last executing test programs:

57.94888745s ago: executing program 2 (id=889):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0xff, 0xff, 0x9, 0x0, 0x0, 0x3, 0x50066, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x8400, 0xfffffffffffffffb, 0x6, 0x7, 0x3, 0xffffffff, 0x10, 0x0, 0x10000, 0x0, 0xdc}, 0x0, 0x6, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x100, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x3d)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))

57.94790099s ago: executing program 2 (id=891):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000780)='./bus\x00', 0x41, &(0x7f0000000c00)={[{@bsdgroups}, {@resgid}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@resuid}, {@auto_da_alloc}, {@noload}, {@jqfmt_vfsv1}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")

57.139384956s ago: executing program 2 (id=897):
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000380)={0x0, 0xaee2, 0x80, 0x2, 0x84}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), 0x0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r4}, 0x18)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0x1}, 0x18)
r7 = epoll_create(0x3ff)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r8, &(0x7f0000000280)={0x2000000})
recvmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

56.384106401s ago: executing program 2 (id=909):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000033c4fb7894682558f59043a003abbc864a9641000419c833e64856eb00dee90aec138eab6eea08ba052b7446e6564e837543b58af2b3ba997e73b26dbfc9f8b077164ac5d0115e1a223d2dbdde09da6c8b83c5c65682392bf3e42c0272ad094facb9e2ae126655400fd0bf6eda1bc643d51eb2d7c62432a1896cb5ca7e05631af6340186d7eb2d964938c9393380492c76b9be3db56828e951ada12004e46fc291f3bada250fe932c7192761410d55a835dd28c812ee53c98b"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000180)='mm_page_free\x00', r0, 0x0, 0x1000000}, 0x18)
r1 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1a1})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file2\x00', 0x0, &(0x7f0000000800)={[{@jqfmt_vfsv1}, {@nouid32}, {@block_validity}, {@norecovery}, {@auto_da_alloc}, {@dioread_lock}]}, 0x3, 0x546, &(0x7f0000000f80)="$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")
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r2, 0x407, 0x8001a0)
ioctl$PPPIOCSNPMODE(r2, 0x4008744b, &(0x7f0000000140)={0x21, 0x1})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$setregs(0x2, r5, 0xfffffffffffffffe, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000a00)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xa, 0xcbf, 0x4, @remote, @empty, 0x10, 0x8, 0x40, 0xd66}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000040)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x2, 0x4038a09, 0x4, @private1, @mcast2={0xff, 0x5}, 0x0, 0x40, 0xb3, 0x200}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e24, @empty}], 0x10)
sendmsg$inet_sctp(r6, &(0x7f0000001640)={&(0x7f0000000080)=@in6={0xa, 0x4e24, 0xffff, @rand_addr=' \x01\x00'}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000040)=')', 0x1}], 0x1, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000008400000007c503df1e32c976368fc1571c0eadfb090000009b1414aa000000000032418ee306ce4653b7db5c0511d6b4f60acb5867c5f584f1ee8960ce36b68b875bff874e2f0009771b90f8ccce45d85625a049907e644315f4ac2e29856ec7eed49161987d312897c317341c2c2b389bf88cc7c2194ee14aa1363cb4681059b36c2cd290e9aa10d5a8cd000000"], 0x18, 0x8000}, 0x20000000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r7=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r7, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r3, 0x84, 0x65, &(0x7f0000000340)=[@in6={0xa, 0x4e20, 0x80000001, @dev={0xfe, 0x80, '\x00', 0x22}, 0x1}, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e20, 0xffffffff, @remote, 0x7}, @in={0x2, 0x4e23, @broadcast}, @in6={0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, '\x00', 0xa}, 0x10001}, @in6={0xa, 0x4e20, 0x3, @empty, 0x5}, @in6={0xa, 0x4e21, 0x0, @mcast1, 0x5}], 0xac)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$inet(r6, &(0x7f0000000300)={&(0x7f0000000180)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000240)="01", 0x1}], 0x1}, 0x49ae57ea408cb403)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

56.036145287s ago: executing program 2 (id=916):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r3}, 0x18)

54.814337921s ago: executing program 2 (id=930):
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x30, 0xc080}, 0x4060004)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000080)='\x00\x00', 0x2}], 0x1, &(0x7f00000002c0)=ANY=[], 0x18}, 0xc800)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000000), 0x4)
recvmmsg(r0, &(0x7f0000001140), 0x74e, 0x0, 0x0)

54.814188261s ago: executing program 32 (id=930):
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x30, 0xc080}, 0x4060004)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000080)='\x00\x00', 0x2}], 0x1, &(0x7f00000002c0)=ANY=[], 0x18}, 0xc800)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000000), 0x4)
recvmmsg(r0, &(0x7f0000001140), 0x74e, 0x0, 0x0)

3.792713457s ago: executing program 5 (id=2098):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
timer_settime(r3, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="03bbbbba03000000000000000000ffff"], 0x0)
mq_timedreceive(r4, &(0x7f000001d600)=""/102378, 0x18fea, 0x3, 0x0)

2.980171432s ago: executing program 5 (id=2108):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000003e000701fcf7fffffedbdf25017c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

2.958817673s ago: executing program 5 (id=2110):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0xfd, 0x7ffc0001}]})
personality(0x5d28870e52b2f29b)

2.928308174s ago: executing program 5 (id=2111):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

2.911676624s ago: executing program 5 (id=2112):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usb_connect(0x0, 0x24, &(0x7f0000000a40)=ANY=[@ANYBLOB="12010000c7ce360863078120abd001e402010902120001000000000904000000ff"], 0x0)

2.011511041s ago: executing program 4 (id=2135):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

1.883863593s ago: executing program 4 (id=2139):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2440, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000100)=0x100000001)
setsockopt$inet_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = creat(&(0x7f0000000200)='./file1\x00', 0x0)
close(r4)
r5 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000001200), 0xa, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

1.788236555s ago: executing program 4 (id=2141):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

1.772393156s ago: executing program 4 (id=2142):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
r0 = gettid()
r1 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r1, &(0x7f00000026c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001fc0)=""/144, 0x90}, 0x200}, {{0x0, 0x0, &(0x7f0000002580), 0x0, &(0x7f0000002600)=""/166, 0xa6}, 0x1000}], 0x2, 0x60010002, 0x0)
keyctl$join(0x1, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000f80)='./bus/file0\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='./bus/file0/file0\x00')
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000040))
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f00000004c0)=ANY=[@ANYBLOB="01000900bbbbbbbbbbbb0180c2000002ffffffffffffbbbbbbbbbbbbaaaaaaaaaabbbbbbbbbbbbbbffffffffffff000000000000e67fc2000003"])
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = syz_open_dev$sg(&(0x7f00000002c0), 0x100000000, 0x107800)
fcntl$dupfd(r4, 0x0, r4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5, 0x0, 0xff}, 0x18)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000440), 0x121202, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x2)

1.56170474s ago: executing program 3 (id=2156):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000002000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2b, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)

1.56103969s ago: executing program 3 (id=2158):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
close(0x3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x3, &(0x7f0000000140)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x35}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000500)=""/64}, 0x20)

1.54040095s ago: executing program 3 (id=2160):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
timer_settime(r3, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mq_timedreceive(0xffffffffffffffff, &(0x7f000001d600)=""/102378, 0x18fea, 0x3, 0x0)

1.511082381s ago: executing program 3 (id=2161):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x3, [@datasec={0x2, 0x1, 0x0, 0xf, 0x3, [{0x1}], "a77818"}, @datasec={0x0, 0x0, 0x0, 0xf, 0x1, [], "c9"}]}, {0x0, [0x0]}}, 0x0, 0x43, 0x0, 0x1}, 0x28)

1.509372291s ago: executing program 3 (id=2162):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r2}, 0x18)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)

1.238278116s ago: executing program 1 (id=2180):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b704000008000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
syz_open_dev$sg(0x0, 0x0, 0x2000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21481e, &(0x7f0000000300), 0x1, 0x4f2, &(0x7f0000000600)="$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") (fail_nth: 4)

1.000974211s ago: executing program 1 (id=2181):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000f40)={0x11, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@getchain={0x24, 0x66, 0x0, 0x0, 0x2000}, 0x24}}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x54583}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @ipv4={'\x00', '\xff\xff', @broadcast}}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty}}}], 0x20}}], 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r6, 0x0, 0x7}, 0x18)
r7 = socket(0x10, 0x3, 0x0)
r8 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain={'key_or_keyring:', r8})
r9 = add_key$keyring(&(0x7f0000000080), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r9, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000180)='i=Ov:cb2e\xdf\xff\xff\x04\x00\xff\xff\xff')
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000100)='logon\x00', &(0x7f0000000140)=@chain={'key_or_keyring:', r9})
r10 = dup2(r0, r7)
setsockopt$netlink_NETLINK_TX_RING(r10, 0x10e, 0xc, &(0x7f0000000180)={0x2002, 0x4, 0xb, 0xe}, 0x10)
write(r7, &(0x7f0000000000)="1c0000001a005f0214f9f4070009010000000000fe03000100000000", 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
r11 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r11)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ptrace$getregset(0x4204, r11, 0x202, &(0x7f0000000140)={0x0})
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)

952.110661ms ago: executing program 1 (id=2182):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000002000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

951.039641ms ago: executing program 4 (id=2183):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f000001d600)=""/102378, 0x18fea, 0x3, 0x0)

949.126722ms ago: executing program 1 (id=2184):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f0000000000)=ANY=[], 0x3, 0x7ed, &(0x7f0000000140)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14008051}}, {{&(0x7f00000000c0)=@file={0x1, './file1\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40080}}], 0x2, 0x0) (fail_nth: 9)

646.324808ms ago: executing program 1 (id=2185):
socket$igmp6(0xa, 0x3, 0x2)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0900000004000000040000000c00000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000ff0f0100003799e36c0691833fd3c39f1dbbcdba6bd4e51756a01f2545d627dd1eef59a0e04b2b80cd561b38262b870616b228cd", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=<r7=>r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x3548, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd29, 0x25dfdaff, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {}, {0xd}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0xae96, 0xe, 0xf, 0x4}]}}]}}]}, 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1d, 0x1c, &(0x7f0000000880)=ANY=[@ANYBLOB="af68000020d8dba11811000000e1654700a0811e18f08cf693f4533300", @ANYRESHEX=r7, @ANYBLOB="000000000c000000b7080000000000007b8af8ff00000000bfa2000000000000fa1c1c07020000f8ffffffb703000008000000b7040000000000008500000082c10bc9018aa765a746f8d723646833ed70931fb27cb7b9"], 0x0, 0x100000, 0x0, 0x0, 0x41100, 0x2, '\x00', r6, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r9, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r10 = dup(r9)
write$P9_RLERRORu(r10, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r10, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r10, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r10])
r11 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r11, 0x8933, &(0x7f0000000640)={'batadv_slave_1\x00'})

645.380287ms ago: executing program 3 (id=2186):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write$P9_RREAD(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="a000000075020095000000e34a888bad6c22dcb43a375185af1585651f6bf8b50adacd3ad1844943de54cd643c0c39c6d9bc2cc024e7099e09acff7bcd803a6887c09ac5aaadf5a75c5b20161ae4a7a129844322662fc865be98b6891a5b3e2127ef1bc89e9c525d2726db1158ffe5985a81b78ae27296557ec6f206c958fa6b76f9e943987e5962ad9a6509bae99f27c3c09f0bb01c2fecdb1f"], 0xa0)
sendfile(r1, r0, 0x0, 0x3ffff)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c094, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
pipe2(&(0x7f00000006c0)={<r2=>0xffffffffffffffff}, 0x0)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r3, &(0x7f0000000180)="2cd889f0253e14", 0x7)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = getpid()
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1, 0x0, r5}}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x18)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
r10 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000001c0)='ns/uts\x00')
sendmsg$GTP_CMD_NEWPDP(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x3c, r9, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_NET_NS_FD={0x8, 0x7, r10}, @GTPA_I_TEI={0x8}, @GTPA_O_TEI={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x3c}}, 0x8000)
close_range(r2, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0x7fffeffd)

556.983429ms ago: executing program 1 (id=2187):
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000380)={0x0, 0xaee2, 0x80, 0x2, 0x84}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), 0x0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r4}, 0x18)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{0x0}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0x1}, 0x18)
r7 = epoll_create(0x3ff)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r8, &(0x7f0000000280)={0x2000000})
recvmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

449.539221ms ago: executing program 0 (id=2189):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x4000}, 0x50)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000f36b7c48b70f598d8a16dee81955688b17fe64ecb9787221c2baa0f35d174c9f9cca61a553fb34621e40d2961e8bb541bf5b880926310fc21300ab21ddbb257de4de84578dffccfabdbebd4d79b26242b9e14ee154eb2bd81ced2e107b090eb317aa4970f3f513c5cb", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001680)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000001640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xef)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x895}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r2}, 0x10)
getrandom(0x0, 0x0, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x4000010, r2, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r9 = open$dir(&(0x7f0000000080)='./file0\x00', 0x40, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r9, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)

342.478594ms ago: executing program 0 (id=2190):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1, 0x0, 0x4804}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x0, 0x0})
syz_pidfd_open(r0, 0x0)
unshare(0x24060400)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_clone(0x110000, &(0x7f00000005c0)="cf74b33cca9e72193ad02b78f6c62dfa8fa4164b88557b1a9a12c2228bbdd3c36ec447670fddbc7c47c0ee1ff69daf0a753490a13eb94d49ce5d0893493de950bbcdb398af888c0affe50a7f1a355d4076593cbf0f97adc27d4f4060276fabadc4a3b0d7b608e7d5fdceb4316332d7f6d6ab8d04c9b1419402fec6cc6af1c0725bf90cb0e6bd01bd315d00841a0ded0e1def4c821a7edd6901fdde4b3979797e0d1877e817ba3e1c1a8638fac7a97f51cde767ae03f11849dea89efd4544c6610d11ff4c9e6dc4b9b1bb73385ee4b4cc86fe2c4d1999c15738b1f58c2a5a06", 0xdf, &(0x7f00000006c0), &(0x7f0000000700), &(0x7f0000000740)="956e9804ef18644bf3b663318378e440d5a0dbf856bd9d9edcb1d8c2805b5a380ac14f3933f92a98b9034bee8af1ee2c89b4791489e42292b5ec80d0618a40301480619256230ccaf3a2ca8160f1138afc9995ad78b93dd150d12b09f0780851151b73130fb662f78a461bf3ac6afe0ee3e600a9ee121e9a74740b104c5fe2fd2885668d58a1b1f30bf8e56e26e451e737e60161")
semop(0x0, &(0x7f0000000240)=[{0x3}, {0x1, 0xe65b}], 0x2)

342.242253ms ago: executing program 0 (id=2191):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0xfd, 0x7ffc0001}]})
personality(0x5d28870e52b2f29b)

318.127844ms ago: executing program 0 (id=2192):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000f80)='./bus\x00', 0x1208002, &(0x7f0000000180)={[{@nolazytime}, {@delalloc}, {@resuid}, {@debug}, {@nobarrier}, {}, {@nomblk_io_submit}, {@nojournal_checksum}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

286.379065ms ago: executing program 0 (id=2193):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c80)=ANY=[@ANYBLOB="280000002600010000000000feffffff810000000800d500", @ANYRES32=0x0, @ANYBLOB="0c00088008000c00", @ANYRES32, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4804)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
getsockopt$sock_int(r1, 0x1, 0x10, 0x0, &(0x7f0000000100))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000000)=[{0x3, 0x0, 0xfd, 0x7ffc0001}, {0xd, 0x9, 0x8, 0x3}, {0x8, 0xf, 0xbc, 0x6}, {0x400, 0x9, 0x6, 0x10}, {0xe, 0x0, 0x2, 0x1}]})
msgctl$IPC_RMID(0x0, 0x0)

202.398856ms ago: executing program 0 (id=2194):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[], 0x48)
r0 = gettid()
r1 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r1, &(0x7f00000026c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001fc0)=""/144, 0x90}, 0x200}, {{0x0, 0x0, &(0x7f0000002580), 0x0, &(0x7f0000002600)=""/166, 0xa6}, 0x1000}], 0x2, 0x60010002, 0x0)
keyctl$join(0x1, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000f80)='./bus/file0\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='./bus/file0/file0\x00')
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000040))
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f00000004c0)=ANY=[@ANYBLOB="01000900bbbbbbbbbbbb0180c2000002ffffffffffffbbbbbbbbbbbbaaaaaaaaaabbbbbbbbbbbbbbffffffffffff000000000000e67fc2000003"])
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = syz_open_dev$sg(&(0x7f00000002c0), 0x100000000, 0x107800)
fcntl$dupfd(r4, 0x0, r4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5, 0x0, 0xff}, 0x18)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000440), 0x121202, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x2)

143.346927ms ago: executing program 4 (id=2195):
chdir(&(0x7f0000000480)='./cgroup\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1009052, &(0x7f0000000240)=ANY=[], 0xf5, 0x121d, &(0x7f0000000580)="$eJzs209rHGUcB/BfthuTpuaPWqvtQR/w4mlocvAkSJAUJAtKbYRWEKZmo0vGbNhZAiti9eS1r8OzN8F3kIuvwVsuHnsQR7Jj2my7oQXdjdjP55D5Mc/zzW9m9g/MMs/Ru/e/2t0ps528H42ZmWjsR6QHKVI04sQbm/X29p3N9VZr42ZKN9Zvrb6TUlp685dPv5mLiEuf/LT081wcrnx29Pvab4dXDq8e/Xnry06ZOmVa6fZTnu52u/38btFO251yN0vpo6Kdl+3U2SvbvZHxnaK7vz9I+d724sJ+r12WKd8bpN37eUQ39XuDlH+Rd/ZSlmVpcSE40+zTp2z9+KCqqoiqmo0Xoqqq6mIsxKV4MRZjKb6LiJfi5XglLsercSVei9fj6nDWNA4fAAAAAAAAAAAAAAAAAAAAnh+n1/9HxMj6/+VYsf4fAAAAAAAAAAAAAAAAAAAApuDj23c211utjZspzUcUPxxsHWzV23p8fSc6UUQ7rsdy/BHD1f+1ur7xQWvjehpaie+Le3/n7x1sXajzx3+KaJ70q7PNh/VxfrXOp9H8XCyc7r8Wy3F5fP+1sfn5ePutU/ksluPXz6MbRWwPez/Kf7ua0vsfth7LXxvOAwAAgP+DLD009v49y84ar/PP/PtAMx67v27Gteb5njsR5eDr3bxRtHvDojgp5p/YM7FiNiKm1WtSxdzonsaEejWecqFm/mmLC2e8Fs3/yHVWPFkcf4r/jf9zMUb3nPc3E9Pw6G0wbnRz+gcEAAAAAAAAAADAM5nw84nNGPNk2Xvnc6oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Bc7cCwAAAAAIMzfOo2ODQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqAAD//56Evk8=")
io_setup(0x9, &(0x7f0000000300)=<r0=>0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x8, &(0x7f0000003340)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x4}, 0x18)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="24000000680001d30a00000000000081000000569d7a00bb2c83b400199008000c000200010000000400000095cb81449c2250cec2244b4078bf360ceedb77918c314ce00d927bbb666af2406aff54c971e9d0dd3ef9c7fca20aeba68cc657441f47f50af1fb9539eb02ceeb53"], 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2000000069000b00000000000005000900000000000000000800010001000000"], 0x20}}, 0x24000804)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x2, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x100000}])
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000100140001"], 0x114}], 0x1, 0x0, 0x0, 0x20000001}, 0x0)

0s ago: executing program 5 (id=2196):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
socket(0xa, 0x3, 0xff)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r7}, 0x18)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000340)=ANY=[@ANYBLOB="80004c06d0404c"], 0x24}, 0x1, 0x0, 0x0, 0x408ea}, 0x4000000)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x1800840, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c696f636861727365743d63703836302c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c696f636861727365743d637039353046716e695f786c6174653d302c696f636861727365743d69736f384911f71ae4811ada6f6465706167653d3933362c696f636861727365743d6d616363656e746575726f2c6572726f72733d636f6e74696e75652c73686f72746e616d653d6c6f7765722c00"], 0x1, 0x362, &(0x7f0000000900)="$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")
unshare(0x62000000)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000ffffffff540000000e0000000f0002006e657460657673696d300000296864286db1eb888f8a527e990c35a308b465e65cfa5bea849083e1e03f35175493b320c88c1a916e083cf76337ae9666e33ec4c97a39ebc39a7d2b4303e486f0288853f973e673b8e7f605534d4f5aaed46a96b65c1c14d72fcf19190636f807ecda975283618b1e9d102ac96356e945f71b3736e5a7d7127a5ed749dd85e418b55dcef50666a7e97b60fa969793bc16f0ccd7f4de227ddeb5e1dc96d6bc5dff23fb055e903a54761d32f188697670af1554bf790f38dde4c400d414bd85e1757b6b8d33d71f24286463934f9936e1ca0b9e47d5b95e0000000000000000000000716abe3654c7e2b943e5ff7da55702acf692ce9fc6"], 0x34}}, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r9, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000711007000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r10, &(0x7f0000000640)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0x258, r11, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x108, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ff3a328}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x58554932}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4f96d519}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x41}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2e17a9f5}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x99}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x10}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x39711d9e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x52}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x327848ce}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45b2f973}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7688b1aa}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x26}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdd}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2e92b141}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2800477a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc6}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7417292c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x60}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa7}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0xe4, 0x8, 0x0, 0x1, [{0x4}, {0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x41}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29c7acfa}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x46f177b6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4c6296fa}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x59708ea8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c6f9790}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x9eacfc6}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29428de7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x68e70234}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}]}, {0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xda}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c493072}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x90}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x70590707}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x34dfa71f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x595f0e75}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4f66eaf6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x96}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0xb91277b4ab41d78d}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}]}]}, 0x258}, 0x1, 0x0, 0x0, 0x4804}, 0x80044)

kernel console output (not intermixed with test programs):

syscall=283 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  211.844776][   T29] audit: type=1326 audit(1758807992.225:2388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8174 comm="syz.5.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  211.868213][   T29] audit: type=1326 audit(1758807992.225:2389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8174 comm="syz.5.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  211.953909][ T8184] loop1: detected capacity change from 0 to 128
[  211.960760][ T8184] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  211.973268][ T8184] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  212.226628][ T8197] loop4: detected capacity change from 0 to 512
[  212.233295][ T8197] EXT4-fs: Ignoring removed nobh option
[  212.240470][ T8197] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  212.252151][ T8197] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  212.262405][ T8197] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.1395: Corrupt directory, running e2fsck is recommended
[  212.281927][ T8197] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  212.290228][ T8197] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.1395: corrupted in-inode xattr: invalid ea_ino
[  212.305582][ T8197] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1395: couldn't read orphan inode 15 (err -117)
[  212.318370][ T8197] EXT4-fs mount: 33 callbacks suppressed
[  212.318387][ T8197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.400570][ T8206] loop3: detected capacity change from 0 to 1024
[  212.407358][ T8206] EXT4-fs: Ignoring removed orlov option
[  212.415451][ T8206] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.486337][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.513824][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.522128][ T8213] SELinux:  Context  is not valid (left unmapped).
[  212.672669][ T8218] loop4: detected capacity change from 0 to 512
[  212.679543][ T8218] EXT4-fs: Ignoring removed nomblk_io_submit option
[  212.686374][ T8218] ext4: Bad value for 'errors'
[  212.696371][ T8218] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[  212.703042][ T8218] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  212.710663][ T8218] vhci_hcd vhci_hcd.0: Device attached
[  212.720644][ T8231] loop5: detected capacity change from 0 to 512
[  212.720871][ T8218] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(14)
[  212.733493][ T8218] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  212.741095][ T8218] vhci_hcd vhci_hcd.0: Device attached
[  212.741255][ T7053] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  212.784734][ T8236] loop1: detected capacity change from 0 to 8192
[  212.805018][ T8236] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1407'.
[  212.816140][ T8236] netlink: 'syz.1.1407': attribute type 1 has an invalid length.
[  212.823941][ T8236] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1407'.
[  212.893738][ T8246] loop1: detected capacity change from 0 to 1024
[  212.900587][ T8246] EXT4-fs: Ignoring removed nomblk_io_submit option
[  212.909350][ T8246] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  212.917787][ T8246] System zones: 0-1, 3-36
[  212.923195][ T8246] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.947115][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.058157][ T8259] syzkaller0: entered promiscuous mode
[  213.063688][ T8259] syzkaller0: entered allmulticast mode
[  213.266602][ T8272] loop1: detected capacity change from 0 to 8192
[  213.282418][ T8272] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1422'.
[  213.293645][ T8272] netlink: 'syz.1.1422': attribute type 1 has an invalid length.
[  213.301483][ T8272] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1422'.
[  213.303226][ T8229] vhci_hcd: connection closed
[  213.310676][ T8232] vhci_hcd: connection closed
[  213.317998][ T7049] vhci_hcd: stop threads
[  213.327056][ T7049] vhci_hcd: release socket
[  213.331450][ T7049] vhci_hcd: disconnect device
[  213.336429][ T7049] vhci_hcd: stop threads
[  213.340690][ T7049] vhci_hcd: release socket
[  213.345087][ T7049] vhci_hcd: disconnect device
[  213.593456][ T8282] netlink: 'syz.5.1426': attribute type 3 has an invalid length.
[  213.938228][ T8301] loop4: detected capacity change from 0 to 8192
[  213.947871][ T8307] netlink: 'syz.3.1437': attribute type 3 has an invalid length.
[  213.967425][ T8301] netlink: 'syz.4.1434': attribute type 1 has an invalid length.
[  214.012660][ T8315] FAULT_INJECTION: forcing a failure.
[  214.012660][ T8315] name failslab, interval 1, probability 0, space 0, times 0
[  214.025409][ T8315] CPU: 0 UID: 0 PID: 8315 Comm: syz.0.1441 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  214.025437][ T8315] Tainted: [W]=WARN
[  214.025443][ T8315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  214.025482][ T8315] Call Trace:
[  214.025488][ T8315]  <TASK>
[  214.025505][ T8315]  __dump_stack+0x1d/0x30
[  214.025526][ T8315]  dump_stack_lvl+0xe8/0x140
[  214.025618][ T8315]  dump_stack+0x15/0x1b
[  214.025635][ T8315]  should_fail_ex+0x265/0x280
[  214.025697][ T8315]  should_failslab+0x8c/0xb0
[  214.025727][ T8315]  kmem_cache_alloc_noprof+0x50/0x310
[  214.025754][ T8315]  ? prepare_creds+0x37/0x4c0
[  214.025797][ T8315]  prepare_creds+0x37/0x4c0
[  214.025819][ T8315]  copy_creds+0x8f/0x3f0
[  214.025873][ T8315]  copy_process+0x658/0x2000
[  214.025897][ T8315]  ? copy_clone_args_from_user+0x3ce/0x490
[  214.025994][ T8315]  kernel_clone+0x16c/0x5c0
[  214.026020][ T8315]  __se_sys_clone3+0x1c2/0x200
[  214.026059][ T8315]  __x64_sys_clone3+0x31/0x40
[  214.026154][ T8315]  x64_sys_call+0x1fc9/0x2ff0
[  214.026176][ T8315]  do_syscall_64+0xd2/0x200
[  214.026207][ T8315]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  214.026270][ T8315]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  214.026300][ T8315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.026320][ T8315] RIP: 0033:0x7f747dc8eec9
[  214.026335][ T8315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.026352][ T8315] RSP: 002b:00007f747c6eef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  214.026372][ T8315] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f747dc8eec9
[  214.026441][ T8315] RDX: 00007f747c6eef20 RSI: 0000000000000058 RDI: 00007f747c6eef20
[  214.026452][ T8315] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000058
[  214.026464][ T8315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.026550][ T8315] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  214.026568][ T8315]  </TASK>
[  214.275150][ T8324] bridge_slave_0: left allmulticast mode
[  214.280876][ T8324] bridge_slave_0: left promiscuous mode
[  214.286904][ T8324] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.306910][ T8324] bridge_slave_1: left allmulticast mode
[  214.312671][ T8324] bridge_slave_1: left promiscuous mode
[  214.318373][ T8324] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.358751][ T8324] bond0: (slave bond_slave_0): Releasing backup interface
[  214.382062][ T8324] bond0: (slave bond_slave_1): Releasing backup interface
[  214.416759][ T8324] team0: Port device team_slave_0 removed
[  214.433817][ T8324] team0: Port device team_slave_1 removed
[  214.444409][ T8335] loop5: detected capacity change from 0 to 512
[  214.451248][ T8324] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  214.452618][ T8336] loop4: detected capacity change from 0 to 128
[  214.458756][ T8324] batman_adv: batadv0: Removing interface: batadv_slave_0
[  214.468026][ T8336] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  214.484109][ T8335] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  214.485264][ T8324] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  214.499992][ T8324] batman_adv: batadv0: Removing interface: batadv_slave_1
[  214.507856][ T8336] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  214.518194][ T8335] EXT4-fs (loop5): orphan cleanup on readonly fs
[  214.527287][ T8335] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1448: bg 0: block 248: padding at end of block bitmap is not set
[  214.542738][ T8335] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1448: Failed to acquire dquot type 1
[  214.559052][ T8335] EXT4-fs (loop5): 1 truncate cleaned up
[  214.575414][ T8335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  214.589653][ T8339] netlink: 'syz.0.1450': attribute type 3 has an invalid length.
[  214.829272][ T8358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.855523][ T8358] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.164708][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.190161][ T7051] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  215.208005][ T8364] FAULT_INJECTION: forcing a failure.
[  215.208005][ T8364] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.221138][ T8364] CPU: 0 UID: 0 PID: 8364 Comm: syz.4.1461 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  215.221168][ T8364] Tainted: [W]=WARN
[  215.221175][ T8364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  215.221187][ T8364] Call Trace:
[  215.221270][ T8364]  <TASK>
[  215.221277][ T8364]  __dump_stack+0x1d/0x30
[  215.221295][ T8364]  dump_stack_lvl+0xe8/0x140
[  215.221387][ T8364]  dump_stack+0x15/0x1b
[  215.221404][ T8364]  should_fail_ex+0x265/0x280
[  215.221429][ T8364]  should_fail+0xb/0x20
[  215.221449][ T8364]  should_fail_usercopy+0x1a/0x20
[  215.221542][ T8364]  _copy_from_iter+0xd2/0xe80
[  215.221576][ T8364]  ? __build_skb_around+0x1a0/0x200
[  215.221599][ T8364]  ? __alloc_skb+0x223/0x320
[  215.221621][ T8364]  netlink_sendmsg+0x471/0x6b0
[  215.221685][ T8364]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.221745][ T8364]  __sock_sendmsg+0x142/0x180
[  215.221775][ T8364]  ____sys_sendmsg+0x31e/0x4e0
[  215.221865][ T8364]  ___sys_sendmsg+0x17b/0x1d0
[  215.221942][ T8364]  __x64_sys_sendmsg+0xd4/0x160
[  215.221971][ T8364]  x64_sys_call+0x191e/0x2ff0
[  215.222020][ T8364]  do_syscall_64+0xd2/0x200
[  215.222091][ T8364]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  215.222157][ T8364]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  215.222182][ T8364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.222225][ T8364] RIP: 0033:0x7f9d1e4aeec9
[  215.222239][ T8364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.222252][ T8364] RSP: 002b:00007f9d1cf17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.222309][ T8364] RAX: ffffffffffffffda RBX: 00007f9d1e705fa0 RCX: 00007f9d1e4aeec9
[  215.222320][ T8364] RDX: 0000000000000044 RSI: 00002000000007c0 RDI: 0000000000000005
[  215.222331][ T8364] RBP: 00007f9d1cf17090 R08: 0000000000000000 R09: 0000000000000000
[  215.222340][ T8364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.222355][ T8364] R13: 00007f9d1e706038 R14: 00007f9d1e705fa0 R15: 00007ffe14e79ce8
[  215.222369][ T8364]  </TASK>
[  215.238126][ T8365] loop5: detected capacity change from 0 to 1024
[  215.470354][ T8365] EXT4-fs: Ignoring removed orlov option
[  215.495050][ T8365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.510333][ T8367] loop4: detected capacity change from 0 to 512
[  215.529014][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.550695][ T8367] EXT4-fs: Ignoring removed nobh option
[  215.579549][ T8367] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  215.591157][ T8367] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  215.601282][ T8367] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.1462: Corrupt directory, running e2fsck is recommended
[  215.634610][ T8381] loop3: detected capacity change from 0 to 1024
[  215.661971][ T8381] EXT4-fs: Ignoring removed orlov option
[  215.704414][ T8381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.723818][ T8367] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  215.750705][ T8367] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.1462: corrupted in-inode xattr: invalid ea_ino
[  215.775716][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.790698][ T8367] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1462: couldn't read orphan inode 15 (err -117)
[  215.805670][ T8367] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.856845][ T8402] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=8402 comm=syz.5.1475
[  215.979361][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.994599][ T8400] __nla_validate_parse: 3 callbacks suppressed
[  215.994615][ T8400] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1473'.
[  216.082753][ T8424] loop1: detected capacity change from 0 to 512
[  216.082806][ T8428] loop4: detected capacity change from 0 to 1024
[  216.083115][ T8428] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.095686][ T8424] EXT4-fs: Ignoring removed nobh option
[  216.113960][ T8424] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  216.125592][ T8424] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  216.135891][ T8424] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.1485: Corrupt directory, running e2fsck is recommended
[  216.149857][ T8428] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  216.150105][ T8424] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  216.167142][ T8428] System zones: 0-1, 3-36
[  216.173949][ T8428] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.187944][ T8424] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.1485: corrupted in-inode xattr: invalid ea_ino
[  216.202596][ T8424] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1485: couldn't read orphan inode 15 (err -117)
[  216.215284][ T8424] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.230529][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.240045][ T8437] netlink: 'syz.5.1490': attribute type 25 has an invalid length.
[  216.247969][ T8437] netlink: 'syz.5.1490': attribute type 28 has an invalid length.
[  216.270694][ T8436] netlink: zone id is out of range
[  216.277071][ T8436] netlink: zone id is out of range
[  216.282182][ T8436] netlink: zone id is out of range
[  216.282922][ T8441] loop4: detected capacity change from 0 to 512
[  216.287481][ T8436] netlink: zone id is out of range
[  216.299123][ T8441] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  216.299227][ T8436] netlink: zone id is out of range
[  216.308770][ T8441] EXT4-fs (loop4): orphan cleanup on readonly fs
[  216.321440][ T8441] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1492: bg 0: block 248: padding at end of block bitmap is not set
[  216.337144][ T8441] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1492: Failed to acquire dquot type 1
[  216.349247][ T8436] netlink: zone id is out of range
[  216.352638][ T8441] EXT4-fs (loop4): 1 truncate cleaned up
[  216.372523][ T8441] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  216.385749][ T8436] netlink: zone id is out of range
[  216.390909][ T8436] netlink: zone id is out of range
[  216.396432][ T8436] netlink: zone id is out of range
[  216.403020][ T8436] netlink: zone id is out of range
[  216.408763][   T29] kauditd_printk_skb: 202 callbacks suppressed
[  216.408774][   T29] audit: type=1326 audit(1758807997.222:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.459424][   T29] audit: type=1326 audit(1758807997.275:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.483347][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.489777][   T29] audit: type=1326 audit(1758807997.275:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.515791][   T29] audit: type=1326 audit(1758807997.275:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.539311][   T29] audit: type=1326 audit(1758807997.275:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.562842][   T29] audit: type=1326 audit(1758807997.275:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.586242][   T29] audit: type=1326 audit(1758807997.275:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd73ed1eec9 code=0x7ffc0000
[  216.588015][ T8436] loop5: detected capacity change from 0 to 1764
[  216.609860][   T29] audit: type=1326 audit(1758807997.275:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd73ed1ef03 code=0x7ffc0000
[  216.639274][   T29] audit: type=1326 audit(1758807997.275:2596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd73ed1d97f code=0x7ffc0000
[  216.663847][   T29] audit: type=1326 audit(1758807997.306:2597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8435 comm="syz.5.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd73ed1ef57 code=0x7ffc0000
[  216.688489][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.832487][ T8473] loop4: detected capacity change from 0 to 764
[  216.844081][ T8474] loop1: detected capacity change from 0 to 512
[  216.851421][ T8474] EXT4-fs: Ignoring removed nobh option
[  216.860634][ T8474] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  216.872253][ T8474] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  216.882356][ T8474] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.1505: Corrupt directory, running e2fsck is recommended
[  216.896420][ T8477] loop5: detected capacity change from 0 to 128
[  216.904170][ T8477] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  216.918008][ T8473] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19976 sclass=netlink_route_socket pid=8473 comm=syz.4.1502
[  216.919042][ T8459] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1499'.
[  216.943712][ T8477] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  217.002697][ T8474] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  217.013835][ T8474] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.1505: corrupted in-inode xattr: invalid ea_ino
[  217.027569][ T8474] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1505: couldn't read orphan inode 15 (err -117)
[  217.042879][ T8474] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.072398][ T8481] FAULT_INJECTION: forcing a failure.
[  217.072398][ T8481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  217.085750][ T8481] CPU: 1 UID: 0 PID: 8481 Comm: syz.0.1507 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  217.085784][ T8481] Tainted: [W]=WARN
[  217.085791][ T8481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  217.085813][ T8481] Call Trace:
[  217.085821][ T8481]  <TASK>
[  217.085828][ T8481]  __dump_stack+0x1d/0x30
[  217.085846][ T8481]  dump_stack_lvl+0xe8/0x140
[  217.085861][ T8481]  dump_stack+0x15/0x1b
[  217.085880][ T8481]  should_fail_ex+0x265/0x280
[  217.085909][ T8481]  should_fail+0xb/0x20
[  217.085930][ T8481]  should_fail_usercopy+0x1a/0x20
[  217.085953][ T8481]  _copy_to_user+0x20/0xa0
[  217.086048][ T8481]  simple_read_from_buffer+0xb5/0x130
[  217.086066][ T8481]  proc_fail_nth_read+0x10e/0x150
[  217.086092][ T8481]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  217.086117][ T8481]  vfs_read+0x1a8/0x770
[  217.086141][ T8481]  ? __rcu_read_unlock+0x4f/0x70
[  217.086160][ T8481]  ? __fget_files+0x184/0x1c0
[  217.086178][ T8481]  ? __sys_getpeername+0x15e/0x180
[  217.086220][ T8481]  ksys_read+0xda/0x1a0
[  217.086304][ T8481]  __x64_sys_read+0x40/0x50
[  217.086321][ T8481]  x64_sys_call+0x27bc/0x2ff0
[  217.086338][ T8481]  do_syscall_64+0xd2/0x200
[  217.086409][ T8481]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  217.086430][ T8481]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  217.086557][ T8481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.086630][ T8481] RIP: 0033:0x7f747dc8d8dc
[  217.086644][ T8481] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  217.086660][ T8481] RSP: 002b:00007f747c6ef030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  217.086678][ T8481] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8d8dc
[  217.086692][ T8481] RDX: 000000000000000f RSI: 00007f747c6ef0a0 RDI: 0000000000000004
[  217.086704][ T8481] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000000
[  217.086723][ T8481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.086736][ T8481] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  217.086755][ T8481]  </TASK>
[  217.400886][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.421255][ T8503] netlink: 'syz.1.1517': attribute type 3 has an invalid length.
[  217.431477][ T8503] netlink: 'syz.1.1517': attribute type 3 has an invalid length.
[  217.456640][ T8506] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=8506 comm=syz.1.1518
[  217.510702][ T8510] loop1: detected capacity change from 0 to 512
[  217.523451][ T8510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  217.537180][ T8510] EXT4-fs (loop1): orphan cleanup on readonly fs
[  217.553817][ T8510] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1520: bg 0: block 248: padding at end of block bitmap is not set
[  217.568851][ T8510] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1520: Failed to acquire dquot type 1
[  217.580996][ T8510] EXT4-fs (loop1): 1 truncate cleaned up
[  217.587264][ T8510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  217.612400][ T8515] loop4: detected capacity change from 0 to 1024
[  217.619144][ T8515] EXT4-fs: Ignoring removed orlov option
[  217.639912][ T7051] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  217.646476][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.684088][ T8515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.740949][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.752581][ T8530] loop5: detected capacity change from 0 to 512
[  217.759397][ T8530] EXT4-fs: Ignoring removed nobh option
[  217.768264][ T8535] netlink: 'syz.3.1530': attribute type 49 has an invalid length.
[  217.796480][ T8530] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  217.808020][ T8530] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  217.818137][ T8530] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.1527: Corrupt directory, running e2fsck is recommended
[  217.838565][ T8530] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  217.853886][ T8530] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.1527: corrupted in-inode xattr: invalid ea_ino
[  217.868558][ T8530] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1527: couldn't read orphan inode 15 (err -117)
[  217.881002][ T8530] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.905401][ T8549] netlink: 'syz.1.1534': attribute type 3 has an invalid length.
[  217.913435][ T8549] netlink: 'syz.1.1534': attribute type 3 has an invalid length.
[  218.038438][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.042279][ T8562] loop4: detected capacity change from 0 to 128
[  218.107360][ T8569] loop4: detected capacity change from 0 to 8192
[  218.119964][ T8570] loop5: detected capacity change from 0 to 1024
[  218.126571][ T8569] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1541'.
[  218.127694][ T8570] EXT4-fs: Ignoring removed orlov option
[  218.137213][ T8569] netlink: 'syz.4.1541': attribute type 1 has an invalid length.
[  218.148933][ T8569] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1541'.
[  218.149171][ T8570] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.221222][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.246471][ T8575] loop3: detected capacity change from 0 to 128
[  218.268634][ T8578] IPVS: Error connecting to the multicast addr
[  218.438216][ T8590] loop3: detected capacity change from 0 to 512
[  218.445111][ T8590] EXT4-fs: Ignoring removed nobh option
[  218.457980][ T8588] FAULT_INJECTION: forcing a failure.
[  218.457980][ T8588] name failslab, interval 1, probability 0, space 0, times 0
[  218.470694][ T8588] CPU: 1 UID: 0 PID: 8588 Comm: syz.0.1549 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  218.470837][ T8588] Tainted: [W]=WARN
[  218.470843][ T8588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  218.470854][ T8588] Call Trace:
[  218.470860][ T8588]  <TASK>
[  218.470867][ T8588]  __dump_stack+0x1d/0x30
[  218.470888][ T8588]  dump_stack_lvl+0xe8/0x140
[  218.470908][ T8588]  dump_stack+0x15/0x1b
[  218.470924][ T8588]  should_fail_ex+0x265/0x280
[  218.470950][ T8588]  should_failslab+0x8c/0xb0
[  218.471031][ T8588]  kmem_cache_alloc_noprof+0x50/0x310
[  218.471057][ T8588]  ? security_file_alloc+0x32/0x100
[  218.471084][ T8588]  security_file_alloc+0x32/0x100
[  218.471144][ T8588]  init_file+0x5c/0x1d0
[  218.471170][ T8588]  alloc_empty_file+0x8b/0x200
[  218.471199][ T8588]  path_openat+0x68/0x2170
[  218.471218][ T8588]  ? _parse_integer_limit+0x170/0x190
[  218.471304][ T8588]  ? kstrtoull+0x111/0x140
[  218.471376][ T8588]  ? kstrtouint+0x76/0xc0
[  218.471395][ T8588]  do_filp_open+0x109/0x230
[  218.471488][ T8588]  do_sys_openat2+0xa6/0x110
[  218.471515][ T8588]  __x64_sys_openat+0xf2/0x120
[  218.471541][ T8588]  x64_sys_call+0x2e9c/0x2ff0
[  218.471562][ T8588]  do_syscall_64+0xd2/0x200
[  218.471643][ T8588]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  218.471666][ T8588]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  218.471692][ T8588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.471756][ T8588] RIP: 0033:0x7f747dc8eec9
[  218.471772][ T8588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.471788][ T8588] RSP: 002b:00007f747c6ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  218.471808][ T8588] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8eec9
[  218.471821][ T8588] RDX: 000000000008a881 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  218.471835][ T8588] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000000
[  218.471847][ T8588] R10: 00000000000000bb R11: 0000000000000246 R12: 0000000000000001
[  218.471859][ T8588] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  218.471909][ T8588]  </TASK>
[  218.761420][ T8590] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  218.773084][ T8590] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  218.783216][ T8590] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.1550: Corrupt directory, running e2fsck is recommended
[  218.807917][ T8590] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  218.819660][ T8590] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.1550: corrupted in-inode xattr: invalid ea_ino
[  218.837843][ T8590] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1550: couldn't read orphan inode 15 (err -117)
[  218.851420][ T8590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.939300][ T8610] syzkaller0: entered allmulticast mode
[  218.978411][ T8605] netlink: 'syz.0.1555': attribute type 1 has an invalid length.
[  218.986283][ T8605] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1555'.
[  219.060641][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.180558][ T8635] loop1: detected capacity change from 0 to 128
[  219.197798][ T8637] loop4: detected capacity change from 0 to 164
[  219.216909][ T8637] Unable to read rock-ridge attributes
[  219.227417][ T8637] Unable to read rock-ridge attributes
[  219.233604][ T8637] iso9660: Corrupted directory entry in block 4 of inode 1792
[  219.245146][ T8642] syzkaller0: entered allmulticast mode
[  219.298972][ T8649] loop3: detected capacity change from 0 to 512
[  219.306517][ T8649] EXT4-fs: Ignoring removed nobh option
[  219.315689][ T8649] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  219.327265][ T8649] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  219.337379][ T8649] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.1574: Corrupt directory, running e2fsck is recommended
[  219.354190][ T8652] netlink: 'syz.1.1575': attribute type 3 has an invalid length.
[  219.375180][ T8637] Unable to read rock-ridge attributes
[  219.398333][ T8637] iso9660: Corrupted directory entry in block 4 of inode 1792
[  219.419806][ T8649] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  219.428434][ T8649] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.1574: corrupted in-inode xattr: invalid ea_ino
[  219.442460][ T8649] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1574: couldn't read orphan inode 15 (err -117)
[  219.470996][ T8649] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.633550][ T8655] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.655698][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.657671][ T8655] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.751657][ T8670] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1582'.
[  219.830714][ T8709] loop3: detected capacity change from 0 to 1024
[  219.865625][ T8709] EXT4-fs: Ignoring removed orlov option
[  219.878755][ T8709] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.957071][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.090199][ T8725] loop3: detected capacity change from 0 to 1024
[  220.101313][ T8725] EXT4-fs: Ignoring removed orlov option
[  220.110776][ T8725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.192111][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.356063][ T8740] loop1: detected capacity change from 0 to 128
[  220.368106][ T8740] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  220.383000][ T8740] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  220.397188][ T8737] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1596'.
[  220.505168][ T8744] loop3: detected capacity change from 0 to 512
[  220.512287][ T8744] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  220.521507][ T8744] EXT4-fs (loop3): orphan cleanup on readonly fs
[  220.528394][ T8744] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1598: bg 0: block 248: padding at end of block bitmap is not set
[  220.542993][ T8744] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1598: Failed to acquire dquot type 1
[  220.554781][ T8744] EXT4-fs (loop3): 1 truncate cleaned up
[  220.561628][ T8744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  221.107844][ T8702] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  221.258780][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.279355][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  221.279368][   T29] audit: type=1326 audit(1758808002.335:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.335239][   T29] audit: type=1326 audit(1758808002.367:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.358864][   T29] audit: type=1326 audit(1758808002.367:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.382358][   T29] audit: type=1326 audit(1758808002.367:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.405908][   T29] audit: type=1326 audit(1758808002.367:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.429483][   T29] audit: type=1326 audit(1758808002.367:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.452950][   T29] audit: type=1326 audit(1758808002.367:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.476556][   T29] audit: type=1326 audit(1758808002.367:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.500066][   T29] audit: type=1326 audit(1758808002.367:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.523567][   T29] audit: type=1326 audit(1758808002.367:2793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz.1.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209180eec9 code=0x7ffc0000
[  221.843404][ T8821] loop1: detected capacity change from 0 to 1024
[  221.860298][ T8821] EXT4-fs: Ignoring removed mblk_io_submit option
[  221.866869][ T8821] EXT4-fs: dax option not supported
[  221.885716][ T8821] loop1: detected capacity change from 0 to 164
[  221.893057][ T8821] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  221.902034][ T8821] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  221.915998][ T8821] Symlink component flag not implemented
[  221.921651][ T8821] Symlink component flag not implemented
[  221.944833][ T8821] Symlink component flag not implemented (7)
[  221.950884][ T8821] Symlink component flag not implemented (116)
[  221.976921][ T8821] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  221.991649][ T8821] rock: directory entry would overflow storage
[  221.997956][ T8821] rock: sig=0x4f50, size=4, remaining=3
[  222.000852][ T8830] loop3: detected capacity change from 0 to 512
[  222.003647][ T8821] iso9660: Corrupted directory entry in block 4 of inode 1792
[  222.044321][ T8830] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  222.063073][ T8830] EXT4-fs (loop3): orphan cleanup on readonly fs
[  222.080489][ T8830] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1636: bg 0: block 248: padding at end of block bitmap is not set
[  222.097626][ T8830] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1636: Failed to acquire dquot type 1
[  222.114671][ T8830] EXT4-fs (loop3): 1 truncate cleaned up
[  222.124424][ T8830] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  222.200280][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.252875][ T8849] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  222.298279][ T8852] loop3: detected capacity change from 0 to 512
[  222.305042][ T8852] EXT4-fs: Ignoring removed nobh option
[  222.314462][ T8852] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  222.326047][ T8852] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  222.336127][ T8852] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.1646: Corrupt directory, running e2fsck is recommended
[  222.370954][ T8849] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1645'.
[  222.416434][ T8852] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  222.439774][ T8852] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.1646: corrupted in-inode xattr: invalid ea_ino
[  222.453574][ T8852] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1646: couldn't read orphan inode 15 (err -117)
[  222.467376][ T8859] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1649'.
[  222.477002][ T8852] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.679715][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.698407][ T8888] loop4: detected capacity change from 0 to 1024
[  222.715717][ T8888] EXT4-fs: Ignoring removed nomblk_io_submit option
[  222.742824][ T8888] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  222.751084][ T8888] System zones: 0-1, 3-36
[  222.762332][ T8888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.908538][ T8897] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1664'.
[  222.914562][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.941844][ T8904] FAULT_INJECTION: forcing a failure.
[  222.941844][ T8904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  222.954989][ T8904] CPU: 0 UID: 0 PID: 8904 Comm: syz.4.1666 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  222.955082][ T8904] Tainted: [W]=WARN
[  222.955087][ T8904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  222.955175][ T8904] Call Trace:
[  222.955182][ T8904]  <TASK>
[  222.955189][ T8904]  __dump_stack+0x1d/0x30
[  222.955211][ T8904]  dump_stack_lvl+0xe8/0x140
[  222.955287][ T8904]  dump_stack+0x15/0x1b
[  222.955304][ T8904]  should_fail_ex+0x265/0x280
[  222.955328][ T8904]  should_fail+0xb/0x20
[  222.955346][ T8904]  should_fail_usercopy+0x1a/0x20
[  222.955408][ T8904]  _copy_from_user+0x1c/0xb0
[  222.955437][ T8904]  __sys_bpf+0x178/0x7b0
[  222.955469][ T8904]  __x64_sys_bpf+0x41/0x50
[  222.955500][ T8904]  x64_sys_call+0x2aea/0x2ff0
[  222.955557][ T8904]  do_syscall_64+0xd2/0x200
[  222.955582][ T8904]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  222.955640][ T8904]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  222.955664][ T8904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.955682][ T8904] RIP: 0033:0x7f9d1e4aeec9
[  222.955778][ T8904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.955791][ T8904] RSP: 002b:00007f9d1cf17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  222.955807][ T8904] RAX: ffffffffffffffda RBX: 00007f9d1e705fa0 RCX: 00007f9d1e4aeec9
[  222.955818][ T8904] RDX: 0000000000000048 RSI: 00002000000007c0 RDI: 0000000000000000
[  222.955907][ T8904] RBP: 00007f9d1cf17090 R08: 0000000000000000 R09: 0000000000000000
[  222.955917][ T8904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  222.955927][ T8904] R13: 00007f9d1e706038 R14: 00007f9d1e705fa0 R15: 00007ffe14e79ce8
[  222.955941][ T8904]  </TASK>
[  223.184696][ T8909] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.193311][ T8909] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.330528][ T8916] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1672'.
[  223.497354][ T8922] loop5: detected capacity change from 0 to 512
[  223.518338][ T8925] loop3: detected capacity change from 0 to 128
[  223.526411][ T8927] FAULT_INJECTION: forcing a failure.
[  223.526411][ T8927] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.539581][ T8927] CPU: 1 UID: 0 PID: 8927 Comm: syz.4.1676 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  223.539632][ T8927] Tainted: [W]=WARN
[  223.539638][ T8927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  223.539649][ T8927] Call Trace:
[  223.539654][ T8927]  <TASK>
[  223.539662][ T8927]  __dump_stack+0x1d/0x30
[  223.539681][ T8927]  dump_stack_lvl+0xe8/0x140
[  223.539698][ T8927]  dump_stack+0x15/0x1b
[  223.539764][ T8927]  should_fail_ex+0x265/0x280
[  223.539784][ T8927]  should_fail+0xb/0x20
[  223.539802][ T8927]  should_fail_usercopy+0x1a/0x20
[  223.539824][ T8927]  _copy_from_user+0x1c/0xb0
[  223.539950][ T8927]  ___sys_sendmsg+0xc1/0x1d0
[  223.539994][ T8927]  __x64_sys_sendmsg+0xd4/0x160
[  223.540019][ T8927]  x64_sys_call+0x191e/0x2ff0
[  223.540040][ T8927]  do_syscall_64+0xd2/0x200
[  223.540083][ T8927]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  223.540158][ T8927]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  223.540181][ T8927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.540255][ T8927] RIP: 0033:0x7f9d1e4aeec9
[  223.540270][ T8927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.540286][ T8927] RSP: 002b:00007f9d1cf17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  223.540303][ T8927] RAX: ffffffffffffffda RBX: 00007f9d1e705fa0 RCX: 00007f9d1e4aeec9
[  223.540313][ T8927] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 0000000000000005
[  223.540323][ T8927] RBP: 00007f9d1cf17090 R08: 0000000000000000 R09: 0000000000000000
[  223.540373][ T8927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.540438][ T8927] R13: 00007f9d1e706038 R14: 00007f9d1e705fa0 R15: 00007ffe14e79ce8
[  223.540457][ T8927]  </TASK>
[  223.716452][ T8922] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  223.745766][ T8922] EXT4-fs (loop5): 1 truncate cleaned up
[  223.752228][ T8922] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.792448][ T8935] validate_nla: 3 callbacks suppressed
[  223.792462][ T8935] netlink: 'syz.3.1679': attribute type 3 has an invalid length.
[  223.805899][ T8935] netlink: 'syz.3.1679': attribute type 3 has an invalid length.
[  223.935090][ T8944] IPv6: Can't replace route, no match found
[  224.222734][ T8959] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  224.231575][ T8959] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  224.241003][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.258707][ T8962] loop5: detected capacity change from 0 to 1024
[  224.265415][ T8962] EXT4-fs: Ignoring removed nomblk_io_submit option
[  224.273248][ T8962] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  224.281537][ T8962] System zones: 0-1, 3-36
[  224.286707][ T8962] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.308560][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.340126][ T8967] FAULT_INJECTION: forcing a failure.
[  224.340126][ T8967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  224.353250][ T8967] CPU: 1 UID: 0 PID: 8967 Comm: syz.5.1691 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  224.353298][ T8967] Tainted: [W]=WARN
[  224.353302][ T8967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  224.353308][ T8967] Call Trace:
[  224.353313][ T8967]  <TASK>
[  224.353318][ T8967]  __dump_stack+0x1d/0x30
[  224.353331][ T8967]  dump_stack_lvl+0xe8/0x140
[  224.353341][ T8967]  dump_stack+0x15/0x1b
[  224.353386][ T8967]  should_fail_ex+0x265/0x280
[  224.353402][ T8967]  should_fail+0xb/0x20
[  224.353491][ T8967]  should_fail_usercopy+0x1a/0x20
[  224.353505][ T8967]  _copy_from_user+0x1c/0xb0
[  224.353521][ T8967]  ___sys_sendmsg+0xc1/0x1d0
[  224.353576][ T8967]  __x64_sys_sendmsg+0xd4/0x160
[  224.353591][ T8967]  x64_sys_call+0x191e/0x2ff0
[  224.353603][ T8967]  do_syscall_64+0xd2/0x200
[  224.353620][ T8967]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  224.353689][ T8967]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  224.353750][ T8967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.353813][ T8967] RIP: 0033:0x7fd73ed1eec9
[  224.353822][ T8967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.353832][ T8967] RSP: 002b:00007fd73d787038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  224.353843][ T8967] RAX: ffffffffffffffda RBX: 00007fd73ef75fa0 RCX: 00007fd73ed1eec9
[  224.353849][ T8967] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  224.353856][ T8967] RBP: 00007fd73d787090 R08: 0000000000000000 R09: 0000000000000000
[  224.353888][ T8967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  224.353894][ T8967] R13: 00007fd73ef76038 R14: 00007fd73ef75fa0 R15: 00007ffeebffb7d8
[  224.353919][ T8967]  </TASK>
[  224.670268][ T8984] loop5: detected capacity change from 0 to 512
[  224.686929][ T8984] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  224.699868][ T8984] EXT4-fs (loop5): orphan cleanup on readonly fs
[  224.708266][ T8984] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1699: bg 0: block 248: padding at end of block bitmap is not set
[  224.724135][ T8984] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1699: Failed to acquire dquot type 1
[  224.739788][ T8984] EXT4-fs (loop5): 1 truncate cleaned up
[  224.746361][ T8989] loop4: detected capacity change from 0 to 512
[  224.746402][ T8984] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  224.768353][ T8989] EXT4-fs: Ignoring removed nobh option
[  224.792732][ T8989] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  224.804322][ T8989] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  224.814403][ T8989] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.1701: Corrupt directory, running e2fsck is recommended
[  224.838003][ T8989] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  224.847094][ T8989] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.1701: corrupted in-inode xattr: invalid ea_ino
[  224.865472][ T8989] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1701: couldn't read orphan inode 15 (err -117)
[  224.877870][ T6899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.888275][ T8989] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.937630][ T8991] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1702'.
[  224.979118][ T9006] loop3: detected capacity change from 0 to 1024
[  224.986120][ T9006] EXT4-fs: Ignoring removed orlov option
[  225.002783][ T9010] FAULT_INJECTION: forcing a failure.
[  225.002783][ T9010] name failslab, interval 1, probability 0, space 0, times 0
[  225.010172][ T9006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.015446][ T9010] CPU: 0 UID: 0 PID: 9010 Comm: syz.0.1709 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  225.015477][ T9010] Tainted: [W]=WARN
[  225.015484][ T9010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  225.015495][ T9010] Call Trace:
[  225.015503][ T9010]  <TASK>
[  225.015511][ T9010]  __dump_stack+0x1d/0x30
[  225.015532][ T9010]  dump_stack_lvl+0xe8/0x140
[  225.015622][ T9010]  dump_stack+0x15/0x1b
[  225.015638][ T9010]  should_fail_ex+0x265/0x280
[  225.015660][ T9010]  ? __se_sys_mount+0xef/0x2e0
[  225.015681][ T9010]  should_failslab+0x8c/0xb0
[  225.015781][ T9010]  __kmalloc_cache_noprof+0x4c/0x320
[  225.015808][ T9010]  ? memdup_user+0x99/0xd0
[  225.015852][ T9010]  __se_sys_mount+0xef/0x2e0
[  225.015871][ T9010]  ? fput+0x8f/0xc0
[  225.015970][ T9010]  ? ksys_write+0x192/0x1a0
[  225.016023][ T9010]  __x64_sys_mount+0x67/0x80
[  225.016043][ T9010]  x64_sys_call+0x2b4d/0x2ff0
[  225.016063][ T9010]  do_syscall_64+0xd2/0x200
[  225.016092][ T9010]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  225.016183][ T9010]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  225.016222][ T9010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.016241][ T9010] RIP: 0033:0x7f747dc8eec9
[  225.016256][ T9010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.016272][ T9010] RSP: 002b:00007f747c6ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  225.016350][ T9010] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8eec9
[  225.016362][ T9010] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 0000000000000000
[  225.016374][ T9010] RBP: 00007f747c6ef090 R08: 0000200000000040 R09: 0000000000000000
[  225.016386][ T9010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.016405][ T9010] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  225.016422][ T9010]  </TASK>
[  225.237125][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.250468][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.309622][ T9025] netlink: 'syz.4.1716': attribute type 1 has an invalid length.
[  225.318732][ T9026] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1716'.
[  225.333342][ T9031] loop3: detected capacity change from 0 to 512
[  225.335751][ T9025] 8021q: adding VLAN 0 to HW filter on device bond3
[  225.347021][ T9031] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  225.356580][ T9026] bond3 (unregistering): Released all slaves
[  225.360314][ T9031] EXT4-fs (loop3): orphan cleanup on readonly fs
[  225.369469][ T9031] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1710: bg 0: block 248: padding at end of block bitmap is not set
[  225.384187][ T9031] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1710: Failed to acquire dquot type 1
[  225.396310][ T9031] EXT4-fs (loop3): 1 truncate cleaned up
[  225.402754][ T9031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  225.402814][ T9034] FAULT_INJECTION: forcing a failure.
[  225.402814][ T9034] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.402839][ T9034] CPU: 0 UID: 0 PID: 9034 Comm: syz.0.1718 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  225.402865][ T9034] Tainted: [W]=WARN
[  225.402871][ T9034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  225.402937][ T9034] Call Trace:
[  225.402942][ T9034]  <TASK>
[  225.402949][ T9034]  __dump_stack+0x1d/0x30
[  225.402968][ T9034]  dump_stack_lvl+0xe8/0x140
[  225.402991][ T9034]  dump_stack+0x15/0x1b
[  225.403007][ T9034]  should_fail_ex+0x265/0x280
[  225.403059][ T9034]  should_fail+0xb/0x20
[  225.403078][ T9034]  should_fail_usercopy+0x1a/0x20
[  225.403105][ T9034]  _copy_from_user+0x1c/0xb0
[  225.403132][ T9034]  ___sys_sendmsg+0xc1/0x1d0
[  225.403168][ T9034]  __sys_sendmmsg+0x178/0x300
[  225.403209][ T9034]  __x64_sys_sendmmsg+0x57/0x70
[  225.403295][ T9034]  x64_sys_call+0x1c4a/0x2ff0
[  225.403315][ T9034]  do_syscall_64+0xd2/0x200
[  225.403345][ T9034]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  225.403368][ T9034]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  225.403400][ T9034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.403419][ T9034] RIP: 0033:0x7f747dc8eec9
[  225.403433][ T9034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.403449][ T9034] RSP: 002b:00007f747c6ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  225.403542][ T9034] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8eec9
[  225.403554][ T9034] RDX: 0000000000034000 RSI: 00002000000008c0 RDI: 0000000000000007
[  225.403573][ T9034] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000000
[  225.403584][ T9034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.403595][ T9034] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  225.403612][ T9034]  </TASK>
[  225.504967][ T9038] loop4: detected capacity change from 0 to 8192
[  225.629131][ T9038] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1720'.
[  225.639564][ T9038] netlink: 'syz.4.1720': attribute type 1 has an invalid length.
[  225.647410][ T9038] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1720'.
[  225.729320][ T9042] loop1: detected capacity change from 0 to 1024
[  225.751796][ T9045] loop5: detected capacity change from 0 to 128
[  225.752265][ T9042] EXT4-fs: Ignoring removed orlov option
[  225.775318][ T9042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.810021][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.841493][ T9055] loop4: detected capacity change from 0 to 512
[  225.861454][ T9060] syzkaller0: entered allmulticast mode
[  225.862304][ T9061] loop1: detected capacity change from 0 to 128
[  225.877138][ T9055] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  225.890335][ T9055] EXT4-fs (loop4): orphan cleanup on readonly fs
[  225.912263][ T9055] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1727: bg 0: block 248: padding at end of block bitmap is not set
[  225.927885][ T9055] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1727: Failed to acquire dquot type 1
[  225.943727][ T9055] EXT4-fs (loop4): 1 truncate cleaned up
[  225.950154][ T9055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  225.972383][ T9071] loop1: detected capacity change from 0 to 128
[  225.979081][ T9071] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  225.992390][ T9071] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  226.004077][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.076403][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.123664][ T9086] sd 0:0:1:0: device reset
[  226.130920][ T9079] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1738'.
[  226.144734][ T9086] loop3: detected capacity change from 0 to 1024
[  226.152615][ T9086] EXT4-fs: Ignoring removed nobh option
[  226.159826][ T9079] netlink: 'syz.0.1738': attribute type 1 has an invalid length.
[  226.167694][ T9079] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1738'.
[  226.179185][ T9086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.194320][   T29] kauditd_printk_skb: 108 callbacks suppressed
[  226.194334][   T29] audit: type=1400 audit(1758808007.490:2894): avc:  denied  { remount } for  pid=9085 comm="syz.3.1741" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  226.221151][ T9086] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  226.245964][   T29] audit: type=1400 audit(1758808007.543:2895): avc:  denied  { create } for  pid=9089 comm="syz.5.1742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  226.265818][   T29] audit: type=1400 audit(1758808007.553:2896): avc:  denied  { write } for  pid=9089 comm="syz.5.1742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  226.308829][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.319546][ T9094] syzkaller0: entered allmulticast mode
[  226.397691][ T9111] loop4: detected capacity change from 0 to 128
[  226.468149][ T9117] random: crng reseeded on system resumption
[  226.468500][ T9115] loop4: detected capacity change from 0 to 8192
[  226.474222][   T29] audit: type=1400 audit(1758808007.784:2897): avc:  denied  { write } for  pid=9116 comm="syz.3.1754" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  226.510612][   T29] audit: type=1326 audit(1758808007.826:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.534144][   T29] audit: type=1326 audit(1758808007.826:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.557603][   T29] audit: type=1326 audit(1758808007.826:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.581049][   T29] audit: type=1326 audit(1758808007.826:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.604577][   T29] audit: type=1326 audit(1758808007.826:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.628011][   T29] audit: type=1326 audit(1758808007.826:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9116 comm="syz.3.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f592885eec9 code=0x7ffc0000
[  226.653557][ T9115] netlink: 'syz.4.1753': attribute type 1 has an invalid length.
[  226.720146][ T8702] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  226.766005][ T9136] syzkaller0: entered allmulticast mode
[  226.933077][ T9156] loop1: detected capacity change from 0 to 1024
[  226.939839][ T9156] EXT4-fs: Ignoring removed orlov option
[  226.946831][ T9156] EXT4-fs: Ignoring removed nobh option
[  226.952481][ T9156] EXT4-fs: Ignoring removed bh option
[  227.009703][ T9156] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.1771: Allocating blocks 481-513 which overlap fs metadata
[  227.023946][ T9158] loop4: detected capacity change from 0 to 8192
[  227.032941][ T9164] loop3: detected capacity change from 0 to 128
[  227.039706][ T9164] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  227.052671][ T9164] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  227.054929][ T9158] netlink: 'syz.4.1772': attribute type 1 has an invalid length.
[  227.180754][ T9178] syzkaller0: entered allmulticast mode
[  227.309126][ T9196] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  227.323859][ T9196] SELinux: failed to load policy
[  227.329547][ T9184] __nla_validate_parse: 6 callbacks suppressed
[  227.329561][ T9184] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1782'.
[  227.379825][ T9199] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1789'.
[  227.390977][ T9199] netlink: 'syz.0.1789': attribute type 1 has an invalid length.
[  227.398747][ T9199] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1789'.
[  227.411656][ T9201] loop4: detected capacity change from 0 to 512
[  227.418685][ T9201] EXT4-fs: Ignoring removed mblk_io_submit option
[  227.425469][ T9201] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  227.436569][ T9201] EXT4-fs (loop4): 1 truncate cleaned up
[  227.643385][ T9225] loop4: detected capacity change from 0 to 512
[  227.650524][ T9225] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  227.660240][ T9225] EXT4-fs (loop4): orphan cleanup on readonly fs
[  227.667154][ T9225] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1798: bg 0: block 248: padding at end of block bitmap is not set
[  227.681650][ T9225] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1798: Failed to acquire dquot type 1
[  227.693588][ T9225] EXT4-fs (loop4): 1 truncate cleaned up
[  227.786835][ T8700] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  227.803536][ T9233] loop3: detected capacity change from 0 to 128
[  227.833180][ T9231] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1800'.
[  227.911030][ T9247] loop3: detected capacity change from 0 to 1024
[  227.918125][ T9247] EXT4-fs: Ignoring removed nomblk_io_submit option
[  227.926109][ T9247] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  227.934420][ T9247] System zones: 0-1, 3-36
[  227.947771][ T9254] loop4: detected capacity change from 0 to 512
[  227.956542][ T9254] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  227.967001][ T9254] EXT4-fs (loop4): orphan cleanup on readonly fs
[  227.973962][ T9254] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1810: bg 0: block 248: padding at end of block bitmap is not set
[  227.988574][ T9254] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1810: Failed to acquire dquot type 1
[  228.000857][ T9254] EXT4-fs (loop4): 1 truncate cleaned up
[  228.099311][ T9267] loop4: detected capacity change from 0 to 128
[  228.135511][ T9273] sd 0:0:1:0: device reset
[  228.147584][ T9273] loop1: detected capacity change from 0 to 1024
[  228.154984][ T9273] EXT4-fs: Ignoring removed nobh option
[  228.175848][ T9273] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  228.379661][ T9294] loop4: detected capacity change from 0 to 512
[  228.392014][ T9294] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  228.407317][ T9294] EXT4-fs (loop4): orphan cleanup on readonly fs
[  228.414374][ T9294] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1827: bg 0: block 248: padding at end of block bitmap is not set
[  228.429686][ T9294] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1827: Failed to acquire dquot type 1
[  228.441641][ T9294] EXT4-fs (loop4): 1 truncate cleaned up
[  228.479979][ T9309] syzkaller0: entered allmulticast mode
[  228.902442][ T9326] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1840'.
[  228.967225][ T9338] loop5: detected capacity change from 0 to 128
[  229.034705][ T9345] loop5: detected capacity change from 0 to 1024
[  229.042026][ T9345] EXT4-fs: Ignoring removed nomblk_io_submit option
[  229.050109][ T9345] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  229.058988][ T9345] System zones: 0-1, 3-36
[  229.319203][ T9375] loop1: detected capacity change from 0 to 1024
[  229.334079][ T9375] EXT4-fs: Ignoring removed nomblk_io_submit option
[  229.345500][ T9375] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  229.361532][ T9375] System zones: 0-1, 3-36
[  229.412583][ T9385] loop1: detected capacity change from 0 to 512
[  229.419835][ T9385] EXT4-fs: Ignoring removed nobh option
[  229.426927][ T9385] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  229.427910][ T9389] syzkaller0: entered allmulticast mode
[  229.438558][ T9385] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  229.454073][ T9385] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.1864: Corrupt directory, running e2fsck is recommended
[  229.468096][ T9385] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  229.476407][ T9385] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.1864: corrupted in-inode xattr: invalid ea_ino
[  229.490363][ T9385] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1864: couldn't read orphan inode 15 (err -117)
[  229.490483][ T9391] loop5: detected capacity change from 0 to 128
[  229.509257][ T9391] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  229.521476][ T9391] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  229.700793][ T9408] loop1: detected capacity change from 0 to 1024
[  229.709850][ T9408] EXT4-fs: Ignoring removed nomblk_io_submit option
[  229.717780][ T9408] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  229.725998][ T9408] System zones: 0-1, 3-36
[  229.913982][ T9422] loop1: detected capacity change from 0 to 8192
[  229.930350][ T9422] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1880'.
[  229.941090][ T9422] netlink: 'syz.1.1880': attribute type 1 has an invalid length.
[  229.948850][ T9422] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1880'.
[  230.146186][ T9431] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1884'.
[  230.189501][ T9436] loop1: detected capacity change from 0 to 1024
[  230.197348][ T9436] EXT4-fs: Ignoring removed nomblk_io_submit option
[  230.208035][ T9436] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  230.217080][ T9436] System zones: 0-1, 3-36
[  230.222693][ T8702] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  230.272911][ T9451] loop4: detected capacity change from 0 to 128
[  230.368328][ T9455] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1895'.
[  230.450779][ T9471] loop5: detected capacity change from 0 to 1024
[  230.457658][ T9471] EXT4-fs: Ignoring removed nomblk_io_submit option
[  230.467515][ T9471] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  230.478252][ T9471] System zones: 0-1, 3-36
[  230.531125][ T9480] loop5: detected capacity change from 0 to 128
[  230.560846][ T9483] sd 0:0:1:0: device reset
[  230.572021][ T9483] loop5: detected capacity change from 0 to 1024
[  230.579067][ T9483] EXT4-fs: Ignoring removed nobh option
[  230.606572][ T9483] ext4: Unknown parameter '˙˙184467440737095516150xffffffffffffffff˙˙˙˙˙˙˙˙˙˙˙˙˙˙'
[  230.710806][ T9505] loop3: detected capacity change from 0 to 1024
[  230.717668][ T9505] EXT4-fs: Ignoring removed nomblk_io_submit option
[  230.726244][ T9505] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  230.734593][ T9505] System zones: 0-1, 3-36
[  230.813716][ T9500] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1914'.
[  231.184482][ T9534] 9pnet_fd: Insufficient options for proto=fd
[  231.217663][ T9536] sd 0:0:1:0: device reset
[  231.233424][ T9536] loop1: detected capacity change from 0 to 1024
[  231.260478][ T9536] EXT4-fs: Ignoring removed nobh option
[  231.289245][ T9536] ext4: Unknown parameter '˙˙184467440737095516150xffffffffffffffff˙˙˙˙˙˙˙˙˙˙˙˙˙˙'
[  231.300526][ T9542] syzkaller0: entered allmulticast mode
[  231.498631][   T29] kauditd_printk_skb: 153 callbacks suppressed
[  231.498646][   T29] audit: type=1326 audit(1758808013.066:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.528400][   T29] audit: type=1326 audit(1758808013.066:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.563880][ T9558] loop4: detected capacity change from 0 to 512
[  231.572281][   T29] audit: type=1326 audit(1758808013.129:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.595876][   T29] audit: type=1326 audit(1758808013.129:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.619496][   T29] audit: type=1326 audit(1758808013.129:3055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.643076][   T29] audit: type=1326 audit(1758808013.129:3056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.666626][   T29] audit: type=1326 audit(1758808013.129:3057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.682745][ T9560] loop1: detected capacity change from 0 to 512
[  231.690223][   T29] audit: type=1326 audit(1758808013.129:3058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.690311][   T29] audit: type=1326 audit(1758808013.129:3059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.743296][   T29] audit: type=1326 audit(1758808013.129:3060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9557 comm="syz.4.1939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d1e4aeec9 code=0x7ffc0000
[  231.744478][ T9560] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  231.797861][ T9558] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e118, mo2=0002]
[  231.806147][ T9558] System zones: 0-2, 18-18, 34-34
[  231.829380][ T9558] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters
[  231.844043][ T9558] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.1939: corrupted inode contents
[  231.856271][ T9558] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.1939: mark_inode_dirty error
[  231.856532][ T9560] EXT4-fs (loop1): orphan cleanup on readonly fs
[  231.874911][ T9558] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.1939: corrupted inode contents
[  231.893681][ T9558] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.1939: mark_inode_dirty error
[  231.895308][ T9567] FAULT_INJECTION: forcing a failure.
[  231.895308][ T9567] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.905581][ T9558] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.1939: corrupted inode contents
[  231.918015][ T9567] CPU: 1 UID: 0 PID: 9567 Comm: syz.0.1942 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  231.918043][ T9567] Tainted: [W]=WARN
[  231.918049][ T9567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  231.918110][ T9567] Call Trace:
[  231.918117][ T9567]  <TASK>
[  231.918125][ T9567]  __dump_stack+0x1d/0x30
[  231.918147][ T9567]  dump_stack_lvl+0xe8/0x140
[  231.918204][ T9567]  dump_stack+0x15/0x1b
[  231.918220][ T9567]  should_fail_ex+0x265/0x280
[  231.918244][ T9567]  should_fail+0xb/0x20
[  231.918264][ T9567]  should_fail_usercopy+0x1a/0x20
[  231.918300][ T9567]  _copy_from_user+0x1c/0xb0
[  231.918329][ T9567]  ___sys_sendmsg+0xc1/0x1d0
[  231.918387][ T9567]  __x64_sys_sendmsg+0xd4/0x160
[  231.918416][ T9567]  x64_sys_call+0x191e/0x2ff0
[  231.918437][ T9567]  do_syscall_64+0xd2/0x200
[  231.918491][ T9567]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  231.918515][ T9567]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  231.918573][ T9567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.918594][ T9567] RIP: 0033:0x7f747dc8eec9
[  231.918609][ T9567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.918626][ T9567] RSP: 002b:00007f747c6ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  231.918645][ T9567] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8eec9
[  231.918657][ T9567] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  231.918670][ T9567] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000000
[  231.918703][ T9567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.918715][ T9567] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  231.918734][ T9567]  </TASK>
[  231.929744][ T9560] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1940: bg 0: block 248: padding at end of block bitmap is not set
[  231.930308][ T9558] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  231.961865][ T9570] loop5: detected capacity change from 0 to 128
[  231.966043][ T9558] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.1939: corrupted inode contents
[  231.974805][ T9560] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1940: Failed to acquire dquot type 1
[  231.979348][ T9558] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.1939: mark_inode_dirty error
[  231.992723][ T9570] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  231.993278][ T9558] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  231.997925][ T9570] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  232.002895][ T9558] EXT4-fs (loop4): 1 truncate cleaned up
[  232.007644][ T9560] EXT4-fs (loop1): 1 truncate cleaned up
[  232.011857][ T9558] ext4 filesystem being mounted at /367/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  232.225706][ T8705] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:58: Failed to release dquot type 1
[  232.292075][ T9579] bridge_slave_0: left allmulticast mode
[  232.297881][ T9579] bridge_slave_0: left promiscuous mode
[  232.303546][ T9579] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.314740][ T9579] bridge_slave_1: left allmulticast mode
[  232.320402][ T9579] bridge_slave_1: left promiscuous mode
[  232.326220][ T9579] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.351096][ T9579] bond0: (slave bond_slave_0): Releasing backup interface
[  232.368652][ T9579] bond0: (slave bond_slave_1): Releasing backup interface
[  232.381823][ T9579] team0: Port device team_slave_0 removed
[  232.400232][ T9579] team0: Port device team_slave_1 removed
[  232.414656][ T9579] batman_adv: batadv0: Removing interface: batadv_slave_0
[  232.431211][ T9579] batman_adv: batadv0: Removing interface: batadv_slave_1
[  232.700810][ T8702] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  232.734625][ T9605] loop5: detected capacity change from 0 to 512
[  232.753699][ T9605] EXT4-fs: Ignoring removed bh option
[  232.783815][ T9605] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  232.836862][ T9603] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1956'.
[  232.971980][ T9616] loop5: detected capacity change from 0 to 1024
[  232.978745][ T9616] EXT4-fs: Ignoring removed nomblk_io_submit option
[  232.989143][ T9616] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c01c, mo2=0003]
[  232.997309][ T9616] System zones: 0-1, 3-36
[  233.035962][ T9621] loop5: detected capacity change from 0 to 512
[  233.042672][ T9621] EXT4-fs: Ignoring removed bh option
[  233.078215][ T9621] ext4 filesystem being mounted at /222/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  233.129529][ T9625] FAULT_INJECTION: forcing a failure.
[  233.129529][ T9625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.142744][ T9625] CPU: 0 UID: 0 PID: 9625 Comm: syz.4.1964 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  233.142775][ T9625] Tainted: [W]=WARN
[  233.142781][ T9625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  233.142830][ T9625] Call Trace:
[  233.142837][ T9625]  <TASK>
[  233.142845][ T9625]  __dump_stack+0x1d/0x30
[  233.142867][ T9625]  dump_stack_lvl+0xe8/0x140
[  233.142882][ T9625]  dump_stack+0x15/0x1b
[  233.142923][ T9625]  should_fail_ex+0x265/0x280
[  233.143006][ T9625]  should_fail+0xb/0x20
[  233.143101][ T9625]  should_fail_usercopy+0x1a/0x20
[  233.143126][ T9625]  _copy_from_user+0x1c/0xb0
[  233.143175][ T9625]  ___sys_sendmsg+0xc1/0x1d0
[  233.143222][ T9625]  __sys_sendmmsg+0x178/0x300
[  233.143257][ T9625]  __x64_sys_sendmmsg+0x57/0x70
[  233.143283][ T9625]  x64_sys_call+0x1c4a/0x2ff0
[  233.143304][ T9625]  do_syscall_64+0xd2/0x200
[  233.143360][ T9625]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  233.143380][ T9625]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  233.143408][ T9625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.143429][ T9625] RIP: 0033:0x7f9d1e4aeec9
[  233.143450][ T9625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.143467][ T9625] RSP: 002b:00007f9d1cf17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  233.143486][ T9625] RAX: ffffffffffffffda RBX: 00007f9d1e705fa0 RCX: 00007f9d1e4aeec9
[  233.143500][ T9625] RDX: 0000000000000002 RSI: 0000200000005f40 RDI: 0000000000000005
[  233.143513][ T9625] RBP: 00007f9d1cf17090 R08: 0000000000000000 R09: 0000000000000000
[  233.143525][ T9625] R10: 0000000004000004 R11: 0000000000000246 R12: 0000000000000001
[  233.143537][ T9625] R13: 00007f9d1e706038 R14: 00007f9d1e705fa0 R15: 00007ffe14e79ce8
[  233.143596][ T9625]  </TASK>
[  233.347000][ T9621] FAULT_INJECTION: forcing a failure.
[  233.347000][ T9621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.360101][ T9621] CPU: 0 UID: 0 PID: 9621 Comm: syz.5.1963 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  233.360133][ T9621] Tainted: [W]=WARN
[  233.360139][ T9621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  233.360149][ T9621] Call Trace:
[  233.360155][ T9621]  <TASK>
[  233.360161][ T9621]  __dump_stack+0x1d/0x30
[  233.360179][ T9621]  dump_stack_lvl+0xe8/0x140
[  233.360200][ T9621]  dump_stack+0x15/0x1b
[  233.360213][ T9621]  should_fail_ex+0x265/0x280
[  233.360236][ T9621]  should_fail+0xb/0x20
[  233.360257][ T9621]  should_fail_usercopy+0x1a/0x20
[  233.360286][ T9621]  _copy_from_user+0x1c/0xb0
[  233.360382][ T9621]  ext4_ioctl+0x5ac/0x2080
[  233.360452][ T9621]  ? file_ioctl+0x146/0x530
[  233.360466][ T9621]  ? ioctl_has_perm+0x257/0x2a0
[  233.360485][ T9621]  ? do_vfs_ioctl+0x7ca/0xe10
[  233.360503][ T9621]  ? selinux_file_ioctl+0x308/0x3a0
[  233.360571][ T9621]  ? __fget_files+0x184/0x1c0
[  233.360597][ T9621]  ? __pfx_ext4_ioctl+0x10/0x10
[  233.360615][ T9621]  __se_sys_ioctl+0xcb/0x140
[  233.360631][ T9621]  __x64_sys_ioctl+0x43/0x50
[  233.360657][ T9621]  x64_sys_call+0x1816/0x2ff0
[  233.360677][ T9621]  do_syscall_64+0xd2/0x200
[  233.360731][ T9621]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  233.360826][ T9621]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  233.360851][ T9621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.360939][ T9621] RIP: 0033:0x7fd73ed1eec9
[  233.360952][ T9621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.360967][ T9621] RSP: 002b:00007fd73d787038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  233.360986][ T9621] RAX: ffffffffffffffda RBX: 00007fd73ef75fa0 RCX: 00007fd73ed1eec9
[  233.361035][ T9621] RDX: 0000200000000200 RSI: 00000000c028660f RDI: 0000000000000005
[  233.361047][ T9621] RBP: 00007fd73d787090 R08: 0000000000000000 R09: 0000000000000000
[  233.361058][ T9621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.361069][ T9621] R13: 00007fd73ef76038 R14: 00007fd73ef75fa0 R15: 00007ffeebffb7d8
[  233.361083][ T9621]  </TASK>
[  233.591118][ T9631] FAULT_INJECTION: forcing a failure.
[  233.591118][ T9631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.604271][ T9631] CPU: 0 UID: 0 PID: 9631 Comm: syz.0.1966 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  233.604300][ T9631] Tainted: [W]=WARN
[  233.604305][ T9631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  233.604340][ T9631] Call Trace:
[  233.604347][ T9631]  <TASK>
[  233.604355][ T9631]  __dump_stack+0x1d/0x30
[  233.604376][ T9631]  dump_stack_lvl+0xe8/0x140
[  233.604395][ T9631]  dump_stack+0x15/0x1b
[  233.604450][ T9631]  should_fail_ex+0x265/0x280
[  233.604469][ T9631]  should_fail+0xb/0x20
[  233.604554][ T9631]  should_fail_usercopy+0x1a/0x20
[  233.604596][ T9631]  _copy_from_user+0x1c/0xb0
[  233.604624][ T9631]  __sys_bpf+0x178/0x7b0
[  233.604656][ T9631]  __x64_sys_bpf+0x41/0x50
[  233.604759][ T9631]  x64_sys_call+0x2aea/0x2ff0
[  233.604782][ T9631]  do_syscall_64+0xd2/0x200
[  233.604807][ T9631]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  233.604921][ T9631]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  233.604947][ T9631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.604968][ T9631] RIP: 0033:0x7f747dc8eec9
[  233.604982][ T9631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.604998][ T9631] RSP: 002b:00007f747c6ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  233.605016][ T9631] RAX: ffffffffffffffda RBX: 00007f747dee5fa0 RCX: 00007f747dc8eec9
[  233.605039][ T9631] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[  233.605051][ T9631] RBP: 00007f747c6ef090 R08: 0000000000000000 R09: 0000000000000000
[  233.605063][ T9631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.605075][ T9631] R13: 00007f747dee6038 R14: 00007f747dee5fa0 R15: 00007fff6b1e3218
[  233.605093][ T9631]  </TASK>
[  233.825614][ T9640] loop5: detected capacity change from 0 to 512
[  233.845226][ T9640] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  233.875615][ T9640] EXT4-fs (loop5): orphan cleanup on readonly fs
[  233.885954][ T9640] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1967: bg 0: block 248: padding at end of block bitmap is not set
[  233.902543][ T9640] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1967: Failed to acquire dquot type 1
[  233.917177][ T9648] loop1: detected capacity change from 0 to 512
[  233.924947][ T9648] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  233.934544][ T9648] EXT4-fs (loop1): orphan cleanup on readonly fs
[  233.941503][ T9648] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1972: bg 0: block 248: padding at end of block bitmap is not set
[  233.957033][ T9648] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1972: Failed to acquire dquot type 1
[  233.968847][ T9648] EXT4-fs (loop1): 1 truncate cleaned up
[  233.979451][ T9640] EXT4-fs (loop5): 1 truncate cleaned up
[  234.154150][ T9662] Invalid ELF header magic: != ELF
[  234.191447][ T9666] loop3: detected capacity change from 0 to 512
[  234.202319][ T9666] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.238018][ T9658] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1977'.
[  234.301631][ T9682] loop5: detected capacity change from 0 to 512
[  234.308477][ T9682] EXT4-fs: Ignoring removed nobh option
[  234.315459][ T9682] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  234.327050][ T9682] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  234.337179][ T9682] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.1986: Corrupt directory, running e2fsck is recommended
[  234.350844][ T9682] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  234.359892][ T9682] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.1986: corrupted in-inode xattr: invalid ea_ino
[  234.374345][ T9682] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1986: couldn't read orphan inode 15 (err -117)
[  234.412871][ T9688] FAULT_INJECTION: forcing a failure.
[  234.412871][ T9688] name failslab, interval 1, probability 0, space 0, times 0
[  234.425564][ T9688] CPU: 1 UID: 0 PID: 9688 Comm: syz.4.1988 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  234.425593][ T9688] Tainted: [W]=WARN
[  234.425599][ T9688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  234.425608][ T9688] Call Trace:
[  234.425616][ T9688]  <TASK>
[  234.425624][ T9688]  __dump_stack+0x1d/0x30
[  234.425644][ T9688]  dump_stack_lvl+0xe8/0x140
[  234.425662][ T9688]  dump_stack+0x15/0x1b
[  234.425678][ T9688]  should_fail_ex+0x265/0x280
[  234.425701][ T9688]  should_failslab+0x8c/0xb0
[  234.425724][ T9688]  kmem_cache_alloc_noprof+0x50/0x310
[  234.425748][ T9688]  ? vm_area_dup+0x33/0x2c0
[  234.425774][ T9688]  vm_area_dup+0x33/0x2c0
[  234.425800][ T9688]  __split_vma+0xe9/0x650
[  234.425824][ T9688]  ? mntput+0x4b/0x80
[  234.425851][ T9688]  vma_modify+0x21e/0xc80
[  234.425875][ T9688]  vma_modify_flags+0x101/0x130
[  234.425900][ T9688]  mlock_fixup+0x11d/0x210
[  234.425933][ T9688]  apply_vma_lock_flags+0x193/0x250
[  234.425962][ T9688]  do_mlock+0x3c6/0x520
[  234.425984][ T9688]  ? __bpf_trace_sys_enter+0x10/0x30
[  234.426003][ T9688]  ? trace_sys_enter+0xd0/0xf0
[  234.426022][ T9688]  __x64_sys_mlock2+0x71/0x90
[  234.426042][ T9688]  x64_sys_call+0x197c/0x2ff0
[  234.426062][ T9688]  do_syscall_64+0xd2/0x200
[  234.426087][ T9688]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  234.426106][ T9688]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  234.426129][ T9688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.426148][ T9688] RIP: 0033:0x7f9d1e4aeec9
[  234.426162][ T9688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.426175][ T9688] RSP: 002b:00007f9d1cf17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000145
[  234.426191][ T9688] RAX: ffffffffffffffda RBX: 00007f9d1e705fa0 RCX: 00007f9d1e4aeec9
[  234.426201][ T9688] RDX: 0000000000000001 RSI: 0000000000002000 RDI: 0000200000ff5000
[  234.426211][ T9688] RBP: 00007f9d1cf17090 R08: 0000000000000000 R09: 0000000000000000
[  234.426221][ T9688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.426231][ T9688] R13: 00007f9d1e706038 R14: 00007f9d1e705fa0 R15: 00007ffe14e79ce8
[  234.426247][ T9688]  </TASK>
[  234.672518][ T9693] sd 0:0:1:0: device reset
[  234.713944][ T9545] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  234.734827][ T9695] loop1: detected capacity change from 0 to 8192
[  234.770706][ T9695] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1991'.
[  234.794311][ T9695] netlink: 'syz.1.1991': attribute type 1 has an invalid length.
[  234.802091][ T9695] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1991'.
[  234.899018][ T9709] usb usb8: usbfs: process 9709 (syz.0.1997) did not claim interface 0 before use
[  235.019412][ T9722] loop4: detected capacity change from 0 to 512
[  235.026532][ T9722] EXT4-fs: Ignoring removed nobh option
[  235.037961][ T9722] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  235.049601][ T9722] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  235.059720][ T9722] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.2002: Corrupt directory, running e2fsck is recommended
[  235.101522][ T9722] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  235.125974][ T9722] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.2002: corrupted in-inode xattr: invalid ea_ino
[  235.209293][ T9722] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2002: couldn't read orphan inode 15 (err -117)
[  235.260027][ T9738] loop5: detected capacity change from 0 to 512
[  235.267632][ T9738] EXT4-fs: Ignoring removed nobh option
[  235.274533][ T9738] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  235.283222][ T9738] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #13: comm syz.5.2007: casefold flag without casefold feature
[  235.297198][ T9738] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.2007: couldn't read orphan inode 13 (err -117)
[  235.345151][ T9738] SELinux: failed to load policy
[  235.484988][ T9757] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2015'.
[  235.521548][ T9757] net_ratelimit: 1 callbacks suppressed
[  235.521560][ T9757] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  235.548307][ T9757] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2015'.
[  235.557935][ T9757] netlink: 332 bytes leftover after parsing attributes in process `syz.5.2015'.
[  235.589131][ T9762] FAULT_INJECTION: forcing a failure.
[  235.589131][ T9762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.602380][ T9762] CPU: 0 UID: 0 PID: 9762 Comm: syz.5.2016 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  235.602424][ T9762] Tainted: [W]=WARN
[  235.602431][ T9762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  235.602442][ T9762] Call Trace:
[  235.602448][ T9762]  <TASK>
[  235.602456][ T9762]  __dump_stack+0x1d/0x30
[  235.602479][ T9762]  dump_stack_lvl+0xe8/0x140
[  235.602504][ T9762]  dump_stack+0x15/0x1b
[  235.602658][ T9762]  should_fail_ex+0x265/0x280
[  235.602682][ T9762]  should_fail+0xb/0x20
[  235.602699][ T9762]  should_fail_usercopy+0x1a/0x20
[  235.602719][ T9762]  _copy_from_user+0x1c/0xb0
[  235.602804][ T9762]  ___sys_recvmsg+0xaa/0x370
[  235.602841][ T9762]  do_recvmmsg+0x1ef/0x540
[  235.602915][ T9762]  __x64_sys_recvmmsg+0xe5/0x170
[  235.602939][ T9762]  x64_sys_call+0x27a6/0x2ff0
[  235.602960][ T9762]  do_syscall_64+0xd2/0x200
[  235.602992][ T9762]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  235.603165][ T9762]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  235.603194][ T9762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.603324][ T9762] RIP: 0033:0x7fd73ed1eec9
[  235.603338][ T9762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.603354][ T9762] RSP: 002b:00007fd73d787038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  235.603450][ T9762] RAX: ffffffffffffffda RBX: 00007fd73ef75fa0 RCX: 00007fd73ed1eec9
[  235.603464][ T9762] RDX: 0000000000000004 RSI: 0000200000000900 RDI: 0000000000000003
[  235.603476][ T9762] RBP: 00007fd73d787090 R08: 0000000000000000 R09: 0000000000000000
[  235.603542][ T9762] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000001
[  235.603552][ T9762] R13: 00007fd73ef76038 R14: 00007fd73ef75fa0 R15: 00007ffeebffb7d8
[  235.603647][ T9762]  </TASK>
[  235.889667][ T9772] loop1: detected capacity change from 0 to 512
[  235.896873][ T9772] EXT4-fs: Ignoring removed nobh option
[  235.904127][ T9772] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  235.915738][ T9772] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  235.925830][ T9772] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.2020: Corrupt directory, running e2fsck is recommended
[  235.941508][ T9772] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  235.950689][ T9772] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.2020: corrupted in-inode xattr: invalid ea_ino
[  235.965446][ T9772] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2020: couldn't read orphan inode 15 (err -117)
[  236.119718][ T9790] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2027'.
[  236.199014][ T9799] sd 0:0:1:0: device reset
[  236.269166][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  236.269180][   T29] audit: type=1326 audit(1758808018.074:3276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.299315][   T29] audit: type=1326 audit(1758808018.074:3277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.322760][   T29] audit: type=1326 audit(1758808018.074:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.346487][   T29] audit: type=1326 audit(1758808018.074:3279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.379922][   T29] audit: type=1326 audit(1758808018.189:3280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.419273][ T9807] loop4: detected capacity change from 0 to 1024
[  236.423970][   T29] audit: type=1326 audit(1758808018.231:3281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.425995][ T9807] EXT4-fs: Ignoring removed nobh option
[  236.468947][   T29] audit: type=1326 audit(1758808018.263:3282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.492465][   T29] audit: type=1326 audit(1758808018.263:3283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.515865][   T29] audit: type=1326 audit(1758808018.263:3284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.539165][   T29] audit: type=1326 audit(1758808018.263:3285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.0.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  236.581584][ T9807] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  236.609791][ T9813] loop5: detected capacity change from 0 to 128
[  236.716750][ T9821] loop5: detected capacity change from 0 to 512
[  236.740157][ T9821] EXT4-fs: Ignoring removed nobh option
[  236.754798][ T9821] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  236.766380][ T9821] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  236.776481][ T9821] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.2040: Corrupt directory, running e2fsck is recommended
[  236.794749][ T9825] loop4: detected capacity change from 0 to 512
[  236.810143][ T9825] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  236.811357][ T9821] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  236.826973][ T9821] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.2040: corrupted in-inode xattr: invalid ea_ino
[  236.841364][ T9821] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.2040: couldn't read orphan inode 15 (err -117)
[  236.871125][ T9825] EXT4-fs (loop4): orphan cleanup on readonly fs
[  236.880011][ T9825] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2042: bg 0: block 248: padding at end of block bitmap is not set
[  236.896826][ T9825] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2042: Failed to acquire dquot type 1
[  236.908706][ T9825] EXT4-fs (loop4): 1 truncate cleaned up
[  237.089248][ T9844] loop5: detected capacity change from 0 to 128
[  237.291675][ T9855] loop5: detected capacity change from 0 to 128
[  237.300199][ T9855] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  237.312600][ T9855] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  237.364723][ T9858] loop3: detected capacity change from 0 to 512
[  237.371481][ T9858] EXT4-fs: Ignoring removed mblk_io_submit option
[  237.378228][ T9858] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  237.389033][ T9858] EXT4-fs (loop3): 1 truncate cleaned up
[  237.754663][ T9865] loop4: detected capacity change from 0 to 512
[  237.762277][ T9865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  237.772318][ T9865] EXT4-fs (loop4): orphan cleanup on readonly fs
[  237.779440][ T9865] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2057: bg 0: block 248: padding at end of block bitmap is not set
[  237.796551][ T9865] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2057: Failed to acquire dquot type 1
[  237.808295][ T9865] EXT4-fs (loop4): 1 truncate cleaned up
[  237.841149][ T9868] loop4: detected capacity change from 0 to 512
[  237.848046][ T9868] EXT4-fs: Ignoring removed nobh option
[  237.855388][ T9868] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  237.867029][ T9868] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  237.877181][ T9868] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.2058: Corrupt directory, running e2fsck is recommended
[  237.891946][ T9868] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  237.900341][ T9868] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.2058: corrupted in-inode xattr: invalid ea_ino
[  237.914838][ T9868] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2058: couldn't read orphan inode 15 (err -117)
[  238.069879][ T8700] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  238.194350][ T9886] loop1: detected capacity change from 0 to 512
[  238.201774][ T9886] EXT4-fs: Ignoring removed nobh option
[  238.219029][ T9886] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  238.230616][ T9886] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  238.240762][ T9886] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.2066: Corrupt directory, running e2fsck is recommended
[  238.255660][ T9886] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  238.263885][ T9886] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.2066: corrupted in-inode xattr: invalid ea_ino
[  238.278081][ T9886] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2066: couldn't read orphan inode 15 (err -117)
[  238.310874][ T9906] loop4: detected capacity change from 0 to 128
[  238.318422][ T9906] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  238.331685][ T9906] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  238.395877][ T9915] loop5: detected capacity change from 0 to 512
[  238.402804][ T9915] EXT4-fs: Ignoring removed mblk_io_submit option
[  238.409644][ T9915] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  238.420624][ T9915] EXT4-fs (loop5): 1 truncate cleaned up
[  238.647753][ T9930] FAULT_INJECTION: forcing a failure.
[  238.647753][ T9930] name failslab, interval 1, probability 0, space 0, times 0
[  238.660557][ T9930] CPU: 1 UID: 0 PID: 9930 Comm: syz.0.2083 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  238.660644][ T9930] Tainted: [W]=WARN
[  238.660649][ T9930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  238.660706][ T9930] Call Trace:
[  238.660713][ T9930]  <TASK>
[  238.660721][ T9930]  __dump_stack+0x1d/0x30
[  238.660741][ T9930]  dump_stack_lvl+0xe8/0x140
[  238.660761][ T9930]  dump_stack+0x15/0x1b
[  238.660779][ T9930]  should_fail_ex+0x265/0x280
[  238.660871][ T9930]  ? alloc_pipe_info+0xae/0x350
[  238.660890][ T9930]  should_failslab+0x8c/0xb0
[  238.660990][ T9930]  __kmalloc_cache_noprof+0x4c/0x320
[  238.661020][ T9930]  alloc_pipe_info+0xae/0x350
[  238.661042][ T9930]  splice_direct_to_actor+0x592/0x680
[  238.661063][ T9930]  ? kstrtouint_from_user+0x9f/0xf0
[  238.661201][ T9930]  ? __pfx_direct_splice_actor+0x10/0x10
[  238.661221][ T9930]  ? __rcu_read_unlock+0x4f/0x70
[  238.661242][ T9930]  ? get_pid_task+0x96/0xd0
[  238.661261][ T9930]  ? avc_policy_seqno+0x15/0x30
[  238.661388][ T9930]  ? selinux_file_permission+0x1e4/0x320
[  238.661410][ T9930]  do_splice_direct+0xda/0x150
[  238.661434][ T9930]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  238.661455][ T9930]  do_sendfile+0x380/0x650
[  238.661531][ T9930]  __x64_sys_sendfile64+0x105/0x150
[  238.661559][ T9930]  x64_sys_call+0x2bb0/0x2ff0
[  238.661581][ T9930]  do_syscall_64+0xd2/0x200
[  238.661607][ T9930]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  238.661665][ T9930]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  238.661693][ T9930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.661711][ T9930] RIP: 0033:0x7f747dc8eec9
[  238.661750][ T9930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.661766][ T9930] RSP: 002b:00007f747c6ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  238.661786][ T9930] RAX: ffffffffffffffda RBX: 00007f747dee6090 RCX: 00007f747dc8eec9
[  238.661845][ T9930] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  238.661855][ T9930] RBP: 00007f747c6ce090 R08: 0000000000000000 R09: 0000000000000000
[  238.661865][ T9930] R10: 000000007fffeffd R11: 0000000000000246 R12: 0000000000000001
[  238.661875][ T9930] R13: 00007f747dee6128 R14: 00007f747dee6090 R15: 00007fff6b1e3218
[  238.661893][ T9930]  </TASK>
[  238.966757][ T9945] loop1: detected capacity change from 0 to 512
[  238.973547][ T9945] journal_path: Non-blockdev passed as './bus'
[  238.979754][ T9945] EXT4-fs: error: could not find journal device path
[  239.035782][ T9950] loop3: detected capacity change from 0 to 2048
[  239.072105][ T8702] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  239.088773][ T9950] Alternate GPT is invalid, using primary GPT.
[  239.095186][ T9950]  loop3: p2 p3 p7
[  239.106025][ T9950] FAULT_INJECTION: forcing a failure.
[  239.106025][ T9950] name failslab, interval 1, probability 0, space 0, times 0
[  239.118902][ T9950] CPU: 0 UID: 0 PID: 9950 Comm: syz.3.2090 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  239.118935][ T9950] Tainted: [W]=WARN
[  239.118941][ T9950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  239.118950][ T9950] Call Trace:
[  239.119013][ T9950]  <TASK>
[  239.119020][ T9950]  __dump_stack+0x1d/0x30
[  239.119041][ T9950]  dump_stack_lvl+0xe8/0x140
[  239.119060][ T9950]  dump_stack+0x15/0x1b
[  239.119076][ T9950]  should_fail_ex+0x265/0x280
[  239.119096][ T9950]  should_failslab+0x8c/0xb0
[  239.119178][ T9950]  kmem_cache_alloc_noprof+0x50/0x310
[  239.119204][ T9950]  ? getname_flags+0x80/0x3b0
[  239.119265][ T9950]  getname_flags+0x80/0x3b0
[  239.119353][ T9950]  do_sys_openat2+0x60/0x110
[  239.119384][ T9950]  __x64_sys_open+0xe6/0x110
[  239.119413][ T9950]  x64_sys_call+0x1457/0x2ff0
[  239.119432][ T9950]  do_syscall_64+0xd2/0x200
[  239.119477][ T9950]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  239.119507][ T9950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.119527][ T9950] RIP: 0033:0x7f592885eec9
[  239.119588][ T9950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.119604][ T9950] RSP: 002b:00007f59272c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  239.119622][ T9950] RAX: ffffffffffffffda RBX: 00007f5928ab5fa0 RCX: 00007f592885eec9
[  239.119629][ T9950] RDX: 0000000000000102 RSI: 0000000000145142 RDI: 0000200000000300
[  239.119636][ T9950] RBP: 00007f59272c7090 R08: 0000000000000000 R09: 0000000000000000
[  239.119642][ T9950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.119649][ T9950] R13: 00007f5928ab6038 R14: 00007f5928ab5fa0 R15: 00007ffc9a7c0fd8
[  239.119659][ T9950]  </TASK>
[  239.509391][ T9979] loop3: detected capacity change from 0 to 512
[  239.516568][ T9979] EXT4-fs: Ignoring removed mblk_io_submit option
[  239.523362][ T9979] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  239.534472][ T9979] EXT4-fs (loop3): 1 truncate cleaned up
[  239.801543][ T9985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2104'.
[  239.852007][ T9989] loop1: detected capacity change from 0 to 512
[  239.858839][ T9989] EXT4-fs: Ignoring removed mblk_io_submit option
[  239.865582][ T9989] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  239.878922][ T9989] EXT4-fs (loop1): 1 truncate cleaned up
[  239.887272][ T9989] FAULT_INJECTION: forcing a failure.
[  239.887272][ T9989] name failslab, interval 1, probability 0, space 0, times 0
[  239.900201][ T9989] CPU: 1 UID: 0 PID: 9989 Comm: syz.1.2105 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  239.900236][ T9989] Tainted: [W]=WARN
[  239.900242][ T9989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  239.900254][ T9989] Call Trace:
[  239.900268][ T9989]  <TASK>
[  239.900352][ T9989]  __dump_stack+0x1d/0x30
[  239.900372][ T9989]  dump_stack_lvl+0xe8/0x140
[  239.900388][ T9989]  dump_stack+0x15/0x1b
[  239.900405][ T9989]  should_fail_ex+0x265/0x280
[  239.900428][ T9989]  ? alloc_pipe_info+0xae/0x350
[  239.900467][ T9989]  should_failslab+0x8c/0xb0
[  239.900498][ T9989]  __kmalloc_cache_noprof+0x4c/0x320
[  239.900522][ T9989]  alloc_pipe_info+0xae/0x350
[  239.900542][ T9989]  splice_direct_to_actor+0x592/0x680
[  239.900640][ T9989]  ? kstrtouint_from_user+0x9f/0xf0
[  239.900660][ T9989]  ? __pfx_direct_splice_actor+0x10/0x10
[  239.900676][ T9989]  ? __rcu_read_unlock+0x4f/0x70
[  239.900698][ T9989]  ? get_pid_task+0x96/0xd0
[  239.900785][ T9989]  ? avc_policy_seqno+0x15/0x30
[  239.900813][ T9989]  ? selinux_file_permission+0x1e4/0x320
[  239.900831][ T9989]  do_splice_direct+0xda/0x150
[  239.900851][ T9989]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  239.900876][ T9989]  do_sendfile+0x380/0x650
[  239.900966][ T9989]  __x64_sys_sendfile64+0x105/0x150
[  239.900997][ T9989]  x64_sys_call+0x2bb0/0x2ff0
[  239.901025][ T9989]  do_syscall_64+0xd2/0x200
[  239.901057][ T9989]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  239.901168][ T9989]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  239.901253][ T9989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.901279][ T9989] RIP: 0033:0x7f209180eec9
[  239.901292][ T9989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.901306][ T9989] RSP: 002b:00007f2090277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  239.901322][ T9989] RAX: ffffffffffffffda RBX: 00007f2091a65fa0 RCX: 00007f209180eec9
[  239.901335][ T9989] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  239.901349][ T9989] RBP: 00007f2090277090 R08: 0000000000000000 R09: 0000000000000000
[  239.901361][ T9989] R10: 000000000003ffff R11: 0000000000000246 R12: 0000000000000001
[  239.901447][ T9989] R13: 00007f2091a66038 R14: 00007f2091a65fa0 R15: 00007fffdb5e8dc8
[  239.901462][ T9989]  </TASK>
[  240.154335][ T9992] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2106'.
[  240.214686][ T9998] loop4: detected capacity change from 0 to 1024
[  240.221986][ T9998] EXT4-fs: Ignoring removed nobh option
[  240.242899][ T9998] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  240.436151][T10012] loop3: detected capacity change from 0 to 512
[  240.443922][T10012] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  240.465405][T10014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  240.474086][T10014] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  240.534570][T10012] EXT4-fs (loop3): orphan cleanup on readonly fs
[  240.542389][T10012] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2113: bg 0: block 248: padding at end of block bitmap is not set
[  240.559149][T10012] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2113: Failed to acquire dquot type 1
[  240.572034][T10012] EXT4-fs (loop3): 1 truncate cleaned up
[  240.800518][T10024] 9pnet_fd: Insufficient options for proto=fd
[  240.807163][T10024] bridge0: port 1(syz_tun) entered blocking state
[  240.813667][T10024] bridge0: port 1(syz_tun) entered disabled state
[  240.821610][T10024] syz_tun: entered allmulticast mode
[  240.829437][T10024] syz_tun: entered promiscuous mode
[  240.835560][T10024] bridge0: port 1(syz_tun) entered blocking state
[  240.842021][T10024] bridge0: port 1(syz_tun) entered forwarding state
[  240.963587][T10043] loop4: detected capacity change from 0 to 1024
[  240.970458][T10043] EXT4-fs: Ignoring removed nobh option
[  240.978044][T10046] loop1: detected capacity change from 0 to 128
[  240.985268][T10046] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  240.999067][T10043] EXT4-fs mount: 79 callbacks suppressed
[  240.999091][T10043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.011076][T10046] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  241.019041][T10051] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2131'.
[  241.035550][T10043] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  241.043796][T10051] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2131'.
[  241.062250][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.078642][   T29] kauditd_printk_skb: 152 callbacks suppressed
[  241.078733][   T29] audit: type=1326 audit(1758808023.124:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10053 comm="syz.0.2133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.110333][   T29] audit: type=1326 audit(1758808023.124:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10053 comm="syz.0.2133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.133961][   T29] audit: type=1326 audit(1758808023.124:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10053 comm="syz.0.2133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.175248][T10060] loop4: detected capacity change from 0 to 128
[  241.183250][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.193273][   T29] audit: type=1326 audit(1758808023.239:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.216829][   T29] audit: type=1326 audit(1758808023.239:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.240372][   T29] audit: type=1326 audit(1758808023.239:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.263864][   T29] audit: type=1326 audit(1758808023.239:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.287352][   T29] audit: type=1326 audit(1758808023.239:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.310858][   T29] audit: type=1326 audit(1758808023.239:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.334338][   T29] audit: type=1326 audit(1758808023.250:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10061 comm="syz.0.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f747dc8eec9 code=0x7ffc0000
[  241.415195][T10064] SELinux: failed to load policy
[  241.462218][T10078] SELinux:  policydb magic number 0x100 does not match expected magic number 0xf97cff8c
[  241.472671][T10078] SELinux: failed to load policy
[  241.660860][T10110] SELinux:  policydb magic number 0x100 does not match expected magic number 0xf97cff8c
[  241.670925][T10110] SELinux: failed to load policy
[  241.729764][ T8699] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  241.748686][T10127] netlink: 'syz.0.2168': attribute type 16 has an invalid length.
[  241.756680][T10127] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2168'.
[  241.845265][T10144] SELinux:  policydb magic number 0x100 does not match expected magic number 0xf97cff8c
[  241.856085][T10144] SELinux: failed to load policy
[  241.940912][T10154] FAULT_INJECTION: forcing a failure.
[  241.940912][T10154] name failslab, interval 1, probability 0, space 0, times 0
[  241.953593][T10154] CPU: 1 UID: 0 PID: 10154 Comm: +}[@ Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  241.953659][T10154] Tainted: [W]=WARN
[  241.953664][T10154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  241.953674][T10154] Call Trace:
[  241.953680][T10154]  <TASK>
[  241.953687][T10154]  __dump_stack+0x1d/0x30
[  241.953707][T10154]  dump_stack_lvl+0xe8/0x140
[  241.953724][T10154]  dump_stack+0x15/0x1b
[  241.953751][T10154]  should_fail_ex+0x265/0x280
[  241.953781][T10154]  should_failslab+0x8c/0xb0
[  241.953860][T10154]  kmem_cache_alloc_noprof+0x50/0x310
[  241.953884][T10154]  ? security_inode_alloc+0x37/0x100
[  241.953909][T10154]  security_inode_alloc+0x37/0x100
[  241.953993][T10154]  inode_init_always_gfp+0x4b7/0x500
[  241.954017][T10154]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  241.954038][T10154]  alloc_inode+0x58/0x170
[  241.954068][T10154]  new_inode+0x1d/0xe0
[  241.954091][T10154]  shmem_get_inode+0x244/0x750
[  241.954113][T10154]  __shmem_file_setup+0x113/0x210
[  241.954144][T10154]  shmem_file_setup+0x3b/0x50
[  241.954171][T10154]  __se_sys_memfd_create+0x2c3/0x590
[  241.954266][T10154]  __x64_sys_memfd_create+0x31/0x40
[  241.954286][T10154]  x64_sys_call+0x2abe/0x2ff0
[  241.954306][T10154]  do_syscall_64+0xd2/0x200
[  241.954336][T10154]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  241.954413][T10154]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  241.954440][T10154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.954461][T10154] RIP: 0033:0x7f209180eec9
[  241.954476][T10154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.954528][T10154] RSP: 002b:00007f2090276e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  241.954547][T10154] RAX: ffffffffffffffda RBX: 00000000000004f2 RCX: 00007f209180eec9
[  241.954560][T10154] RDX: 00007f2090276ef0 RSI: 0000000000000000 RDI: 00007f2091892960
[  241.954574][T10154] RBP: 0000200000000600 R08: 00007f2090276bb7 R09: 00007f2090276e40
[  241.954586][T10154] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  241.954598][T10154] R13: 00007f2090276ef0 R14: 00007f2090276eb0 R15: 0000200000000300
[  241.954615][T10154]  </TASK>
[  242.187247][T10157] ip6tnl1: entered promiscuous mode
[  242.211789][T10160] loop1: detected capacity change from 0 to 128
[  242.239361][T10164] loop1: detected capacity change from 0 to 764
[  242.247317][T10164] FAULT_INJECTION: forcing a failure.
[  242.247317][T10164] name failslab, interval 1, probability 0, space 0, times 0
[  242.260024][T10164] CPU: 0 UID: 0 PID: 10164 Comm: syz.1.2184 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  242.260071][T10164] Tainted: [W]=WARN
[  242.260075][T10164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  242.260153][T10164] Call Trace:
[  242.260158][T10164]  <TASK>
[  242.260162][T10164]  __dump_stack+0x1d/0x30
[  242.260175][T10164]  dump_stack_lvl+0xe8/0x140
[  242.260185][T10164]  dump_stack+0x15/0x1b
[  242.260194][T10164]  should_fail_ex+0x265/0x280
[  242.260262][T10164]  should_failslab+0x8c/0xb0
[  242.260276][T10164]  kmem_cache_alloc_noprof+0x50/0x310
[  242.260299][T10164]  ? getname_kernel+0x3c/0x1f0
[  242.260359][T10164]  getname_kernel+0x3c/0x1f0
[  242.260392][T10164]  kern_path+0x23/0x130
[  242.260407][T10164]  unix_find_other+0xe9/0x760
[  242.260456][T10164]  unix_dgram_sendmsg+0x5ab/0xfe0
[  242.260471][T10164]  ? selinux_socket_sendmsg+0x175/0x1b0
[  242.260490][T10164]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  242.260505][T10164]  __sock_sendmsg+0x142/0x180
[  242.260673][T10164]  ____sys_sendmsg+0x345/0x4e0
[  242.260689][T10164]  ___sys_sendmsg+0x17b/0x1d0
[  242.260749][T10164]  __sys_sendmmsg+0x178/0x300
[  242.260775][T10164]  __x64_sys_sendmmsg+0x57/0x70
[  242.260789][T10164]  x64_sys_call+0x1c4a/0x2ff0
[  242.260800][T10164]  do_syscall_64+0xd2/0x200
[  242.260826][T10164]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  242.260839][T10164]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  242.260921][T10164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.260932][T10164] RIP: 0033:0x7f209180eec9
[  242.260942][T10164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.260951][T10164] RSP: 002b:00007f2090277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  242.260962][T10164] RAX: ffffffffffffffda RBX: 00007f2091a65fa0 RCX: 00007f209180eec9
[  242.260969][T10164] RDX: 0000000000000002 RSI: 00002000000001c0 RDI: 0000000000000005
[  242.261012][T10164] RBP: 00007f2090277090 R08: 0000000000000000 R09: 0000000000000000
[  242.261021][T10164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.261028][T10164] R13: 00007f2091a66038 R14: 00007f2091a65fa0 R15: 00007fffdb5e8dc8
[  242.261038][T10164]  </TASK>
[  242.503003][T10168] loop3: detected capacity change from 0 to 512
[  242.505361][T10166] loop1: detected capacity change from 0 to 2048
[  242.511557][T10168] EXT4-fs: Ignoring removed mblk_io_submit option
[  242.522848][T10168] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  242.535186][T10168] EXT4-fs (loop3): 1 truncate cleaned up
[  242.541264][T10168] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.556089][T10166] Alternate GPT is invalid, using primary GPT.
[  242.562500][T10166]  loop1: p2 p3 p7
[  242.574115][T10166] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2185'.
[  242.583930][T10166] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2185'.
[  242.899518][T10189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2193'.
[  243.093931][T10194] loop4: detected capacity change from 0 to 8192
[  243.125514][T10194] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2195'.
[  243.180053][T10194] netlink: 'syz.4.2195': attribute type 1 has an invalid length.
[  243.187848][T10194] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2195'.
[  243.331474][T10168] ==================================================================
[  243.339587][T10168] BUG: KCSAN: data-race in file_write_and_wait_range / xas_set_mark
[  243.347598][T10168] 
[  243.349928][T10168] write to 0xffff88811a2e13ec of 4 bytes by task 10171 on cpu 1:
[  243.357647][T10168]  xas_set_mark+0x12b/0x140
[  243.362169][T10168]  tag_pages_for_writeback+0xc2/0x290
[  243.367564][T10168]  ext4_do_writepages+0x6b2/0x2750
[  243.372690][T10168]  ext4_writepages+0x176/0x300
[  243.377465][T10168]  do_writepages+0x1c6/0x310
[  243.382158][T10168]  filemap_write_and_wait_range+0x144/0x340
[  243.388063][T10168]  filemap_invalidate_pages+0xa4/0x1a0
[  243.393532][T10168]  kiocb_invalidate_pages+0x6e/0x80
[  243.398735][T10168]  __iomap_dio_rw+0x5d4/0x1250
[  243.403507][T10168]  iomap_dio_rw+0x40/0x90
[  243.407849][T10168]  ext4_file_write_iter+0xad9/0xf00
[  243.413157][T10168]  iter_file_splice_write+0x663/0xa60
[  243.418534][T10168]  direct_splice_actor+0x153/0x2a0
[  243.423642][T10168]  splice_direct_to_actor+0x30f/0x680
[  243.429001][T10168]  do_splice_direct+0xda/0x150
[  243.433752][T10168]  do_sendfile+0x380/0x650
[  243.438173][T10168]  __x64_sys_sendfile64+0x105/0x150
[  243.443362][T10168]  x64_sys_call+0x2bb0/0x2ff0
[  243.448040][T10168]  do_syscall_64+0xd2/0x200
[  243.452540][T10168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.458419][T10168] 
[  243.460727][T10168] read to 0xffff88811a2e13ec of 4 bytes by task 10168 on cpu 0:
[  243.468447][T10168]  file_write_and_wait_range+0x10e/0x2c0
[  243.474076][T10168]  generic_buffers_fsync_noflush+0x45/0x120
[  243.479958][T10168]  ext4_sync_file+0x1ab/0x690
[  243.484635][T10168]  vfs_fsync_range+0x10d/0x130
[  243.489388][T10168]  ext4_buffered_write_iter+0x34f/0x3c0
[  243.494938][T10168]  ext4_file_write_iter+0xdbf/0xf00
[  243.500143][T10168]  iter_file_splice_write+0x663/0xa60
[  243.505511][T10168]  direct_splice_actor+0x153/0x2a0
[  243.510614][T10168]  splice_direct_to_actor+0x30f/0x680
[  243.515978][T10168]  do_splice_direct+0xda/0x150
[  243.520726][T10168]  do_sendfile+0x380/0x650
[  243.525137][T10168]  __x64_sys_sendfile64+0x105/0x150
[  243.530327][T10168]  x64_sys_call+0x2bb0/0x2ff0
[  243.534990][T10168]  do_syscall_64+0xd2/0x200
[  243.539495][T10168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.545373][T10168] 
[  243.547687][T10168] value changed: 0x02000021 -> 0x04000021
[  243.553487][T10168] 
[  243.555792][T10168] Reported by Kernel Concurrency Sanitizer on:
[  243.561936][T10168] CPU: 0 UID: 0 PID: 10168 Comm: syz.3.2186 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  243.573296][T10168] Tainted: [W]=WARN
[  243.577078][T10168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  243.587122][T10168] ==================================================================
[  243.672530][T10198] loop5: detected capacity change from 0 to 256
[  243.751206][T10198] FAT-fs (loop5): IO charset maccenteuro not found
[  243.907788][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.