last executing test programs:

6.731156447s ago: executing program 4 (id=815):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(0x0, 0x0)
syz_emit_ethernet(0x176, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaa48847000000000000000000000000603f599001340600fe8000000000000000000000000000aafe8000000000000000000000000000000000000000000000c204000000000000000c000000000000fc02000000000000000000000000000000000000000000000000ffff00000000fe800000000000000000000000000000fe80000000000000000000000000000000000000000000000000000000000000fc00"/190, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50000000907800006c3e4af6e95497a4e1f23137ae5d9ab0d6a6a3ff1ff52b15b109af0f93abe7bddfe72723968479f91c26bda6d7d589fb8cb68c4f8760051117d27ab8434eb2818254ab55825a80ba277e953c42c3e3a34d6f1998abd85935442e96e25dc77ffb0469578ffae16aa69caf18e96b08085370c0c242147969cf393604407755c55c4b539a2e36241dc73a3d65b8b2585660c1365e7ec6c7a536a08d21e53aa4e60cad0bd8eb60a00943"], 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x0, 0xb00, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}]}], {0x14, 0x10}}, 0xa0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}], [], 0x6b}})

6.571243362s ago: executing program 4 (id=816):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000340)={'syztnl1\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x4, 0xb, 0x5, 0x0, 0x0, @mcast2, @empty, 0x700, 0x10, 0x6, 0x2d9}})
r0 = socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$RNDZAPENTCNT(0xffffffffffffffff, 0x5204, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a40)={{r2}, &(0x7f0000000980), &(0x7f00000002c0)=r5}, 0x20)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

6.340162403s ago: executing program 4 (id=819):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x161)
sendmsg$inet(r1, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000380), 0xb80b}], 0x1}, 0x0)

6.204472986s ago: executing program 4 (id=821):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad35010000000000840400000000000014000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b84a800ea6553f304000000815dcf00c3eebc52267b042d19"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={r2, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

6.125275603s ago: executing program 4 (id=824):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_freezer_state(r1, &(0x7f0000000180)='FREEZING\x00', 0x9)

6.034792101s ago: executing program 4 (id=827):
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x7, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="160a0000000000006110ac000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00S\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001439)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_DUMPABLE(0x4, 0x1)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0xffffffff, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}}}, 0x24}}, 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000005c0)='fd', 0x0, r0)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
timer_create(0x0, 0x0, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)

3.159262378s ago: executing program 3 (id=854):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0), 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad35010000000000840400000000000014000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b84a800ea6553f304000000815dcf00c3eebc52267b042d19"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={r2, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

3.120850511s ago: executing program 3 (id=855):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xffffffffffff8003}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYBLOB, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r6 = inotify_init1(0x0)
fcntl$setown(r6, 0x8, 0xffffffffffffffff)
fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, <r7=>0x0})
r8 = syz_open_procfs(r7, &(0x7f0000000600)='fd/4\x00')
ioctl$EXT4_IOC_GROUP_EXTEND(r8, 0x40305839, &(0x7f0000000240))

2.388257049s ago: executing program 1 (id=858):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000180)='FREEZING\x00', 0x9)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x4501, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)

2.195296697s ago: executing program 3 (id=860):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x1}, 0x18)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001e001000006d1b17ad0000182120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000de97c400000400000095000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="500000005304"], 0x50}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000)

2.16125748s ago: executing program 1 (id=861):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = inotify_init()
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
inotify_add_watch(r1, &(0x7f0000000000)='.\x00', 0x400017e)
read(r1, &(0x7f0000000040)=""/241, 0xf1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4010, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_bp={0x0}, 0x8400, 0xfffffff, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

2.139727142s ago: executing program 3 (id=863):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
sendfile(r0, r0, 0x0, 0x7a680000)

2.068478029s ago: executing program 2 (id=864):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='net_dev_start_xmit\x00', r3}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffeb9}]})
inotify_init()

2.032910172s ago: executing program 3 (id=865):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000002300a723"], 0x14}}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioprio_set$pid(0x1, 0x0, 0x0)
getpgid(0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000280))
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000300))
getpid()
syz_clone3(&(0x7f0000000380)={0x248100500, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {0xa}, &(0x7f0000000100)=""/21, 0x15, 0x0, 0x0}, 0x58)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000140)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0xeccc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = io_uring_setup(0x1b8d, &(0x7f0000000000)={0x0, 0x6cbb, 0x0, 0x3fff})
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r6, 0x545c, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

1.899016964s ago: executing program 3 (id=866):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x4, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$eJzs3d9rW1UcAPDvTdut+6HtYAz1QQp7cDKXrq0/JvgwH0WHA33XkGRlNF1Gk461Dtwe3IsvMgQRB6Lvvvs4/Af8KwY6GDKKPuwlctObLluTNu3StVs+H7jtOffe9Jxv7v2enpubkAAG1kT6IxfxakR8l0SMtW0bjmzjxOp+Kw+uFdMliUbjs3+SSLJ1rf2T7PehrPJKRPzxTcTJ3Pp2a0vLc4VKpbyQ1Sfr85cna0vLpy7OF2bLs+VL0zMzZ96ZmX7/vXf7Fuub5//78dM7H5359vjKD7/dO3IribNxONvWHsdTuN5emYiJ7DkZibNP7DjVh8b2kmS3O8C2DGV5PhLpGDAWQ1nWd9QYe5ZdA3bY12laAwMqkf8woFrzgNa1fZ+ug58b9z9cvQBaH//w6msjMdq8Njq4kjx2ZZRe7473of20jd//vn0rXaJ/r0MAbOr6jYg4PTy8fvxLsvFv+073sM+TbRj/4Nm5k85/3uo0/8mtzX+iw/znUIfc3Y7N8z93rw/NdJXO/z7oOP9du2k1PpTVXmrO+UaSCxcr5XRsezkiTsTI/rS+wf2cL3MrdxvdNrbP/9Ilbb81F8z6cW94/+OPKRXqhacKus39GxGvdZz/JmvHP+lw/NPn43yPbRwr336927bN499ZjV8i3uh4/B/d0Uo2vj852TwfJltnxXr/3jz2Z7f2dzv+9Pgf3Dj+8aT9fm1t6238PPqw3G3bds//fcnnzfK+bN3VQr2+MBWxL/lk/frpR49t1Vv7p/GfOL7x+Nfp/D+QJnaP8d88erN919Gtxb+z0vhLWzr+Wy/c/firn7q139vxf7tZOpGt6WX867WDT/PcAQAAAAAAwF6Ti4jDkeTya+VcLp9ffX/H0TiYq1Rr9ZMXqouXStH8rOx4jORad7rH2t4PMZW9H7ZVn36iPhMRRyLi+6EDzXq+WK2Udjt4AAAAAAAAAAAAAAAAAAAA2CMORYx2+vx/6q+h3e4dsOM2+Mpv4AXXPf+zLf34pidgT/L/HwaX/IfBJf9hcMl/GFzyHwaX/IfBJf9hcG0l/389t4MdAQAAAAAAAAAAAAAAAAAAAAAAAAAAgBfD+XPn0qWx8uBaMa2XriwtzlWvnCqVa3P5+cVivlhduJyfrVZnK+V8sTq/2d+rVKuXp6Zj8epkvVyrT9aWlr+Yry5eethYVR55JlEBAAAAAAAAAAAAAAAAAADA86W2tDxXqFTKCwoK2yoM741uKPS5sNsjEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA88n8AAAD//75iP7A=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5c12, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendfile(r1, r1, 0x0, 0x7a680000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0800000000000000b702000014000000b70300000000009c3c51a9dc3e372d73d7008500000083000000bf0900000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
write(r4, &(0x7f0000001100)="94", 0x1)
tee(r3, r6, 0x81, 0x0)

1.800185784s ago: executing program 1 (id=867):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
syz_emit_ethernet(0x176, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x0, 0xb00, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}]}], {0x14, 0x10}}, 0xa0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}], [], 0x6b}})

1.219004348s ago: executing program 2 (id=869):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
read(r0, &(0x7f0000000040)=""/241, 0xf1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

874.02265ms ago: executing program 1 (id=870):
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x7, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="160a0000000000006110ac000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00S\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001439)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_DUMPABLE(0x4, 0x1)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r8=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0xffffffff, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}}}, 0x24}}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000005c0)='fd', 0x0, r0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
timer_create(0x0, 0x0, 0x0)
close_range(r9, 0xffffffffffffffff, 0x0)

479.106716ms ago: executing program 0 (id=872):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
write$cgroup_freezer_state(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x4501, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)

441.629419ms ago: executing program 0 (id=873):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000980)='./file0\x00', &(0x7f0000000180)='hugetlbfs\x00', 0x0, 0x0)
chdir(0x0)
socket$inet6(0xa, 0x80002, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
get_robust_list(0x0, &(0x7f00000002c0)=0x0, &(0x7f0000000300))

413.303242ms ago: executing program 0 (id=874):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x47f)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e21}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000500)={0x0, 0x8001, 0xfffe}, 0x14)
socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
preadv(r2, &(0x7f00000001c0)=[{&(0x7f0000000240)=""/198, 0xc6}], 0x1, 0xa3, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000080)={'wpan1\x00'})
r5 = gettid()
process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

377.340656ms ago: executing program 2 (id=875):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$eJzs3d9rW1UcAPDvTdut+6HtYAz1QQp7cDKXrq0/JvgwH0WHA33XkGRlNF1Gk461Dtwe3IsvMgQRB6Lvvvs4/Af8KwY6GDKKPuwlctObLluTNu3StVs+H7jtOffe9Jxv7v2enpubkAAG1kT6IxfxakR8l0SMtW0bjmzjxOp+Kw+uFdMliUbjs3+SSLJ1rf2T7PehrPJKRPzxTcTJ3Pp2a0vLc4VKpbyQ1Sfr85cna0vLpy7OF2bLs+VL0zMzZ96ZmX7/vXf7Fuub5//78dM7H5359vjKD7/dO3IribNxONvWHsdTuN5emYiJ7DkZibNP7DjVh8b2kmS3O8C2DGV5PhLpGDAWQ1nWd9QYe5ZdA3bY12laAwMqkf8woFrzgNa1fZ+ug58b9z9cvQBaH//w6msjMdq8Njq4kjx2ZZRe7473of20jd//vn0rXaJ/r0MAbOr6jYg4PTy8fvxLsvFv+073sM+TbRj/4Nm5k85/3uo0/8mtzX+iw/znUIfc3Y7N8z93rw/NdJXO/z7oOP9du2k1PpTVXmrO+UaSCxcr5XRsezkiTsTI/rS+wf2cL3MrdxvdNrbP/9Ilbb81F8z6cW94/+OPKRXqhacKus39GxGvdZz/JmvHP+lw/NPn43yPbRwr336927bN499ZjV8i3uh4/B/d0Uo2vj852TwfJltnxXr/3jz2Z7f2dzv+9Pgf3Dj+8aT9fm1t6238PPqw3G3bds//fcnnzfK+bN3VQr2+MBWxL/lk/frpR49t1Vv7p/GfOL7x+Nfp/D+QJnaP8d88erN919Gtxb+z0vhLWzr+Wy/c/firn7q139vxf7tZOpGt6WX867WDT/PcAQAAAAAAwF6Ti4jDkeTya+VcLp9ffX/H0TiYq1Rr9ZMXqouXStH8rOx4jORad7rH2t4PMZW9H7ZVn36iPhMRRyLi+6EDzXq+WK2Udjt4AAAAAAAAAAAAAAAAAAAA2CMORYx2+vx/6q+h3e4dsOM2+Mpv4AXXPf+zLf34pidgT/L/HwaX/IfBJf9hcMl/GFzyHwaX/IfBJf9hcG0l/389t4MdAQAAAAAAAAAAAAAAAAAAAAAAAAAAgBfD+XPn0qWx8uBaMa2XriwtzlWvnCqVa3P5+cVivlhduJyfrVZnK+V8sTq/2d+rVKuXp6Zj8epkvVyrT9aWlr+Yry5eethYVR55JlEBAAAAAAAAAAAAAAAAAADA86W2tDxXqFTKCwoK2yoM741uKPS5sNsjEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA88n8AAAD//75iP7A=")
pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5c12, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7a680000)

375.327036ms ago: executing program 0 (id=885):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
read(r0, &(0x7f0000000040)=""/241, 0xf1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

292.354383ms ago: executing program 2 (id=876):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="380000006d000100"/20, @ANYRES32, @ANYBLOB="00ff000000000020180034"], 0x38}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
unshare(0x2c060000)
semtimedop(0x0, &(0x7f0000000080)=[{0x0, 0x0, 0x1800}], 0x1, 0x0)
unshare(0x40200)

292.023773ms ago: executing program 2 (id=877):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11e0, &(0x7f00000036c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000180)='FREEZING\x00', 0x9)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x4501, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)

197.836252ms ago: executing program 0 (id=878):
rt_sigaction(0x40, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000040))
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r0 = socket$netlink(0x10, 0x3, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1808000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005090000fa000000f100000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000006c0)=""/152}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
io_uring_setup(0x497c, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(r3, 0x560e, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000003"], 0x64}}, 0x0)
write(r0, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)
eventfd(0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
preadv(r5, &(0x7f0000000000)=[{&(0x7f0000000240)=""/135, 0x87}], 0x1, 0x0, 0x0)

192.155083ms ago: executing program 2 (id=879):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='net_dev_start_xmit\x00', r3}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffeb9}]})
inotify_init()

168.832765ms ago: executing program 0 (id=880):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
syz_emit_ethernet(0x176, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x0, 0xb00, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}]}], {0x14, 0x10}}, 0xa0}}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}], [], 0x6b}})

27.349548ms ago: executing program 1 (id=881):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x400, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$eJzs3c9rI2UYwPEnaTa/lm1yEEVB+qAXvQxt9KwG2QUx4NLdiLuCMLudaMiYlJlQiYitJ6/izX9AcNljbwX1H+jFW7148dZLQdAi4shMZtr8mCRNmpLWfj9Q8kze95mZNzOE5w3M28MPvvm0UXONmtmWZFYlISJyLFKUpEQS4WsyiNPSa0devfnHwYv3Hjx8t1yp3F5XvVO+/1pJVZdXfvzsi1zYbS8j+8WPDo9Kv+8/u//84b/3P6m7Wne12WqrqY9av7XNR7alG3W3YajetS3TtbTedC2n297qttfs1uZmR83mxq38pmO5rprNjjasjrZb2nY6an5s1ptqGIbeysv1kh3Y9hKTc6pP1tfN8owHfDxjHubtb8/zxjQ7TtlcEjFyQy3VJxd6XgAA4FIaqP+/i2qEoiRPCspE31xguP6P4qD+96vO0/r/6Us/t2++v7sc1v976bj6//Vfu/l99b9/9LnX/z8MbA9XRFfe9jSdz1X/43JYSQ+91T/18+v/fDh/D3z14dPVIKD+BwAAAAAAAAAAAAAAAAAAAADgKjj2vILneYXoNfo7fYQg3I62xj1ojCtn1PXPhCsKnNwP+F+69+ChZIMH91LLIvbXW9Wtavc1bI86rkpB/gnuh1B3wYmdoFF9RfnJ3g7zt7eqS0FLWUTFFkvWpCDFvvwgvvNO5faadvXnJ1J5P78m9SC/JAV5Jj6/FJufllde7sk3pCC/PJaW2LIRfo9F+V+uqb79XmUgPxf0i/PmxV8WAAAAAADmylDNhtPn2Pm7YajGtftzeemdnw//PnAyv16NnZ+nCi+kFjt2AAAAAACuCzf9ecO0bctxOyODnEzqkwn3Nn4/8UFqms5+cBAEN8b1WeoZ4Vn3nA7/g8YUJy/TjdS07T8zEvthRku49jVlz/GpmnY0/jN0zk57CRw3Of3YLcdd8c9HZxpOTxD9bDSqj9yddc+jgmjl3Emdn/v2+79mO0QiXLW3t+mN3eyEkQZBYuCdnQk37ZHnTTyfGxf5nQMAAABgMaKiP+dG77y12BMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAamusyaSOCRY8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuCz+CwAA//+9m/li")
open(&(0x7f00009e1000)='./file0\x00', 0x3f1440, 0x0)

0s ago: executing program 1 (id=882):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@nodelalloc}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000200000000000000000000000018110015", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r1, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='leases_conflict\x00', r4}, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x76, &(0x7f00000000c0)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x40, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "5b29ab", 0x0, 0x11, 0x0, @private1, @mcast1, [@dstopts={0x0, 0x0, '\x00', [@pad1, @padn]}]}}}}}}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r7}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r8}, 0x10)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

len=0, size=1024 fake=0
[   57.358719][ T4177] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 19: comm syz.0.264: path /72/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   57.381899][ T4177] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 20: comm syz.0.264: path /72/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   57.412868][ T4191] netlink: 'syz.1.268': attribute type 4 has an invalid length.
[   57.424264][ T4177] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 21: comm syz.0.264: path /72/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   57.449329][ T4177] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 22: comm syz.0.264: path /72/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   57.479728][ T4177] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 23: comm syz.0.264: path /72/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   57.545542][ T3278] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.640251][ T4210] FAULT_INJECTION: forcing a failure.
[   57.640251][ T4210] name failslab, interval 1, probability 0, space 0, times 0
[   57.646503][ T4217] smc: net device bond0 applied user defined pnetid SYZ0
[   57.652933][ T4210] CPU: 0 UID: 0 PID: 4210 Comm: syz.0.277 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   57.670716][ T4210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.680810][ T4210] Call Trace:
[   57.684189][ T4210]  <TASK>
[   57.687140][ T4210]  dump_stack_lvl+0xf2/0x150
[   57.691815][ T4210]  dump_stack+0x15/0x20
[   57.696136][ T4210]  should_fail_ex+0x223/0x230
[   57.700976][ T4210]  ? __d_alloc+0x3d/0x340
[   57.705328][ T4210]  should_failslab+0x8f/0xb0
[   57.710008][ T4210]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[   57.715835][ T4210]  __d_alloc+0x3d/0x340
[   57.720040][ T4210]  d_alloc_parallel+0x54/0xc80
[   57.724853][ T4210]  ? selinux_inode_permission+0x341/0x410
[   57.730692][ T4210]  ? lockref_get_not_dead+0x118/0x1b0
[   57.736095][ T4210]  ? down_read+0x171/0x4b0
[   57.740607][ T4210]  __lookup_slow+0x8d/0x250
[   57.745222][ T4210]  lookup_slow+0x3c/0x60
[   57.749505][ T4210]  walk_component+0x1f5/0x230
[   57.754251][ T4210]  ? path_lookupat+0xfd/0x2b0
[   57.758621][ T4215] loop2: detected capacity change from 0 to 8192
[   57.759120][ T4210]  path_lookupat+0x10a/0x2b0
[   57.770079][ T4210]  filename_lookup+0x127/0x300
[   57.775334][ T4210]  user_path_at+0x3c/0x110
[   57.779837][ T4210]  __x64_sys_chmod+0x68/0x110
[   57.784636][ T4210]  x64_sys_call+0x25e9/0x2d60
[   57.789437][ T4210]  do_syscall_64+0xc9/0x1c0
[   57.794037][ T4210]  ? clear_bhb_loop+0x55/0xb0
[   57.798834][ T4210]  ? clear_bhb_loop+0x55/0xb0
[   57.803610][ T4210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.809595][ T4210] RIP: 0033:0x7f1d55bcdff9
[   57.814049][ T4210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.833704][ T4210] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a
[   57.842129][ T4210] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   57.850163][ T4210] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 00000000200000c0
[   57.858212][ T4210] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   57.866194][ T4210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.874332][ T4210] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   57.882479][ T4210]  </TASK>
[   58.024192][ T4227] veth0_vlan: left promiscuous mode
[   58.030078][ T4227] veth0_vlan: entered promiscuous mode
[   58.130163][ T4249] syz.0.294[4249] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.130233][ T4249] syz.0.294[4249] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.153920][ T4249] syz.0.294[4249] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.170388][ T4249] FAULT_INJECTION: forcing a failure.
[   58.170388][ T4249] name failslab, interval 1, probability 0, space 0, times 0
[   58.194297][ T4249] CPU: 0 UID: 0 PID: 4249 Comm: syz.0.294 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   58.204953][ T4249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.215091][ T4249] Call Trace:
[   58.218411][ T4249]  <TASK>
[   58.221350][ T4249]  dump_stack_lvl+0xf2/0x150
[   58.225949][ T4249]  dump_stack+0x15/0x20
[   58.230245][ T4249]  should_fail_ex+0x223/0x230
[   58.235028][ T4249]  ? skb_clone+0x154/0x1f0
[   58.239490][ T4249]  should_failslab+0x8f/0xb0
[   58.244120][ T4249]  kmem_cache_alloc_noprof+0x4c/0x290
[   58.249564][ T4249]  skb_clone+0x154/0x1f0
[   58.253826][ T4249]  dev_queue_xmit_nit+0x149/0x620
[   58.258892][ T4249]  dev_hard_start_xmit+0xcc/0x3f0
[   58.263956][ T4249]  ? validate_xmit_skb+0x658/0x8d0
[   58.269083][ T4249]  __dev_queue_xmit+0xfe6/0x1fe0
[   58.274074][ T4249]  ? __dev_queue_xmit+0x161/0x1fe0
[   58.279228][ T4249]  ? netlbl_enabled+0x25/0x40
[   58.283939][ T4249]  ? selinux_ip_postroute+0x1f4/0xb70
[   58.289323][ T4249]  ip6_finish_output2+0xa41/0xd20
[   58.294397][ T4249]  ? __rcu_read_unlock+0x34/0x70
[   58.299424][ T4249]  ip6_finish_output+0x438/0x540
[   58.304898][ T4249]  ip6_output+0xf5/0x230
[   58.309207][ T4249]  ? __pfx_ip6_finish_output+0x10/0x10
[   58.314842][ T4249]  ? __pfx_ip6_output+0x10/0x10
[   58.319698][ T4249]  ip6_local_out+0x76/0xd0
[   58.324220][ T4249]  ip6_send_skb+0x5a/0x120
[   58.328730][ T4249]  udp_v6_send_skb+0x760/0xbf0
[   58.333514][ T4249]  udpv6_sendmsg+0x14de/0x1590
[   58.338315][ T4249]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   58.344001][ T4249]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   58.349189][ T4249]  inet6_sendmsg+0xaf/0xd0
[   58.353631][ T4249]  __sock_sendmsg+0x8b/0x180
[   58.358241][ T4249]  ____sys_sendmsg+0x312/0x410
[   58.363063][ T4249]  __sys_sendmmsg+0x259/0x500
[   58.367828][ T4249]  __x64_sys_sendmmsg+0x57/0x70
[   58.372754][ T4249]  x64_sys_call+0xa49/0x2d60
[   58.377360][ T4249]  do_syscall_64+0xc9/0x1c0
[   58.381949][ T4249]  ? clear_bhb_loop+0x55/0xb0
[   58.386696][ T4249]  ? clear_bhb_loop+0x55/0xb0
[   58.391438][ T4249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.397445][ T4249] RIP: 0033:0x7f1d55bcdff9
[   58.401885][ T4249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.421538][ T4249] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   58.429962][ T4249] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   58.437971][ T4249] RDX: 0000000000000062 RSI: 0000000020002940 RDI: 0000000000000004
[   58.446004][ T4249] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   58.454080][ T4249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.462159][ T4249] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   58.470177][ T4249]  </TASK>
[   58.507032][ T4262] loop0: detected capacity change from 0 to 128
[   58.515142][ T4262] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   58.551088][ T4257] pim6reg: entered allmulticast mode
[   58.567146][ T4257] pim6reg: left allmulticast mode
[   58.591490][ T4268] loop3: detected capacity change from 0 to 1024
[   58.615834][ T4268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.645231][   T29] kauditd_printk_skb: 588 callbacks suppressed
[   58.645258][   T29] audit: type=1400 audit(1727898466.342:1407): avc:  denied  { read write } for  pid=4267 comm="syz.3.301" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   58.645656][ T4268] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, 
[   58.656813][   T29] audit: type=1400 audit(1727898466.342:1408): avc:  denied  { open } for  pid=4267 comm="syz.3.301" path="/15/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   58.674277][ T4268] block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   58.743297][ T4268] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 23 with max blocks 1 with error 28
[   58.755719][ T4268] EXT4-fs (loop3): This should not happen!! Data will be lost
[   58.755719][ T4268] 
[   58.765440][ T4268] EXT4-fs (loop3): Total free blocks count 0
[   58.771487][ T4268] EXT4-fs (loop3): Free/Dirty block details
[   58.776143][ T4271] loop4: detected capacity change from 0 to 8192
[   58.777429][ T4268] EXT4-fs (loop3): free_blocks=68451041280
[   58.777448][ T4268] EXT4-fs (loop3): dirty_blocks=32
[   58.777463][ T4268] EXT4-fs (loop3): Block reservation details
[   58.800895][ T4268] EXT4-fs (loop3): i_reserved_data_blocks=2
[   58.808474][   T29] audit: type=1400 audit(1727898466.512:1409): avc:  denied  { bind } for  pid=4277 comm="syz.2.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   58.814112][ T4279] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 24 with error 28
[   58.941337][   T29] audit: type=1400 audit(1727898466.632:1410): avc:  denied  { create } for  pid=4284 comm="syz.4.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   58.961081][   T29] audit: type=1400 audit(1727898466.632:1411): avc:  denied  { bind } for  pid=4284 comm="syz.4.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   58.980468][   T29] audit: type=1400 audit(1727898466.632:1412): avc:  denied  { create } for  pid=4284 comm="syz.4.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   59.002381][   T29] audit: type=1400 audit(1727898466.642:1413): avc:  denied  { connect } for  pid=4284 comm="syz.4.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   59.023309][ T4268] SELinux:  policydb version -1682183729 does not match my version range 15-33
[   59.028580][   T29] audit: type=1400 audit(1727898466.722:1414): avc:  denied  { load_policy } for  pid=4267 comm="syz.3.301" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   59.042169][ T4268] SELinux: failed to load policy
[   59.092033][ T4294] loop1: detected capacity change from 0 to 1024
[   59.116380][   T29] audit: type=1107 audit(1727898466.812:1415): pid=4295 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   59.137339][ T4294] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.152254][ T4298] loop4: detected capacity change from 0 to 128
[   59.153384][ T4302] loop3: detected capacity change from 0 to 128
[   59.166561][ T4302] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   59.170666][   T29] audit: type=1400 audit(1727898466.862:1416): avc:  denied  { create } for  pid=4293 comm="syz.1.308" name="cpuacct.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   59.266516][ T4304] loop3: detected capacity change from 0 to 8192
[   59.372891][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.515779][ T4315] loop0: detected capacity change from 0 to 8192
[   59.602531][ T4327] loop2: detected capacity change from 0 to 128
[   59.612180][ T4327] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   59.639019][ T4330] netlink: 'syz.3.323': attribute type 6 has an invalid length.
[   59.656259][ T4330] tipc: Started in network mode
[   59.661311][ T4330] tipc: Node identity ff00000000000000400000000000002d, cluster identity 4711
[   59.670324][ T4330] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   59.675433][ T4322] loop1: detected capacity change from 0 to 8192
[   59.696098][ T4332] loop2: detected capacity change from 0 to 512
[   59.709387][ T4330] loop3: detected capacity change from 0 to 128
[   59.718729][ T4330] vfat: Unknown parameter '00000000000000000000000'
[   59.740964][ T4332] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #15: comm syz.2.324: inline data xattr refers to an external xattr inode
[   59.777793][ T4332] EXT4-fs (loop2): Remounting filesystem read-only
[   59.785482][ T4332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.797640][ T4332] SELinux: (dev loop2, type ext4) getxattr errno 5
[   59.805373][ T4332] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.971473][ T4352] loop2: detected capacity change from 0 to 8192
[   59.996634][ T4356] loop4: detected capacity change from 0 to 128
[   60.006620][ T4356] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   60.563882][ T4373] loop0: detected capacity change from 0 to 128
[   60.570477][ T4373] vfat: Unknown parameter ''
[   60.784389][ T4385] FAULT_INJECTION: forcing a failure.
[   60.784389][ T4385] name failslab, interval 1, probability 0, space 0, times 0
[   60.797118][ T4385] CPU: 0 UID: 0 PID: 4385 Comm: syz.3.344 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   60.807745][ T4385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.817862][ T4385] Call Trace:
[   60.821191][ T4385]  <TASK>
[   60.824235][ T4385]  dump_stack_lvl+0xf2/0x150
[   60.828849][ T4385]  dump_stack+0x15/0x20
[   60.833034][ T4385]  should_fail_ex+0x223/0x230
[   60.837785][ T4385]  ? getname_flags+0x81/0x3b0
[   60.842492][ T4385]  should_failslab+0x8f/0xb0
[   60.847155][ T4385]  kmem_cache_alloc_noprof+0x4c/0x290
[   60.852624][ T4385]  getname_flags+0x81/0x3b0
[   60.857173][ T4385]  user_path_at+0x26/0x110
[   60.861627][ T4385]  __x64_sys_chmod+0x68/0x110
[   60.866334][ T4385]  x64_sys_call+0x25e9/0x2d60
[   60.871083][ T4385]  do_syscall_64+0xc9/0x1c0
[   60.875608][ T4385]  ? clear_bhb_loop+0x55/0xb0
[   60.880332][ T4385]  ? clear_bhb_loop+0x55/0xb0
[   60.885062][ T4385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.891045][ T4385] RIP: 0033:0x7f694406dff9
[   60.895652][ T4385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.915367][ T4385] RSP: 002b:00007f6942ce1038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a
[   60.923795][ T4385] RAX: ffffffffffffffda RBX: 00007f6944225f80 RCX: 00007f694406dff9
[   60.931845][ T4385] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 00000000200000c0
[   60.939934][ T4385] RBP: 00007f6942ce1090 R08: 0000000000000000 R09: 0000000000000000
[   60.947924][ T4385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.955913][ T4385] R13: 0000000000000001 R14: 00007f6944225f80 R15: 00007ffd3b6b9c98
[   60.963963][ T4385]  </TASK>
[   61.038895][ T4389] loop1: detected capacity change from 0 to 128
[   61.067707][ T4389] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   61.193597][ T4402] loop0: detected capacity change from 0 to 1024
[   61.208288][ T4402] EXT4-fs: Ignoring removed oldalloc option
[   61.225715][ T4402] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   61.245390][ T4402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.282795][ T4402] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   61.285038][ T4407] loop1: detected capacity change from 0 to 8192
[   61.311490][ T4414] loop2: detected capacity change from 0 to 512
[   61.343332][ T4414] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.356241][ T4414] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.416293][ T4422] loop1: detected capacity change from 0 to 128
[   61.418248][ T4422] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   61.480236][ T4427] __nla_validate_parse: 5 callbacks suppressed
[   61.480256][ T4427] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.361'.
[   61.485392][ T4429] loop1: detected capacity change from 0 to 1024
[   61.516165][ T4433] FAULT_INJECTION: forcing a failure.
[   61.516165][ T4433] name failslab, interval 1, probability 0, space 0, times 0
[   61.519459][ T4429] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.528977][ T4433] CPU: 0 UID: 0 PID: 4433 Comm: syz.4.363 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   61.551459][ T4433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.561534][ T4433] Call Trace:
[   61.564899][ T4433]  <TASK>
[   61.567846][ T4433]  dump_stack_lvl+0xf2/0x150
[   61.572454][ T4433]  dump_stack+0x15/0x20
[   61.576660][ T4433]  should_fail_ex+0x223/0x230
[   61.581427][ T4433]  ? getname_flags+0x81/0x3b0
[   61.586132][ T4433]  should_failslab+0x8f/0xb0
[   61.590771][ T4433]  kmem_cache_alloc_noprof+0x4c/0x290
[   61.596171][ T4433]  getname_flags+0x81/0x3b0
[   61.600681][ T4433]  user_path_at+0x26/0x110
[   61.605179][ T4433]  __x64_sys_chmod+0x68/0x110
[   61.609955][ T4433]  x64_sys_call+0x25e9/0x2d60
[   61.614644][ T4433]  do_syscall_64+0xc9/0x1c0
[   61.619152][ T4433]  ? clear_bhb_loop+0x55/0xb0
[   61.623850][ T4433]  ? clear_bhb_loop+0x55/0xb0
[   61.628587][ T4433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.634524][ T4433] RIP: 0033:0x7fd76317dff9
[   61.638997][ T4433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.658741][ T4433] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a
[   61.667188][ T4433] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   61.675281][ T4433] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000000
[   61.683442][ T4433] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   61.691504][ T4433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.699532][ T4433] R13: 0000000000000001 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   61.707555][ T4433]  </TASK>
[   61.711138][ T4429] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[   61.736039][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.849134][ T4447] loop4: detected capacity change from 0 to 8192
[   61.963763][ T4454] loop3: detected capacity change from 0 to 8192
[   62.027031][ T3278] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.084875][ T4476] netlink: 16 bytes leftover after parsing attributes in process `syz.0.384'.
[   62.111905][ T4480] xt_CT: You must specify a L4 protocol and not use inversions on it
[   62.140247][ T3276] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.199423][ T4474] loop1: detected capacity change from 0 to 8192
[   62.211171][ T4491] capability: warning: `syz.2.388' uses 32-bit capabilities (legacy support in use)
[   62.224477][ T4489] FAULT_INJECTION: forcing a failure.
[   62.224477][ T4489] name failslab, interval 1, probability 0, space 0, times 0
[   62.237239][ T4489] CPU: 0 UID: 0 PID: 4489 Comm: syz.4.389 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   62.247855][ T4489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.257924][ T4489] Call Trace:
[   62.261218][ T4489]  <TASK>
[   62.264176][ T4489]  dump_stack_lvl+0xf2/0x150
[   62.268793][ T4489]  dump_stack+0x15/0x20
[   62.272972][ T4489]  should_fail_ex+0x223/0x230
[   62.277760][ T4489]  ? getname_flags+0x81/0x3b0
[   62.282457][ T4489]  should_failslab+0x8f/0xb0
[   62.287062][ T4489]  kmem_cache_alloc_noprof+0x4c/0x290
[   62.292548][ T4489]  getname_flags+0x81/0x3b0
[   62.297115][ T4489]  __x64_sys_rename+0x40/0x70
[   62.301856][ T4489]  x64_sys_call+0x1a84/0x2d60
[   62.306551][ T4489]  do_syscall_64+0xc9/0x1c0
[   62.311090][ T4489]  ? clear_bhb_loop+0x55/0xb0
[   62.315875][ T4489]  ? clear_bhb_loop+0x55/0xb0
[   62.320574][ T4489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.326489][ T4489] RIP: 0033:0x7fd76317dff9
[   62.330910][ T4489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.350631][ T4489] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   62.359096][ T4489] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   62.367163][ T4489] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   62.375165][ T4489] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   62.383144][ T4489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.391124][ T4489] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   62.399125][ T4489]  </TASK>
[   62.480184][ T4493] loop3: detected capacity change from 0 to 8192
[   62.484893][ T4504] netlink: 16 bytes leftover after parsing attributes in process `syz.4.395'.
[   62.548990][ T4506] loop4: detected capacity change from 0 to 512
[   62.557027][ T4510] syz.1.397[4510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.557093][ T4510] syz.1.397[4510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.560015][ T4506] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.573219][ T4510] syz.1.397[4510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.599874][ T4506] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   62.660084][ T4506] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[   62.661907][ T4520] loop1: detected capacity change from 0 to 512
[   62.678210][ T4520] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   62.690866][ T4520] EXT4-fs (loop1): 1 truncate cleaned up
[   62.691639][ T4506] EXT4-fs (loop4): 1 truncate cleaned up
[   62.702704][ T4520] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.702777][ T4516] mmap: syz.2.399 (4516) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   62.715323][ T4506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.730566][ T4520] 9pnet_fd: Insufficient options for proto=fd
[   62.784915][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.795332][ T3275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.814676][ T4527] FAULT_INJECTION: forcing a failure.
[   62.814676][ T4527] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   62.828061][ T4527] CPU: 1 UID: 0 PID: 4527 Comm: syz.4.405 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   62.838685][ T4527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.848789][ T4527] Call Trace:
[   62.852100][ T4527]  <TASK>
[   62.855042][ T4527]  dump_stack_lvl+0xf2/0x150
[   62.859728][ T4527]  dump_stack+0x15/0x20
[   62.863994][ T4527]  should_fail_ex+0x223/0x230
[   62.868707][ T4527]  should_fail_alloc_page+0xfd/0x110
[   62.874094][ T4527]  __alloc_pages_noprof+0x109/0x360
[   62.879333][ T4527]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   62.884814][ T4527]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   62.890226][ T4527]  handle_mm_fault+0xdbe/0x2a80
[   62.895112][ T4527]  exc_page_fault+0x3b9/0x650
[   62.899832][ T4527]  asm_exc_page_fault+0x26/0x30
[   62.904712][ T4527] RIP: 0033:0x7fd76304940b
[   62.909175][ T4527] Code: 00 00 00 48 8d 3d fd 27 19 00 48 89 c1 31 c0 e8 bb 5a ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 31 28 19 00 48 89 34 24 48 8b 14 24 48 8b
[   62.928919][ T4527] RSP: 002b:00007fd761deffb0 EFLAGS: 00010202
[   62.935050][ T4527] RAX: 0000000000000000 RBX: 00007fd763335f80 RCX: 0000000000000000
[   62.943068][ T4527] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00000000200000c0
[   62.951113][ T4527] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   62.959095][ T4527] R10: 00000000200000c0 R11: 0000000000000000 R12: 0000000000000001
[   62.967144][ T4527] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   62.975130][ T4527]  </TASK>
[   62.978235][ T4527] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   62.984225][ T4531] netlink: 16 bytes leftover after parsing attributes in process `syz.2.406'.
[   63.068689][ T4542] syz.1.413 uses obsolete (PF_INET,SOCK_PACKET)
[   63.089157][ T4546] loop3: detected capacity change from 0 to 512
[   63.103498][ T4547] loop0: detected capacity change from 0 to 512
[   63.111658][ T4546] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   63.139714][ T4547] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   63.145848][ T4546] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   63.158052][ T4551] netlink: 5292 bytes leftover after parsing attributes in process `syz.1.413'.
[   63.162435][ T4539] loop4: detected capacity change from 0 to 8192
[   63.199759][ T4547] EXT4-fs (loop0): 1 truncate cleaned up
[   63.202997][ T4546] System zones: 1-12
[   63.215975][ T4547] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.215979][ T4546] EXT4-fs (loop3): 1 truncate cleaned up
[   63.216475][ T4546] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.232860][ T4557] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'.
[   63.259581][ T4557] netlink: 12 bytes leftover after parsing attributes in process `syz.1.416'.
[   63.268639][ T4557] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'.
[   63.291891][ T4562] netlink: 16 bytes leftover after parsing attributes in process `syz.2.418'.
[   63.304866][ T3886] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /35/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   63.331804][ T4547] 9pnet_fd: Insufficient options for proto=fd
[   63.338696][ T4564] FAULT_INJECTION: forcing a failure.
[   63.338696][ T4564] name failslab, interval 1, probability 0, space 0, times 0
[   63.351669][ T4564] CPU: 0 UID: 0 PID: 4564 Comm: syz.2.420 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   63.362126][ T3886] EXT4-fs error (device loop3): ext4_empty_dir:3128: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   63.362314][ T4564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.382268][ T3886] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /35/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   63.391879][ T4564] Call Trace:
[   63.391890][ T4564]  <TASK>
[   63.391899][ T4564]  dump_stack_lvl+0xf2/0x150
[   63.413776][ T3886] EXT4-fs error (device loop3): ext4_empty_dir:3128: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   63.416613][ T4564]  dump_stack+0x15/0x20
[   63.416641][ T4564]  should_fail_ex+0x223/0x230
[   63.419991][ T3886] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /35/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   63.424262][ T4564]  ? mas_alloc_nodes+0x1d3/0x4a0
[   63.424303][ T4564]  should_failslab+0x8f/0xb0
[   63.445377][ T3886] EXT4-fs error (device loop3): ext4_empty_dir:3128: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   63.448011][ T4564]  kmem_cache_alloc_noprof+0x4c/0x290
[   63.453277][ T3886] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /35/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   63.474026][ T4564]  mas_alloc_nodes+0x1d3/0x4a0
[   63.479323][ T3886] EXT4-fs error (device loop3): ext4_empty_dir:3128: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   63.483606][ T4564]  mas_preallocate+0x449/0x650
[   63.503552][ T3886] EXT4-fs error (device loop3): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /35/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   63.508503][ T4564]  __split_vma+0x244/0x6a0
[   63.530903][ T3886] EXT4-fs error (device loop3): ext4_empty_dir:3128: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   63.534667][ T4564]  vms_gather_munmap_vmas+0x175/0x7a0
[   63.610142][ T4564]  ? mas_walk+0x204/0x320
[   63.614669][ T4564]  mmap_region+0x385/0x16e0
[   63.619216][ T4564]  do_mmap+0x718/0xb60
[   63.623306][ T4564]  __se_sys_remap_file_pages+0x413/0x650
[   63.629003][ T4564]  __x64_sys_remap_file_pages+0x67/0x80
[   63.634581][ T4564]  x64_sys_call+0x22c4/0x2d60
[   63.639374][ T4564]  do_syscall_64+0xc9/0x1c0
[   63.643924][ T4564]  ? clear_bhb_loop+0x55/0xb0
[   63.648620][ T4564]  ? clear_bhb_loop+0x55/0xb0
[   63.653393][ T4564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.659347][ T4564] RIP: 0033:0x7f22824fdff9
[   63.663921][ T4564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.683538][ T4564] RSP: 002b:00007f2281177038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[   63.691973][ T4564] RAX: ffffffffffffffda RBX: 00007f22826b5f80 RCX: 00007f22824fdff9
[   63.700022][ T4564] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000000020800000
[   63.707999][ T4564] RBP: 00007f2281177090 R08: 0000000000008000 R09: 0000000000000000
[   63.715989][ T4564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.724046][ T4564] R13: 0000000000000000 R14: 00007f22826b5f80 R15: 00007ffcce8ed068
[   63.732051][ T4564]  </TASK>
[   63.736592][ T3278] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.797536][   T29] kauditd_printk_skb: 173 callbacks suppressed
[   63.797554][   T29] audit: type=1326 audit(1727898471.492:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.851640][   T29] audit: type=1326 audit(1727898471.492:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.875045][   T29] audit: type=1326 audit(1727898471.492:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.885517][ T4571] loop0: detected capacity change from 0 to 8192
[   63.898407][   T29] audit: type=1326 audit(1727898471.492:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.928116][   T29] audit: type=1326 audit(1727898471.492:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.951747][   T29] audit: type=1326 audit(1727898471.502:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.975417][   T29] audit: type=1326 audit(1727898471.502:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   63.998800][   T29] audit: type=1326 audit(1727898471.502:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   64.022237][   T29] audit: type=1326 audit(1727898471.502:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   64.045664][   T29] audit: type=1326 audit(1727898471.502:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4567 comm="syz.2.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22824fdff9 code=0x7ffc0000
[   64.127221][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.128029][  T168] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.181291][ T4581] loop1: detected capacity change from 0 to 8192
[   64.233439][  T168] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.234796][ T4588] loop4: detected capacity change from 0 to 512
[   64.263433][ T4588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.280116][ T4588] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.320439][  T168] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.389907][  T168] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.488067][  T168] bridge_slave_1: left allmulticast mode
[   64.489555][ T4607] loop1: detected capacity change from 0 to 8192
[   64.493878][  T168] bridge_slave_1: left promiscuous mode
[   64.505956][  T168] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.528498][  T168] bridge_slave_0: left allmulticast mode
[   64.534388][  T168] bridge_slave_0: left promiscuous mode
[   64.540103][  T168] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.660950][  T168] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.678367][  T168] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.690002][  T168] bond0 (unregistering): Released all slaves
[   64.704815][ T4622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.440'.
[   64.782002][  T168] tipc: Left network mode
[   64.865475][  T168] hsr_slave_0: left promiscuous mode
[   64.897341][  T168] hsr_slave_1: left promiscuous mode
[   64.914604][  T168] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.922154][  T168] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.933573][ T4639] loop1: detected capacity change from 0 to 8192
[   64.940850][  T168] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.948316][  T168] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.963317][  T168] veth1_macvtap: left promiscuous mode
[   64.968862][  T168] veth0_macvtap: left promiscuous mode
[   64.974861][  T168] veth1_vlan: left promiscuous mode
[   64.980119][  T168] veth0_vlan: left promiscuous mode
[   65.068469][  T168] team0 (unregistering): Port device team_slave_1 removed
[   65.081572][  T168] team0 (unregistering): Port device team_slave_0 removed
[   65.127308][ T4591] chnl_net:caif_netlink_parms(): no params data found
[   65.221203][ T3275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.244938][ T4591] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.252236][ T4591] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.289353][ T4591] bridge_slave_0: entered allmulticast mode
[   65.318068][ T4591] bridge_slave_0: entered promiscuous mode
[   65.341830][ T4591] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.349054][ T4591] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.360011][ T4591] bridge_slave_1: entered allmulticast mode
[   65.366658][ T4591] bridge_slave_1: entered promiscuous mode
[   65.387878][ T4591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.415762][ T4591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.453744][ T4674] loop2: detected capacity change from 0 to 128
[   65.455454][ T4671] team0 (unregistering): Port device team_slave_0 removed
[   65.468934][ T4674] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   65.488646][ T4671] team0 (unregistering): Port device team_slave_1 removed
[   65.530238][ T4591] team0: Port device team_slave_0 added
[   65.547417][ T4591] team0: Port device team_slave_1 added
[   65.583601][ T4591] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.590613][ T4591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.617052][ T4591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.629939][ T4591] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.637030][ T4591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.663196][ T4591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.712267][ T4688] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.743885][ T4591] hsr_slave_0: entered promiscuous mode
[   65.750124][ T4591] hsr_slave_1: entered promiscuous mode
[   65.756775][ T4591] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   65.757398][ T4688] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.768955][ T4591] Cannot create hsr debugfs directory
[   65.804751][ T4688] FAULT_INJECTION: forcing a failure.
[   65.804751][ T4688] name failslab, interval 1, probability 0, space 0, times 0
[   65.817464][ T4688] CPU: 1 UID: 0 PID: 4688 Comm: syz.0.463 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   65.828175][ T4688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.838292][ T4688] Call Trace:
[   65.841593][ T4688]  <TASK>
[   65.844551][ T4688]  dump_stack_lvl+0xf2/0x150
[   65.849187][ T4688]  dump_stack+0x15/0x20
[   65.853429][ T4688]  should_fail_ex+0x223/0x230
[   65.858203][ T4688]  ? skb_clone+0x154/0x1f0
[   65.862669][ T4688]  should_failslab+0x8f/0xb0
[   65.867298][ T4688]  kmem_cache_alloc_noprof+0x4c/0x290
[   65.872712][ T4688]  ? mod_objcg_state+0x2ea/0x4f0
[   65.877764][ T4688]  skb_clone+0x154/0x1f0
[   65.882054][ T4688]  dev_queue_xmit_nit+0x149/0x620
[   65.887302][ T4688]  dev_hard_start_xmit+0xcc/0x3f0
[   65.892677][ T4688]  ? validate_xmit_skb+0x658/0x8d0
[   65.897920][ T4688]  __dev_queue_xmit+0xfe6/0x1fe0
[   65.903019][ T4688]  ? __dev_queue_xmit+0x161/0x1fe0
[   65.908174][ T4688]  ? should_fail_ex+0xd7/0x230
[   65.913047][ T4688]  ? __skb_clone+0x2d0/0x2f0
[   65.917768][ T4688]  __netlink_deliver_tap+0x39f/0x4c0
[   65.923177][ T4688]  netlink_unicast+0x64a/0x670
[   65.928043][ T4688]  netlink_sendmsg+0x5cc/0x6e0
[   65.932851][ T4688]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.938227][ T4688]  __sock_sendmsg+0x140/0x180
[   65.942965][ T4688]  ____sys_sendmsg+0x312/0x410
[   65.947819][ T4688]  __sys_sendmsg+0x1d9/0x270
[   65.952569][ T4688]  __x64_sys_sendmsg+0x46/0x50
[   65.957395][ T4688]  x64_sys_call+0x2689/0x2d60
[   65.962173][ T4688]  do_syscall_64+0xc9/0x1c0
[   65.966709][ T4688]  ? clear_bhb_loop+0x55/0xb0
[   65.971487][ T4688]  ? clear_bhb_loop+0x55/0xb0
[   65.976249][ T4688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.982201][ T4688] RIP: 0033:0x7f1d55bcdff9
[   65.986658][ T4688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.006288][ T4688] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.014743][ T4688] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   66.022748][ T4688] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 000000000000000b
[   66.030770][ T4688] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   66.038842][ T4688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.046836][ T4688] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   66.055005][ T4688]  </TASK>
[   66.082283][ T4702] loop1: detected capacity change from 0 to 1024
[   66.091930][ T4702] EXT4-fs: Ignoring removed i_version option
[   66.104965][ T4702] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.182556][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.289193][ T4715] loop4: detected capacity change from 0 to 8192
[   66.356281][ T4723] netlink: 'syz.1.476': attribute type 10 has an invalid length.
[   66.367962][ T4723] syz_tun: entered promiscuous mode
[   66.377511][ T4723] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   66.427827][ T4591] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   66.445611][ T4591] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   66.450785][ T4729] loop4: detected capacity change from 0 to 128
[   66.473424][ T4591] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   66.484884][ T4591] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   66.492492][ T4729] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   66.562766][ T4591] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.582634][ T4591] 8021q: adding VLAN 0 to HW filter on device team0
[   66.596975][ T1849] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.604111][ T1849] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.622400][ T1849] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.629507][ T1849] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.674135][ T4744] __nla_validate_parse: 1 callbacks suppressed
[   66.674152][ T4744] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.484'.
[   66.708403][ T4744] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.484'.
[   66.717562][ T4744] netlink: 69 bytes leftover after parsing attributes in process `syz.4.484'.
[   66.758371][ T4591] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.774131][ T4759] wireguard0: entered promiscuous mode
[   66.779689][ T4759] wireguard0: entered allmulticast mode
[   66.855405][ T4591] veth0_vlan: entered promiscuous mode
[   66.871142][ T4591] veth1_vlan: entered promiscuous mode
[   66.898479][ T4591] veth0_macvtap: entered promiscuous mode
[   66.906018][ T4770] loop4: detected capacity change from 0 to 128
[   66.909681][ T4591] veth1_macvtap: entered promiscuous mode
[   66.923367][ T4770] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   66.934112][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.944700][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.957715][ T4591] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.980954][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.991628][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.015850][ T4591] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.033377][ T4591] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.042207][ T4591] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.050951][ T4591] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.059778][ T4591] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.125100][ T4791] loop3: detected capacity change from 0 to 512
[   67.133715][ T4791] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.160728][ T4791] EXT4-fs (loop3): 1 truncate cleaned up
[   67.167006][ T4791] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.192636][ T4791] 9pnet_fd: Insufficient options for proto=fd
[   67.222456][ T4591] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.373162][ T4800] loop4: detected capacity change from 0 to 128
[   67.380120][ T4800] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   67.553829][ T4817] loop1: detected capacity change from 0 to 512
[   67.573726][ T4817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.586393][ T4817] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.624537][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.686812][ T4827] loop4: detected capacity change from 0 to 8192
[   67.725432][ T4829] loop1: detected capacity change from 0 to 8192
[   67.782432][ T4832] FAULT_INJECTION: forcing a failure.
[   67.782432][ T4832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.795693][ T4832] CPU: 1 UID: 0 PID: 4832 Comm: syz.4.512 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   67.806415][ T4832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.816562][ T4832] Call Trace:
[   67.819891][ T4832]  <TASK>
[   67.822834][ T4832]  dump_stack_lvl+0xf2/0x150
[   67.827449][ T4832]  dump_stack+0x15/0x20
[   67.831638][ T4832]  should_fail_ex+0x223/0x230
[   67.836436][ T4832]  should_fail+0xb/0x10
[   67.840631][ T4832]  should_fail_usercopy+0x1a/0x20
[   67.845714][ T4832]  _copy_from_user+0x1e/0xd0
[   67.850342][ T4832]  do_ipv6_setsockopt+0x1ef/0x2250
[   67.855570][ T4832]  ? __rcu_read_unlock+0x4e/0x70
[   67.860627][ T4832]  ? avc_has_perm_noaudit+0x1cc/0x210
[   67.866037][ T4832]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[   67.872431][ T4832]  ipv6_setsockopt+0x57/0x130
[   67.877173][ T4832]  udpv6_setsockopt+0x95/0xb0
[   67.881889][ T4832]  sock_common_setsockopt+0x64/0x80
[   67.887105][ T4832]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   67.893037][ T4832]  __sys_setsockopt+0x1cc/0x240
[   67.897971][ T4832]  __x64_sys_setsockopt+0x66/0x80
[   67.903079][ T4832]  x64_sys_call+0x278d/0x2d60
[   67.907839][ T4832]  do_syscall_64+0xc9/0x1c0
[   67.912387][ T4832]  ? clear_bhb_loop+0x55/0xb0
[   67.917183][ T4832]  ? clear_bhb_loop+0x55/0xb0
[   67.921958][ T4832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.927952][ T4832] RIP: 0033:0x7fd76317dff9
[   67.932386][ T4832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.952157][ T4832] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   67.960671][ T4832] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   67.968734][ T4832] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000006
[   67.976709][ T4832] RBP: 00007fd761df1090 R08: 0000000000000060 R09: 0000000000000000
[   67.984771][ T4832] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[   67.992743][ T4832] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   68.000859][ T4832]  </TASK>
[   68.121816][ T4842] loop1: detected capacity change from 0 to 1024
[   68.133299][ T4842] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.151157][ T4842] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   68.163012][ T4842] EXT4-fs (loop1): too many log groups per flexible block group
[   68.170888][ T4842] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   68.180413][ T4842] EXT4-fs (loop1): mount failed
[   68.189530][ T4845] loop3: detected capacity change from 0 to 512
[   68.205110][ T4845] EXT4-fs: Ignoring removed bh option
[   68.218421][ T4845] EXT4-fs error (device loop3): __ext4_iget:4952: inode #15: block 1803188595: comm syz.3.516: invalid block
[   68.231179][ T4845] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.516: couldn't read orphan inode 15 (err -117)
[   68.246362][ T4845] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.275951][ T4591] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.326649][ T4853] loop3: detected capacity change from 0 to 8192
[   68.501703][ T4861] loop3: detected capacity change from 0 to 8192
[   68.603091][ T4864] FAULT_INJECTION: forcing a failure.
[   68.603091][ T4864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.616484][ T4864] CPU: 1 UID: 0 PID: 4864 Comm: syz.3.523 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   68.627263][ T4864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.637351][ T4864] Call Trace:
[   68.640652][ T4864]  <TASK>
[   68.643592][ T4864]  dump_stack_lvl+0xf2/0x150
[   68.648202][ T4864]  dump_stack+0x15/0x20
[   68.652390][ T4864]  should_fail_ex+0x223/0x230
[   68.657088][ T4864]  should_fail+0xb/0x10
[   68.661264][ T4864]  should_fail_usercopy+0x1a/0x20
[   68.666317][ T4864]  _copy_from_user+0x1e/0xd0
[   68.670943][ T4864]  __sys_bpf+0x14e/0x7a0
[   68.675207][ T4864]  __x64_sys_bpf+0x43/0x50
[   68.679653][ T4864]  x64_sys_call+0x2625/0x2d60
[   68.684344][ T4864]  do_syscall_64+0xc9/0x1c0
[   68.688921][ T4864]  ? clear_bhb_loop+0x55/0xb0
[   68.693643][ T4864]  ? clear_bhb_loop+0x55/0xb0
[   68.698419][ T4864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.704390][ T4864] RIP: 0033:0x7f833569dff9
[   68.708820][ T4864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.728468][ T4864] RSP: 002b:00007f8334311038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   68.736965][ T4864] RAX: ffffffffffffffda RBX: 00007f8335855f80 RCX: 00007f833569dff9
[   68.744952][ T4864] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   68.752993][ T4864] RBP: 00007f8334311090 R08: 0000000000000000 R09: 0000000000000000
[   68.761084][ T4864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.769094][ T4864] R13: 0000000000000000 R14: 00007f8335855f80 R15: 00007ffc3d251c78
[   68.777105][ T4864]  </TASK>
[   68.802057][   T29] kauditd_printk_skb: 215 callbacks suppressed
[   68.802072][   T29] audit: type=1400 audit(1727898476.502:1815): avc:  denied  { bind } for  pid=4865 comm="syz.3.524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   68.881089][   T29] audit: type=1326 audit(1727898476.572:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   68.904638][   T29] audit: type=1326 audit(1727898476.572:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   68.928152][   T29] audit: type=1326 audit(1727898476.572:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   68.951623][   T29] audit: type=1326 audit(1727898476.572:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   68.975394][   T29] audit: type=1326 audit(1727898476.572:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   68.998883][   T29] audit: type=1326 audit(1727898476.572:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   69.022690][   T29] audit: type=1326 audit(1727898476.572:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   69.047295][   T29] audit: type=1326 audit(1727898476.572:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   69.070852][   T29] audit: type=1326 audit(1727898476.582:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4871 comm="syz.4.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   69.105362][ T4883] loop4: detected capacity change from 0 to 8192
[   69.146866][ T4886] netlink: 4560 bytes leftover after parsing attributes in process `syz.1.532'.
[   69.156208][ T4886] netlink: 4560 bytes leftover after parsing attributes in process `syz.1.532'.
[   69.165290][ T4886] netlink: 69 bytes leftover after parsing attributes in process `syz.1.532'.
[   69.236261][ T4889] loop1: detected capacity change from 0 to 8192
[   69.279118][ T4895] loop4: detected capacity change from 0 to 256
[   69.285880][ T4895] vfat: Unknown parameter '/dev/autofs'
[   69.962317][ T4918] loop0: detected capacity change from 0 to 2048
[   70.027087][ T4918] Alternate GPT is invalid, using primary GPT.
[   70.033553][ T4918]  loop0: p2 p3 p7
[   70.068467][ T4921] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.543'.
[   70.082006][ T4921] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.543'.
[   70.086533][ T2968] Alternate GPT is invalid, using primary GPT.
[   70.091445][ T4921] netlink: 69 bytes leftover after parsing attributes in process `syz.4.543'.
[   70.098143][ T2968]  loop0: p2 p3 p7
[   70.141849][ T3740] udevd[3740]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   70.146028][ T3342] udevd[3342]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   70.165154][ T3258] udevd[3258]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   70.242659][ T4930] loop1: detected capacity change from 0 to 8192
[   70.253149][ T3258] udevd[3258]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   70.254129][ T3342] udevd[3342]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   70.274598][ T3740] udevd[3740]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   70.379061][ T4941] program syz.1.551 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.394865][ T4941] loop1: detected capacity change from 0 to 512
[   70.401513][ T4941] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   70.467923][ T4945] FAULT_INJECTION: forcing a failure.
[   70.467923][ T4945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.481083][ T4945] CPU: 1 UID: 0 PID: 4945 Comm: syz.1.553 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   70.492275][ T4945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.502351][ T4945] Call Trace:
[   70.505657][ T4945]  <TASK>
[   70.508604][ T4945]  dump_stack_lvl+0xf2/0x150
[   70.513266][ T4945]  dump_stack+0x15/0x20
[   70.517489][ T4945]  should_fail_ex+0x223/0x230
[   70.522202][ T4945]  should_fail+0xb/0x10
[   70.526455][ T4945]  should_fail_usercopy+0x1a/0x20
[   70.531580][ T4945]  _copy_from_user+0x1e/0xd0
[   70.536265][ T4945]  move_addr_to_kernel+0x82/0x120
[   70.541376][ T4945]  __sys_sendto+0x15c/0x260
[   70.545980][ T4945]  __x64_sys_sendto+0x78/0x90
[   70.550685][ T4945]  x64_sys_call+0x2959/0x2d60
[   70.555400][ T4945]  do_syscall_64+0xc9/0x1c0
[   70.559924][ T4945]  ? clear_bhb_loop+0x55/0xb0
[   70.564726][ T4945]  ? clear_bhb_loop+0x55/0xb0
[   70.569881][ T4945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.575876][ T4945] RIP: 0033:0x7f80f8a5dff9
[   70.580366][ T4945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.599998][ T4945] RSP: 002b:00007f80f76d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   70.608428][ T4945] RAX: ffffffffffffffda RBX: 00007f80f8c15f80 RCX: 00007f80f8a5dff9
[   70.616492][ T4945] RDX: 000000000000002a RSI: 0000000020000100 RDI: 0000000000000003
[   70.624536][ T4945] RBP: 00007f80f76d7090 R08: 0000000020000200 R09: 0000000000000014
[   70.632524][ T4945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.640678][ T4945] R13: 0000000000000000 R14: 00007f80f8c15f80 R15: 00007ffef45e75e8
[   70.648724][ T4945]  </TASK>
[   70.726591][ T4961] netlink: 4560 bytes leftover after parsing attributes in process `syz.1.558'.
[   70.770404][ T4966] loop1: detected capacity change from 0 to 128
[   70.827464][ T4972] loop0: detected capacity change from 0 to 128
[   70.908169][ T4982] loop1: detected capacity change from 0 to 128
[   70.944240][ T4982] 9pnet: Could not find request transport: fd!rfdno=0x000000000000000a
[   70.974133][ T4982] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   70.982066][ T4982] FAT-fs (loop1): Filesystem has been set read-only
[   70.989592][ T4982] syz.1.568: attempt to access beyond end of device
[   70.989592][ T4982] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   71.005035][ T4982] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   71.013121][ T4982] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   71.018735][ T4987] loop0: detected capacity change from 0 to 8192
[   71.021352][ T4982] syz.1.568: attempt to access beyond end of device
[   71.021352][ T4982] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   71.043097][ T4982] syz.1.568: attempt to access beyond end of device
[   71.043097][ T4982] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   71.078619][ T4992] FAULT_INJECTION: forcing a failure.
[   71.078619][ T4992] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.091857][ T4992] CPU: 0 UID: 0 PID: 4992 Comm: syz.4.572 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   71.102504][ T4992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.112655][ T4992] Call Trace:
[   71.116008][ T4992]  <TASK>
[   71.118945][ T4992]  dump_stack_lvl+0xf2/0x150
[   71.123658][ T4992]  dump_stack+0x15/0x20
[   71.127866][ T4992]  should_fail_ex+0x223/0x230
[   71.132683][ T4992]  should_fail+0xb/0x10
[   71.136885][ T4992]  should_fail_usercopy+0x1a/0x20
[   71.141955][ T4992]  _copy_from_user+0x1e/0xd0
[   71.146631][ T4992]  ucma_write+0xd4/0x240
[   71.150965][ T4992]  ? __pfx_ucma_write+0x10/0x10
[   71.155889][ T4992]  vfs_write+0x26c/0x910
[   71.160418][ T4992]  ? __rcu_read_unlock+0x4e/0x70
[   71.165511][ T4992]  ? __fget_files+0x1d4/0x210
[   71.170206][ T4992]  ksys_write+0xeb/0x1b0
[   71.174466][ T4992]  __x64_sys_write+0x42/0x50
[   71.179132][ T4992]  x64_sys_call+0x27dd/0x2d60
[   71.183869][ T4992]  do_syscall_64+0xc9/0x1c0
[   71.188515][ T4992]  ? clear_bhb_loop+0x55/0xb0
[   71.193226][ T4992]  ? clear_bhb_loop+0x55/0xb0
[   71.197960][ T4992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.203867][ T4992] RIP: 0033:0x7fd76317dff9
[   71.208303][ T4992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.228114][ T4992] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   71.236551][ T4992] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   71.244522][ T4992] RDX: 0000000000000018 RSI: 0000000020000180 RDI: 0000000000000003
[   71.252496][ T4992] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   71.260470][ T4992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.268538][ T4992] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   71.276571][ T4992]  </TASK>
[   71.328316][ T4999] FAULT_INJECTION: forcing a failure.
[   71.328316][ T4999] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.341471][ T4999] CPU: 1 UID: 0 PID: 4999 Comm: syz.1.575 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   71.352135][ T4999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.362225][ T4999] Call Trace:
[   71.365615][ T4999]  <TASK>
[   71.368614][ T4999]  dump_stack_lvl+0xf2/0x150
[   71.373762][ T4999]  dump_stack+0x15/0x20
[   71.377928][ T4999]  should_fail_ex+0x223/0x230
[   71.382706][ T4999]  should_fail+0xb/0x10
[   71.386924][ T4999]  should_fail_usercopy+0x1a/0x20
[   71.392049][ T4999]  _copy_from_user+0x1e/0xd0
[   71.396718][ T4999]  copy_msghdr_from_user+0x54/0x2a0
[   71.401955][ T4999]  __sys_sendmsg+0x171/0x270
[   71.406583][ T4999]  __x64_sys_sendmsg+0x46/0x50
[   71.411470][ T4999]  x64_sys_call+0x2689/0x2d60
[   71.416163][ T4999]  do_syscall_64+0xc9/0x1c0
[   71.420764][ T4999]  ? clear_bhb_loop+0x55/0xb0
[   71.425654][ T4999]  ? clear_bhb_loop+0x55/0xb0
[   71.430445][ T4999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.436398][ T4999] RIP: 0033:0x7f80f8a5dff9
[   71.440819][ T4999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.460535][ T4999] RSP: 002b:00007f80f76d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.468997][ T4999] RAX: ffffffffffffffda RBX: 00007f80f8c15f80 RCX: 00007f80f8a5dff9
[   71.476994][ T4999] RDX: 0000000000000000 RSI: 0000000020007940 RDI: 0000000000000004
[   71.485045][ T4999] RBP: 00007f80f76d7090 R08: 0000000000000000 R09: 0000000000000000
[   71.493030][ T4999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.501041][ T4999] R13: 0000000000000000 R14: 00007f80f8c15f80 R15: 00007ffef45e75e8
[   71.509029][ T4999]  </TASK>
[   71.588389][ T5010] FAULT_INJECTION: forcing a failure.
[   71.588389][ T5010] name failslab, interval 1, probability 0, space 0, times 0
[   71.601216][ T5010] CPU: 0 UID: 0 PID: 5010 Comm: syz.0.577 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   71.611848][ T5010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.622087][ T5010] Call Trace:
[   71.622098][ T5010]  <TASK>
[   71.622108][ T5010]  dump_stack_lvl+0xf2/0x150
[   71.622141][ T5010]  dump_stack+0x15/0x20
[   71.622211][ T5010]  should_fail_ex+0x223/0x230
[   71.622255][ T5010]  ? getname_flags+0x81/0x3b0
[   71.622309][ T5010]  should_failslab+0x8f/0xb0
[   71.622334][ T5010]  kmem_cache_alloc_noprof+0x4c/0x290
[   71.622368][ T5010]  getname_flags+0x81/0x3b0
[   71.622396][ T5010]  user_path_at+0x26/0x110
[   71.622432][ T5010]  __x64_sys_listxattr+0x76/0x130
[   71.622531][ T5010]  x64_sys_call+0x1fbc/0x2d60
[   71.622567][ T5010]  do_syscall_64+0xc9/0x1c0
[   71.622602][ T5010]  ? clear_bhb_loop+0x55/0xb0
[   71.622674][ T5010]  ? clear_bhb_loop+0x55/0xb0
[   71.622755][ T5010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.622797][ T5010] RIP: 0033:0x7f1d55bcdff9
[   71.622817][ T5010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.622840][ T5010] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[   71.622912][ T5010] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   71.622929][ T5010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   71.622943][ T5010] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   71.622957][ T5010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.622972][ T5010] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   71.622994][ T5010]  </TASK>
[   71.736245][ T5022] FAULT_INJECTION: forcing a failure.
[   71.736245][ T5022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.736330][ T5022] CPU: 1 UID: 0 PID: 5022 Comm: syz.4.586 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   71.736362][ T5022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.736386][ T5022] Call Trace:
[   71.736393][ T5022]  <TASK>
[   71.736402][ T5022]  dump_stack_lvl+0xf2/0x150
[   71.736434][ T5022]  dump_stack+0x15/0x20
[   71.736459][ T5022]  should_fail_ex+0x223/0x230
[   71.736593][ T5022]  should_fail+0xb/0x10
[   71.736631][ T5022]  should_fail_usercopy+0x1a/0x20
[   71.736717][ T5022]  _copy_from_user+0x1e/0xd0
[   71.736746][ T5022]  copy_msghdr_from_user+0x54/0x2a0
[   71.736784][ T5022]  __sys_sendmsg+0x171/0x270
[   71.736881][ T5022]  __x64_sys_sendmsg+0x46/0x50
[   71.736924][ T5022]  x64_sys_call+0x2689/0x2d60
[   71.736972][ T5022]  do_syscall_64+0xc9/0x1c0
[   71.736991][ T5022]  ? clear_bhb_loop+0x55/0xb0
[   71.737025][ T5022]  ? clear_bhb_loop+0x55/0xb0
[   71.737143][ T5022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.737186][ T5022] RIP: 0033:0x7fd76317dff9
[   71.737201][ T5022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.737219][ T5022] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.737240][ T5022] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   71.737257][ T5022] RDX: 0000000000000060 RSI: 0000000020000380 RDI: 0000000000000004
[   71.737349][ T5022] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   71.737366][ T5022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.737380][ T5022] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   71.737443][ T5022]  </TASK>
[   71.758688][ T5025] syz.3.585[5025] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.758836][ T5025] syz.3.585[5025] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.759110][ T5025] syz.3.585[5025] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.761380][ T5026] netlink: 'syz.0.587': attribute type 3 has an invalid length.
[   71.761397][ T5026] __nla_validate_parse: 8 callbacks suppressed
[   71.761409][ T5026] netlink: 132 bytes leftover after parsing attributes in process `syz.0.587'.
[   71.812605][ T5025] loop3: detected capacity change from 0 to 1764
[   71.846809][ T5028] loop4: detected capacity change from 0 to 8192
[   71.993615][ T5030] 9pnet_fd: Insufficient options for proto=fd
[   72.283004][ T5042] netlink: 4560 bytes leftover after parsing attributes in process `syz.3.595'.
[   72.294153][ T5042] netlink: 4560 bytes leftover after parsing attributes in process `syz.3.595'.
[   72.303319][ T5042] netlink: 69 bytes leftover after parsing attributes in process `syz.3.595'.
[   72.357333][ T5054] loop1: detected capacity change from 0 to 2048
[   72.378656][ T5054] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.405976][ T5053] loop3: detected capacity change from 0 to 512
[   72.417365][ T5053] EXT4-fs: Ignoring removed bh option
[   72.439858][ T5053] EXT4-fs error (device loop3): __ext4_iget:4952: inode #15: block 1803188595: comm syz.3.600: invalid block
[   72.452649][ T5053] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.600: couldn't read orphan inode 15 (err -117)
[   72.465406][ T5053] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.481156][ T5053] 9pnet: p9_errstr2errno: server reported unknown error �@�΂�(��
[   72.534322][ T5062] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[   72.572832][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.602620][ T5064] FAULT_INJECTION: forcing a failure.
[   72.602620][ T5064] name failslab, interval 1, probability 0, space 0, times 0
[   72.606990][ T4591] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.615480][ T5064] CPU: 1 UID: 0 PID: 5064 Comm: syz.1.601 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   72.635181][ T5064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   72.645321][ T5064] Call Trace:
[   72.648606][ T5064]  <TASK>
[   72.651550][ T5064]  dump_stack_lvl+0xf2/0x150
[   72.656199][ T5064]  dump_stack+0x15/0x20
[   72.660441][ T5064]  should_fail_ex+0x223/0x230
[   72.665142][ T5064]  ? __alloc_skb+0x10b/0x310
[   72.669813][ T5064]  should_failslab+0x8f/0xb0
[   72.674427][ T5064]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   72.680268][ T5064]  __alloc_skb+0x10b/0x310
[   72.684703][ T5064]  ? selinux_file_permission+0x22a/0x360
[   72.690375][ T5064]  ppp_write+0x87/0x310
[   72.694599][ T5064]  ? vfs_write+0x258/0x910
[   72.699096][ T5064]  ? __pfx_ppp_write+0x10/0x10
[   72.704391][ T5064]  vfs_write+0x26c/0x910
[   72.708748][ T5064]  ? __rcu_read_unlock+0x4e/0x70
[   72.713733][ T5064]  ? __fget_files+0x1d4/0x210
[   72.718514][ T5064]  ksys_write+0xeb/0x1b0
[   72.722784][ T5064]  __x64_sys_write+0x42/0x50
[   72.727411][ T5064]  x64_sys_call+0x27dd/0x2d60
[   72.732162][ T5064]  do_syscall_64+0xc9/0x1c0
[   72.736686][ T5064]  ? clear_bhb_loop+0x55/0xb0
[   72.741472][ T5064]  ? clear_bhb_loop+0x55/0xb0
[   72.746197][ T5064]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.752149][ T5064] RIP: 0033:0x7f80f8a5dff9
[   72.756582][ T5064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.776202][ T5064] RSP: 002b:00007f80f76d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   72.784694][ T5064] RAX: ffffffffffffffda RBX: 00007f80f8c15f80 RCX: 00007f80f8a5dff9
[   72.792675][ T5064] RDX: 0000000000100000 RSI: 00000000200003c0 RDI: 0000000000000006
[   72.800657][ T5064] RBP: 00007f80f76d7090 R08: 0000000000000000 R09: 0000000000000000
[   72.808634][ T5064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.816612][ T5064] R13: 0000000000000000 R14: 00007f80f8c15f80 R15: 00007ffef45e75e8
[   72.824599][ T5064]  </TASK>
[   72.908674][ T5070] 9pnet_fd: Insufficient options for proto=fd
[   73.013711][ T5082] netlink: 4560 bytes leftover after parsing attributes in process `syz.1.610'.
[   73.022915][ T5082] netlink: 4560 bytes leftover after parsing attributes in process `syz.1.610'.
[   73.032102][ T5082] netlink: 69 bytes leftover after parsing attributes in process `syz.1.610'.
[   73.034684][ T5080] loop3: detected capacity change from 0 to 8192
[   73.295655][ T5097] 9pnet_fd: Insufficient options for proto=fd
[   73.381162][ T5105] netlink: 4560 bytes leftover after parsing attributes in process `syz.3.621'.
[   73.381584][ T5109] FAULT_INJECTION: forcing a failure.
[   73.381584][ T5109] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.390575][ T5105] netlink: 4560 bytes leftover after parsing attributes in process `syz.3.621'.
[   73.403658][ T5109] CPU: 1 UID: 0 PID: 5109 Comm: syz.4.622 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   73.403685][ T5109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.412762][ T5105] netlink: 69 bytes leftover after parsing attributes in process `syz.3.621'.
[   73.423261][ T5109] Call Trace:
[   73.423273][ T5109]  <TASK>
[   73.423282][ T5109]  dump_stack_lvl+0xf2/0x150
[   73.423313][ T5109]  dump_stack+0x15/0x20
[   73.457462][ T5109]  should_fail_ex+0x223/0x230
[   73.462365][ T5109]  should_fail+0xb/0x10
[   73.466672][ T5109]  should_fail_usercopy+0x1a/0x20
[   73.471753][ T5109]  _copy_from_user+0x1e/0xd0
[   73.476432][ T5109]  copy_msghdr_from_user+0x54/0x2a0
[   73.481724][ T5109]  __sys_sendmmsg+0x21a/0x500
[   73.486536][ T5109]  __x64_sys_sendmmsg+0x57/0x70
[   73.487910][ T5114] FAULT_INJECTION: forcing a failure.
[   73.487910][ T5114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.491426][ T5109]  x64_sys_call+0xa49/0x2d60
[   73.509207][ T5109]  do_syscall_64+0xc9/0x1c0
[   73.513800][ T5109]  ? clear_bhb_loop+0x55/0xb0
[   73.518502][ T5109]  ? clear_bhb_loop+0x55/0xb0
[   73.523223][ T5109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.529153][ T5109] RIP: 0033:0x7fd76317dff9
[   73.533626][ T5109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.553331][ T5109] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   73.561881][ T5109] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   73.569878][ T5109] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000003
[   73.577857][ T5109] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   73.585932][ T5109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.593943][ T5109] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   73.601985][ T5109]  </TASK>
[   73.605015][ T5114] CPU: 0 UID: 0 PID: 5114 Comm: syz.0.625 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   73.615904][ T5114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.625987][ T5114] Call Trace:
[   73.629345][ T5114]  <TASK>
[   73.632349][ T5114]  dump_stack_lvl+0xf2/0x150
[   73.636996][ T5114]  dump_stack+0x15/0x20
[   73.641181][ T5114]  should_fail_ex+0x223/0x230
[   73.646058][ T5114]  should_fail+0xb/0x10
[   73.650266][ T5114]  should_fail_usercopy+0x1a/0x20
[   73.655414][ T5114]  _copy_from_user+0x1e/0xd0
[   73.660068][ T5114]  get_user_ifreq+0x8c/0x160
[   73.664689][ T5114]  sock_ioctl+0x576/0x640
[   73.669062][ T5114]  ? __pfx_sock_ioctl+0x10/0x10
[   73.673943][ T5114]  __se_sys_ioctl+0xcd/0x140
[   73.678640][ T5114]  __x64_sys_ioctl+0x43/0x50
[   73.683277][ T5114]  x64_sys_call+0x15cc/0x2d60
[   73.688052][ T5114]  do_syscall_64+0xc9/0x1c0
[   73.692583][ T5114]  ? clear_bhb_loop+0x55/0xb0
[   73.697319][ T5114]  ? clear_bhb_loop+0x55/0xb0
[   73.702075][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.708110][ T5114] RIP: 0033:0x7f1d55bcdff9
[   73.712595][ T5114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.732279][ T5114] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.740728][ T5114] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   73.748774][ T5114] RDX: 0000000020000080 RSI: 00000000000089f3 RDI: 0000000000000004
[   73.756774][ T5114] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   73.764838][ T5114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.772832][ T5114] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   73.780833][ T5114]  </TASK>
[   73.909482][ T5128] 9pnet_fd: Insufficient options for proto=fd
[   73.936065][   T29] kauditd_printk_skb: 531 callbacks suppressed
[   73.936145][   T29] audit: type=1326 audit(1727898481.632:2356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   73.986879][   T29] audit: type=1326 audit(1727898481.642:2357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.006528][ T5136] FAULT_INJECTION: forcing a failure.
[   74.006528][ T5136] name failslab, interval 1, probability 0, space 0, times 0
[   74.010390][   T29] audit: type=1326 audit(1727898481.642:2358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.022994][ T5136] CPU: 0 UID: 0 PID: 5136 Comm: syz.4.635 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   74.046452][   T29] audit: type=1326 audit(1727898481.642:2359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.056810][ T5136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.056827][ T5136] Call Trace:
[   74.056835][ T5136]  <TASK>
[   74.056845][ T5136]  dump_stack_lvl+0xf2/0x150
[   74.056895][ T5136]  dump_stack+0x15/0x20
[   74.056918][ T5136]  should_fail_ex+0x223/0x230
[   74.056957][ T5136]  ? audit_log_start+0x34c/0x6b0
[   74.056992][ T5136]  should_failslab+0x8f/0xb0
[   74.080256][   T29] audit: type=1326 audit(1727898481.642:2360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.090285][ T5136]  kmem_cache_alloc_noprof+0x4c/0x290
[   74.093670][   T29] audit: type=1326 audit(1727898481.642:2361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.096567][ T5136]  audit_log_start+0x34c/0x6b0
[   74.101150][   T29] audit: type=1326 audit(1727898481.642:2362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.105290][ T5136]  audit_seccomp+0x4b/0x130
[   74.105318][ T5136]  __seccomp_filter+0x6fa/0x1180
[   74.109999][   T29] audit: type=1326 audit(1727898481.642:2363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.114942][ T5136]  ? proc_fail_nth_write+0x12a/0x150
[   74.119555][   T29] audit: type=1326 audit(1727898481.642:2364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.119603][   T29] audit: type=1326 audit(1727898481.642:2365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.0.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d55bcdff9 code=0x7ffc0000
[   74.142848][ T5136]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   74.290189][ T5136]  ? vfs_write+0x580/0x910
[   74.294668][ T5136]  ? __fget_files+0x1d4/0x210
[   74.299525][ T5136]  __secure_computing+0x9f/0x1c0
[   74.304484][ T5136]  syscall_trace_enter+0xd1/0x1f0
[   74.309528][ T5136]  ? fpregs_assert_state_consistent+0x83/0xa0
[   74.315690][ T5136]  do_syscall_64+0xaa/0x1c0
[   74.320206][ T5136]  ? clear_bhb_loop+0x55/0xb0
[   74.325045][ T5136]  ? clear_bhb_loop+0x55/0xb0
[   74.329751][ T5136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.335762][ T5136] RIP: 0033:0x7fd76317dff9
[   74.340187][ T5136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.359976][ T5136] RSP: 002b:00007fd761df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   74.368458][ T5136] RAX: ffffffffffffffda RBX: 00007fd763335f80 RCX: 00007fd76317dff9
[   74.376510][ T5136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   74.384558][ T5136] RBP: 00007fd761df1090 R08: 0000000000000000 R09: 0000000000000000
[   74.392538][ T5136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.400523][ T5136] R13: 0000000000000000 R14: 00007fd763335f80 R15: 00007ffc1b89b258
[   74.408509][ T5136]  </TASK>
[   74.421593][ T5142] loop0: detected capacity change from 0 to 1024
[   74.428451][ T5142] EXT4-fs: Ignoring removed orlov option
[   74.434224][ T5142] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.493039][ T5142] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.506187][ T5153] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   74.528303][ T5141] EXT4-fs (loop0): shut down requested (0)
[   74.579208][ T3278] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.651669][ T5164] sg_write: data in/out 18/14 bytes for SCSI command 0x4-- guessing data in;
[   74.651669][ T5164]    program syz.0.644 not setting count and/or reply_len properly
[   74.681441][ T5153] vhci_hcd: default hub control req: 0000 v0000 i0002 l0
[   74.741718][ T5172] loop0: detected capacity change from 0 to 128
[   74.757354][ T5172] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   74.869837][ T5181] loop1: detected capacity change from 0 to 8192
[   74.877745][ T5187] ucma_write: process 90 (syz.3.654) changed security contexts after opening file descriptor, this is not allowed.
[   74.879102][ T5185] FAULT_INJECTION: forcing a failure.
[   74.879102][ T5185] name failslab, interval 1, probability 0, space 0, times 0
[   74.902718][ T5185] CPU: 1 UID: 0 PID: 5185 Comm: syz.0.652 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   74.913477][ T5185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.923558][ T5185] Call Trace:
[   74.926851][ T5185]  <TASK>
[   74.929836][ T5185]  dump_stack_lvl+0xf2/0x150
[   74.934460][ T5185]  dump_stack+0x15/0x20
[   74.938635][ T5185]  should_fail_ex+0x223/0x230
[   74.943393][ T5185]  ? audit_log_start+0x34c/0x6b0
[   74.948347][ T5185]  should_failslab+0x8f/0xb0
[   74.952992][ T5185]  kmem_cache_alloc_noprof+0x4c/0x290
[   74.958463][ T5185]  audit_log_start+0x34c/0x6b0
[   74.963311][ T5185]  audit_seccomp+0x4b/0x130
[   74.967852][ T5185]  __seccomp_filter+0x6fa/0x1180
[   74.972923][ T5185]  ? proc_fail_nth_write+0x12a/0x150
[   74.978225][ T5185]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   74.983880][ T5185]  ? vfs_write+0x580/0x910
[   74.988367][ T5185]  ? __fget_files+0x1d4/0x210
[   74.993071][ T5185]  __secure_computing+0x9f/0x1c0
[   74.998049][ T5185]  syscall_trace_enter+0xd1/0x1f0
[   75.003096][ T5185]  ? fpregs_assert_state_consistent+0x83/0xa0
[   75.009231][ T5185]  do_syscall_64+0xaa/0x1c0
[   75.013745][ T5185]  ? clear_bhb_loop+0x55/0xb0
[   75.018463][ T5185]  ? clear_bhb_loop+0x55/0xb0
[   75.023175][ T5185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.029100][ T5185] RIP: 0033:0x7f1d55bcdff9
[   75.033554][ T5185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.053292][ T5185] RSP: 002b:00007f1d54847038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[   75.061786][ T5185] RAX: ffffffffffffffda RBX: 00007f1d55d85f80 RCX: 00007f1d55bcdff9
[   75.069910][ T5185] RDX: 0000000020000480 RSI: 0000000000000000 RDI: 0000000000000300
[   75.077903][ T5185] RBP: 00007f1d54847090 R08: 0000000000000000 R09: 0000000000000000
[   75.086269][ T5185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.094396][ T5185] R13: 0000000000000000 R14: 00007f1d55d85f80 R15: 00007fff99d70428
[   75.102384][ T5185]  </TASK>
[   75.228283][ T5199] 9pnet_fd: Insufficient options for proto=fd
[   75.336928][ T5210] sg_write: data in/out 18/14 bytes for SCSI command 0x4-- guessing data in;
[   75.336928][ T5210]    program syz.1.661 not setting count and/or reply_len properly
[   75.360611][ T5212] loop3: detected capacity change from 0 to 128
[   75.368688][ T5212] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   75.397030][ T5214] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   75.714691][ T5232] FAULT_INJECTION: forcing a failure.
[   75.714691][ T5232] name failslab, interval 1, probability 0, space 0, times 0
[   75.727423][ T5232] CPU: 1 UID: 0 PID: 5232 Comm: syz.1.668 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   75.738052][ T5232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   75.748215][ T5232] Call Trace:
[   75.751505][ T5232]  <TASK>
[   75.754465][ T5232]  dump_stack_lvl+0xf2/0x150
[   75.759083][ T5232]  dump_stack+0x15/0x20
[   75.763314][ T5232]  should_fail_ex+0x223/0x230
[   75.768097][ T5232]  ? io_ring_ctx_alloc+0x38/0xe10
[   75.773157][ T5232]  should_failslab+0x8f/0xb0
[   75.777794][ T5232]  __kmalloc_cache_noprof+0x4b/0x2a0
[   75.783131][ T5232]  io_ring_ctx_alloc+0x38/0xe10
[   75.788070][ T5232]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   75.793805][ T5232]  io_uring_create+0x1cf/0x940
[   75.793853][ T5232]  __se_sys_io_uring_setup+0x1d2/0x1e0
[   75.793952][ T5232]  __x64_sys_io_uring_setup+0x31/0x40
[   75.809678][ T5232]  x64_sys_call+0x1f7e/0x2d60
[   75.814412][ T5232]  do_syscall_64+0xc9/0x1c0
[   75.818978][ T5232]  ? clear_bhb_loop+0x55/0xb0
[   75.823748][ T5232]  ? clear_bhb_loop+0x55/0xb0
[   75.828457][ T5232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.834524][ T5232] RIP: 0033:0x7f80f8a5dff9
[   75.838945][ T5232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.858613][ T5232] RSP: 002b:00007f80f76d6fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[   75.867161][ T5232] RAX: ffffffffffffffda RBX: 00007f80f8c15f80 RCX: 00007f80f8a5dff9
[   75.875138][ T5232] RDX: 00000000200001c0 RSI: 0000000020000080 RDI: 0000000000000239
[   75.883117][ T5232] RBP: 0000000020000080 R08: 0000000000000000 R09: 00000000200001c0
[   75.891103][ T5232] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   75.899100][ T5232] R13: 0000000020000000 R14: 0000000000000239 R15: 00000000200001c0
[   75.907090][ T5232]  </TASK>
[   76.130023][ T5233] loop1: detected capacity change from 0 to 1024
[   76.207346][ T5233] EXT4-fs: Ignoring removed orlov option
[   76.213280][ T5233] EXT4-fs: Ignoring removed oldalloc option
[   76.219375][ T5233] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.247194][ T5253] loop0: detected capacity change from 0 to 128
[   76.282984][ T5253] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   76.426976][ T5258] loop0: detected capacity change from 0 to 8192
[   76.469132][ T5237] chnl_net:caif_netlink_parms(): no params data found
[   76.502309][ T5261] loop3: detected capacity change from 0 to 8192
[   76.511729][ T5233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.724299][ T5237] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.731484][ T5237] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.738748][ T5237] bridge_slave_0: entered allmulticast mode
[   76.745351][ T5237] bridge_slave_0: entered promiscuous mode
[   76.752808][ T5237] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.759974][ T5237] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.767223][ T5237] bridge_slave_1: entered allmulticast mode
[   76.773758][ T5237] bridge_slave_1: entered promiscuous mode
[   76.785299][ T5273] FAULT_INJECTION: forcing a failure.
[   76.785299][ T5273] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.799199][ T5273] CPU: 0 UID: 0 PID: 5273 Comm: syz.0.678 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   76.809819][ T5273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.819981][ T5273] Call Trace:
[   76.823282][ T5273]  <TASK>
[   76.826226][ T5273]  dump_stack_lvl+0xf2/0x150
[   76.830844][ T5273]  dump_stack+0x15/0x20
[   76.835083][ T5273]  should_fail_ex+0x223/0x230
[   76.839823][ T5273]  should_fail+0xb/0x10
[   76.844013][ T5273]  should_fail_usercopy+0x1a/0x20
[   76.849179][ T5273]  _copy_to_user+0x1e/0xa0
[   76.853627][ T5273]  simple_read_from_buffer+0xa0/0x110
[   76.859148][ T5273]  proc_fail_nth_read+0xf9/0x140
[   76.864117][ T5273]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.869727][ T5273]  vfs_read+0x195/0x720
[   76.873962][ T5273]  ? __rcu_read_unlock+0x4e/0x70
[   76.879002][ T5273]  ? __fget_files+0x1d4/0x210
[   76.883737][ T5273]  ksys_read+0xeb/0x1b0
[   76.887966][ T5273]  __x64_sys_read+0x42/0x50
[   76.892563][ T5273]  x64_sys_call+0x27d3/0x2d60
[   76.897268][ T5273]  do_syscall_64+0xc9/0x1c0
[   76.901793][ T5273]  ? clear_bhb_loop+0x55/0xb0
[   76.906641][ T5273]  ? clear_bhb_loop+0x55/0xb0
[   76.911414][ T5273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.917351][ T5273] RIP: 0033:0x7f1d55bcca3c
[   76.921797][ T5273] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   76.941576][ T5273] RSP: 002b:00007f1d54826030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   76.950038][ T5273] RAX: ffffffffffffffda RBX: 00007f1d55d86058 RCX: 00007f1d55bcca3c
[   76.958041][ T5273] RDX: 000000000000000f RSI: 00007f1d548260a0 RDI: 0000000000000007
[   76.966030][ T5273] RBP: 00007f1d54826090 R08: 0000000000000000 R09: 0000000000000000
[   76.974010][ T5273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.981991][ T5273] R13: 0000000000000000 R14: 00007f1d55d86058 R15: 00007fff99d70428
[   76.990010][ T5273]  </TASK>
[   77.044620][ T5237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.058155][ T5237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.080925][ T5237] team0: Port device team_slave_0 added
[   77.088465][ T5237] team0: Port device team_slave_1 added
[   77.098439][ T5281] 9pnet_fd: Insufficient options for proto=fd
[   77.125993][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.133081][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.159052][ T5237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.161582][ T5232] syz.1.668 (5232) used greatest stack depth: 7280 bytes left
[   77.172446][ T5237] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.184033][ T5237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.209966][ T5237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.232280][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.245603][ T5237] hsr_slave_0: entered promiscuous mode
[   77.255858][ T5237] hsr_slave_1: entered promiscuous mode
[   77.263306][ T5237] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.270910][ T5237] Cannot create hsr debugfs directory
[   77.293539][ T5287] loop1: detected capacity change from 0 to 1024
[   77.295343][ T5285] loop0: detected capacity change from 0 to 128
[   77.307229][ T5287] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   77.328753][ T5285] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   77.329735][ T5287] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.390371][ T5287] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.683: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   77.410900][ T5287] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.683: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   77.458804][ T5237] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.525900][ T5237] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.578586][ T5237] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.616028][ T5237] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.687663][ T5237] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   77.711743][ T5237] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   77.728004][ T5237] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   77.744754][ T5237] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   77.837666][ T5237] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.874927][ T5237] 8021q: adding VLAN 0 to HW filter on device team0
[   77.911801][  T168] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.918984][  T168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.950071][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.957171][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.024930][ T5303] __nla_validate_parse: 6 callbacks suppressed
[   78.025057][ T5303] netlink: 4 bytes leftover after parsing attributes in process `syz.3.688'.
[   78.041574][ T5303] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.049577][ T5303] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.069426][ T5303] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.077566][ T5303] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.163597][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.265881][ T5237] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.278519][ T5315] loop4: detected capacity change from 0 to 512
[   78.295798][ T5315] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   78.340081][ T5315] EXT4-fs (loop4): 1 truncate cleaned up
[   78.351682][ T5315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.385090][ T5329] loop1: detected capacity change from 0 to 128
[   78.399318][ T5237] veth0_vlan: entered promiscuous mode
[   78.419039][ T5237] veth1_vlan: entered promiscuous mode
[   78.421503][ T5329] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   78.428265][ T3275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.455963][ T5237] veth0_macvtap: entered promiscuous mode
[   78.463553][ T5237] veth1_macvtap: entered promiscuous mode
[   78.474426][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.483888][ T5335] 9pnet_fd: Insufficient options for proto=fd
[   78.484998][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.493351][ T5335] 9pnet_fd: Insufficient options for proto=fd
[   78.502172][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.514715][ T5334] netlink: 'syz.1.698': attribute type 7 has an invalid length.
[   78.530153][ T5237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.540743][ T5237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.552261][ T5237] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.569514][ T5237] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.578315][ T5237] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.587176][ T5237] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.595965][ T5237] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.706108][ T5349] loop1: detected capacity change from 0 to 256
[   78.739411][ T5347] loop4: detected capacity change from 0 to 256
[   78.753374][ T5347] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   78.840502][ T5356] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.706'.
[   78.859052][ T5356] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.706'.
[   78.868341][ T5356] netlink: 69 bytes leftover after parsing attributes in process `syz.4.706'.
[   78.878132][ T5360] 9pnet_fd: Insufficient options for proto=fd
[   78.886585][ T5360] 9pnet_fd: Insufficient options for proto=fd
[   78.964526][ T5371] loop3: detected capacity change from 0 to 128
[   78.982208][ T5371] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   78.997518][   T29] kauditd_printk_skb: 225 callbacks suppressed
[   78.997535][   T29] audit: type=1400 audit(1727898486.692:2587): avc:  denied  { mount } for  pid=5370 comm="syz.3.713" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   79.027151][ T5371] ext4 filesystem being mounted at /53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   79.096561][ T5376] loop4: detected capacity change from 0 to 512
[   79.131375][   T29] audit: type=1400 audit(1727898486.812:2588): avc:  denied  { create } for  pid=5370 comm="syz.3.713" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   79.151741][   T29] audit: type=1400 audit(1727898486.812:2589): avc:  denied  { write } for  pid=5370 comm="syz.3.713" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   79.171804][   T29] audit: type=1400 audit(1727898486.812:2590): avc:  denied  { nlmsg_write } for  pid=5370 comm="syz.3.713" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   79.192671][   T29] audit: type=1400 audit(1727898486.812:2591): avc:  denied  { write } for  pid=5370 comm="syz.3.713" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.214433][   T29] audit: type=1400 audit(1727898486.812:2592): avc:  denied  { add_name } for  pid=5370 comm="syz.3.713" name="cpuset.effective_cpus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.236540][   T29] audit: type=1400 audit(1727898486.812:2593): avc:  denied  { create } for  pid=5370 comm="syz.3.713" name="cpuset.effective_cpus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   79.258934][   T29] audit: type=1400 audit(1727898486.932:2594): avc:  denied  { read append open } for  pid=5370 comm="syz.3.713" path="/53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/cpuset.effective_cpus" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   79.263218][ T5376] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.305141][   T29] audit: type=1400 audit(1727898486.952:2595): avc:  denied  { lock } for  pid=5370 comm="syz.3.713" path="/53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/cpuset.effective_cpus" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   79.374072][ T5376] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.403032][   T29] audit: type=1400 audit(1727898487.102:2596): avc:  denied  { create } for  pid=5375 comm="syz.4.714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   79.433882][ T5376] EXT4-fs: Cannot change quota options when quota turned on
[   79.458374][ T3275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.516115][ T5381] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=5381 comm=syz.4.715
[   79.569864][ T4591] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   79.580550][ T5385] syz.4.716[5385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.580675][ T5385] syz.4.716[5385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.584342][ T5387] 9pnet_fd: Insufficient options for proto=fd
[   79.593166][ T5385] syz.4.716[5385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.606458][ T5387] 9pnet_fd: Insufficient options for proto=fd
[   79.710870][ T5390] loop3: detected capacity change from 0 to 8192
[   79.969044][ T5421] loop4: detected capacity change from 0 to 1024
[   79.991960][ T5421] EXT4-fs: Ignoring removed orlov option
[   79.997773][ T5421] EXT4-fs: Ignoring removed oldalloc option
[   80.003823][ T5421] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.023500][ T5422] loop3: detected capacity change from 0 to 512
[   80.068014][ T5421] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.295590][   T28] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.287780][ T5437] chnl_net:caif_netlink_parms(): no params data found
[   81.434853][ T5437] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.442007][ T5437] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.450870][ T5464] loop0: detected capacity change from 0 to 8192
[   81.457583][ T5437] bridge_slave_0: entered allmulticast mode
[   81.465240][ T5437] bridge_slave_0: entered promiscuous mode
[   81.473126][ T5437] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.480300][ T5437] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.487647][ T5437] bridge_slave_1: entered allmulticast mode
[   81.494204][ T5437] bridge_slave_1: entered promiscuous mode
[   81.513442][ T5437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.524114][ T5437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.546108][ T5437] team0: Port device team_slave_0 added
[   81.553581][ T5437] team0: Port device team_slave_1 added
[   81.572226][ T5437] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.579202][ T5437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.605167][ T5437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.621283][ T5437] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.628353][ T5437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.654413][ T5437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.752298][ T5437] hsr_slave_0: entered promiscuous mode
[   81.774852][ T5437] hsr_slave_1: entered promiscuous mode
[   81.785270][ T3275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.794462][ T5437] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.811482][ T5437] Cannot create hsr debugfs directory
[   81.835494][ T5480] loop0: detected capacity change from 0 to 8192
[   81.858750][ T5484] loop3: detected capacity change from 0 to 8192
[   82.030294][ T5492] loop1: detected capacity change from 0 to 8192
[   82.052235][ T5496] netlink: 'syz.4.756': attribute type 7 has an invalid length.
[   82.100709][ T5501] loop3: detected capacity change from 0 to 8192
[   82.610155][   T28] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.714742][   T28] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.755111][   T28] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.842253][   T28] bridge_slave_1: left allmulticast mode
[   82.847958][   T28] bridge_slave_1: left promiscuous mode
[   82.853692][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.894995][   T28] bridge_slave_0: left allmulticast mode
[   82.900759][   T28] bridge_slave_0: left promiscuous mode
[   82.906779][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.937404][ T5523] loop3: detected capacity change from 0 to 8192
[   83.054564][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.065228][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   83.077724][   T28] bond0 (unregistering): Released all slaves
[   83.090610][ T5522] netlink: 4 bytes leftover after parsing attributes in process `syz.0.764'.
[   83.115793][   T28] hsr_slave_0: left promiscuous mode
[   83.123048][   T28] hsr_slave_1: left promiscuous mode
[   83.128964][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.136440][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.144883][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.152520][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.162401][   T28] veth1_macvtap: left promiscuous mode
[   83.167900][   T28] veth0_macvtap: left promiscuous mode
[   83.173444][   T28] veth1_vlan: left promiscuous mode
[   83.178740][   T28] veth0_vlan: left promiscuous mode
[   83.253840][ T5534] loop3: detected capacity change from 0 to 128
[   83.277399][ T5534] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   83.294051][ T5534] ext4 filesystem being mounted at /73/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   83.327617][   T28] team0 (unregistering): Port device team_slave_1 removed
[   83.345271][   T28] team0 (unregistering): Port device team_slave_0 removed
[   83.401661][ T4591] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   83.648289][ T5437] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   83.657278][ T5437] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   83.666742][ T5437] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   83.676221][ T5437] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   83.783785][ T5437] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.804601][ T5437] 8021q: adding VLAN 0 to HW filter on device team0
[   83.826343][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.833505][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.852649][ T1682] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.859817][ T1682] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.880068][ T5437] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   83.890617][ T5437] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.970801][ T5437] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.075297][ T5437] veth0_vlan: entered promiscuous mode
[   84.093164][ T5437] veth1_vlan: entered promiscuous mode
[   84.115240][ T5437] veth0_macvtap: entered promiscuous mode
[   84.124569][ T5437] veth1_macvtap: entered promiscuous mode
[   84.157194][ T5437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.167936][ T5437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.186568][ T5437] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.194279][   T29] kauditd_printk_skb: 98 callbacks suppressed
[   84.194295][   T29] audit: type=1326 audit(1727898491.892:2695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.210666][ T5597] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.789'.
[   84.223885][   T29] audit: type=1326 audit(1727898491.892:2696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.256260][   T29] audit: type=1326 audit(1727898491.892:2697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.258357][ T5597] netlink: 4560 bytes leftover after parsing attributes in process `syz.4.789'.
[   84.279651][   T29] audit: type=1326 audit(1727898491.892:2698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.288660][ T5597] netlink: 69 bytes leftover after parsing attributes in process `syz.4.789'.
[   84.311962][   T29] audit: type=1326 audit(1727898491.892:2699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.344303][   T29] audit: type=1326 audit(1727898491.892:2700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.367721][   T29] audit: type=1326 audit(1727898491.892:2701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.372706][ T5437] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   84.391130][   T29] audit: type=1326 audit(1727898491.892:2702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd76317cadf code=0x7ffc0000
[   84.402021][ T5437] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.408818][ T5437] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.425253][   T29] audit: type=1326 audit(1727898491.892:2703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.431325][   T29] audit: type=1326 audit(1727898491.892:2704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fd76317dff9 code=0x7ffc0000
[   84.459004][ T5437] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.498354][ T5437] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.507148][ T5437] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.515932][ T5437] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.555741][ T5600] netlink: 'syz.4.790': attribute type 6 has an invalid length.
[   84.576018][ T5600] tipc: Started in network mode
[   84.580958][ T5600] tipc: Node identity ff00000000000000400000000000002d, cluster identity 4711
[   84.589844][ T5600] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   84.608655][ T5600] loop4: detected capacity change from 0 to 128
[   84.619392][ T5600] vfat: Unknown parameter '00000000000000000000000'
[   84.758520][ T5614] loop0: detected capacity change from 0 to 128
[   84.775375][ T5614] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   84.787411][ T5605] loop2: detected capacity change from 0 to 8192
[   84.815853][ T5619] netlink: 4 bytes leftover after parsing attributes in process `syz.4.793'.
[   84.911587][ T5625] 9pnet_fd: Insufficient options for proto=fd
[   84.921356][ T5625] 9pnet_fd: Insufficient options for proto=fd
[   84.974903][ T5633] loop0: detected capacity change from 0 to 1024
[   84.979723][ T5636] 9pnet_fd: Insufficient options for proto=fd
[   85.003253][ T5636] 9pnet_fd: Insufficient options for proto=fd
[   85.017629][ T5642] loop2: detected capacity change from 0 to 128
[   85.020624][ T5633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.041027][ T5642] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   85.056533][ T5633] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   85.073019][ T5633] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 23 with max blocks 1 with error 28
[   85.085415][ T5633] EXT4-fs (loop0): This should not happen!! Data will be lost
[   85.085415][ T5633] 
[   85.095136][ T5633] EXT4-fs (loop0): Total free blocks count 0
[   85.101139][ T5633] EXT4-fs (loop0): Free/Dirty block details
[   85.106281][ T5646] loop3: detected capacity change from 0 to 1024
[   85.107084][ T5633] EXT4-fs (loop0): free_blocks=68451041280
[   85.119346][ T5633] EXT4-fs (loop0): dirty_blocks=32
[   85.124520][ T5633] EXT4-fs (loop0): Block reservation details
[   85.130528][ T5633] EXT4-fs (loop0): i_reserved_data_blocks=2
[   85.131414][ T5648] netlink: 'syz.2.807': attribute type 6 has an invalid length.
[   85.141343][ T5646] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   85.147557][ T5648] tipc: Started in network mode
[   85.157917][ T5648] tipc: Node identity ff00000000000000400000000000002d, cluster identity 4711
[   85.158510][ T5649] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 24 with error 28
[   85.166882][ T5648] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   85.181549][ T5646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.207103][ T5648] loop2: detected capacity change from 0 to 128
[   85.219361][ T5648] vfat: Unknown parameter '00000000000000000000000'
[   85.227385][ T5646] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.808: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   85.247825][ T5646] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.808: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   85.317898][ T5652] loop2: detected capacity change from 0 to 8192
[   85.392953][ T5633] SELinux:  policydb version -1682183729 does not match my version range 15-33
[   85.402135][ T5633] SELinux: failed to load policy
[   85.511147][ T5660] loop2: detected capacity change from 0 to 8192
[   85.624101][ T5667] 9pnet_fd: Insufficient options for proto=fd
[   85.928560][ T5675] loop2: detected capacity change from 0 to 128
[   86.010602][ T5675] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   86.207398][ T4591] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.248824][ T5689] loop2: detected capacity change from 0 to 1024
[   86.260191][ T5687] loop4: detected capacity change from 0 to 8192
[   86.290589][ T5693] 9pnet_fd: Insufficient options for proto=fd
[   86.305683][ T5689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.352179][ T5689] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   86.378337][ T5701] netlink: 4 bytes leftover after parsing attributes in process `syz.4.827'.
[   86.407242][ T5689] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 23 with max blocks 1 with error 28
[   86.419720][ T5689] EXT4-fs (loop2): This should not happen!! Data will be lost
[   86.419720][ T5689] 
[   86.429650][ T5689] EXT4-fs (loop2): Total free blocks count 0
[   86.435714][ T5689] EXT4-fs (loop2): Free/Dirty block details
[   86.441816][ T5689] EXT4-fs (loop2): free_blocks=68451041280
[   86.447657][ T5689] EXT4-fs (loop2): dirty_blocks=32
[   86.452861][ T5689] EXT4-fs (loop2): Block reservation details
[   86.458922][ T5689] EXT4-fs (loop2): i_reserved_data_blocks=2
[   86.474867][ T5708] loop1: detected capacity change from 0 to 8192
[   86.481097][ T5706] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 24 with error 28
[   87.113571][ T5720] loop3: detected capacity change from 0 to 128
[   87.120668][ T5720] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   87.275608][ T5728] loop0: detected capacity change from 0 to 4096
[   87.291888][ T5728] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.316795][ T3278] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.355469][ T5732] netlink: 'syz.0.838': attribute type 6 has an invalid length.
[   87.388491][ T5734] 9pnet_fd: Insufficient options for proto=fd
[   87.495567][ T5740] loop0: detected capacity change from 0 to 8192
[   87.869909][ T5747] loop0: detected capacity change from 0 to 128
[   87.885528][ T5747] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   88.149997][ T5754] loop3: detected capacity change from 0 to 8192
[   89.666323][   T29] kauditd_printk_skb: 128 callbacks suppressed
[   89.666338][   T29] audit: type=1326 audit(1727898497.352:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.695959][   T29] audit: type=1326 audit(1727898497.352:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.719528][   T29] audit: type=1326 audit(1727898497.352:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.743013][   T29] audit: type=1326 audit(1727898497.352:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.766436][   T29] audit: type=1326 audit(1727898497.352:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.789870][   T29] audit: type=1326 audit(1727898497.352:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.813239][   T29] audit: type=1326 audit(1727898497.352:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.836554][   T29] audit: type=1326 audit(1727898497.352:2840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.859908][   T29] audit: type=1326 audit(1727898497.352:2841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   89.883234][   T29] audit: type=1326 audit(1727898497.352:2842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5779 comm="syz.1.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f8a5dff9 code=0x7ffc0000
[   90.030579][ T5782] loop1: detected capacity change from 0 to 8192
[   90.218689][ T5796] loop3: detected capacity change from 0 to 1024
[   90.250261][ T5796] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.269680][ T5795] loop1: detected capacity change from 0 to 8192
[   90.302787][ T4591] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.449069][ T5809] loop3: detected capacity change from 0 to 1024
[   90.475294][ T5809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.501705][ T5809] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   90.537879][ T5809] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 23 with max blocks 1 with error 28
[   90.550252][ T5809] EXT4-fs (loop3): This should not happen!! Data will be lost
[   90.550252][ T5809] 
[   90.559922][ T5809] EXT4-fs (loop3): Total free blocks count 0
[   90.565950][ T5809] EXT4-fs (loop3): Free/Dirty block details
[   90.571941][ T5809] EXT4-fs (loop3): free_blocks=68451041280
[   90.577941][ T5809] EXT4-fs (loop3): dirty_blocks=32
[   90.583192][ T5809] EXT4-fs (loop3): Block reservation details
[   90.589179][ T5809] EXT4-fs (loop3): i_reserved_data_blocks=2
[   90.619090][ T5814] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 24 with error 28
[   90.974934][ T5817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.868'.
[   91.110672][ T5821] loop2: detected capacity change from 0 to 8192
[   91.847563][ T5832] loop0: detected capacity change from 0 to 8192
[   91.957849][ T5838] loop2: detected capacity change from 0 to 1024
[   91.973689][ T5838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.001942][ T5437] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.026238][ T5840] loop0: detected capacity change from 0 to 8192
[   92.078602][ T5846] loop2: detected capacity change from 0 to 8192
[   92.129158][ T5849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.878'.
[   92.311406][ T5857] loop1: detected capacity change from 0 to 128
[   92.347062][ T5859] loop1: detected capacity change from 0 to 1024
[   92.354302][ T5859] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   92.365344][ T5859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.382238][ T5859] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.882: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   92.400847][ T5859] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.882: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   92.916420][ T5859] ==================================================================
[   92.924563][ T5859] BUG: KCSAN: data-race in filemap_fdatawrite_wbc / xas_set_mark
[   92.932316][ T5859] 
[   92.934654][ T5859] write to 0xffff8881069314a4 of 4 bytes by task 5861 on cpu 0:
[   92.942302][ T5859]  xas_set_mark+0x131/0x150
[   92.946844][ T5859]  tag_pages_for_writeback+0xa5/0x2a0
[   92.952256][ T5859]  ext4_do_writepages+0x694/0x2130
[   92.957493][ T5859]  ext4_writepages+0x159/0x2e0
[   92.962288][ T5859]  do_writepages+0x1d8/0x480
[   92.966893][ T5859]  filemap_fdatawrite_wbc+0xdb/0x100
[   92.972213][ T5859]  file_write_and_wait_range+0xc4/0x250
[   92.977804][ T5859]  generic_buffers_fsync_noflush+0x46/0x120
[   92.983718][ T5859]  ext4_sync_file+0x1ff/0x6c0
[   92.988432][ T5859]  vfs_fsync_range+0x116/0x130
[   92.993243][ T5859]  ext4_buffered_write_iter+0x326/0x370
[   92.998834][ T5859]  ext4_file_write_iter+0x293/0xe10
[   93.004062][ T5859]  iter_file_splice_write+0x5f1/0x980
[   93.009475][ T5859]  direct_splice_actor+0x160/0x2c0
[   93.014619][ T5859]  splice_direct_to_actor+0x302/0x670
[   93.020214][ T5859]  do_splice_direct+0xd7/0x150
[   93.025013][ T5859]  do_sendfile+0x39b/0x970
[   93.029451][ T5859]  __x64_sys_sendfile64+0x110/0x150
[   93.034846][ T5859]  x64_sys_call+0xed5/0x2d60
[   93.039476][ T5859]  do_syscall_64+0xc9/0x1c0
[   93.044006][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.049945][ T5859] 
[   93.052296][ T5859] read to 0xffff8881069314a4 of 4 bytes by task 5859 on cpu 1:
[   93.059858][ T5859]  filemap_fdatawrite_wbc+0x5c/0x100
[   93.065179][ T5859]  file_write_and_wait_range+0xc4/0x250
[   93.070795][ T5859]  generic_buffers_fsync_noflush+0x46/0x120
[   93.076899][ T5859]  ext4_sync_file+0x1ff/0x6c0
[   93.081612][ T5859]  vfs_fsync_range+0x116/0x130
[   93.086406][ T5859]  ext4_buffered_write_iter+0x326/0x370
[   93.091978][ T5859]  ext4_file_write_iter+0x293/0xe10
[   93.097213][ T5859]  iter_file_splice_write+0x5f1/0x980
[   93.102624][ T5859]  direct_splice_actor+0x160/0x2c0
[   93.107762][ T5859]  splice_direct_to_actor+0x302/0x670
[   93.113174][ T5859]  do_splice_direct+0xd7/0x150
[   93.117974][ T5859]  do_sendfile+0x39b/0x970
[   93.122424][ T5859]  __x64_sys_sendfile64+0x110/0x150
[   93.127650][ T5859]  x64_sys_call+0xed5/0x2d60
[   93.132267][ T5859]  do_syscall_64+0xc9/0x1c0
[   93.136796][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.142722][ T5859] 
[   93.145062][ T5859] value changed: 0x02000021 -> 0x04000021
[   93.150797][ T5859] 
[   93.153126][ T5859] Reported by Kernel Concurrency Sanitizer on:
[   93.159389][ T5859] CPU: 1 UID: 0 PID: 5859 Comm: syz.1.882 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0
[   93.170008][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   93.180082][ T5859] ==================================================================
[   93.220627][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.