622 comm="syz.3.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   81.090854][ T4612] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.104229][ T4623] loop0: detected capacity change from 0 to 4096
[   81.123211][   T28] audit: type=1400 audit(1779617831.526:767): avc:  denied  { connect } for  pid=4622 comm="syz.3.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   81.174163][ T4623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.216976][   T28] audit: type=1400 audit(1779617831.526:768): avc:  denied  { setopt } for  pid=4622 comm="syz.3.301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   81.767621][ T4631] Illegal XDP return value 457157416 on prog  (id 58) dev N/A, expect packet loss!
[   81.800960][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.956681][ T4636] futex_wake_op: syz.4.304 tries to shift op by 144; fix this program
[   82.213686][   T28] audit: type=1400 audit(1779617832.720:769): avc:  denied  { block_suspend } for  pid=4644 comm="syz.1.308" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   83.859096][ T4651] netlink: 'syz.2.310': attribute type 1 has an invalid length.
[   84.070471][ T4660] __nla_validate_parse: 9 callbacks suppressed
[   84.070486][ T4660] netlink: 56 bytes leftover after parsing attributes in process `syz.2.310'.
[   84.237672][ T4651] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[   84.338785][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.090549][ T4678] netlink: 32 bytes leftover after parsing attributes in process `syz.1.317'.
[   85.092953][ T4684] loop3: detected capacity change from 0 to 512
[   85.382074][ T4693] netlink: 8 bytes leftover after parsing attributes in process `syz.0.323'.
[   85.426272][ T4695] netlink: 'syz.4.324': attribute type 1 has an invalid length.
[   85.472514][   T28] audit: type=1326 audit(1779617835.976:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4697 comm="syz.1.325" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e5288ce59 code=0x0
[   85.486866][ T4695] 8021q: adding VLAN 0 to HW filter on device bond4
[   85.519565][ T4695] vlan4: entered allmulticast mode
[   85.524833][ T4695] bond4: entered allmulticast mode
[   85.531040][ T4695] netlink: 56 bytes leftover after parsing attributes in process `syz.4.324'.
[   86.118376][ T4707] netlink: 8 bytes leftover after parsing attributes in process `syz.4.327'.
[   86.268491][   T28] audit: type=1400 audit(1779617836.763:771): avc:  denied  { mount } for  pid=4709 comm="syz.2.328" name="/" dev="configfs" ino=2097 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   86.296824][ T4707] futex_wake_op: syz.4.327 tries to shift op by 144; fix this program
[   87.548216][ T4725] netlink: 12 bytes leftover after parsing attributes in process `syz.4.333'.
[   87.557497][ T4725] netlink: 59 bytes leftover after parsing attributes in process `syz.4.333'.
[   87.952919][ T4725] loop4: detected capacity change from 0 to 512
[   88.023454][ T4725] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.746560][ T4725] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.788675][ T4727] netlink: 216 bytes leftover after parsing attributes in process `syz.0.332'.
[   89.005364][ T4725] netlink: 104 bytes leftover after parsing attributes in process `syz.4.333'.
[   89.102221][ T4727] loop0: detected capacity change from 0 to 256
[   89.534193][ T4740] netlink: 32 bytes leftover after parsing attributes in process `syz.2.336'.
[   89.589590][ T4744] netlink: 'syz.3.337': attribute type 1 has an invalid length.
[   89.633045][ T4744] 8021q: adding VLAN 0 to HW filter on device bond2
[   89.664378][ T4747] vlan4: entered allmulticast mode
[   89.675139][ T4747] bond2: entered allmulticast mode
[   89.690493][ T4744] netlink: 56 bytes leftover after parsing attributes in process `syz.3.337'.
[   89.794552][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.134684][   T28] audit: type=1326 audit(1779617840.620:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4759 comm="syz.4.341" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f334d0fce59 code=0x0
[   90.346373][ T4765] netlink: 12 bytes leftover after parsing attributes in process `syz.0.342'.
[   90.356077][ T4765] netlink: 59 bytes leftover after parsing attributes in process `syz.0.342'.
[   90.486278][   T28] audit: type=1400 audit(1779617840.969:773): avc:  denied  { append } for  pid=4766 comm="syz.2.343" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   90.524844][ T4767] sg_write: data in/out 1536/136 bytes for SCSI command 0x0-- guessing data in;
[   90.524844][ T4767]    program syz.2.343 not setting count and/or reply_len properly
[   90.638263][ T4765] loop0: detected capacity change from 0 to 512
[   90.850143][ T4765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.867292][ T4765] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.890235][   T28] audit: type=1400 audit(1779617841.378:774): avc:  denied  { write } for  pid=4773 comm="syz.1.344" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   90.921102][ T4765] netlink: 104 bytes leftover after parsing attributes in process `syz.0.342'.
[   90.962312][ T4779] loop1: detected capacity change from 0 to 512
[   90.997104][ T4779] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002]
[   91.010679][ T4779] System zones: 1-12
[   91.015712][ T4779] EXT4-fs error (device loop1): ext4_iget_extra_inode:5128: inode #15: comm syz.1.346: corrupted in-inode xattr: e_value size too large
[   91.032900][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.040215][ T4779] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[   91.043763][ T4779] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.346: couldn't read orphan inode 15 (err -117)
[   91.052949][    C0] EXT4-fs (loop1): error count since last fsck: 1
[   91.052966][    C0] EXT4-fs (loop1): initial error at time 1779617841: ext4_iget_extra_inode:5128: inode 15
[   91.053002][    C0] EXT4-fs (loop1): last error at time 1779617841: ext4_iget_extra_inode:5128: inode 15
[   91.107797][ T4779] loop1: lost filesystem error report for type 5 error -117
[   91.108286][ T4779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.195811][   T28] audit: type=1400 audit(1779617841.677:775): avc:  denied  { write } for  pid=4778 comm="syz.1.346" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   91.240675][   T28] audit: type=1400 audit(1779617841.707:776): avc:  denied  { add_name } for  pid=4778 comm="syz.1.346" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   91.264719][ T4788] netlink: 'syz.4.349': attribute type 1 has an invalid length.
[   91.279541][   T28] audit: type=1400 audit(1779617841.707:777): avc:  denied  { read } for  pid=4778 comm="syz.1.346" path="/64/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   91.329683][   T28] audit: type=1400 audit(1779617841.707:778): avc:  denied  { create } for  pid=4778 comm="syz.1.346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   91.352548][   T28] audit: type=1400 audit(1779617841.707:779): avc:  denied  { mounton } for  pid=4778 comm="syz.1.346" path="/64/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   91.366326][ T4788] 8021q: adding VLAN 0 to HW filter on device bond5
[   91.432032][   T28] audit: type=1400 audit(1779617841.917:780): avc:  denied  { sqpoll } for  pid=4795 comm="syz.2.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   91.458177][ T4792] vlan5: entered allmulticast mode
[   91.463575][ T4792] bond5: entered allmulticast mode
[   91.480364][ T4793] netlink: 56 bytes leftover after parsing attributes in process `syz.4.349'.
[   91.603906][   T28] audit: type=1326 audit(1779617842.086:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.2.352" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faeeb63ce59 code=0x0
[   91.650402][    T9] IPVS: starting estimator thread 0...
[   91.674937][   T28] audit: type=1326 audit(1779617842.156:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4807 comm="syz.3.354" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48232bce59 code=0x7ffc0000
[   91.701122][   T28] audit: type=1326 audit(1779617842.156:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4807 comm="syz.3.354" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48232bce59 code=0x7ffc0000
[   91.738019][ T4805] IPVS: using max 2304 ests per chain, 115200 per kthread
[   91.777278][ T4810] netlink: 12 bytes leftover after parsing attributes in process `syz.4.353'.
[   91.800629][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.117519][ T4814] loop3: detected capacity change from 0 to 128
[   92.232605][ T4817] netlink: 12 bytes leftover after parsing attributes in process `syz.0.356'.
[   92.266322][ T4817] netlink: 59 bytes leftover after parsing attributes in process `syz.0.356'.
[   92.300964][ T4818] loop0: detected capacity change from 0 to 512
[   92.394027][ T4818] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.428897][ T4818] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.527489][ T4817] netlink: 104 bytes leftover after parsing attributes in process `syz.0.356'.
[   92.545711][ T4823] loop2: detected capacity change from 0 to 512
[   92.554450][ T4825] FAULT_INJECTION: forcing a failure.
[   92.554450][ T4825] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.573612][ T4825] CPU: 0 UID: 0 PID: 4825 Comm: syz.4.358 Not tainted syzkaller #0 PREEMPT(full) 
[   92.573640][ T4825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   92.573656][ T4825] Call Trace:
[   92.573664][ T4825]  <TASK>
[   92.573673][ T4825]  __dump_stack+0x1d/0x30
[   92.573755][ T4825]  dump_stack_lvl+0x95/0xd0
[   92.573781][ T4825]  dump_stack+0x15/0x1b
[   92.573803][ T4825]  should_fail_ex+0x263/0x280
[   92.573838][ T4825]  should_fail+0xb/0x20
[   92.573869][ T4825]  should_fail_usercopy+0x1a/0x20
[   92.573959][ T4825]  _copy_from_user+0x1c/0xb0
[   92.574001][ T4825]  __io_register_rsrc_update+0x275/0xb00
[   92.574040][ T4825]  ? should_fail_ex+0xd9/0x280
[   92.574096][ T4825]  io_register_rsrc_update+0x12f/0x140
[   92.574205][ T4825]  __se_sys_io_uring_register+0xc68/0x1330
[   92.574238][ T4825]  ? fput+0x8f/0xc0
[   92.574261][ T4825]  ? ksys_write+0x194/0x1a0
[   92.574367][ T4825]  __x64_sys_io_uring_register+0x55/0x70
[   92.574402][ T4825]  x64_sys_call+0x2be0/0x3020
[   92.574490][ T4825]  do_syscall_64+0x12c/0x3b0
[   92.574528][ T4825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.574606][ T4825] RIP: 0033:0x7f334d0fce59
[   92.574625][ T4825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   92.574720][ T4825] RSP: 002b:00007f334bb57028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   92.574743][ T4825] RAX: ffffffffffffffda RBX: 00007f334d375fa0 RCX: 00007f334d0fce59
[   92.574822][ T4825] RDX: 0000200000000600 RSI: 0000000000000010 RDI: 0000000000000004
[   92.574840][ T4825] RBP: 00007f334bb57090 R08: 0000000000000000 R09: 0000000000000000
[   92.574877][ T4825] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   92.574892][ T4825] R13: 00007f334d376038 R14: 00007f334d375fa0 R15: 00007fff21811998
[   92.574917][ T4825]  </TASK>
[   92.575549][ T4823] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002]
[   92.771508][ T4823] System zones: 1-12
[   92.776354][ T4823] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.357: corrupted in-inode xattr: e_value size too large
[   92.796016][ T4823] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[   92.797510][ T4823] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.357: couldn't read orphan inode 15 (err -117)
[   92.806916][    C0] EXT4-fs (loop2): error count since last fsck: 1
[   92.806947][    C0] EXT4-fs (loop2): initial error at time 1779617843: ext4_iget_extra_inode:5128: inode 15
[   92.807049][    C0] EXT4-fs (loop2): last error at time 1779617843: ext4_iget_extra_inode:5128: inode 15
[   92.845723][ T4823] loop2: lost filesystem error report for type 5 error -117
[   92.846016][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.866073][ T4823] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.200389][ T4836] loop3: detected capacity change from 0 to 512
[   94.202443][ T4836] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   95.240468][ T4836] EXT4-fs (loop3): 1 truncate cleaned up
[   95.772364][ T4836] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.799279][ T4850] __nla_validate_parse: 1 callbacks suppressed
[   95.799339][ T4850] netlink: 16 bytes leftover after parsing attributes in process `syz.1.366'.
[   95.908823][   T28] kauditd_printk_skb: 250 callbacks suppressed
[   95.908837][   T28] audit: type=1400 audit(1779617846.387:1034): avc:  denied  { setopt } for  pid=4849 comm="syz.1.366" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   96.089477][   T28] audit: type=1400 audit(1779617846.556:1035): avc:  denied  { create } for  pid=4860 comm="syz.0.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   96.112621][ T4861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.370'.
[   96.148916][ T4861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.370'.
[   96.182738][ T4863] netlink: 12 bytes leftover after parsing attributes in process `syz.1.371'.
[   96.218380][ T4863] netlink: 59 bytes leftover after parsing attributes in process `syz.1.371'.
[   96.310379][ T4859] loop4: detected capacity change from 0 to 512
[   96.323760][ T4863] loop1: detected capacity change from 0 to 512
[   96.483929][ T4868] batadv_slave_1: entered promiscuous mode
[   96.492758][ T4863] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.630451][ T4867] batadv_slave_1: left promiscuous mode
[   96.647298][ T4863] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.747615][ T4863] netlink: 104 bytes leftover after parsing attributes in process `syz.1.371'.
[   96.799799][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.859456][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.900949][ T4878] loop0: detected capacity change from 0 to 512
[   96.933846][ T4878] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   96.953259][ T4878] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   96.961993][ T4878] System zones: 1-12
[   96.967643][ T4878] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   96.982308][ T4878] EXT4-fs (loop0): 1 truncate cleaned up
[   96.990170][ T4878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.012737][   T28] audit: type=1400 audit(1779617847.485:1036): avc:  denied  { write } for  pid=4876 comm="syz.0.376" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   97.038561][ T4878] EXT4-fs warning (device loop0): ext4_group_extend:1885: will only finish group (8193 blocks, 7937 new)
[   97.050657][ T4878] EXT4-fs warning (device loop0): ext4_group_extend:1890: can't read last block, resize aborted
[   97.102488][ T4893] loop4: detected capacity change from 0 to 1024
[   97.109322][ T4893] EXT4-fs: test_dummy_encryption option not supported
[   97.218321][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.276840][   T28] audit: type=1400 audit(1779617847.744:1037): avc:  denied  { relabelfrom } for  pid=4892 comm="syz.4.380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   97.331459][   T28] audit: type=1400 audit(1779617847.744:1038): avc:  denied  { relabelto } for  pid=4892 comm="syz.4.380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   97.363650][   T28] audit: type=1400 audit(1779617847.774:1039): avc:  denied  { nlmsg_write } for  pid=4892 comm="syz.4.380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   97.407724][   T28] audit: type=1326 audit(1779617847.784:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4895 comm="syz.0.381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5087ce59 code=0x7ffc0000
[   97.470429][   T28] audit: type=1326 audit(1779617847.784:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4895 comm="syz.0.381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5087ce59 code=0x7ffc0000
[   97.530655][   T28] audit: type=1326 audit(1779617847.784:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4895 comm="syz.0.381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5087ce59 code=0x7ffc0000
[   97.580394][   T28] audit: type=1326 audit(1779617847.784:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4895 comm="syz.0.381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5087ce59 code=0x7ffc0000
[   97.681007][ T4896] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   97.705648][ T4896] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   97.722005][ T4902] netlink: 14 bytes leftover after parsing attributes in process `syz.0.381'.
[   97.794253][ T4903] loop0: detected capacity change from 0 to 512
[   97.813560][ T4903] EXT4-fs (loop0): bad geometry: block count 117440768 exceeds size of device (256 blocks)
[   98.031335][ T4902] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.073358][ T4908] netlink: 12 bytes leftover after parsing attributes in process `syz.2.385'.
[   98.093318][ T4908] netlink: 59 bytes leftover after parsing attributes in process `syz.2.385'.
[   98.131069][ T4909] loop2: detected capacity change from 0 to 512
[   98.174664][ T4902] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.185238][ T4909] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.203566][ T4909] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.232250][ T4908] netlink: 104 bytes leftover after parsing attributes in process `syz.2.385'.
[   99.294722][ T4902] bond0 (unregistering): Released all slaves
[   99.294883][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.314488][   T23] syz1: Port: 1 Link DOWN
[   99.352238][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.376620][ T4913] loop3: detected capacity change from 0 to 512
[   99.403330][ T4913] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.502368][ T4913] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8857e02c, mo2=0002]
[   99.516930][ T4918] loop4: detected capacity change from 0 to 512
[   99.554055][ T4922] loop2: detected capacity change from 0 to 512
[   99.565623][ T4913] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.386: invalid indirect mapped block 2683928664 (level 1)
[   99.590111][ T4913] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[   99.594686][ T4926] loop0: detected capacity change from 0 to 512
[   99.603851][    C1] EXT4-fs (loop3): error count since last fsck: 1
[   99.603874][    C1] EXT4-fs (loop3): initial error at time 1779617850: ext4_free_branches:1023: inode 11
[   99.603917][    C1] EXT4-fs (loop3): last error at time 1779617850: ext4_free_branches:1023: inode 11
[   99.646126][ T4913] EXT4-fs (loop3): Remounting filesystem read-only
[   99.655878][ T4926] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   99.699907][ T4913] EXT4-fs (loop3): 1 truncate cleaned up
[   99.706734][ T4926] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   99.718514][ T4926] System zones: 1-12
[   99.729074][ T4926] EXT4-fs (loop0): 1 truncate cleaned up
[   99.731724][ T4922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.737581][ T4926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.749291][ T4913] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.764573][ T4922] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.258767][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.268902][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.334717][ T4939] loop2: detected capacity change from 0 to 512
[  100.354446][ T4939] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  100.365816][ T4939] EXT4-fs (loop2): 1 truncate cleaned up
[  100.373339][ T4939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.448370][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.469067][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.662168][ T4959] loop4: detected capacity change from 0 to 512
[  100.678270][ T4959] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  100.712733][ T4964] loop3: detected capacity change from 0 to 1024
[  100.714614][ T4959] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  100.727810][ T4964] EXT4-fs: Ignoring removed oldalloc option
[  100.741227][ T4959] System zones: 1-12
[  100.750843][ T4964] EXT4-fs: Ignoring removed i_version option
[  100.778827][ T4959] EXT4-fs (loop4): 1 truncate cleaned up
[  100.784737][ T4964] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.792564][ T4959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.808854][ T4964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.826903][ T4959] EXT4-fs warning (device loop4): ext4_group_extend:1885: will only finish group (8193 blocks, 7937 new)
[  100.841563][ T4969] loop0: detected capacity change from 0 to 4096
[  100.858959][ T4959] EXT4-fs warning (device loop4): ext4_group_extend:1890: can't read last block, resize aborted
[  100.879279][ T4975] loop1: detected capacity change from 0 to 512
[  100.952988][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.965197][ T4969] __nla_validate_parse: 6 callbacks suppressed
[  100.965212][ T4969] netlink: 36 bytes leftover after parsing attributes in process `syz.0.405'.
[  101.268642][ T4981] netlink: 32 bytes leftover after parsing attributes in process `syz.2.410'.
[  101.290208][   T28] kauditd_printk_skb: 305 callbacks suppressed
[  101.290223][   T28] audit: type=1400 audit(1779617851.758:1349): avc:  denied  { read } for  pid=4994 comm="syz.0.414" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  101.341847][   T28] audit: type=1400 audit(1779617851.768:1350): avc:  denied  { open } for  pid=4994 comm="syz.0.414" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  101.418852][ T4988] netlink: 32 bytes leftover after parsing attributes in process `syz.4.411'.
[  101.487177][ T4995] batadv0: entered promiscuous mode
[  101.504383][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.504800][ T4995] macvlan2: entered allmulticast mode
[  101.517543][ T5000] random: crng reseeded on system resumption
[  101.522396][   T28] audit: type=1400 audit(1779617851.977:1351): avc:  denied  { write } for  pid=4994 comm="syz.0.414" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  101.553895][ T4995] batadv0: entered allmulticast mode
[  101.562352][   T28] audit: type=1400 audit(1779617851.977:1352): avc:  denied  { open } for  pid=4994 comm="syz.0.414" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  101.612893][ T4995] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  101.652139][ T4995] batadv0: left allmulticast mode
[  101.668646][ T4995] batadv0: left promiscuous mode
[  101.686461][ T5006] loop3: detected capacity change from 0 to 512
[  101.701907][ T5006] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002]
[  101.713393][ T5006] System zones: 1-12
[  101.718776][ T5006] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.417: corrupted in-inode xattr: e_value size too large
[  101.733481][ T5006] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  101.733804][ T5006] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.417: couldn't read orphan inode 15 (err -117)
[  101.743041][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  101.743074][    C1] EXT4-fs (loop3): initial error at time 1779617852: ext4_iget_extra_inode:5128: inode 15
[  101.743120][    C1] EXT4-fs (loop3): last error at time 1779617852: ext4_iget_extra_inode:5128: inode 15
[  101.758127][ T5009] netlink: 32 bytes leftover after parsing attributes in process `syz.2.415'.
[  101.763694][ T5006] loop3: lost filesystem error report for type 5 error -117
[  101.793175][ T5006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.949859][   T28] audit: type=1400 audit(1779617852.407:1353): avc:  denied  { firmware_load } for  pid=4994 comm="syz.0.414" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  102.095064][ T5014] syzkaller0: entered promiscuous mode
[  102.132308][ T5014] syzkaller0: entered allmulticast mode
[  102.199341][ T5014] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  102.210956][   T28] audit: type=1400 audit(1779617852.676:1354): avc:  denied  { map } for  pid=5012 comm="syz.4.419" path="socket:[9926]" dev="sockfs" ino=9926 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  103.590221][   T28] audit: type=1400 audit(1779617852.706:1355): avc:  denied  { read accept } for  pid=5012 comm="syz.4.419" path="socket:[9926]" dev="sockfs" ino=9926 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  103.614043][   T28] audit: type=1400 audit(1779617852.776:1356): avc:  denied  { write } for  pid=5005 comm="syz.3.417" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  103.655769][ T5023] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  103.679476][   T28] audit: type=1400 audit(1779617853.655:1357): avc:  denied  { ioctl } for  pid=5012 comm="syz.4.419" path="socket:[9926]" dev="sockfs" ino=9926 ioctlcmd=0x941b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  103.728553][ T5023] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  103.747404][ T5023] System zones: 1-12
[  103.761304][ T5023] EXT4-fs (loop0): 1 truncate cleaned up
[  103.776990][ T5023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.808972][   T28] audit: type=1400 audit(1779617854.264:1358): avc:  denied  { write } for  pid=5022 comm="syz.0.420" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  103.833540][ T5023] EXT4-fs warning (device loop0): ext4_group_extend:1885: will only finish group (8193 blocks, 7937 new)
[  103.866369][ T5023] EXT4-fs warning (device loop0): ext4_group_extend:1890: can't read last block, resize aborted
[  104.760983][ T5012] tipc: Resetting bearer <eth:syzkaller0>
[  104.764075][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.776757][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.788222][ T5012] tipc: Disabling bearer <eth:syzkaller0>
[  104.916254][ T5037] bridge_slave_0: left allmulticast mode
[  104.946557][ T5037] bridge_slave_0: left promiscuous mode
[  104.955609][ T5037] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.965890][ T5037] bridge_slave_1: left allmulticast mode
[  104.971962][ T5037] bridge_slave_1: left promiscuous mode
[  104.977878][ T5037] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.987796][ T5037] bond0: (slave bond_slave_0): Releasing backup interface
[  105.003906][ T5037] bond0: (slave bond_slave_1): Releasing backup interface
[  105.149953][ T5037] team0: Port device team_slave_0 removed
[  105.169813][ T5037] team0: Port device team_slave_1 removed
[  105.183323][ T5037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.201132][ T5037] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.225105][ T5037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.233154][ T5037] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.264564][ T5037] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  105.761665][ T5071] set_capacity_and_notify: 1 callbacks suppressed
[  105.761679][ T5071] loop0: detected capacity change from 0 to 512
[  105.797523][ T5071] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.810776][ T5071] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.844170][ T5069] netlink: 32 bytes leftover after parsing attributes in process `syz.2.436'.
[  105.959683][ T5086] FAULT_INJECTION: forcing a failure.
[  105.959683][ T5086] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.992128][ T5086] CPU: 1 UID: 0 PID: 5086 Comm: syz.4.441 Not tainted syzkaller #0 PREEMPT(full) 
[  105.992156][ T5086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  105.992169][ T5086] Call Trace:
[  105.992175][ T5086]  <TASK>
[  105.992262][ T5086]  __dump_stack+0x1d/0x30
[  105.992287][ T5086]  dump_stack_lvl+0x95/0xd0
[  105.992378][ T5086]  dump_stack+0x15/0x1b
[  105.992398][ T5086]  should_fail_ex+0x263/0x280
[  105.992426][ T5086]  should_fail+0xb/0x20
[  105.992450][ T5086]  should_fail_usercopy+0x1a/0x20
[  105.992506][ T5086]  _copy_from_user+0x1c/0xb0
[  105.992552][ T5086]  do_sock_getsockopt+0x122/0x570
[  105.992583][ T5086]  __x64_sys_getsockopt+0x11d/0x1a0
[  105.992610][ T5086]  x64_sys_call+0x2dcf/0x3020
[  105.992712][ T5086]  do_syscall_64+0x12c/0x3b0
[  105.992743][ T5086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.992764][ T5086] RIP: 0033:0x7f334d0fce59
[  105.992810][ T5086] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  105.992828][ T5086] RSP: 002b:00007f334bb57028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  105.992848][ T5086] RAX: ffffffffffffffda RBX: 00007f334d375fa0 RCX: 00007f334d0fce59
[  105.992913][ T5086] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004
[  105.992967][ T5086] RBP: 00007f334bb57090 R08: 00002000000000c0 R09: 0000000000000000
[  105.992980][ T5086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.993007][ T5086] R13: 00007f334d376038 R14: 00007f334d375fa0 R15: 00007fff21811998
[  105.993026][ T5086]  </TASK>
[  106.185194][ T5091] netlink: 28 bytes leftover after parsing attributes in process `syz.3.443'.
[  106.204073][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.254582][ T5096] netlink: 12 bytes leftover after parsing attributes in process `syz.4.446'.
[  106.440635][ T5106] netlink: 32 bytes leftover after parsing attributes in process `syz.0.449'.
[  106.483842][   T28] kauditd_printk_skb: 267 callbacks suppressed
[  106.483869][   T28] audit: type=1400 audit(1779617856.942:1626): avc:  denied  { read } for  pid=5109 comm="syz.0.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  106.848114][ T5119] process 'syz.1.454' launched './file0' with NULL argv: empty string added
[  106.916362][   T28] audit: type=1400 audit(1779617857.361:1627): avc:  denied  { execute_no_trans } for  pid=5118 comm="syz.1.454" path="/84/file0" dev="tmpfs" ino=464 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  106.983780][ T5119] loop1: detected capacity change from 0 to 1764
[  106.991387][   T28] audit: type=1400 audit(1779617857.441:1628): avc:  denied  { mounton } for  pid=5118 comm="syz.1.454" path="/84/file0" dev="tmpfs" ino=464 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  107.045732][   T28] audit: type=1400 audit(1779617857.501:1629): avc:  denied  { remount } for  pid=5118 comm="syz.1.454" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  107.127482][ T5131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.460'.
[  107.140619][ T5131] netlink: 59 bytes leftover after parsing attributes in process `syz.3.460'.
[  107.166559][ T5131] loop3: detected capacity change from 0 to 512
[  107.199084][ T5131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.212568][ T5131] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.233148][ T5131] netlink: 104 bytes leftover after parsing attributes in process `syz.3.460'.
[  107.311133][   T28] audit: type=1326 audit(1779617857.761:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="syz.2.461" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faeeb63ce59 code=0x0
[  107.337972][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.653216][   T28] audit: type=1326 audit(1779617858.100:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5153 comm="syz.1.466" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e5288ce59 code=0x0
[  108.586993][ T5163] netlink: 'syz.3.469': attribute type 10 has an invalid length.
[  108.608013][ T5163] team0: Failed to send options change via netlink (err -105)
[  108.615986][ T5163] team0: Port device dummy0 added
[  108.654783][ T5169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.472'.
[  108.676546][ T5169] netlink: 59 bytes leftover after parsing attributes in process `syz.4.472'.
[  108.723609][ T5173] netlink: 12 bytes leftover after parsing attributes in process `syz.3.473'.
[  108.741386][ T5169] loop4: detected capacity change from 0 to 512
[  108.820546][   T28] audit: type=1400 audit(1779617859.269:1632): avc:  denied  { create } for  pid=5180 comm="syz.3.477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  108.841361][   T28] audit: type=1400 audit(1779617859.289:1633): avc:  denied  { connect } for  pid=5180 comm="syz.3.477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  108.849286][ T5169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.874874][ T5169] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.903676][   T28] audit: type=1326 audit(1779617859.349:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5182 comm="syz.1.478" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e5288ce59 code=0x0
[  108.916342][ T5169] netlink: 104 bytes leftover after parsing attributes in process `syz.4.472'.
[  108.940915][ T5186] loop2: detected capacity change from 0 to 512
[  108.951268][ T5186] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  108.961610][ T5186] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  109.098698][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.192026][ T5186] loop2: detected capacity change from 0 to 512
[  109.276306][ T5186] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.479: inode has both inline data and extents flags
[  109.292975][ T5186] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  109.294872][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  109.310504][    C0] EXT4-fs (loop2): initial error at time 1779617859: ext4_orphan_get:1397: inode 15
[  109.319951][    C0] EXT4-fs (loop2): last error at time 1779617859: ext4_orphan_get:1397: inode 15
[  109.330215][ T5186] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.479: couldn't read orphan inode 15 (err -117)
[  109.349570][ T5186] loop2: lost filesystem error report for type 5 error -117
[  109.355713][ T5186] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.416174][   T28] audit: type=1400 audit(1779617859.859:1635): avc:  denied  { create } for  pid=5184 comm="syz.2.479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1
[  109.678970][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.700819][ T5213] netlink: 'syz.2.485': attribute type 10 has an invalid length.
[  109.725134][ T5213] team0: Failed to send options change via netlink (err -105)
[  109.734079][ T5213] team0: Port device dummy0 added
[  110.138699][ T5218] sctp: [Deprecated]: syz.2.486 (pid 5218) Use of struct sctp_assoc_value in delayed_ack socket option.
[  110.138699][ T5218] Use struct sctp_sack_info instead
[  110.262203][ T5229] loop3: detected capacity change from 0 to 512
[  110.277145][ T5229] EXT4-fs: Ignoring removed oldalloc option
[  110.287249][ T5229] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  110.328874][ T5229] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.343052][ T5229] ext4 filesystem being mounted at /97/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.375318][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.665295][ T5251] loop3: detected capacity change from 0 to 512
[  110.767924][ T5251] EXT4-fs (loop3): 1 orphan inode deleted
[  110.779539][ T5251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.795724][ T5251] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.866574][ T3913] EXT4-fs error (device loop3): ext4_release_dquot:7070: comm kworker/u8:18: Failed to release dquot type 1
[  111.438549][ T5258] loop1: detected capacity change from 0 to 512
[  111.467044][ T5258] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  111.510661][ T5258] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  111.571960][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  111.571973][   T28] audit: type=1326 audit(1779617862.027:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.2.502" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faeeb63ce59 code=0x0
[  111.759880][ T5270] loop1: detected capacity change from 0 to 512
[  112.281954][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.297752][ T5270] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.497: inode has both inline data and extents flags
[  112.381064][ T5270] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  112.387209][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  112.402831][    C0] EXT4-fs (loop1): initial error at time 1779617862: ext4_orphan_get:1397: inode 15
[  112.412294][    C0] EXT4-fs (loop1): last error at time 1779617862: ext4_orphan_get:1397: inode 15
[  112.599440][ T5270] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.497: couldn't read orphan inode 15 (err -117)
[  112.605784][ T5277] loop3: detected capacity change from 0 to 128
[  112.617909][ T5270] loop1: lost filesystem error report for type 5 error -117
[  112.623409][ T5270] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.761000][ T5284] __nla_validate_parse: 6 callbacks suppressed
[  112.761017][ T5284] netlink: 12 bytes leftover after parsing attributes in process `syz.2.506'.
[  113.045119][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.092817][ T5294] FAULT_INJECTION: forcing a failure.
[  113.092817][ T5294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.213148][ T5277] tipc: Started in network mode
[  113.228918][ T5294] CPU: 1 UID: 0 PID: 5294 Comm: syz.1.510 Not tainted syzkaller #0 PREEMPT(full) 
[  113.229025][ T5294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  113.229040][ T5294] Call Trace:
[  113.229051][ T5294]  <TASK>
[  113.229087][ T5294]  __dump_stack+0x1d/0x30
[  113.229120][ T5294]  dump_stack_lvl+0x95/0xd0
[  113.229143][ T5294]  dump_stack+0x15/0x1b
[  113.229181][ T5294]  should_fail_ex+0x263/0x280
[  113.229283][ T5294]  should_fail+0xb/0x20
[  113.229308][ T5294]  should_fail_usercopy+0x1a/0x20
[  113.229341][ T5294]  _copy_from_user+0x1c/0xb0
[  113.229422][ T5294]  get_user_ifreq+0x52/0x110
[  113.229451][ T5294]  inet_ioctl+0x2c6/0x3a0
[  113.229495][ T5294]  sock_do_ioctl+0x73/0x230
[  113.229586][ T5294]  sock_ioctl+0x41b/0x610
[  113.229619][ T5294]  ? mutex_lock+0x57/0x90
[  113.229643][ T5294]  ? __pfx_sock_ioctl+0x10/0x10
[  113.229673][ T5294]  __se_sys_ioctl+0xce/0x140
[  113.229710][ T5294]  __x64_sys_ioctl+0x43/0x50
[  113.229743][ T5294]  x64_sys_call+0x1563/0x3020
[  113.229817][ T5294]  do_syscall_64+0x12c/0x3b0
[  113.229857][ T5294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.229881][ T5294] RIP: 0033:0x7f2e5288ce59
[  113.229927][ T5294] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  113.229945][ T5294] RSP: 002b:00007f2e512df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.229969][ T5294] RAX: ffffffffffffffda RBX: 00007f2e52b05fa0 RCX: 00007f2e5288ce59
[  113.230014][ T5294] RDX: 00002000000003c0 RSI: 000000000000891a RDI: 0000000000000003
[  113.230030][ T5294] RBP: 00007f2e512df090 R08: 0000000000000000 R09: 0000000000000000
[  113.230043][ T5294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.230058][ T5294] R13: 00007f2e52b06038 R14: 00007f2e52b05fa0 R15: 00007fff0455d918
[  113.230078][ T5294]  </TASK>
[  113.430727][ T5277] tipc: Node identity ac1414aa, cluster identity 4711
[  113.484207][ T5277] tipc: Enabled bearer <udp:syz2>, priority 10
[  113.509499][ T5297] tipc: Enabled bearer <eth:veth0_macvtap>, priority 0
[  113.953157][ T5312] netlink: 12 bytes leftover after parsing attributes in process `syz.2.517'.
[  113.963880][ T5312] netlink: 59 bytes leftover after parsing attributes in process `syz.2.517'.
[  113.986588][ T5319] loop4: detected capacity change from 0 to 512
[  114.000435][ T5319] EXT4-fs: Ignoring removed oldalloc option
[  114.016577][ T5319] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  114.035063][ T5312] loop2: detected capacity change from 0 to 512
[  114.051072][ T5319] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.085675][ T5312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.101262][ T5319] ext4 filesystem being mounted at /112/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.114287][ T5320] loop1: detected capacity change from 0 to 512
[  114.120807][ T5312] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.136797][   T28] audit: type=1400 audit(1779617864.586:1640): avc:  denied  { write } for  pid=5318 comm="syz.4.520" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  114.164621][ T5320] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  114.177363][   T28] audit: type=1400 audit(1779617864.616:1641): avc:  denied  { write } for  pid=5318 comm="syz.4.520" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  114.205609][ T5312] netlink: 104 bytes leftover after parsing attributes in process `syz.2.517'.
[  114.206171][ T5320] EXT4-fs (loop1): 1 truncate cleaned up
[  114.222743][ T5320] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.254423][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.304518][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.369300][ T5328] loop4: detected capacity change from 0 to 256
[  114.396206][ T5328] netdevsim netdevsim4: Direct firmware load for   failed with error -2
[  114.590986][ T5338] loop3: detected capacity change from 0 to 512
[  114.592314][   T28] audit: type=1400 audit(1779617865.045:1642): avc:  denied  { ioctl } for  pid=5335 comm="syz.0.524" path="socket:[12411]" dev="sockfs" ino=12411 ioctlcmd=0x745a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  114.640140][ T5338] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.648909][   T23] tipc: Node number set to 2886997162
[  114.798385][ T5338] xt_recent: Unsupported userspace flags (000000b1)
[  114.841391][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.863318][ T3291] ==================================================================
[  114.871437][ T3291] BUG: KCSAN: data-race in set_nlink / set_nlink
[  114.877774][ T3291] 
[  114.880133][ T3291] read to 0xffff8881079f84b8 of 4 bytes by task 2981 on cpu 1:
[  114.887696][ T3291]  set_nlink+0x29/0xb0
[  114.891791][ T3291]  kernfs_iop_permission+0x1e5/0x220
[  114.897097][ T3291]  inode_permission+0x31f/0x3b0
[  114.901967][ T3291]  link_path_walk+0x779/0xe30
[  114.907012][ T3291]  path_lookupat+0x8c/0x500
[  114.911542][ T3291]  filename_lookup+0x190/0x390
[  114.916343][ T3291]  vfs_statx+0x96/0x170
[  114.920515][ T3291]  vfs_fstatat+0x118/0x170
[  114.924959][ T3291]  __se_sys_newfstatat+0x55/0x3e0
[  114.930013][ T3291]  __x64_sys_newfstatat+0x55/0x70
[  114.935070][ T3291]  x64_sys_call+0x2c64/0x3020
[  114.939786][ T3291]  do_syscall_64+0x12c/0x3b0
[  114.944412][ T3291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.950320][ T3291] 
[  114.952667][ T3291] write to 0xffff8881079f84b8 of 4 bytes by task 3291 on cpu 0:
[  114.960312][ T3291]  set_nlink+0x99/0xb0
[  114.964402][ T3291]  kernfs_iop_permission+0x1e5/0x220
[  114.969715][ T3291]  inode_permission+0x31f/0x3b0
[  114.974591][ T3291]  link_path_walk+0x779/0xe30
[  114.979302][ T3291]  path_openat+0x1c6/0x2050
[  114.983835][ T3291]  do_file_open+0x16c/0x290
[  114.988369][ T3291]  do_sys_openat2+0x94/0x130
[  114.992973][ T3291]  __x64_sys_openat+0xf2/0x120
[  114.997763][ T3291]  x64_sys_call+0x1e39/0x3020
[  115.002467][ T3291]  do_syscall_64+0x12c/0x3b0
[  115.007080][ T3291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.012996][ T3291] 
[  115.015334][ T3291] value changed: 0x00000009 -> 0x00000008
[  115.021067][ T3291] 
[  115.023401][ T3291] Reported by Kernel Concurrency Sanitizer on:
[  115.029569][ T3291] CPU: 0 UID: 0 PID: 3291 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) 
[  115.038432][ T3291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  115.048512][ T3291] ==================================================================
[  116.045160][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.