last executing test programs:

2.883946386s ago: executing program 1 (id=1103):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000)={[{@noload}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

2.834197617s ago: executing program 1 (id=1105):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7f, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000380)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0x5c, "631abb8eadf59cfaacbea36f13b30d543f04403d0b9872abc97037b8520fe17c64e1fdf59b2e8f9f643e61f1aaf70a3eef97fced9e74d5d86e36ad3088a4cc1755b7b231914982e573651a88b341b6da4738c21ac8ae83936a2f90a6"}, &(0x7f0000000180)=0x64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000080000000000000001000000183900000500000000000000000000009500000000000000e8db7ce5b1cee78993ee8bf1237ab3749e9dcb6550a1a7d79fb705df26ec8e4116736368f06e"], &(0x7f0000000300)='GPL\x00', 0x1, 0xa2, &(0x7f00000004c0)=""/162, 0x41100, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0x8, 0x5, 0x27a}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000680)=[r2], &(0x7f00000009c0)=[{0x4, 0x1, 0x7, 0x1}], 0x10, 0x3, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r5, 0x0, 0x0, 0x1001f0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300"/36], 0x3c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[], 0x5, 0x2b2, &(0x7f00000006c0)="$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")
lsm_get_self_attr(0x66, &(0x7f0000000040)={0x0, 0x0, 0x33, 0x13, ""/19}, &(0x7f0000000100)=0x33, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

2.759175458s ago: executing program 2 (id=1106):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x53)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e0000000400000008", @ANYBLOB='\x00\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socket(0x1e, 0x1, 0x0)
r2 = getuid()
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r2, @ANYRESDEC, @ANYRESHEX=r2], 0x1, 0x522, &(0x7f0000000a80)="$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")

2.718202179s ago: executing program 2 (id=1107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
unshare(0x2040400)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRESOCT=0x0, @ANYRESHEX=0x0], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000a00)="18f68328d272c81b2680b622e9d679ff4f0569dc8aff2d3ff20e34c2cd89ffcc7257c42bb8e456a34847cfa3d474c2cbcd37e036aa574c15c7f83c1e2de2a84a7e5a3cd59d93f94f7b3fda11eef4da15d6ee51711dcb52043a3aa5c88c1a0ecf1f51d1f05234d99a2ad4e508a4831647a89aa5aeb53a68a55325375a6cdf0a616767e3574fd5b72507c466590ba95cdfe007e8cceed08ff713dacaa1dab1a9a52b4a6dec46ae148b54000094772c778da4d1cf3d112012dd3ec3f2a504a8de1e16f8c6bc9afb7b0001b7a9433b21c6feb68e67f7d66faf2868f2e6d43b6e72028e6a3a1e50b6f1e972eff82a7017977b61fc555228cca975a878813cc3163396166b31c84a201341e7b5b9ed7d46361d11c58c3eaf4810a4b1bbf9cfecc5477c1cc8ba9c805310c78a06a157ffdb9d736f2814e0d411ad320c6df727af0e35034c96639bf41ad6c6d24257221f3fc639785253c84da36806d06c9788706513152882c1f6efaadf5fdf211c1ebbd1331961793209d19ffe7c86f31cc7e896d0237805d629283363448aa2d5f21b18764d4600c0075e8a747c49b58de7ce04f2ad8f27161ce2ad1629c48bf1ea10e700"/445, &(0x7f00000006c0)="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"/342, 0x4, r2}, 0x38)
r3 = syz_io_uring_setup(0x19f2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100))
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r3, 0xf, &(0x7f00000001c0)={0x2, 0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/81, 0x51}, {0x0}], &(0x7f0000000180)=[0xa, 0xfffffffffffffbff]}, 0x20)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000070000000000003000000007090000000000000000000b040000000000000000000003000000000400000002000000060000000e0000000000000b03000000005f005f01e3e6"], &(0x7f0000000580)=""/171, 0x4f, 0xab, 0x1, 0x5, 0x10000, @value}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000000000}, 0x18)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r7, 0x545c, 0x3000300)

2.435007613s ago: executing program 1 (id=1109):
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='kfree\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2.366883304s ago: executing program 1 (id=1110):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7f, &(0x7f0000000100)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0x5c, "631abb8eadf59cfaacbea36f13b30d543f04403d0b9872abc97037b8520fe17c64e1fdf59b2e8f9f643e61f1aaf70a3eef97fced9e74d5d86e36ad3088a4cc1755b7b231914982e573651a88b341b6da4738c21ac8ae83936a2f90a6"}, &(0x7f0000000180)=0x64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000080000000000000001000000183900000500000000000000000000009500000000000000e8db7ce5b1cee78993ee8bf1237ab3749e9dcb6550a1a7d79fb705df26ec8e4116736368f06e"], &(0x7f0000000300)='GPL\x00', 0x1, 0xa2, &(0x7f00000004c0)=""/162, 0x41100, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0x8, 0x5, 0x27a}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000680)=[r1], &(0x7f00000009c0)=[{0x4, 0x1, 0x7, 0x1}], 0x10, 0x3, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$eJzs3c9rHGUfAPDvbJImTfO+yQsvaD0FBA2UbkyNrYKHigcRLBT0bLtstqFmky3ZTWlCwBYRvAgqHgS99OyPevPqj6v+Fx7EUjUtVjxIZDYz7bbZ/GySrebzgck+z8xsnue788zMMzsPswHsW8Ppn0LE4Yh4L4kYzOYnEdHTTHVHnFxZ7/bSYjmdkhiIV39NmuvcWlosR8t7UoeyzKMR8e3bEUcKq8utzy9MlarVymyWH21MXxitzy8cPT9dmqxMVmaOj42PHzvxzInjOxfr7z8sDFx//6Unvzj551uPXHv3uyROxkC2rDWOnTIcw9ln0pN+hPd4cacL67Ck0xVgW9Jds2tlL4/DMRhdzRQA8G/2ZkQsAwD7TOL8DwD7TP49wK2lxXI+dfYbib1144WI6FuJP7+/ubKkO7tn19e8D9p/K7nnzkgSEUM7UP5wRHzy1eufpVPs0n1IgHYuX4mIs0PDq4//yaoxC1v11DrLDmSvw/fNd/yDvfN12v95tl3/r3Cn/xNt+j+9bfbd7dhw/z+4A4Ws40ZfxPMtY9tut8SfGerKcv9p9vl6knPnq5X02PbfiBiJnt40P7ZOGSM3/7q51rLW/t9vH7zxaVp++np3jcLP3b33vmei1Cg9SMytblyJeKx7Vfwtlwd9zb5uu/7v6U2W8fJz73y81rI0/jTefFodf2Sjk3bH8tWIJ9pu/7sj2pJ1xyeONpvDaN4o2vjyx4/61yq/dfunU1p+fi2wF9Lt379+/ENJ63jN+tbL+P7q4DdrLds4/vbt/0DyWjOd9yMulRqN2bGIA8krq+cfu/vePJ+vn8Y/8nj7/T8//rVr/+k14dlNxt99/ZfPtx//7krjn9jC9k9nZA3hTovYKHHt9lTXWuVvbvuPN1Mj2ZzNHP82W8EH+OgAAAAAAAAAAAAAAAAAAAAAAAAAYNMKETEQSaF4J10oFIsrv+H9/+gvVGv1xpFztbmZiWj+VvZQ9BTyR10OtjwPdSx7Hn6eP3Zf/umI+F9EfNh7MMmfozjR4dgBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIHdojd//T/3U2+naAQC7pq/TFQAA9pzzPwDsP87/ALD/9EUklztdCQBgT7n+B4D9x/kfAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAXXb61Kl0Wv5jabGc5icuzs9N1S4enajUp4rTc+ViuTZ7oThZq01WK8VybXqj/1et1S6Mx8zcpdFGpd4Yrc8vnJmuzc00zpyfLk1WzlR69iQqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANia+vzCVKlarcxKbCOx/HBUo/OJrqw5dbYa/Z0pPXkoNsFOJzp8YAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4h/g7AAD//7AaJtI=")
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
fallocate(r4, 0x0, 0x0, 0x1001f0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
lsm_get_self_attr(0x66, &(0x7f0000000040)={0x0, 0x0, 0x33, 0x13, ""/19}, &(0x7f0000000100)=0x33, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.057127429s ago: executing program 1 (id=1117):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

1.97257013s ago: executing program 1 (id=1118):
socket$nl_route(0x10, 0x3, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, 0x0, 0x100, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r7 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
close_range(r7, r6, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
unshare(0x64000600)

1.848978712s ago: executing program 2 (id=1120):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7f, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000380)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0x5c, "631abb8eadf59cfaacbea36f13b30d543f04403d0b9872abc97037b8520fe17c64e1fdf59b2e8f9f643e61f1aaf70a3eef97fced9e74d5d86e36ad3088a4cc1755b7b231914982e573651a88b341b6da4738c21ac8ae83936a2f90a6"}, &(0x7f0000000180)=0x64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000080000000000000001000000183900000500000000000000000000009500000000000000e8db7ce5b1cee78993ee8bf1237ab3749e9dcb6550a1a7d79fb705df26ec8e4116736368f06e"], &(0x7f0000000300)='GPL\x00', 0x1, 0xa2, &(0x7f00000004c0)=""/162, 0x41100, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0x8, 0x5, 0x27a}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000680)=[r2], &(0x7f00000009c0)=[{0x4, 0x1, 0x7, 0x1}], 0x10, 0x3, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r5, 0x0, 0x0, 0x1001f0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300"/36], 0x3c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[], 0x5, 0x2b2, &(0x7f00000006c0)="$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")
lsm_get_self_attr(0x66, &(0x7f0000000040)={0x0, 0x0, 0x33, 0x13, ""/19}, &(0x7f0000000100)=0x33, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

1.188429072s ago: executing program 2 (id=1130):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
unshare(0x2040400)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRESOCT=0x0, @ANYRESHEX=0x0], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000a00)="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"/445, &(0x7f00000006c0)="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"/342, 0x4, r2}, 0x38)
r3 = syz_io_uring_setup(0x19f2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100))
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r3, 0xf, &(0x7f00000001c0)={0x2, 0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/81, 0x51}, {0x0}], &(0x7f0000000180)=[0xa, 0xfffffffffffffbff]}, 0x20)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000070000000000003000000007090000000000000000000b040000000000000000000003000000000400000002000000060000000e0000000000000b03000000005f005f01e3e6"], &(0x7f0000000580)=""/171, 0x4f, 0xab, 0x1, 0x5, 0x10000, @value}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000000000}, 0x18)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r7, 0x545c, 0x3000300)

1.141444913s ago: executing program 0 (id=1131):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f0000000000)={'bond0\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='mm_page_free\x00', r2, 0x0, 0x3}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0xfffffffffffffce5, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180000030004000000000000000000000000000004000000"], 0x48}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
truncate(&(0x7f0000000140)='./file2\x00', 0x80000002328)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x6)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x10, 0x803, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r5, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r5, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x0, &(0x7f00000003c0)})
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x100000001}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0x28, 0x0, 0x0, 0x0, 0x2000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)

745.649659ms ago: executing program 4 (id=1137):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x1000000000000}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$key(r1, &(0x7f00000007c0)={0x300, 0x0, &(0x7f0000000780)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020a060003"], 0x18}}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@loopback, @in6=@dev={0xfe, 0x80, '\x00', 0x8}, 0x0, 0x10, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x2}, {{@in6=@private1, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3}}, 0xe8)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@private=0xa010102, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0xe8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0)

727.730569ms ago: executing program 4 (id=1138):
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='kfree\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

675.91672ms ago: executing program 4 (id=1139):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180100570f480b5517e1984b", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0xa, 0x0, 0x0, 0x7ffc1ffb}]})
mprotect(&(0x7f0000fed000/0x10000)=nil, 0x10000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x20000044)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x0)
r3 = openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, 0x0)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000280)=0x14)
read(r4, &(0x7f00000019c0)=""/4097, 0x1001)

630.81746ms ago: executing program 4 (id=1140):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7f, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0x5c, "631abb8eadf59cfaacbea36f13b30d543f04403d0b9872abc97037b8520fe17c64e1fdf59b2e8f9f643e61f1aaf70a3eef97fced9e74d5d86e36ad3088a4cc1755b7b231914982e573651a88b341b6da4738c21ac8ae83936a2f90a6"}, &(0x7f0000000180)=0x64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000080000000000000001000000183900000500000000000000000000009500000000000000e8db7ce5b1cee78993ee8bf1237ab3749e9dcb6550a1a7d79fb705df26ec8e4116736368f06e"], &(0x7f0000000300)='GPL\x00', 0x1, 0xa2, &(0x7f00000004c0)=""/162, 0x41100, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0x8, 0x5, 0x27a}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000680)=[r2], &(0x7f00000009c0)=[{0x4, 0x1, 0x7, 0x1}], 0x10, 0x3, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r5, 0x0, 0x0, 0x1001f0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300"/36], 0x3c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[], 0x5, 0x2b2, &(0x7f00000006c0)="$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")
lsm_get_self_attr(0x66, &(0x7f0000000040)={0x0, 0x0, 0x33, 0x13, ""/19}, &(0x7f0000000100)=0x33, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

568.997391ms ago: executing program 3 (id=1141):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000000}}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000008c0)={0x2, 0x80, 0x0, 0x2, 0x5, 0x8, 0x0, 0xe2b, 0x5205, 0x9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x9821, 0x4}, 0x10182, 0x100000000}, 0x0, 0xffffffffffffffff, r1, 0x8)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES16=r0], 0x2, 0x699, &(0x7f0000000140)="$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")
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2)
write$binfmt_script(r2, &(0x7f0000000840)={'#! ', './cgroup', [{}, {}, {0x20, 'kmem_cache_free\x00'}, {0x20, '\xbbhK\"\xff\xffh\x8d'}, {0x20, '#! '}, {0x20, '$'}, {0x20, ',-'}], 0xa, "3cae1a6d0f5334967c90746f348762da8d52f204d19937e4b26eba7757ca983132c6b998b5c6e443a0d2"}, 0x5b)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001000000e2e80300", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000080abce7c78da66e5", @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000b40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, {}, {}, [@call={0x85, 0x0, 0x0, 0x5}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x10}, @cb_func={0x18, 0x3, 0x4, 0x0, 0x2}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0xa1}, @generic={0x5, 0x0, 0x2, 0x1ff, 0x8}, @ldst={0x2, 0x1, 0x4, 0x3, 0x7, 0xfffffffffffffffe, 0xffffffffffffffff}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb}}, @jmp={0x5, 0x0, 0xb, 0x9, 0x9, 0xfffffffffffffffc, 0x10}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x4}, @tail_call={{0x18, 0x2, 0x1, 0x0, r3}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffeb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
close(0x3)
chdir(&(0x7f0000000480)='./cgroup\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x6, 0x0, 0x0, 0x4d299, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x100882, 0x7ff, 0x6, 0x0, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000140))
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r5, 0x0, 0x3}, 0xfffffffffffffd8c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x24004090)
r6 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r6, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r8, 0x84, 0x7f, 0x0, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={0x0}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

469.730633ms ago: executing program 3 (id=1142):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

432.148444ms ago: executing program 3 (id=1143):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x53)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="00000013"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socket(0x1e, 0x1, 0x0)
r2 = getuid()
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r2, @ANYRESDEC, @ANYRESHEX=r2], 0x1, 0x522, &(0x7f0000000a80)="$eJzs1b1u01AYBuCvaSiBqTNiOBILU1XYmAhCqVRhCQmUASYiNSwxQooXJ1MvgQvgwhi4CJSpW1BlF2jFWP+oeZ4ln/LaPuc9g/3p8ZfF2dfi849v32M03ovBOB4MLvbiMAZx5TwAgLvkYruNX9tK13sBANrh+w8Au+f9h49vXmXZ5F1Ko4jNeTktp9VvlZ+cZpPjdOngn7s2ZTnd/5M/S5Xr+b14WOfP/5sfxNMnVX6ZvX6b3cjvx1nj7QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYLcdpTSMiJRSOvz776Ysp/tVfpSu3Mir6eQ0mxzXF1zPh/Fo2FoNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4BYUq/Vilufz5R0bIn5Gy4uO6iNtuem4XrYvJ9/k8LKJJ7+IiL4U7NHQ4UsJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoVLFaL2Z5Pl8WXe8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiLYrVezPJ8vmxw6LojAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0I3fAQAA///PCC46")

387.667485ms ago: executing program 3 (id=1144):
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x2, @thr={0x0, &(0x7f0000000040)}}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)
fallocate(r1, 0x0, 0x0, 0x1001f0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffff7ffffe9}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
utimensat(0xffffffffffffffff, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)

308.561586ms ago: executing program 4 (id=1145):
r0 = syz_io_uring_setup(0x3c00, &(0x7f00000005c0)={0x0, 0x80008ecf, 0x10, 0x1, 0x160}, &(0x7f0000000780)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000340)=0x7, 0x0, 0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000400), 0x4000)
mount$9p_fd(0x0, &(0x7f0000001c40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380), 0x26, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r3}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_UNLINKAT={0x24, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000c00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
epoll_create(0x7fff)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0xf, 0x481)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x7e005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x80220, 0x0, 0x0, 0x6, 0x3, 0x0, 0xa, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x5, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], 0x0, 0x4, 0x0, 0x0, 0x41100, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x80ff, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x2)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000a00)={{{@in6=@dev}}, {{@in6=@local}, 0x0, @in=@dev}}, &(0x7f0000000840)=0x6e)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f0000000280)={0x6, 0x0, 0x1, 0x0, 0x83, 0x7})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
recvmmsg(r5, &(0x7f0000007700), 0x318, 0xfc0, 0x0)
io_uring_enter(r0, 0x1d69, 0x0, 0x0, 0x0, 0x0)

281.547566ms ago: executing program 2 (id=1146):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000)={[{@noload}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

217.033347ms ago: executing program 0 (id=1147):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
utimes(&(0x7f0000000880)='./file0\x00', &(0x7f0000000a00)={{}, {0x0, 0x2710}})

150.230638ms ago: executing program 0 (id=1148):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x1000000000000}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$key(r1, &(0x7f00000007c0)={0x300, 0x0, &(0x7f0000000780)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020a060003"], 0x18}}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@loopback, @in6=@dev={0xfe, 0x80, '\x00', 0x8}, 0x0, 0x10, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x2}, {{@in6=@private1, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3}}, 0xe8)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@private=0xa010102, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0xe8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0)

149.645568ms ago: executing program 3 (id=1149):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008400"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x275a, 0x0)
mmap(&(0x7f000054f000/0x2000)=nil, 0x2000, 0x2000003, 0x28012, r2, 0x0)

81.424989ms ago: executing program 0 (id=1150):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180100570f480b5517e1984b", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0xa, 0x0, 0x0, 0x7ffc1ffb}]})
mprotect(&(0x7f0000fed000/0x10000)=nil, 0x10000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x20000044)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x0)
r3 = openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, 0x0)
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000280)=0x14)
read(r4, &(0x7f00000019c0)=""/4097, 0x1001)

81.004309ms ago: executing program 3 (id=1151):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f0000000000)={'bond0\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='mm_page_free\x00', r2, 0x0, 0x3}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0xfffffffffffffce5, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180000030004000000000000000000000000000004000000"], 0x48}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
truncate(&(0x7f0000000140)='./file2\x00', 0x80000002328)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0x4}}, './file0\x00'})
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$RDMA_USER_CM_CMD_DESTROY_ID(r4, &(0x7f0000000140)={0x1, 0x10, 0xfa00, {&(0x7f0000000100)}}, 0x18)
socket$inet6(0xa, 0x3, 0x6)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x10, 0x803, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r6, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r6, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x0, 0x0})
r7 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x100000001}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0x28, 0x0, 0x0, 0x0, 0x2000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f00000000c0)={0x80, 0x6, 0x302, 0x0, 0x0, 0x2, 0x0})

45.0099ms ago: executing program 4 (id=1152):
socket$nl_route(0x10, 0x3, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, 0x0, 0x100, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")

42.39656ms ago: executing program 2 (id=1153):
socket$inet(0x2, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0})
sched_rr_get_interval(0x0, &(0x7f00000004c0))
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = socket(0x40000000015, 0x5, 0x0)
r1 = gettid()
r2 = io_uring_setup(0x3dc3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
sync_file_range(r2, 0x453, 0x6, 0xa)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmmsg(r0, &(0x7f0000005480)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000040)}, {&(0x7f0000000240)=""/252, 0xfc}, {&(0x7f0000000380)=""/229, 0xe5}, {&(0x7f0000000080)=""/21, 0x15}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/251, 0xfb}, {&(0x7f0000000140)=""/119, 0x77}], 0x7, &(0x7f0000001680)=""/134, 0x86}, 0x4000002}, {{&(0x7f0000001740)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f0000001d40)}, 0xfffffffb}, {{&(0x7f0000001e40)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000003040)=[{&(0x7f0000001ec0)=""/157, 0x9d}, {&(0x7f0000001f80)=""/99, 0x63}, {&(0x7f0000000480)=""/10, 0xa}, {&(0x7f0000002000)=""/48, 0x30}, {&(0x7f0000005780)=""/4096, 0x1000}], 0x5, &(0x7f00000030c0)=""/189, 0xbd}, 0x10}, {{&(0x7f0000003180)=@ieee802154, 0x80, &(0x7f0000003480)=[{&(0x7f0000003200)=""/48, 0x30}, {&(0x7f0000003240)=""/188, 0xbc}], 0x2, &(0x7f0000005680)=""/251, 0xfb}, 0x6}, {{0x0, 0x0, 0x0}, 0x7}, {{&(0x7f0000004e00)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000004ec0), 0x0, &(0x7f0000004f00)=""/58, 0x3a}, 0xa}], 0x6, 0x40010102, 0x0)

15.94159ms ago: executing program 0 (id=1154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

0s ago: executing program 0 (id=1155):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000090001007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7f, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f0000000380)=[0x0, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000100)={0x0, 0x5c, "631abb8eadf59cfaacbea36f13b30d543f04403d0b9872abc97037b8520fe17c64e1fdf59b2e8f9f643e61f1aaf70a3eef97fced9e74d5d86e36ad3088a4cc1755b7b231914982e573651a88b341b6da4738c21ac8ae83936a2f90a6"}, &(0x7f0000000180)=0x64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000080000000000000001000000183900000500000000000000000000009500000000000000e8db7ce5b1cee78993ee8bf1237ab3749e9dcb6550a1a7d79fb705df26ec8e4116736368f06e"], &(0x7f0000000300)='GPL\x00', 0x1, 0xa2, &(0x7f00000004c0)=""/162, 0x41100, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0x8, 0x5, 0x27a}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000680)=[r2], &(0x7f00000009c0)=[{0x4, 0x1, 0x7, 0x1}], 0x10, 0x3, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001900)="$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")
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c5902, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
fallocate(r5, 0x0, 0x0, 0x1001f0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300"/36], 0x3c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[], 0x5, 0x2b2, &(0x7f00000006c0)="$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")
lsm_get_self_attr(0x66, &(0x7f0000000040)={0x0, 0x0, 0x33, 0x13, ""/19}, &(0x7f0000000100)=0x33, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

kernel console output (not intermixed with test programs):

ice bond0
[   48.291173][ T4491] bond0 (unregistering): Released all slaves
[   48.351566][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.363967][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.409974][ T4502] bond0: entered allmulticast mode
[   48.415608][ T4502] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.452554][ T4507] loop1: detected capacity change from 0 to 164
[   48.483893][ T4507] iso9660: Corrupted directory entry in block 4 of inode 1792
[   48.495031][ T4510] loop4: detected capacity change from 0 to 164
[   48.520544][ T4507] iso9660: Corrupted directory entry in block 4 of inode 1792
[   48.534467][ T4510] iso9660: Corrupted directory entry in block 4 of inode 1792
[   48.546083][ T4514] loop2: detected capacity change from 0 to 512
[   48.568654][   T31] Buffer I/O error on dev loop3, logical block 353, lost async page write
[   48.583340][   T31] Buffer I/O error on dev loop3, logical block 354, lost async page write
[   48.594465][   T31] Buffer I/O error on dev loop3, logical block 355, lost async page write
[   48.608343][ T4514] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.659213][ T4514] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.706546][ T4526] loop1: detected capacity change from 0 to 2048
[   48.730073][ T4526] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.758120][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.786409][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.818150][ T4534] loop2: detected capacity change from 0 to 4096
[   48.829567][ T4536] loop1: detected capacity change from 0 to 4096
[   48.838085][ T4534] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.850628][ T4536] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.874478][ T4536] bond0: entered promiscuous mode
[   48.879764][ T4536] bond0: entered allmulticast mode
[   48.888278][ T4536] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.900780][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.914132][ T4536] bond0 (unregistering): Released all slaves
[   48.948706][ T4548] IPv6: Can't replace route, no match found
[   48.990416][ T4550] loop3: detected capacity change from 0 to 164
[   49.011947][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.026834][ T4550] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.040003][ T4550] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.086744][ T4554] loop1: detected capacity change from 0 to 2048
[   49.183708][ T4563] loop1: detected capacity change from 0 to 2048
[   49.199978][ T4563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.290880][ T4573] loop0: detected capacity change from 0 to 2048
[   49.341237][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.364052][ T4579] IPv6: Can't replace route, no match found
[   49.377610][ T4581] __nla_validate_parse: 6 callbacks suppressed
[   49.377625][ T4581] netlink: 12 bytes leftover after parsing attributes in process `syz.0.277'.
[   49.398572][ T4581] 8021q: adding VLAN 0 to HW filter on device batadv1
[   49.406534][ T4581] team0: Port device batadv1 added
[   49.447450][ T4585] loop1: detected capacity change from 0 to 164
[   49.477864][ T4585] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.489846][ T4585] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.528111][ T4589] loop0: detected capacity change from 0 to 164
[   49.557623][ T4589] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.602130][ T4594] loop4: detected capacity change from 0 to 512
[   49.612742][ T4595] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.686709][ T4602] veth1_macvtap: left promiscuous mode
[   49.692475][ T4602] macsec0: entered promiscuous mode
[   49.701901][ T4600] loop0: detected capacity change from 0 to 4096
[   49.708512][ T4602] rdma_op ffff888117bc3580 conn xmit_rdma 0000000000000000
[   49.717434][ T4600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.745105][ T4605] loop1: detected capacity change from 0 to 2048
[   49.761171][ T4605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.815784][ T4611] IPv6: Can't replace route, no match found
[   49.866890][ T4614] loop4: detected capacity change from 0 to 164
[   49.903638][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.916102][ T4614] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.926616][ T4614] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.953328][ T4600] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.999884][ T4622] loop1: detected capacity change from 0 to 164
[   50.009121][ T4625] loop0: detected capacity change from 0 to 2048
[   50.030685][ T4625] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.043939][ T4627] loop3: detected capacity change from 0 to 164
[   50.055072][ T4622] iso9660: Corrupted directory entry in block 4 of inode 1792
[   50.061194][ T4631] bridge_slave_0: left allmulticast mode
[   50.064479][ T4622] iso9660: Corrupted directory entry in block 4 of inode 1792
[   50.068302][ T4631] bridge_slave_0: left promiscuous mode
[   50.068470][ T4631] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.091848][ T4631] bridge_slave_1: left allmulticast mode
[   50.097523][ T4631] bridge_slave_1: left promiscuous mode
[   50.103295][ T4631] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.118321][ T4631] 
: (slave bond_slave_0): Releasing backup interface
[   50.134137][ T4631] 
: (slave bond_slave_1): Releasing backup interface
[   50.136005][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.150508][ T4627] iso9660: Corrupted directory entry in block 4 of inode 1792
[   50.173347][ T4631] team0: Port device team_slave_0 removed
[   50.180991][ T4635] loop1: detected capacity change from 0 to 2048
[   50.189814][ T4631] team0: Port device team_slave_1 removed
[   50.196673][ T4627] iso9660: Corrupted directory entry in block 4 of inode 1792
[   50.200348][ T4631] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.211902][ T4631] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.227771][ T4631] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.235330][ T4631] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.238365][ T4635] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.473455][ T4650] loop3: detected capacity change from 0 to 512
[   50.482593][ T4650] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.501553][ T4650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.514173][ T4650] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.798788][ T4656] IPv6: Can't replace route, no match found
[   50.894956][ T4662] loop2: detected capacity change from 0 to 2048
[   50.930177][ T4660] loop4: detected capacity change from 0 to 2048
[   51.179824][ T4674] loop2: detected capacity change from 0 to 2048
[   51.228076][ T4682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   51.286734][ T4682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   51.296515][ T4682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   51.305952][ T4682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'.
[   52.040836][ T4702] loop0: detected capacity change from 0 to 2048
[   52.068710][ T4706] loop1: detected capacity change from 0 to 2048
[   52.083713][ T4708] loop0: detected capacity change from 0 to 2048
[   52.159724][ T4716] loop4: detected capacity change from 0 to 164
[   52.181708][ T4716] iso9660: Corrupted directory entry in block 4 of inode 1792
[   52.191001][ T4716] iso9660: Corrupted directory entry in block 4 of inode 1792
[   52.244373][ T4721] IPv6: Can't replace route, no match found
[   52.447587][ T4730] loop2: detected capacity change from 0 to 512
[   52.463426][ T4730] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.048022][ T4708] syz.0.321 (4708) used greatest stack depth: 9144 bytes left
[   53.362269][ T4766] loop0: detected capacity change from 0 to 512
[   53.397366][   T29] kauditd_printk_skb: 931 callbacks suppressed
[   53.397383][   T29] audit: type=1326 audit(1743256323.396:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   53.403892][ T4762] loop3: detected capacity change from 0 to 128
[   53.435844][ T4766] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.452249][   T29] audit: type=1326 audit(1743256323.396:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   53.475632][   T29] audit: type=1326 audit(1743256323.396:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   53.499041][   T29] audit: type=1326 audit(1743256323.396:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   53.522486][   T29] audit: type=1326 audit(1743256323.396:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   53.545825][   T29] audit: type=1326 audit(1743256323.396:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe2e6b6d1a3 code=0x7ffc0000
[   53.546356][ T4772] bio_check_eod: 56 callbacks suppressed
[   53.546439][ T4772] syz.3.338: attempt to access beyond end of device
[   53.546439][ T4772] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[   53.568999][   T29] audit: type=1326 audit(1743256323.396:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe2e6b6bc1f code=0x7ffc0000
[   53.569033][   T29] audit: type=1326 audit(1743256323.396:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe2e6b6d1f7 code=0x7ffc0000
[   53.634514][   T29] audit: type=1326 audit(1743256323.406:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe2e6b6bad0 code=0x7ffc0000
[   53.657943][   T29] audit: type=1326 audit(1743256323.406:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4761 comm="syz.3.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe2e6b6cd6b code=0x7ffc0000
[   53.681583][ T4772] syz.3.338: attempt to access beyond end of device
[   53.681583][ T4772] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   53.695295][ T4772] syz.3.338: attempt to access beyond end of device
[   53.695295][ T4772] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   53.711628][ T4772] syz.3.338: attempt to access beyond end of device
[   53.711628][ T4772] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   53.725164][ T4772] syz.3.338: attempt to access beyond end of device
[   53.725164][ T4772] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   53.744371][ T4772] syz.3.338: attempt to access beyond end of device
[   53.744371][ T4772] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   53.755017][ T4771] loop4: detected capacity change from 0 to 2048
[   53.758292][ T4772] syz.3.338: attempt to access beyond end of device
[   53.758292][ T4772] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[   53.778455][ T4772] syz.3.338: attempt to access beyond end of device
[   53.778455][ T4772] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[   53.801271][ T4778] loop1: detected capacity change from 0 to 2048
[   53.808666][ T4772] syz.3.338: attempt to access beyond end of device
[   53.808666][ T4772] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[   53.823852][ T4772] syz.3.338: attempt to access beyond end of device
[   53.823852][ T4772] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[   53.855314][ T4772] buffer_io_error: 4 callbacks suppressed
[   53.855381][ T4772] Buffer I/O error on dev loop3, logical block 353, lost async page write
[   53.870110][ T4772] Buffer I/O error on dev loop3, logical block 354, lost async page write
[   53.987370][ T4772] Buffer I/O error on dev loop3, logical block 355, lost async page write
[   53.996026][ T4772] Buffer I/O error on dev loop3, logical block 356, lost async page write
[   54.004639][ T4772] Buffer I/O error on dev loop3, logical block 357, lost async page write
[   54.013259][ T4772] Buffer I/O error on dev loop3, logical block 358, lost async page write
[   54.021812][ T4772] Buffer I/O error on dev loop3, logical block 359, lost async page write
[   54.092639][ T4796] loop1: detected capacity change from 0 to 512
[   54.120565][ T4796] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.173008][ T4796] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.174151][ T4800] netlink: 12 bytes leftover after parsing attributes in process `syz.4.351'.
[   54.333318][ T4812] loop0: detected capacity change from 0 to 512
[   54.374017][ T4812] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.546780][ T4817] loop0: detected capacity change from 0 to 4096
[   54.694307][ T4820] loop0: detected capacity change from 0 to 512
[   54.739265][ T4820] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.761414][ T4828] loop2: detected capacity change from 0 to 2048
[   54.983366][ T4845] FAULT_INJECTION: forcing a failure.
[   54.983366][ T4845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.996598][ T4845] CPU: 1 UID: 0 PID: 4845 Comm: syz.0.367 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   54.996639][ T4845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   54.996650][ T4845] Call Trace:
[   54.996656][ T4845]  <TASK>
[   54.996662][ T4845]  dump_stack_lvl+0xf6/0x150
[   54.996684][ T4845]  dump_stack+0x15/0x1a
[   54.996701][ T4845]  should_fail_ex+0x261/0x270
[   54.996793][ T4845]  should_fail+0xb/0x10
[   54.996817][ T4845]  should_fail_usercopy+0x1a/0x20
[   54.996891][ T4845]  _copy_from_user+0x1c/0xa0
[   54.996914][ T4845]  ucma_write+0xdc/0x250
[   54.996948][ T4845]  ? __pfx_ucma_write+0x10/0x10
[   54.997038][ T4845]  vfs_write+0x295/0x950
[   54.997078][ T4845]  ? putname+0xe1/0x100
[   54.997108][ T4845]  ? __fget_files+0x186/0x1c0
[   54.997136][ T4845]  ksys_write+0xeb/0x1b0
[   54.997224][ T4845]  __x64_sys_write+0x42/0x50
[   54.997247][ T4845]  x64_sys_call+0x2a45/0x2e10
[   54.997271][ T4845]  do_syscall_64+0xc9/0x1c0
[   54.997305][ T4845]  ? clear_bhb_loop+0x25/0x80
[   54.997363][ T4845]  ? clear_bhb_loop+0x25/0x80
[   54.997451][ T4845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.997477][ T4845] RIP: 0033:0x7f178521d169
[   54.997503][ T4845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.997612][ T4845] RSP: 002b:00007f1783887038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   54.997635][ T4845] RAX: ffffffffffffffda RBX: 00007f1785435fa0 RCX: 00007f178521d169
[   54.997691][ T4845] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[   54.997706][ T4845] RBP: 00007f1783887090 R08: 0000000000000000 R09: 0000000000000000
[   54.997720][ T4845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.997733][ T4845] R13: 0000000000000000 R14: 00007f1785435fa0 R15: 00007ffd85a1b5c8
[   54.997775][ T4845]  </TASK>
[   55.202094][ T4852] loop1: detected capacity change from 0 to 512
[   55.222706][ T4852] EXT4-fs (loop1): 1 orphan inode deleted
[   55.230665][ T4852] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.241864][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   55.304576][ T4865] loop3: detected capacity change from 0 to 2048
[   55.442799][ T4877] loop1: detected capacity change from 0 to 2048
[   55.543767][ T4885] loop4: detected capacity change from 0 to 512
[   55.636381][ T4885] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.672719][ T4885] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.717996][ T4890] loop1: detected capacity change from 0 to 2048
[   56.060520][ T4906] loop3: detected capacity change from 0 to 2048
[   56.134322][ T4908] loop1: detected capacity change from 0 to 2048
[   56.313683][ T4918] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.371167][ T4918] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.441136][ T4918] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.511000][ T4918] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.578494][ T4921] loop0: detected capacity change from 0 to 2048
[   56.591147][ T4918] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.612902][ T4918] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.631707][ T4918] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.643584][ T4918] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.689911][ T4925] loop3: detected capacity change from 0 to 2048
[   56.833529][ T4935] loop4: detected capacity change from 0 to 2048
[   56.931402][ T4944] loop3: detected capacity change from 0 to 2048
[   56.977789][ T4946] loop2: detected capacity change from 0 to 2048
[   57.123969][ T4956] loop1: detected capacity change from 0 to 512
[   57.173063][ T4956] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.566347][ T4980] loop0: detected capacity change from 0 to 512
[   57.645372][ T4981] loop4: detected capacity change from 0 to 512
[   57.927502][ T4980] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.940807][ T4980] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.941154][ T4981] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.021873][ T4987] netlink: 8 bytes leftover after parsing attributes in process `syz.1.408'.
[   58.037883][ T4987] netlink: 8 bytes leftover after parsing attributes in process `syz.1.408'.
[   58.047240][ T4987] netlink: 8 bytes leftover after parsing attributes in process `syz.1.408'.
[   58.056986][ T4987] netlink: 8 bytes leftover after parsing attributes in process `syz.1.408'.
[   58.070004][ T4989] loop2: detected capacity change from 0 to 2048
[   58.123105][ T4995] IPv6: Can't replace route, no match found
[   58.131063][ T4991] loop4: detected capacity change from 0 to 2048
[   58.209233][ T5004] loop1: detected capacity change from 0 to 4096
[   58.294688][ T5016] loop1: detected capacity change from 0 to 2048
[   58.336156][ T5018] loop2: detected capacity change from 0 to 2048
[   58.388688][ T5026] loop3: detected capacity change from 0 to 4096
[   58.416084][ T5031] IPv6: Can't replace route, no match found
[   58.425644][ T5032] netlink: 12 bytes leftover after parsing attributes in process `syz.1.421'.
[   58.474363][ T5036] loop3: detected capacity change from 0 to 2048
[   58.484294][ T5039] netlink: 12 bytes leftover after parsing attributes in process `syz.2.422'.
[   58.652519][   T29] kauditd_printk_skb: 116 callbacks suppressed
[   58.652563][   T29] audit: type=1400 audit(1743256328.656:2337): avc:  denied  { create } for  pid=5052 comm="syz.4.433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   58.693929][   T29] audit: type=1400 audit(1743256328.666:2338): avc:  denied  { ioctl } for  pid=5046 comm="syz.3.431" path="socket:[8671]" dev="sockfs" ino=8671 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   58.718480][   T29] audit: type=1400 audit(1743256328.686:2339): avc:  denied  { write } for  pid=5052 comm="syz.4.433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   58.761621][ T5057] loop1: detected capacity change from 0 to 164
[   58.770350][ T5061] loop4: detected capacity change from 0 to 2048
[   58.781035][ T5063] loop3: detected capacity change from 0 to 2048
[   58.839788][ T5057] iso9660: Corrupted directory entry in block 4 of inode 1792
[   58.855103][ T5071] loop2: detected capacity change from 0 to 512
[   58.870680][ T5071] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.890431][ T5057] iso9660: Corrupted directory entry in block 4 of inode 1792
[   59.007155][ T5077] loop1: detected capacity change from 0 to 2048
[   59.097251][ T5087] loop1: detected capacity change from 0 to 2048
[   59.131986][ T5093] loop4: detected capacity change from 0 to 2048
[   59.168075][ T5094] netlink: 4 bytes leftover after parsing attributes in process `syz.2.446'.
[   59.398025][ T5111] loop4: detected capacity change from 0 to 512
[   59.410827][ T5111] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.857415][ T5122] loop3: detected capacity change from 0 to 2048
[   59.891301][ T5124] loop3: detected capacity change from 0 to 2048
[   59.948840][ T5128] loop3: detected capacity change from 0 to 512
[   59.959876][ T5128] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.016718][ T5134] loop2: detected capacity change from 0 to 2048
[   60.193380][ T5149] loop1: detected capacity change from 0 to 2048
[   60.211657][ T3368] IPVS: starting estimator thread 0...
[   60.265502][ T5151] ipvlan2: entered promiscuous mode
[   60.271044][ T5151] ipvlan2: entered allmulticast mode
[   60.273319][ T5156] loop1: detected capacity change from 0 to 2048
[   60.276389][ T5151] bridge0: entered allmulticast mode
[   60.328389][ T5152] IPVS: using max 2736 ests per chain, 136800 per kthread
[   60.470403][ T5167] loop3: detected capacity change from 0 to 512
[   60.477607][ T5167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.525126][ T5167] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.676761][ T5184] loop4: detected capacity change from 0 to 2048
[   60.686733][ T5186] IPv6: Can't replace route, no match found
[   60.908616][ T5197] loop0: detected capacity change from 0 to 512
[   60.916238][ T5197] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.118879][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   61.236687][ T5202] loop2: detected capacity change from 0 to 2048
[   61.267346][ T5197] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.335279][ T5207] loop4: detected capacity change from 0 to 2048
[   61.434740][ T5213] netlink: 12 bytes leftover after parsing attributes in process `syz.2.483'.
[   61.594198][ T5219] loop4: detected capacity change from 0 to 4096
[   61.646079][ T5227] loop3: detected capacity change from 0 to 1024
[   61.654380][ T5227] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   61.660696][   T29] audit: type=1326 audit(1743256331.656:2340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.665320][ T5227] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   61.688976][   T29] audit: type=1326 audit(1743256331.656:2341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.701989][ T5227] JBD2: no valid journal superblock found
[   61.724537][   T29] audit: type=1326 audit(1743256331.726:2342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.727218][ T5227] EXT4-fs (loop3): Could not load journal inode
[   61.757000][   T29] audit: type=1326 audit(1743256331.726:2343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.757232][ T5224] loop1: detected capacity change from 0 to 128
[   61.780322][   T29] audit: type=1326 audit(1743256331.726:2344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.780550][   T29] audit: type=1326 audit(1743256331.756:2345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   61.780587][   T29] audit: type=1326 audit(1743256331.756:2346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5223 comm="syz.1.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f72f13dd1a3 code=0x7ffc0000
[   61.869634][ T5227] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu€) failed with errno=-22
[   61.936721][ T5233] bio_check_eod: 14 callbacks suppressed
[   61.936739][ T5233] syz.1.490: attempt to access beyond end of device
[   61.936739][ T5233] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[   61.957193][ T5233] syz.1.490: attempt to access beyond end of device
[   61.957193][ T5233] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   61.972054][ T5233] syz.1.490: attempt to access beyond end of device
[   61.972054][ T5233] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   61.985936][ T5233] syz.1.490: attempt to access beyond end of device
[   61.985936][ T5233] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   61.999539][ T5233] syz.1.490: attempt to access beyond end of device
[   61.999539][ T5233] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   62.013280][ T5233] syz.1.490: attempt to access beyond end of device
[   62.013280][ T5233] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   62.026906][ T5233] syz.1.490: attempt to access beyond end of device
[   62.026906][ T5233] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   62.043830][ T5233] syz.1.490: attempt to access beyond end of device
[   62.043830][ T5233] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   62.057429][ T5233] syz.1.490: attempt to access beyond end of device
[   62.057429][ T5233] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   62.072571][ T5233] syz.1.490: attempt to access beyond end of device
[   62.072571][ T5233] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[   62.087259][ T5233] Buffer I/O error on dev loop1, logical block 353, lost async page write
[   62.097653][ T5233] Buffer I/O error on dev loop1, logical block 354, lost async page write
[   62.106333][ T5233] Buffer I/O error on dev loop1, logical block 355, lost async page write
[   62.116512][ T5233] Buffer I/O error on dev loop1, logical block 356, lost async page write
[   62.125164][ T5233] Buffer I/O error on dev loop1, logical block 357, lost async page write
[   62.135000][ T5233] Buffer I/O error on dev loop1, logical block 358, lost async page write
[   62.144013][ T5233] Buffer I/O error on dev loop1, logical block 359, lost async page write
[   62.501049][ T5244] loop1: detected capacity change from 0 to 2048
[   62.782490][ T5253] loop4: detected capacity change from 0 to 512
[   62.800256][ T5253] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.873211][ T5253] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.006181][ T5257] loop2: detected capacity change from 0 to 2048
[   63.137237][ T5259] loop2: detected capacity change from 0 to 2048
[   63.144589][ T5263] IPv6: Can't replace route, no match found
[   63.211305][ T5273] loop2: detected capacity change from 0 to 164
[   63.234937][ T5273] iso9660: Corrupted directory entry in block 4 of inode 1792
[   63.251435][ T5273] iso9660: Corrupted directory entry in block 4 of inode 1792
[   63.261754][ T5269] loop1: detected capacity change from 0 to 128
[   63.270262][ T5275] loop3: detected capacity change from 0 to 2048
[   63.310536][ T5278] loop3: detected capacity change from 0 to 2048
[   63.629553][ T5288] loop3: detected capacity change from 0 to 2048
[   63.883818][ T5298] loop0: detected capacity change from 0 to 2048
[   64.033088][   T37] Buffer I/O error on dev loop1, logical block 353, lost async page write
[   64.046551][   T37] Buffer I/O error on dev loop1, logical block 354, lost async page write
[   64.055360][   T37] Buffer I/O error on dev loop1, logical block 355, lost async page write
[   64.142147][ T5307] loop0: detected capacity change from 0 to 2048
[   64.153623][ T5309] loop1: detected capacity change from 0 to 2048
[   64.229650][ T5315] loop2: detected capacity change from 0 to 4096
[   64.236171][ T5317] loop0: detected capacity change from 0 to 2048
[   64.323083][ T5323] loop1: detected capacity change from 0 to 512
[   64.331630][ T5323] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.362642][ T5323] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.555705][ T5337] loop1: detected capacity change from 0 to 2048
[   64.563047][ T5339] FAULT_INJECTION: forcing a failure.
[   64.563047][ T5339] name failslab, interval 1, probability 0, space 0, times 0
[   64.575803][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.3.534 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   64.575848][ T5339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   64.575862][ T5339] Call Trace:
[   64.575869][ T5339]  <TASK>
[   64.575876][ T5339]  dump_stack_lvl+0xf6/0x150
[   64.575897][ T5339]  dump_stack+0x15/0x1a
[   64.575941][ T5339]  should_fail_ex+0x261/0x270
[   64.575972][ T5339]  should_failslab+0x8f/0xb0
[   64.575995][ T5339]  __kvmalloc_node_noprof+0x12c/0x520
[   64.576104][ T5339]  ? vmemdup_user+0x26/0xd0
[   64.576122][ T5339]  ? __fget_files+0x186/0x1c0
[   64.576144][ T5339]  vmemdup_user+0x26/0xd0
[   64.576159][ T5339]  map_lookup_and_delete_elem+0x230/0x560
[   64.576229][ T5339]  __sys_bpf+0x435/0x7c0
[   64.576384][ T5339]  __x64_sys_bpf+0x43/0x50
[   64.576418][ T5339]  x64_sys_call+0x23da/0x2e10
[   64.576437][ T5339]  do_syscall_64+0xc9/0x1c0
[   64.576539][ T5339]  ? clear_bhb_loop+0x25/0x80
[   64.576561][ T5339]  ? clear_bhb_loop+0x25/0x80
[   64.576578][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.576595][ T5339] RIP: 0033:0x7fe2e6b6d169
[   64.576609][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.576625][ T5339] RSP: 002b:00007fe2e51d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   64.576643][ T5339] RAX: ffffffffffffffda RBX: 00007fe2e6d85fa0 RCX: 00007fe2e6b6d169
[   64.576655][ T5339] RDX: 0000000000000020 RSI: 0000200000000000 RDI: 0000000000000015
[   64.576668][ T5339] RBP: 00007fe2e51d7090 R08: 0000000000000000 R09: 0000000000000000
[   64.576680][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.576692][ T5339] R13: 0000000000000000 R14: 00007fe2e6d85fa0 R15: 00007ffd575d2f38
[   64.576711][ T5339]  </TASK>
[   64.777898][ T5343] loop3: detected capacity change from 0 to 512
[   64.839864][ T5343] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.005546][ T5354] loop3: detected capacity change from 0 to 4096
[   65.044192][ T5345] loop2: detected capacity change from 0 to 2048
[   65.157766][ T5345] loop2: detected capacity change from 0 to 512
[   65.177912][ T5345] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.249785][ T5374] IPv6: Can't replace route, no match found
[   65.273114][   T29] kauditd_printk_skb: 88 callbacks suppressed
[   65.273131][   T29] audit: type=1326 audit(1743256335.276:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.325253][   T29] audit: type=1326 audit(1743256335.306:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.348692][   T29] audit: type=1326 audit(1743256335.306:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.372454][   T29] audit: type=1326 audit(1743256335.306:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.395875][   T29] audit: type=1326 audit(1743256335.306:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.419280][   T29] audit: type=1400 audit(1743256335.306:2440): avc:  denied  { mount } for  pid=5375 comm="syz.1.546" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   65.441491][   T29] audit: type=1326 audit(1743256335.306:2441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.464860][   T29] audit: type=1326 audit(1743256335.306:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.488241][   T29] audit: type=1326 audit(1743256335.306:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5375 comm="syz.1.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f72f13dd169 code=0x7ffc0000
[   65.511699][   T29] audit: type=1400 audit(1743256335.306:2444): avc:  denied  { remount } for  pid=5375 comm="syz.1.546" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   65.664401][ T5384] loop4: detected capacity change from 0 to 2048
[   65.672057][ T5386] loop2: detected capacity change from 0 to 4096
[   65.691614][ T5388] loop1: detected capacity change from 0 to 2048
[   65.698950][ T5388] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[   65.708668][ T5388] EXT4-fs (loop1): group descriptors corrupted!
[   65.822261][ T5392] xt_CT: No such helper "pptp"
[   65.844514][ T5395] loop2: detected capacity change from 0 to 2048
[   65.941015][ T5400] loop4: detected capacity change from 0 to 2048
[   66.180975][ T5411] loop0: detected capacity change from 0 to 512
[   66.205214][ T5411] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.266970][ T5415] IPv6: Can't replace route, no match found
[   66.276263][ T5419] loop4: detected capacity change from 0 to 2048
[   66.334535][ T5424] loop3: detected capacity change from 0 to 512
[   66.344664][ T5421] loop4: detected capacity change from 0 to 4096
[   66.362988][ T5424] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   66.397984][ T5424] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.562: invalid indirect mapped block 83886080 (level 1)
[   66.414418][ T5424] EXT4-fs (loop3): Remounting filesystem read-only
[   66.424640][ T5424] EXT4-fs (loop3): 1 orphan inode deleted
[   66.430456][ T5424] EXT4-fs (loop3): 1 truncate cleaned up
[   66.483166][ T5437] loop4: detected capacity change from 0 to 164
[   66.502423][ T5437] iso9660: Corrupted directory entry in block 4 of inode 1792
[   66.553673][ T5437] iso9660: Corrupted directory entry in block 4 of inode 1792
[   66.564252][ T5440] loop3: detected capacity change from 0 to 2048
[   66.728258][ T5450] netlink: 12 bytes leftover after parsing attributes in process `syz.3.567'.
[   66.760757][ T5451] loop2: detected capacity change from 0 to 2048
[   66.858198][ T5455] IPv6: Can't replace route, no match found
[   66.866062][ T5459] loop4: detected capacity change from 0 to 2048
[   66.934122][ T5465] netlink: 12 bytes leftover after parsing attributes in process `syz.2.570'.
[   66.943328][ T5464] loop4: detected capacity change from 0 to 4096
[   67.102332][ T5476] loop3: detected capacity change from 0 to 2048
[   67.142110][ T5481] FAULT_INJECTION: forcing a failure.
[   67.142110][ T5481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.155387][ T5481] CPU: 1 UID: 0 PID: 5481 Comm: syz.3.582 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   67.155414][ T5481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   67.155428][ T5481] Call Trace:
[   67.155433][ T5481]  <TASK>
[   67.155439][ T5481]  dump_stack_lvl+0xf6/0x150
[   67.155463][ T5481]  dump_stack+0x15/0x1a
[   67.155485][ T5481]  should_fail_ex+0x261/0x270
[   67.155519][ T5481]  should_fail+0xb/0x10
[   67.155550][ T5481]  should_fail_usercopy+0x1a/0x20
[   67.155588][ T5481]  _copy_from_user+0x1c/0xa0
[   67.155640][ T5481]  kstrtouint_from_user+0x84/0x100
[   67.155675][ T5481]  ? 0xffffffff81000000
[   67.155689][ T5481]  ? selinux_file_permission+0x22d/0x360
[   67.155723][ T5481]  proc_fail_nth_write+0x54/0x160
[   67.155847][ T5481]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   67.155875][ T5481]  vfs_write+0x295/0x950
[   67.155909][ T5481]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   67.155932][ T5481]  ? __fget_files+0x186/0x1c0
[   67.155955][ T5481]  ksys_write+0xeb/0x1b0
[   67.156008][ T5481]  __x64_sys_write+0x42/0x50
[   67.156027][ T5481]  x64_sys_call+0x2a45/0x2e10
[   67.156058][ T5481]  do_syscall_64+0xc9/0x1c0
[   67.156091][ T5481]  ? clear_bhb_loop+0x25/0x80
[   67.156114][ T5481]  ? clear_bhb_loop+0x25/0x80
[   67.156196][ T5481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.156219][ T5481] RIP: 0033:0x7fe2e6b6bc1f
[   67.156241][ T5481] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   67.156292][ T5481] RSP: 002b:00007fe2e51d7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   67.156313][ T5481] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe2e6b6bc1f
[   67.156367][ T5481] RDX: 0000000000000001 RSI: 00007fe2e51d70a0 RDI: 0000000000000006
[   67.156381][ T5481] RBP: 00007fe2e51d7090 R08: 0000000000000000 R09: 0000000000000000
[   67.156394][ T5481] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   67.156408][ T5481] R13: 0000000000000000 R14: 00007fe2e6d85fa0 R15: 00007ffd575d2f38
[   67.156459][ T5481]  </TASK>
[   67.373050][ T3305] EXT4-fs unmount: 139 callbacks suppressed
[   67.373065][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.449544][ T5486] IPv6: Can't replace route, no match found
[   67.531954][ T5499] loop4: detected capacity change from 0 to 2048
[   67.652018][ T5518] loop4: detected capacity change from 0 to 2048
[   67.692250][ T5518] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.782029][ T5533] tun0: tun_chr_ioctl cmd 1074025678
[   67.787514][ T5533] tun0: group set to 0
[   67.971110][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.046283][ T5548] loop0: detected capacity change from 0 to 2048
[   68.064601][ T5552] netlink: 4 bytes leftover after parsing attributes in process `syz.4.611'.
[   68.147328][ T5559] loop0: detected capacity change from 0 to 512
[   68.179286][ T5559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.198296][ T5559] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.226579][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.419742][ T5569] loop2: detected capacity change from 0 to 2048
[   68.439181][ T5569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.461750][ T5574] batadv1: entered promiscuous mode
[   68.733435][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.895150][ T5582] netlink: 128 bytes leftover after parsing attributes in process `syz.1.619'.
[   68.974449][ T5585] loop2: detected capacity change from 0 to 512
[   68.985024][ T5585] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #15: comm syz.2.621: casefold flag without casefold feature
[   68.998944][ T5585] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.621: couldn't read orphan inode 15 (err -117)
[   69.013263][ T5585] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.151308][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.160521][ T5588] wireguard0: entered promiscuous mode
[   69.166083][ T5588] wireguard0: entered allmulticast mode
[   69.186800][ T5591] loop2: detected capacity change from 0 to 2048
[   69.316326][ T5606] netlink: 40 bytes leftover after parsing attributes in process `syz.0.628'.
[   69.624962][ T5622] loop1: detected capacity change from 0 to 512
[   69.650007][ T5622] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.662683][ T5622] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.688104][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.714285][ T5626] loop1: detected capacity change from 0 to 2048
[   69.860229][ T5662] loop1: detected capacity change from 0 to 164
[   69.883651][ T5662] iso9660: Corrupted directory entry in block 4 of inode 1792
[   69.893258][ T5662] iso9660: Corrupted directory entry in block 4 of inode 1792
[   70.108757][ T5664] loop2: detected capacity change from 0 to 1024
[   70.116266][ T5664] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.125980][ T5664] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   70.140293][ T5664] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce028, mo2=0000]
[   70.149846][ T5664] EXT4-fs error (device loop2): ext4_map_blocks:672: inode #3: block 2: comm syz.2.640: lblock 2 mapped to illegal pblock 2 (length 1)
[   70.150075][ T5666] FAULT_INJECTION: forcing a failure.
[   70.150075][ T5666] name failslab, interval 1, probability 0, space 0, times 0
[   70.163865][ T5664] EXT4-fs (loop2): Remounting filesystem read-only
[   70.176354][ T5666] CPU: 1 UID: 0 PID: 5666 Comm: syz.3.641 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   70.176409][ T5666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   70.176490][ T5666] Call Trace:
[   70.176499][ T5666]  <TASK>
[   70.176508][ T5666]  dump_stack_lvl+0xf6/0x150
[   70.176534][ T5666]  dump_stack+0x15/0x1a
[   70.176621][ T5666]  should_fail_ex+0x261/0x270
[   70.176738][ T5666]  should_failslab+0x8f/0xb0
[   70.176763][ T5666]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   70.176790][ T5666]  ? __alloc_skb+0x10d/0x320
[   70.176813][ T5666]  __alloc_skb+0x10d/0x320
[   70.176835][ T5666]  ? audit_log_start+0x37f/0x6e0
[   70.176942][ T5666]  audit_log_start+0x39a/0x6e0
[   70.176968][ T5666]  ? kstrtouint+0x7b/0xc0
[   70.177055][ T5666]  audit_seccomp+0x4b/0x130
[   70.177138][ T5666]  __seccomp_filter+0x694/0x10e0
[   70.177173][ T5666]  ? vfs_write+0x669/0x950
[   70.177212][ T5666]  ? putname+0xe1/0x100
[   70.177280][ T5666]  __secure_computing+0x7e/0x160
[   70.177384][ T5666]  syscall_trace_enter+0xcf/0x1f0
[   70.177417][ T5666]  ? fpregs_assert_state_consistent+0x83/0xa0
[   70.177454][ T5666]  do_syscall_64+0xaa/0x1c0
[   70.177480][ T5666]  ? clear_bhb_loop+0x25/0x80
[   70.177503][ T5666]  ? clear_bhb_loop+0x25/0x80
[   70.177543][ T5666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.177603][ T5666] RIP: 0033:0x7fe2e6b6d169
[   70.177621][ T5666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.177642][ T5666] RSP: 002b:00007fe2e51d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000044
[   70.177720][ T5666] RAX: ffffffffffffffda RBX: 00007fe2e6d85fa0 RCX: 00007fe2e6b6d169
[   70.177735][ T5666] RDX: 0000000000000000 RSI: 0000000000000100 RDI: 0000000000000000
[   70.177750][ T5666] RBP: 00007fe2e51d7090 R08: 0000000000000000 R09: 0000000000000000
[   70.177764][ T5666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.177778][ T5666] R13: 0000000000000000 R14: 00007fe2e6d85fa0 R15: 00007ffd575d2f38
[   70.177799][ T5666]  </TASK>
[   70.387721][ T5664] __quota_error: 280 callbacks suppressed
[   70.387731][ T5664] Quota error (device loop2): qtree_write_dquot: dquota write failed
[   70.401878][ T5664] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   70.410750][ T5664] EXT4-fs (loop2): 1 orphan inode deleted
[   70.418334][ T5664] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.442231][ T5664] syz.2.640 uses obsolete (PF_INET,SOCK_PACKET)
[   70.484344][ T5677] loop0: detected capacity change from 0 to 2048
[   70.487856][ T5682] loop1: detected capacity change from 0 to 512
[   70.510771][ T5677] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.530620][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.550708][ T5682] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.581851][ T5690] loop3: detected capacity change from 0 to 2048
[   70.588408][ T5682] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.610417][ T5690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.615779][ T5692] loop2: detected capacity change from 0 to 2048
[   70.651803][ T5692] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.670280][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.706128][ T5699] loop1: detected capacity change from 0 to 164
[   70.813736][ T5699] iso9660: Corrupted directory entry in block 4 of inode 1792
[   70.847967][ T5699] iso9660: Corrupted directory entry in block 4 of inode 1792
[   70.915323][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.961309][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.057899][ T5709] loop2: detected capacity change from 0 to 2048
[   71.123620][ T5711] netlink: 24 bytes leftover after parsing attributes in process `syz.3.654'.
[   71.139101][ T5712] loop1: detected capacity change from 0 to 512
[   71.354889][ T5717] netlink: 40 bytes leftover after parsing attributes in process `syz.4.656'.
[   71.390073][ T5712] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.403572][ T5709] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.428156][ T5712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.440853][ T5712] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.542956][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.627026][ T5726] loop0: detected capacity change from 0 to 2048
[   71.649248][ T5726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.649850][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.687929][   T29] audit: type=1326 audit(1743256341.686:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1909764127 code=0x7ffc0000
[   71.694196][ T5730] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[   71.720388][   T29] audit: type=1326 audit(1743256341.686:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1909709359 code=0x7ffc0000
[   71.743736][   T29] audit: type=1326 audit(1743256341.686:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[   71.767265][   T29] audit: type=1326 audit(1743256341.686:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1909764127 code=0x7ffc0000
[   71.790660][   T29] audit: type=1326 audit(1743256341.686:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1909709359 code=0x7ffc0000
[   71.814012][   T29] audit: type=1326 audit(1743256341.686:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[   71.837344][   T29] audit: type=1326 audit(1743256341.686:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1909764127 code=0x7ffc0000
[   71.860629][   T29] audit: type=1326 audit(1743256341.686:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5729 comm="syz.2.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1909709359 code=0x7ffc0000
[   71.860931][ T5731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[   71.920182][ T5731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[   71.944386][ T5731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[   71.957354][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.981892][ T5733] loop0: detected capacity change from 0 to 512
[   72.000854][ T5733] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.013780][ T5733] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.038853][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.073411][ T5742] loop0: detected capacity change from 0 to 164
[   72.084400][ T5742] iso9660: Corrupted directory entry in block 4 of inode 1792
[   72.092571][ T5742] iso9660: Corrupted directory entry in block 4 of inode 1792
[   72.100816][ T5739] loop2: detected capacity change from 0 to 128
[   72.153840][ T5752] loop3: detected capacity change from 0 to 512
[   72.180248][ T5752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.192968][ T5754] loop0: detected capacity change from 0 to 2048
[   72.200356][ T5757] bio_check_eod: 51 callbacks suppressed
[   72.200367][ T5757] syz.2.661: attempt to access beyond end of device
[   72.200367][ T5757] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[   72.208314][ T5752] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.229868][ T5757] syz.2.661: attempt to access beyond end of device
[   72.229868][ T5757] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   72.248256][ T5757] syz.2.661: attempt to access beyond end of device
[   72.248256][ T5757] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   72.262094][ T5757] syz.2.661: attempt to access beyond end of device
[   72.262094][ T5757] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   72.275678][ T5757] syz.2.661: attempt to access beyond end of device
[   72.275678][ T5757] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   72.289546][ T5754] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.313920][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.325536][ T5757] syz.2.661: attempt to access beyond end of device
[   72.325536][ T5757] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   72.358058][ T5757] syz.2.661: attempt to access beyond end of device
[   72.358058][ T5757] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[   72.372419][ T5757] syz.2.661: attempt to access beyond end of device
[   72.372419][ T5757] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[   72.386646][ T5765] loop4: detected capacity change from 0 to 512
[   72.387212][ T5757] syz.2.661: attempt to access beyond end of device
[   72.387212][ T5757] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[   72.407760][ T5757] syz.2.661: attempt to access beyond end of device
[   72.407760][ T5757] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[   72.433580][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.444755][ T5765] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.468737][ T5765] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.496247][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.501200][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz.0.671'.
[   72.541594][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz.0.671'.
[   72.552134][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz.0.671'.
[   72.562556][ T5772] netlink: 8 bytes leftover after parsing attributes in process `syz.0.671'.
[   72.875382][  T137] buffer_io_error: 4 callbacks suppressed
[   72.875394][  T137] Buffer I/O error on dev loop2, logical block 353, lost async page write
[   72.890189][  T137] Buffer I/O error on dev loop2, logical block 354, lost async page write
[   72.899702][  T137] Buffer I/O error on dev loop2, logical block 355, lost async page write
[   72.908810][  T137] Buffer I/O error on dev loop2, logical block 356, lost async page write
[   72.917603][  T137] Buffer I/O error on dev loop2, logical block 357, lost async page write
[   72.926405][  T137] Buffer I/O error on dev loop2, logical block 358, lost async page write
[   72.935280][  T137] Buffer I/O error on dev loop2, logical block 359, lost async page write
[   72.952537][ T5779] loop2: detected capacity change from 0 to 512
[   72.992267][ T5779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.005858][ T5779] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.032506][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.377212][ T5789] loop4: detected capacity change from 0 to 164
[   73.386497][ T5789] iso9660: Corrupted directory entry in block 4 of inode 1792
[   73.419294][ T5789] iso9660: Corrupted directory entry in block 4 of inode 1792
[   73.450052][ T5790] loop3: detected capacity change from 0 to 512
[   73.519639][ T5790] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   73.542427][ T5790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.555037][ T5790] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.647451][ T5796] loop4: detected capacity change from 0 to 512
[   73.682963][ T5796] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.723944][ T5796] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.775131][ T5802] loop0: detected capacity change from 0 to 2048
[   73.802452][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.833565][ T5807] loop4: detected capacity change from 0 to 2048
[   73.860447][ T5807] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.976775][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.135796][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.148411][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.165755][ T5820] loop3: detected capacity change from 0 to 1024
[   74.173254][ T5820] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   74.184281][ T5820] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   74.198212][ T5820] JBD2: no valid journal superblock found
[   74.204111][ T5820] EXT4-fs (loop3): Could not load journal inode
[   74.234290][ T5820] netlink: 1196 bytes leftover after parsing attributes in process `syz.3.685'.
[   74.356206][ T5828] loop0: detected capacity change from 0 to 2048
[   74.370673][ T5828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.493887][ T5832] netlink: 12 bytes leftover after parsing attributes in process `syz.0.688'.
[   74.669265][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.854861][ T5842] loop2: detected capacity change from 0 to 2048
[   74.969367][ T5852] FAULT_INJECTION: forcing a failure.
[   74.969367][ T5852] name failslab, interval 1, probability 0, space 0, times 0
[   74.982086][ T5852] CPU: 1 UID: 0 PID: 5852 Comm: syz.2.697 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   74.982118][ T5852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.982133][ T5852] Call Trace:
[   74.982160][ T5852]  <TASK>
[   74.982175][ T5852]  dump_stack_lvl+0xf6/0x150
[   74.982214][ T5852]  dump_stack+0x15/0x1a
[   74.982238][ T5852]  should_fail_ex+0x261/0x270
[   74.982300][ T5852]  should_failslab+0x8f/0xb0
[   74.982318][ T5852]  kmem_cache_alloc_noprof+0x59/0x340
[   74.982342][ T5852]  ? security_file_alloc+0x32/0x100
[   74.982368][ T5852]  security_file_alloc+0x32/0x100
[   74.982391][ T5852]  init_file+0x5e/0x1e0
[   74.982417][ T5852]  alloc_empty_file+0x8e/0x200
[   74.982440][ T5852]  alloc_file_pseudo+0xcb/0x160
[   74.982467][ T5852]  aio_setup_ring+0x13a/0x730
[   74.982496][ T5852]  ioctx_alloc+0x2b2/0x4c0
[   74.982593][ T5852]  __se_sys_io_setup+0x6b/0x1b0
[   74.982610][ T5852]  __x64_sys_io_setup+0x31/0x40
[   74.982711][ T5852]  x64_sys_call+0x2b35/0x2e10
[   74.982733][ T5852]  do_syscall_64+0xc9/0x1c0
[   74.982829][ T5852]  ? clear_bhb_loop+0x25/0x80
[   74.982848][ T5852]  ? clear_bhb_loop+0x25/0x80
[   74.982898][ T5852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.982920][ T5852] RIP: 0033:0x7f190976d169
[   74.982935][ T5852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.982954][ T5852] RSP: 002b:00007f1907dcf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[   74.982973][ T5852] RAX: ffffffffffffffda RBX: 00007f1909985fa0 RCX: 00007f190976d169
[   74.982985][ T5852] RDX: 0000000000000000 RSI: 0000200000000680 RDI: 0000000000002004
[   74.983047][ T5852] RBP: 00007f1907dcf090 R08: 0000000000000000 R09: 0000000000000000
[   74.983057][ T5852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.983066][ T5852] R13: 0000000000000000 R14: 00007f1909985fa0 R15: 00007ffe3f2d2148
[   74.983120][ T5852]  </TASK>
[   75.223289][ T5854] loop4: detected capacity change from 0 to 2048
[   75.259178][ T5858] loop3: detected capacity change from 0 to 164
[   75.296947][ T5860] loop1: detected capacity change from 0 to 512
[   75.342335][ T5860] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.377183][ T5865] FAULT_INJECTION: forcing a failure.
[   75.377183][ T5865] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.390298][ T5865] CPU: 0 UID: 0 PID: 5865 Comm: syz.4.701 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   75.390369][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   75.390389][ T5865] Call Trace:
[   75.390397][ T5865]  <TASK>
[   75.390405][ T5865]  dump_stack_lvl+0xf6/0x150
[   75.390426][ T5865]  dump_stack+0x15/0x1a
[   75.390440][ T5865]  should_fail_ex+0x261/0x270
[   75.390567][ T5865]  should_fail+0xb/0x10
[   75.390600][ T5865]  should_fail_usercopy+0x1a/0x20
[   75.390641][ T5865]  _copy_from_user+0x1c/0xa0
[   75.390660][ T5865]  usbdev_ioctl+0x1037/0x3e70
[   75.390763][ T5865]  ? do_vfs_ioctl+0x977/0x1570
[   75.390869][ T5865]  ? selinux_file_ioctl+0x2f9/0x380
[   75.390900][ T5865]  ? __fget_files+0x186/0x1c0
[   75.390923][ T5865]  ? __pfx_usbdev_ioctl+0x10/0x10
[   75.390987][ T5865]  __se_sys_ioctl+0xc9/0x140
[   75.391025][ T5865]  __x64_sys_ioctl+0x43/0x50
[   75.391063][ T5865]  x64_sys_call+0x168d/0x2e10
[   75.391103][ T5865]  do_syscall_64+0xc9/0x1c0
[   75.391137][ T5865]  ? clear_bhb_loop+0x25/0x80
[   75.391232][ T5865]  ? clear_bhb_loop+0x25/0x80
[   75.391257][ T5865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.391282][ T5865] RIP: 0033:0x7fa86724d169
[   75.391296][ T5865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.391315][ T5865] RSP: 002b:00007fa8658af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.391346][ T5865] RAX: ffffffffffffffda RBX: 00007fa867465fa0 RCX: 00007fa86724d169
[   75.391361][ T5865] RDX: 0000200000000140 RSI: 000000008038550a RDI: 0000000000000007
[   75.391381][ T5865] RBP: 00007fa8658af090 R08: 0000000000000000 R09: 0000000000000000
[   75.391406][ T5865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.391415][ T5865] R13: 0000000000000000 R14: 00007fa867465fa0 R15: 00007ffe0ece6238
[   75.391430][ T5865]  </TASK>
[   75.590069][ T5860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.602637][ T5860] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.611990][ T5871] loop4: detected capacity change from 0 to 2048
[   75.623724][ T5858] iso9660: Corrupted directory entry in block 4 of inode 1792
[   75.632291][ T5858] iso9660: Corrupted directory entry in block 4 of inode 1792
[   75.637337][ T5871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.657566][   T29] kauditd_printk_skb: 1149 callbacks suppressed
[   75.657580][   T29] audit: type=1400 audit(1743256345.656:3880): avc:  denied  { append } for  pid=5870 comm="syz.4.703" path="/128/bus/cgroup.controllers" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   75.726154][ T5878] loop2: detected capacity change from 0 to 2048
[   75.732945][   T29] audit: type=1400 audit(1743256345.716:3881): avc:  denied  { map } for  pid=5870 comm="syz.4.703" path="/128/bus/cgroup.controllers" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   75.836093][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.863847][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.864717][ T5885] loop1: detected capacity change from 0 to 512
[   75.903823][ T5885] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.917993][ T5885] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.945710][ T5894] loop3: detected capacity change from 0 to 2048
[   75.993770][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.022229][ T5904] SELinux: failed to load policy
[   76.027273][   T29] audit: type=1400 audit(1743256346.026:3882): avc:  denied  { load_policy } for  pid=5903 comm="syz.1.715" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   76.052399][ T5906] loop1: detected capacity change from 0 to 164
[   76.059173][ T5906] isofs_fill_super: bread failed, dev=loop1, iso_blknum=32793, block=131172
[   76.072579][ T5908] loop3: detected capacity change from 0 to 164
[   76.094778][ T5908] iso9660: Corrupted directory entry in block 4 of inode 1792
[   76.102494][ T5910] loop1: detected capacity change from 0 to 2048
[   76.103059][ T5908] iso9660: Corrupted directory entry in block 4 of inode 1792
[   76.343011][ T5920] loop1: detected capacity change from 0 to 512
[   76.350441][ T5920] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.449459][ T5925] loop3: detected capacity change from 0 to 2048
[   76.856246][ T5920] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.869127][ T5920] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.893862][   T29] audit: type=1326 audit(1743256346.896:3883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   76.917330][   T29] audit: type=1326 audit(1743256346.906:3884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   76.940807][   T29] audit: type=1326 audit(1743256346.906:3885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   76.964130][   T29] audit: type=1326 audit(1743256346.906:3886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe2e6b6d169 code=0x7ffc0000
[   76.966003][ T5942] loop3: detected capacity change from 0 to 128
[   76.987503][   T29] audit: type=1326 audit(1743256346.906:3887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe2e6b6d1a3 code=0x7ffc0000
[   76.987542][   T29] audit: type=1326 audit(1743256346.906:3888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe2e6b6bc1f code=0x7ffc0000
[   76.987565][   T29] audit: type=1326 audit(1743256346.906:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe2e6b6d1f7 code=0x7ffc0000
[   77.040250][ T5946] loop2: detected capacity change from 0 to 164
[   77.121317][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.130215][ T5946] iso9660: Corrupted directory entry in block 4 of inode 1792
[   77.145717][ T5946] iso9660: Corrupted directory entry in block 4 of inode 1792
[   77.183371][ T5951] loop1: detected capacity change from 0 to 2048
[   77.206577][ T5951] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.218905][ T5953] loop2: detected capacity change from 0 to 2048
[   77.240769][ T5953] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.326463][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.357524][ T5962] loop1: detected capacity change from 0 to 2048
[   77.381273][ T5962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.406270][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.703483][   T51] bio_check_eod: 36 callbacks suppressed
[   77.703511][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.703511][   T51] loop3: rw=1, sector=153, nr_sectors = 8 limit=128
[   77.723103][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.723103][   T51] loop3: rw=1, sector=169, nr_sectors = 8 limit=128
[   77.743386][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.743386][   T51] loop3: rw=1, sector=185, nr_sectors = 8 limit=128
[   77.756823][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.756823][   T51] loop3: rw=1, sector=201, nr_sectors = 8 limit=128
[   77.770908][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.770908][   T51] loop3: rw=1, sector=217, nr_sectors = 8 limit=128
[   77.786883][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.786883][   T51] loop3: rw=1, sector=233, nr_sectors = 8 limit=128
[   77.801050][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.801050][   T51] loop3: rw=1, sector=249, nr_sectors = 8 limit=128
[   77.816453][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.816453][   T51] loop3: rw=1, sector=265, nr_sectors = 8 limit=128
[   77.825505][ T5973] loop0: detected capacity change from 0 to 2048
[   77.830328][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.830328][   T51] loop3: rw=1, sector=281, nr_sectors = 8 limit=128
[   77.850322][   T51] kworker/u8:3: attempt to access beyond end of device
[   77.850322][   T51] loop3: rw=1, sector=297, nr_sectors = 8 limit=128
[   77.864435][   T51] Buffer I/O error on dev loop3, logical block 353, lost async page write
[   77.897442][   T51] Buffer I/O error on dev loop3, logical block 354, lost async page write
[   77.906426][   T51] Buffer I/O error on dev loop3, logical block 355, lost async page write
[   77.915491][   T51] Buffer I/O error on dev loop3, logical block 356, lost async page write
[   77.924418][   T51] Buffer I/O error on dev loop3, logical block 357, lost async page write
[   77.933896][   T51] Buffer I/O error on dev loop3, logical block 358, lost async page write
[   77.942787][   T51] Buffer I/O error on dev loop3, logical block 359, lost async page write
[   78.007433][ T5983] loop0: detected capacity change from 0 to 164
[   78.062165][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.075624][ T5987] loop3: detected capacity change from 0 to 2048
[   78.084117][ T5983] iso9660: Corrupted directory entry in block 4 of inode 1792
[   78.092171][ T5983] iso9660: Corrupted directory entry in block 4 of inode 1792
[   78.111196][ T5987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.123802][ T5991] loop2: detected capacity change from 0 to 2048
[   78.178926][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.208524][ T6002] loop3: detected capacity change from 0 to 2048
[   78.411930][ T6019] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   78.930080][ T6024] loop4: detected capacity change from 0 to 164
[   78.951806][ T6024] iso9660: Corrupted directory entry in block 4 of inode 1792
[   78.960366][ T6024] iso9660: Corrupted directory entry in block 4 of inode 1792
[   78.999590][ T6026] loop4: detected capacity change from 0 to 2048
[   79.030116][ T6026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.046604][ T6028] loop2: detected capacity change from 0 to 512
[   79.072546][ T6028] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.085212][ T6032] loop0: detected capacity change from 0 to 2048
[   79.092208][ T6028] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.111153][ T6032] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.215290][ T6039] netlink: 12 bytes leftover after parsing attributes in process `syz.0.764'.
[   79.304449][ T6042] loop3: detected capacity change from 0 to 2048
[   79.495562][ T6053] netlink: 40 bytes leftover after parsing attributes in process `syz.3.770'.
[   79.885339][ T6062] loop4: detected capacity change from 0 to 164
[   79.894230][ T6062] iso9660: Corrupted directory entry in block 4 of inode 1792
[   79.903398][ T6062] iso9660: Corrupted directory entry in block 4 of inode 1792
[   79.954775][ T6066] loop4: detected capacity change from 0 to 2048
[   80.712280][ T6081] loop2: detected capacity change from 0 to 2048
[   80.777299][ T6089] loop3: detected capacity change from 0 to 2048
[   80.900817][ T6097] loop2: detected capacity change from 0 to 2048
[   81.010447][ T6099] loop4: detected capacity change from 0 to 128
[   81.017285][   T29] kauditd_printk_skb: 50 callbacks suppressed
[   81.017301][   T29] audit: type=1326 audit(1743256351.016:3940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   81.046859][   T29] audit: type=1326 audit(1743256351.016:3941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   81.070268][   T29] audit: type=1326 audit(1743256351.016:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   81.093618][   T29] audit: type=1326 audit(1743256351.016:3943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   81.116997][   T29] audit: type=1326 audit(1743256351.016:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   81.140420][   T29] audit: type=1326 audit(1743256351.016:3945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa86724d1a3 code=0x7ffc0000
[   81.163571][   T29] audit: type=1326 audit(1743256351.016:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa86724bc1f code=0x7ffc0000
[   81.186754][   T29] audit: type=1326 audit(1743256351.016:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa86724d1f7 code=0x7ffc0000
[   81.210134][   T29] audit: type=1326 audit(1743256351.016:3948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa86724bad0 code=0x7ffc0000
[   81.233528][   T29] audit: type=1326 audit(1743256351.016:3949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6098 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa86724cd6b code=0x7ffc0000
[   81.356580][ T6111] netlink: 16 bytes leftover after parsing attributes in process `syz.1.791'.
[   81.422936][ T6116] loop1: detected capacity change from 0 to 2048
[   81.768645][   T37] Buffer I/O error on dev loop4, logical block 353, lost async page write
[   81.777216][   T37] Buffer I/O error on dev loop4, logical block 354, lost async page write
[   81.785840][   T37] Buffer I/O error on dev loop4, logical block 355, lost async page write
[   81.794448][   T37] Buffer I/O error on dev loop4, logical block 356, lost async page write
[   82.017405][ T6131] loop4: detected capacity change from 0 to 512
[   82.025057][ T6131] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.061133][ T6131] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.307378][ T6138] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   82.792801][ T6156] loop1: detected capacity change from 0 to 2048
[   82.830900][ T6162] loop2: detected capacity change from 0 to 512
[   82.894878][ T6162] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.947281][ T6162] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.219639][ T6175] netlink: 40 bytes leftover after parsing attributes in process `syz.3.812'.
[   83.907945][ T6206] netlink: 48 bytes leftover after parsing attributes in process `syz.4.823'.
[   83.916999][ T6206] netlink: 20 bytes leftover after parsing attributes in process `syz.4.823'.
[   83.944813][ T6207] loop0: detected capacity change from 0 to 512
[   83.952653][ T6207] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.063110][ T6207] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.127669][ T6213] loop3: detected capacity change from 0 to 2048
[   84.775603][ T6227] loop1: detected capacity change from 0 to 2048
[   85.373773][ T6248] FAULT_INJECTION: forcing a failure.
[   85.373773][ T6248] name failslab, interval 1, probability 0, space 0, times 0
[   85.386483][ T6248] CPU: 0 UID: 0 PID: 6248 Comm: syz.3.837 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   85.386515][ T6248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   85.386530][ T6248] Call Trace:
[   85.386550][ T6248]  <TASK>
[   85.386559][ T6248]  dump_stack_lvl+0xf6/0x150
[   85.386587][ T6248]  dump_stack+0x15/0x1a
[   85.386606][ T6248]  should_fail_ex+0x261/0x270
[   85.386667][ T6248]  should_failslab+0x8f/0xb0
[   85.386692][ T6248]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   85.386726][ T6248]  ? __alloc_skb+0x10d/0x320
[   85.386798][ T6248]  __alloc_skb+0x10d/0x320
[   85.386824][ T6248]  ? audit_log_start+0x37f/0x6e0
[   85.386843][ T6248]  audit_log_start+0x39a/0x6e0
[   85.386866][ T6248]  ? sysvec_reschedule_ipi+0x21/0x110
[   85.386899][ T6248]  audit_seccomp+0x4b/0x130
[   85.386961][ T6248]  __seccomp_filter+0x694/0x10e0
[   85.386987][ T6248]  ? __perf_event_task_sched_out+0x13c/0xf00
[   85.387074][ T6248]  ? switch_ldt+0x7f/0x140
[   85.387103][ T6248]  ? _raw_spin_unlock+0x26/0x50
[   85.387133][ T6248]  __secure_computing+0x7e/0x160
[   85.387274][ T6248]  syscall_trace_enter+0xcf/0x1f0
[   85.387309][ T6248]  do_syscall_64+0xaa/0x1c0
[   85.387345][ T6248]  ? clear_bhb_loop+0x25/0x80
[   85.387371][ T6248]  ? clear_bhb_loop+0x25/0x80
[   85.387453][ T6248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.387479][ T6248] RIP: 0033:0x7fe2e6b6d169
[   85.387497][ T6248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.387529][ T6248] RSP: 002b:00007fe2e51d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000081
[   85.387548][ T6248] RAX: ffffffffffffffda RBX: 00007fe2e6d85fa0 RCX: 00007fe2e6b6d169
[   85.387569][ T6248] RDX: 0000000000000000 RSI: 0000000000000021 RDI: 0000000000000000
[   85.387583][ T6248] RBP: 00007fe2e51d7090 R08: 0000000000000000 R09: 0000000000000000
[   85.387597][ T6248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.387612][ T6248] R13: 0000000000000000 R14: 00007fe2e6d85fa0 R15: 00007ffd575d2f38
[   85.387633][ T6248]  </TASK>
[   85.686650][ T6254] loop4: detected capacity change from 0 to 2048
[   85.812622][ T6269] loop4: detected capacity change from 0 to 256
[   85.825066][ T6269] vfat: Unknown parameter '0000000000000000000418446744073709551615ÿÿÿÿ00000000000000000007ÿÿÿÿÿÿÿÿ'
[   85.856412][ T6272] loop2: detected capacity change from 0 to 2048
[   85.986305][ T6282] loop0: detected capacity change from 0 to 1024
[   86.025972][ T6282] EXT4-fs: Ignoring removed nobh option
[   86.031713][ T6282] EXT4-fs: Ignoring removed bh option
[   86.110281][   T29] kauditd_printk_skb: 201 callbacks suppressed
[   86.110308][   T29] audit: type=1400 audit(1743256356.116:4149): avc:  denied  { create } for  pid=6281 comm="syz.0.850" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[   86.294079][ T6295] loop3: detected capacity change from 0 to 164
[   86.326769][ T6295] iso9660: Corrupted directory entry in block 4 of inode 1792
[   86.339439][ T6295] iso9660: Corrupted directory entry in block 4 of inode 1792
[   86.454717][ T6300] loop4: detected capacity change from 0 to 512
[   86.463084][ T6300] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.552542][ T6300] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.626903][ T6299] loop3: detected capacity change from 0 to 2048
[   86.813766][   T29] audit: type=1400 audit(1743256356.816:4150): avc:  denied  { read } for  pid=6307 comm="syz.1.857" name="mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   86.836965][   T29] audit: type=1400 audit(1743256356.816:4151): avc:  denied  { open } for  pid=6307 comm="syz.1.857" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   86.860397][   T29] audit: type=1400 audit(1743256356.816:4152): avc:  denied  { ioctl } for  pid=6307 comm="syz.1.857" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   86.887158][   T29] audit: type=1400 audit(1743256356.886:4153): avc:  denied  { write } for  pid=6305 comm="syz.3.856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.891766][ T6306] hub 4-0:1.0: USB hub found
[   86.907587][   T29] audit: type=1400 audit(1743256356.886:4154): avc:  denied  { nlmsg_write } for  pid=6305 comm="syz.3.856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.932683][ T6306] hub 4-0:1.0: 8 ports detected
[   86.958036][ T6312] loop1: detected capacity change from 0 to 2048
[   86.968396][   T29] audit: type=1400 audit(1743256356.976:4155): avc:  denied  { read } for  pid=6313 comm="syz.2.860" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   86.992202][   T29] audit: type=1400 audit(1743256356.976:4156): avc:  denied  { open } for  pid=6313 comm="syz.2.860" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   87.030023][   T29] audit: type=1400 audit(1743256357.006:4157): avc:  denied  { ioctl } for  pid=6313 comm="syz.2.860" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   87.031359][ T6317] loop3: detected capacity change from 0 to 2048
[   87.055228][   T29] audit: type=1326 audit(1743256357.016:4158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.1.859" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72f13dd169 code=0x0
[   87.182461][ T6330] loop3: detected capacity change from 0 to 2048
[   87.300789][ T6371] netlink: 4 bytes leftover after parsing attributes in process `syz.1.869'.
[   87.313779][ T6349] loop3: detected capacity change from 0 to 128
[   87.386603][ T6374] bio_check_eod: 43 callbacks suppressed
[   87.386618][ T6374] syz.3.870: attempt to access beyond end of device
[   87.386618][ T6374] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[   87.407109][ T6374] syz.3.870: attempt to access beyond end of device
[   87.407109][ T6374] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   87.422543][ T6374] syz.3.870: attempt to access beyond end of device
[   87.422543][ T6374] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   87.436361][ T6374] syz.3.870: attempt to access beyond end of device
[   87.436361][ T6374] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   87.452292][ T6374] syz.3.870: attempt to access beyond end of device
[   87.452292][ T6374] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   87.469342][ T6374] syz.3.870: attempt to access beyond end of device
[   87.469342][ T6374] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   87.483037][ T6374] syz.3.870: attempt to access beyond end of device
[   87.483037][ T6374] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[   87.496696][ T6374] syz.3.870: attempt to access beyond end of device
[   87.496696][ T6374] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[   87.510327][ T6374] syz.3.870: attempt to access beyond end of device
[   87.510327][ T6374] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[   87.524183][ T6374] syz.3.870: attempt to access beyond end of device
[   87.524183][ T6374] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[   88.064474][ T6403] 9pnet_fd: Insufficient options for proto=fd
[   88.114137][   T12] buffer_io_error: 3 callbacks suppressed
[   88.114155][   T12] Buffer I/O error on dev loop3, logical block 353, lost async page write
[   88.129625][ T6406] loop1: detected capacity change from 0 to 2048
[   88.139393][   T12] Buffer I/O error on dev loop3, logical block 354, lost async page write
[   88.149122][   T12] Buffer I/O error on dev loop3, logical block 355, lost async page write
[   88.162759][   T12] Buffer I/O error on dev loop3, logical block 356, lost async page write
[   88.181871][   T12] Buffer I/O error on dev loop3, logical block 357, lost async page write
[   88.202234][   T12] Buffer I/O error on dev loop3, logical block 358, lost async page write
[   88.228473][   T12] Buffer I/O error on dev loop3, logical block 359, lost async page write
[   88.319561][ T6427] loop1: detected capacity change from 0 to 2048
[   88.455280][ T6448] loop3: detected capacity change from 0 to 2048
[   88.645846][ T6465] loop1: detected capacity change from 0 to 1024
[   88.670795][ T6465] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a816c028, mo2=0103]
[   88.679885][ T6465] System zones: 1-12
[   88.926047][ T6494] loop2: detected capacity change from 0 to 2048
[   89.167937][ T6508] IPVS: Error connecting to the multicast addr
[   89.484687][ T6517] loop4: detected capacity change from 0 to 512
[   89.495379][ T6517] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   89.524461][ T6521] FAULT_INJECTION: forcing a failure.
[   89.524461][ T6521] name failslab, interval 1, probability 0, space 0, times 0
[   89.537311][ T6521] CPU: 0 UID: 0 PID: 6521 Comm: syz.3.902 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   89.537374][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   89.537388][ T6521] Call Trace:
[   89.537397][ T6521]  <TASK>
[   89.537406][ T6521]  dump_stack_lvl+0xf6/0x150
[   89.537550][ T6521]  dump_stack+0x15/0x1a
[   89.537565][ T6521]  should_fail_ex+0x261/0x270
[   89.537601][ T6521]  should_failslab+0x8f/0xb0
[   89.537621][ T6521]  kmem_cache_alloc_noprof+0x59/0x340
[   89.537726][ T6521]  ? getname_flags+0x81/0x3b0
[   89.537757][ T6521]  getname_flags+0x81/0x3b0
[   89.537780][ T6521]  path_getxattrat+0x12c/0x2a0
[   89.537818][ T6521]  __x64_sys_lgetxattr+0x5f/0x70
[   89.537901][ T6521]  x64_sys_call+0x17c2/0x2e10
[   89.537926][ T6521]  do_syscall_64+0xc9/0x1c0
[   89.537966][ T6521]  ? clear_bhb_loop+0x25/0x80
[   89.537992][ T6521]  ? clear_bhb_loop+0x25/0x80
[   89.538091][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.538109][ T6521] RIP: 0033:0x7fe2e6b6d169
[   89.538125][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.538146][ T6521] RSP: 002b:00007fe2e51d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c0
[   89.538299][ T6521] RAX: ffffffffffffffda RBX: 00007fe2e6d85fa0 RCX: 00007fe2e6b6d169
[   89.538311][ T6521] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000180
[   89.538321][ T6521] RBP: 00007fe2e51d7090 R08: 0000000000000000 R09: 0000000000000000
[   89.538334][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.538347][ T6521] R13: 0000000000000000 R14: 00007fe2e6d85fa0 R15: 00007ffd575d2f38
[   89.538415][ T6521]  </TASK>
[   89.719669][ T6517] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.752970][ T6525] loop1: detected capacity change from 0 to 512
[   89.767122][ T6525] EXT4-fs: Ignoring removed nobh option
[   89.902358][ T6525] EXT4-fs error (device loop1): ext4_do_update_inode:5194: inode #16: comm syz.1.901: corrupted inode contents
[   89.914642][ T6525] EXT4-fs (loop1): Remounting filesystem read-only
[   89.924778][ T6525] EXT4-fs (loop1): 1 truncate cleaned up
[   89.931080][ T6525] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.965970][   T31] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   89.976715][   T31] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   89.989369][   T31] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   90.067629][ T6544] loop3: detected capacity change from 0 to 2048
[   90.077898][ T6543] loop1: detected capacity change from 0 to 2048
[   90.093226][ T6541] loop2: detected capacity change from 0 to 164
[   90.112990][ T6541] iso9660: Corrupted directory entry in block 4 of inode 1792
[   90.135504][ T6541] iso9660: Corrupted directory entry in block 4 of inode 1792
[   90.223999][ T6558] loop1: detected capacity change from 0 to 2048
[   90.390561][ T6587] FAULT_INJECTION: forcing a failure.
[   90.390561][ T6587] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.403841][ T6587] CPU: 1 UID: 0 PID: 6587 Comm: syz.1.918 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[   90.403900][ T6587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   90.403913][ T6587] Call Trace:
[   90.403920][ T6587]  <TASK>
[   90.403927][ T6587]  dump_stack_lvl+0xf6/0x150
[   90.403952][ T6587]  dump_stack+0x15/0x1a
[   90.403966][ T6587]  should_fail_ex+0x261/0x270
[   90.404062][ T6587]  should_fail+0xb/0x10
[   90.404144][ T6587]  should_fail_usercopy+0x1a/0x20
[   90.404242][ T6587]  _copy_to_user+0x20/0xa0
[   90.404265][ T6587]  simple_read_from_buffer+0xb2/0x130
[   90.404324][ T6587]  proc_fail_nth_read+0x103/0x140
[   90.404388][ T6587]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.404480][ T6587]  vfs_read+0x1b2/0x710
[   90.404511][ T6587]  ? __rcu_read_unlock+0x4e/0x70
[   90.404533][ T6587]  ? __fget_files+0x186/0x1c0
[   90.404560][ T6587]  ksys_read+0xeb/0x1b0
[   90.404612][ T6587]  __x64_sys_read+0x42/0x50
[   90.404685][ T6587]  x64_sys_call+0x2a3b/0x2e10
[   90.404710][ T6587]  do_syscall_64+0xc9/0x1c0
[   90.404743][ T6587]  ? clear_bhb_loop+0x25/0x80
[   90.404764][ T6587]  ? clear_bhb_loop+0x25/0x80
[   90.404857][ T6587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.404957][ T6587] RIP: 0033:0x7f72f13dbb7c
[   90.404975][ T6587] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   90.404995][ T6587] RSP: 002b:00007f72efa47030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   90.405015][ T6587] RAX: ffffffffffffffda RBX: 00007f72f15f5fa0 RCX: 00007f72f13dbb7c
[   90.405025][ T6587] RDX: 000000000000000f RSI: 00007f72efa470a0 RDI: 0000000000000004
[   90.405036][ T6587] RBP: 00007f72efa47090 R08: 0000000000000000 R09: 0000000000000000
[   90.405048][ T6587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.405061][ T6587] R13: 0000000000000000 R14: 00007f72f15f5fa0 R15: 00007fff716bdc08
[   90.405081][ T6587]  </TASK>
[   90.828159][ T6595] loop1: detected capacity change from 0 to 512
[   90.836686][ T6595] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.035887][ T6604] loop0: detected capacity change from 0 to 164
[   91.045169][ T6595] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.068019][ T6604] iso9660: Corrupted directory entry in block 4 of inode 1792
[   91.077446][ T6604] iso9660: Corrupted directory entry in block 4 of inode 1792
[   91.132620][   T29] kauditd_printk_skb: 346 callbacks suppressed
[   91.132637][   T29] audit: type=1326 audit(1743256361.136:4499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="syz.0.925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.166303][   T29] audit: type=1326 audit(1743256361.136:4500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="syz.0.925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.189746][   T29] audit: type=1326 audit(1743256361.136:4501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="syz.0.925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.213351][   T29] audit: type=1326 audit(1743256361.136:4502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="syz.0.925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.237461][   T29] audit: type=1326 audit(1743256361.136:4503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="syz.0.925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.261061][   T29] audit: type=1326 audit(1743256361.136:4504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.284074][   T29] audit: type=1326 audit(1743256361.136:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.306976][   T29] audit: type=1326 audit(1743256361.136:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.329935][   T29] audit: type=1326 audit(1743256361.136:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.352849][   T29] audit: type=1326 audit(1743256361.166:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6610 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x7ffc0000
[   91.563175][ T6658] random: crng reseeded on system resumption
[   91.765068][ T6667] loop1: detected capacity change from 0 to 2048
[   91.920089][ T6671] SELinux: syz.3.935 (6671) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   91.962975][ T6673] loop0: detected capacity change from 0 to 164
[   92.002115][ T6673] iso9660: Corrupted directory entry in block 4 of inode 1792
[   92.013728][ T6673] iso9660: Corrupted directory entry in block 4 of inode 1792
[   92.067807][ T6679] loop3: detected capacity change from 0 to 2048
[   92.083426][ T6679] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.474512][ T6691] loop0: detected capacity change from 0 to 512
[   92.481849][ T6691] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   92.501330][ T6691] ext4 filesystem being mounted at /186/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.635962][ T6695] loop4: detected capacity change from 0 to 128
[   93.212415][ T6755] loop2: detected capacity change from 0 to 1024
[   93.225264][ T6755] netlink: 40 bytes leftover after parsing attributes in process `syz.2.952'.
[   93.287391][ T6762] loop2: detected capacity change from 0 to 128
[   93.356674][ T6784] bio_check_eod: 23 callbacks suppressed
[   93.356767][ T6784] syz.2.953: attempt to access beyond end of device
[   93.356767][ T6784] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[   93.376111][ T6784] syz.2.953: attempt to access beyond end of device
[   93.376111][ T6784] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   93.389565][ T6784] syz.2.953: attempt to access beyond end of device
[   93.389565][ T6784] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   93.403000][ T6784] syz.2.953: attempt to access beyond end of device
[   93.403000][ T6784] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   93.417630][ T6784] syz.2.953: attempt to access beyond end of device
[   93.417630][ T6784] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   93.439759][ T6784] syz.2.953: attempt to access beyond end of device
[   93.439759][ T6784] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   93.442591][ T6787] loop3: detected capacity change from 0 to 2048
[   93.455698][ T6784] syz.2.953: attempt to access beyond end of device
[   93.455698][ T6784] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[   93.473585][ T6784] syz.2.953: attempt to access beyond end of device
[   93.473585][ T6784] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[   93.487033][ T6784] syz.2.953: attempt to access beyond end of device
[   93.487033][ T6784] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[   93.500493][ T6784] syz.2.953: attempt to access beyond end of device
[   93.500493][ T6784] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[   93.515508][ T6784] Buffer I/O error on dev loop2, logical block 353, lost async page write
[   93.524337][ T6784] Buffer I/O error on dev loop2, logical block 354, lost async page write
[   93.532926][ T6784] Buffer I/O error on dev loop2, logical block 355, lost async page write
[   93.542046][ T6784] Buffer I/O error on dev loop2, logical block 356, lost async page write
[   93.550661][ T6784] Buffer I/O error on dev loop2, logical block 357, lost async page write
[   93.559565][ T6784] Buffer I/O error on dev loop2, logical block 358, lost async page write
[   93.569449][ T6784] Buffer I/O error on dev loop2, logical block 359, lost async page write
[   93.685398][ T6792] loop1: detected capacity change from 0 to 2048
[   93.758297][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.985206][ T6809] loop4: detected capacity change from 0 to 512
[   93.993391][ T6809] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.081817][ T6809] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.545473][ T6855] loop0: detected capacity change from 0 to 512
[   94.552702][ T6855] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.450085][ T6855] ext4 filesystem being mounted at /188/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.706549][ T6927] loop2: detected capacity change from 0 to 128
[   95.829733][ T6954] loop0: detected capacity change from 0 to 2048
[   96.021444][ T6962] xt_hashlimit: max too large, truncated to 1048576
[   96.101741][ T6960] loop1: detected capacity change from 0 to 164
[   96.111329][ T6960] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   96.122735][ T6960] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   96.502322][ T6974] loop3: detected capacity change from 0 to 164
[   96.526231][   T12] Buffer I/O error on dev loop2, logical block 353, lost async page write
[   96.539519][ T6974] iso9660: Corrupted directory entry in block 4 of inode 1792
[   96.547508][   T12] Buffer I/O error on dev loop2, logical block 354, lost async page write
[   96.562496][   T12] Buffer I/O error on dev loop2, logical block 355, lost async page write
[   96.573070][ T6974] iso9660: Corrupted directory entry in block 4 of inode 1792
[   96.681926][ T6987] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[   96.698141][ T6991] random: crng reseeded on system resumption
[   96.725901][ T6995] loop3: detected capacity change from 0 to 2048
[   96.740573][ T6993] netlink: 96 bytes leftover after parsing attributes in process `syz.2.986'.
[   96.765854][ T6993] netlink: 16 bytes leftover after parsing attributes in process `syz.2.986'.
[   96.777485][   T29] kauditd_printk_skb: 189 callbacks suppressed
[   96.777504][   T29] audit: type=1326 audit(1743256366.786:4698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6990 comm="syz.0.985" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f178521d169 code=0x0
[   96.885585][ T7011] loop0: detected capacity change from 0 to 2048
[   96.914867][ T7010] loop2: detected capacity change from 0 to 2048
[   97.349541][ T7050] loop2: detected capacity change from 0 to 164
[   97.375118][ T7050] iso9660: Corrupted directory entry in block 4 of inode 1792
[   97.387632][ T7050] iso9660: Corrupted directory entry in block 4 of inode 1792
[   97.659378][ T7056] loop2: detected capacity change from 0 to 512
[   97.666965][ T7056] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.732866][ T7056] EXT4-fs mount: 69 callbacks suppressed
[   97.732881][ T7056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.751227][ T7056] ext4 filesystem being mounted at /209/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.033914][   T29] audit: type=1326 audit(1743256368.036:4699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.057453][   T29] audit: type=1326 audit(1743256368.036:4700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.065097][ T7092] loop4: detected capacity change from 0 to 128
[   98.080891][   T29] audit: type=1326 audit(1743256368.066:4701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.110590][   T29] audit: type=1326 audit(1743256368.066:4702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.134076][   T29] audit: type=1326 audit(1743256368.066:4703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.158206][   T29] audit: type=1326 audit(1743256368.066:4704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa86724d169 code=0x7ffc0000
[   98.181656][   T29] audit: type=1326 audit(1743256368.066:4705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa86724d1a3 code=0x7ffc0000
[   98.204920][   T29] audit: type=1326 audit(1743256368.066:4706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa86724bc1f code=0x7ffc0000
[   98.228244][   T29] audit: type=1326 audit(1743256368.066:4707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7081 comm="syz.4.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa86724d1f7 code=0x7ffc0000
[   98.343684][ T7115] loop0: detected capacity change from 0 to 2048
[   98.370751][ T7115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.825884][   T51] bio_check_eod: 62 callbacks suppressed
[   98.825898][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.825898][   T51] loop4: rw=1, sector=153, nr_sectors = 8 limit=128
[   98.846436][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.846436][   T51] loop4: rw=1, sector=169, nr_sectors = 8 limit=128
[   98.861593][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.861593][   T51] loop4: rw=1, sector=185, nr_sectors = 8 limit=128
[   98.877739][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.877739][   T51] loop4: rw=1, sector=201, nr_sectors = 8 limit=128
[   98.893250][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.893250][   T51] loop4: rw=1, sector=217, nr_sectors = 8 limit=128
[   98.906807][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.906807][   T51] loop4: rw=1, sector=233, nr_sectors = 8 limit=128
[   98.921817][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.921817][   T51] loop4: rw=1, sector=249, nr_sectors = 8 limit=128
[   98.935703][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.935703][   T51] loop4: rw=1, sector=265, nr_sectors = 8 limit=128
[   98.949646][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.949646][   T51] loop4: rw=1, sector=281, nr_sectors = 8 limit=128
[   98.963142][   T51] kworker/u8:3: attempt to access beyond end of device
[   98.963142][   T51] loop4: rw=1, sector=297, nr_sectors = 8 limit=128
[   98.978206][   T51] buffer_io_error: 4 callbacks suppressed
[   98.978223][   T51] Buffer I/O error on dev loop4, logical block 353, lost async page write
[   98.992864][   T51] Buffer I/O error on dev loop4, logical block 354, lost async page write
[   99.001736][   T51] Buffer I/O error on dev loop4, logical block 355, lost async page write
[   99.011752][   T51] Buffer I/O error on dev loop4, logical block 356, lost async page write
[   99.020650][   T51] Buffer I/O error on dev loop4, logical block 357, lost async page write
[   99.029393][   T51] Buffer I/O error on dev loop4, logical block 358, lost async page write
[   99.038083][   T51] Buffer I/O error on dev loop4, logical block 359, lost async page write
[   99.081589][ T7135] loop4: detected capacity change from 0 to 164
[   99.115900][ T7135] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.129043][ T7135] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.169937][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.377567][ T7164] loop1: detected capacity change from 0 to 512
[   99.401166][ T7164] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.413950][ T7164] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.440096][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.491016][ T7173] loop1: detected capacity change from 0 to 164
[   99.511565][ T7173] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.538836][ T7173] iso9660: Corrupted directory entry in block 4 of inode 1792
[  100.111103][ T7187] loop3: detected capacity change from 0 to 2048
[  100.142231][ T7187] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.311693][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.500369][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.597503][ T7234] loop2: detected capacity change from 0 to 2048
[  100.632152][ T7234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.932044][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.965049][ T7262] loop0: detected capacity change from 0 to 2048
[  101.060755][ T7269] loop0: detected capacity change from 0 to 2048
[  101.069876][ T7269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.153104][ T7273] loop2: detected capacity change from 0 to 512
[  101.169281][ T7273] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  101.242804][ T7273] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.255420][ T7273] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.715295][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.174832][ T7309] loop3: detected capacity change from 0 to 512
[  102.183758][ T7309] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  102.223252][ T7309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.235902][ T7309] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.299680][ T7362] loop4: detected capacity change from 0 to 2048
[  103.310124][ T7362] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.359666][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.390592][ T7370] loop4: detected capacity change from 0 to 2048
[  103.400620][ T7370] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.549126][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.937522][ T7403] loop0: detected capacity change from 0 to 512
[  103.944286][ T7403] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.000059][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.001126][ T7403] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.022016][ T7403] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.077107][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.610981][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.654330][ T7438] loop3: detected capacity change from 0 to 2048
[  104.681782][ T7438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.704485][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.963339][ T7454] loop0: detected capacity change from 0 to 2048
[  104.980098][ T7454] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.234009][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.274466][ T7495] loop0: detected capacity change from 0 to 2048
[  105.345353][ T7502] loop4: detected capacity change from 0 to 2048
[  105.348465][ T7506] loop0: detected capacity change from 0 to 512
[  105.390889][ T7506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.405326][ T7502] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.420203][ T7506] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.462640][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.474969][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.602405][ T7532] loop0: detected capacity change from 0 to 2048
[  105.620659][ T7532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.837304][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.873535][ T7544] loop0: detected capacity change from 0 to 2048
[  105.890574][ T7544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.002884][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  106.002897][   T29] audit: type=1326 audit(1743256376.006:4770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.034288][   T29] audit: type=1326 audit(1743256376.036:4771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.058836][ T7548] loop2: detected capacity change from 0 to 128
[  106.153207][   T29] audit: type=1326 audit(1743256376.156:4772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.176737][   T29] audit: type=1326 audit(1743256376.156:4773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.200198][   T29] audit: type=1326 audit(1743256376.156:4774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.223740][   T29] audit: type=1326 audit(1743256376.166:4775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.247195][   T29] audit: type=1326 audit(1743256376.166:4776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.270636][   T29] audit: type=1326 audit(1743256376.166:4777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.294172][   T29] audit: type=1326 audit(1743256376.166:4778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.294219][ T7575] loop1: detected capacity change from 0 to 512
[  106.317556][   T29] audit: type=1326 audit(1743256376.166:4779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190976d169 code=0x7ffc0000
[  106.348033][ T7575] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.368950][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.369191][ T7575] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.390492][ T7575] ext4 filesystem being mounted at /232/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.444201][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.483552][ T7591] loop4: detected capacity change from 0 to 512
[  106.526069][ T7591] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.540072][ T7591] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.554591][ T7600] loop1: detected capacity change from 0 to 164
[  106.572746][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.596158][ T7600] iso9660: Corrupted directory entry in block 4 of inode 1792
[  106.609041][ T7603] loop3: detected capacity change from 0 to 2048
[  106.623652][ T7600] iso9660: Corrupted directory entry in block 4 of inode 1792
[  106.632834][ T7603] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.845552][ T7644] loop2: detected capacity change from 0 to 2048
[  106.880768][ T7644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.895806][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.237588][ T7656] loop3: detected capacity change from 0 to 512
[  107.245392][ T7656] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.260392][ T7656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.273098][ T7656] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.549020][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.620497][ T7688] loop1: detected capacity change from 0 to 512
[  107.630076][ T7688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.650096][ T7688] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.677236][ T7692] loop2: detected capacity change from 0 to 164
[  107.694701][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.717955][ T7692] iso9660: Corrupted directory entry in block 4 of inode 1792
[  107.724813][ T7696] loop1: detected capacity change from 0 to 2048
[  107.728729][ T7692] iso9660: Corrupted directory entry in block 4 of inode 1792
[  107.751250][ T7696] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.800642][ T7702] loop2: detected capacity change from 0 to 2048
[  107.918856][ T7711] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1105'.
[  107.922826][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.104585][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.184259][ T7745] loop1: detected capacity change from 0 to 2048
[  108.200336][ T7745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.481385][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.504184][ T7761] loop4: detected capacity change from 0 to 164
[  108.529605][ T7761] iso9660: Corrupted directory entry in block 4 of inode 1792
[  108.543262][ T7761] iso9660: Corrupted directory entry in block 4 of inode 1792
[  108.697947][ T7771] loop4: detected capacity change from 0 to 2048
[  108.722802][ T7777] loop2: detected capacity change from 0 to 2048
[  108.742491][ T7771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.786641][ T7781] loop1: detected capacity change from 0 to 512
[  108.816435][ T7781] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.848800][ T7777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.937864][ T7781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.950496][ T7781] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.113260][ T7810] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1120'.
[  109.134212][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.279854][ T7827] loop4: detected capacity change from 0 to 2048
[  109.300949][ T7827] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.325424][ T7834] loop0: detected capacity change from 0 to 164
[  109.340333][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.357612][ T7834] iso9660: Corrupted directory entry in block 4 of inode 1792
[  109.369012][ T7834] iso9660: Corrupted directory entry in block 4 of inode 1792
[  109.528951][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.558737][ T7855] loop4: detected capacity change from 0 to 2048
[  109.592343][ T7859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1133'.
[  109.622126][ T7859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1133'.
[  109.632303][ T7859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1133'.
[  109.641821][ T7859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1133'.
[  109.689160][ T7861] loop4: detected capacity change from 0 to 512
[  109.710465][ T7861] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.723350][ T7861] ext4 filesystem being mounted at /204/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.748077][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.921478][ T7877] loop4: detected capacity change from 0 to 2048
[  109.951329][ T7877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.996482][ T7881] loop3: detected capacity change from 0 to 164
[  110.024829][ T7881] iso9660: Corrupted directory entry in block 4 of inode 1792
[  110.037918][ T7881] iso9660: Corrupted directory entry in block 4 of inode 1792
[  110.071494][ T7885] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1140'.
[  110.131043][ T7889] loop3: detected capacity change from 0 to 2048
[  110.166822][ T7893] loop3: detected capacity change from 0 to 2048
[  110.179909][ T7893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.229095][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.260954][ T7900] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1145'.
[  110.275071][ T7905] loop2: detected capacity change from 0 to 512
[  110.285505][ T7905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.298115][ T7905] ext4 filesystem being mounted at /229/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.339684][ T7910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1145'.
[  110.350707][ T7910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1145'.
[  110.376199][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.565715][ T7932] loop0: detected capacity change from 0 to 2048
[  110.641544][ T7932] ==================================================================
[  110.649659][ T7932] BUG: KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra
[  110.657614][ T7932] 
[  110.659949][ T7932] write to 0xffff888104492c9c of 4 bytes by task 7938 on cpu 1:
[  110.667593][ T7932]  page_cache_sync_ra+0x540/0x680
[  110.672646][ T7932]  filemap_get_pages+0x2ba/0x11b0
[  110.677689][ T7932]  filemap_splice_read+0x35a/0x930
[  110.682825][ T7932]  ext4_file_splice_read+0x8f/0xb0
[  110.687960][ T7932]  splice_direct_to_actor+0x26c/0x680
[  110.693387][ T7932]  do_splice_direct+0xd9/0x150
[  110.698186][ T7932]  do_sendfile+0x40a/0x690
[  110.702621][ T7932]  __x64_sys_sendfile64+0x113/0x160
[  110.707824][ T7932]  x64_sys_call+0xfc3/0x2e10
[  110.712415][ T7932]  do_syscall_64+0xc9/0x1c0
[  110.716933][ T7932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.722849][ T7932] 
[  110.725188][ T7932] read to 0xffff888104492c9c of 4 bytes by task 7932 on cpu 0:
[  110.732731][ T7932]  page_cache_sync_ra+0x59c/0x680
[  110.737762][ T7932]  filemap_get_pages+0x2ba/0x11b0
[  110.742804][ T7932]  filemap_splice_read+0x35a/0x930
[  110.747923][ T7932]  ext4_file_splice_read+0x8f/0xb0
[  110.753053][ T7932]  splice_direct_to_actor+0x26c/0x680
[  110.758448][ T7932]  do_splice_direct+0xd9/0x150
[  110.763234][ T7932]  do_sendfile+0x40a/0x690
[  110.767662][ T7932]  __x64_sys_sendfile64+0x113/0x160
[  110.772866][ T7932]  x64_sys_call+0xfc3/0x2e10
[  110.777462][ T7932]  do_syscall_64+0xc9/0x1c0
[  110.781974][ T7932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.787957][ T7932] 
[  110.790277][ T7932] value changed: 0x0000000f -> 0x00000010
[  110.795993][ T7932] 
[  110.798326][ T7932] Reported by Kernel Concurrency Sanitizer on:
[  110.804473][ T7932] CPU: 0 UID: 0 PID: 7932 Comm: syz.0.1155 Not tainted 6.14.0-syzkaller-09584-g7d06015d936c #0 PREEMPT(voluntary) 
[  110.816540][ T7932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.826607][ T7932] ==================================================================
[  110.834994][ T7939] loop4: detected capacity change from 0 to 512
[  110.842682][ T7939] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.860157][ T7939] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff)