last executing test programs:

3.630139386s ago: executing program 4 (id=450):
r0 = socket$inet6(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000540)={[{@resgid}]}, 0x1, 0x55e, &(0x7f0000000ac0)="$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")
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @time={0x2, 0x8}, {}, {}, @raw32={[0x0, 0x0, 0x2]}}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x1}, {}, {}, @quote}], 0x38)
setsockopt$MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e23, 0x7fffffff, @empty, 0x7}, {0xa, 0x4e24, 0x3, @mcast1, 0x1}, 0x0, {[0xa1, 0x9, 0x0, 0x7, 0x837e, 0x2, 0x2, 0x600000]}}, 0x5c)
ioctl$SG_GET_REQUEST_TABLE(r2, 0x2275, &(0x7f00000018c0))
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x308, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [0x4000000], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x130, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x368)

3.446236487s ago: executing program 4 (id=455):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000880)={[{@errors_remount}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")

3.05170648s ago: executing program 2 (id=459):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='task_newtask\x00', r2, 0x0, 0x1}, 0x18)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = io_uring_setup(0x10d7, &(0x7f00000000c0)={0x0, 0xbfff, 0x1, 0x2, 0x1d})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x103)
creat(&(0x7f0000002440)='./file0\x00', 0x70)
creat(&(0x7f0000009740)='./file0\x00', 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, r7, 0xd1, '\x00', 0x0, r7, 0x5, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$NFT_BATCH(r7, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x86dd}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88e7}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2e}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x1d}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x809b}]}]}, @NFT_MSG_NEWFLOWTABLE={0x130, 0x16, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0xd8, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pim6reg\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth1_to_team\x00'}, {0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'netdevsim0\x00'}, {0x14, 0x1, 'xfrm0\x00'}, {0x14, 0x1, 'veth1_to_bridge\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_RULE_COMPAT={0x44, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x9000}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0xd6319082c4c369db}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}]}, @NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x234}}, 0x44801)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @remote}, 0x1, 0x3, 0x2, 0x1}}, 0x26)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'geneve1\x00'})

2.841226601s ago: executing program 4 (id=465):
r0 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0x4216, &(0x7f0000000000)=ANY=[], 0x2, 0x334, &(0x7f0000000900)="$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")
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r0], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r2, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {}, {}, @result={0xbf}}], 0x1c)
sync()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x50)
fallocate(r3, 0x0, 0x0, 0x20000)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
r5 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r5, @ANYBLOB="0000000000000000b7080000e40000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = mq_open(&(0x7f00000007c0)='\r\x00elinu\xef\xe3elinux\x00\x86\xf6\x92\n#*\xac\x02\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a|\x9en\xbd\xeb\x14\x7f\xb9\x83\xfe\nf\xc26\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]G\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8S\\\xec\xa31_\v\x8a\xf2\x18\xa6\xb1\xbb\x8b9\x1e\xff\xf8\xcdX\xf7h\b\xaf\x01\x84\xd4\x06Ml(Bw=\x13\xa1&\xd3\xec\xa9\x8ba\x86\x9d\xf4\x11\n\x89z\xa5\xac\xcbh\xc2\x1b\xeay\xbf\x06\x80\xff\xdf\x93\xef\x7f\xb1\xaf\xa0\xae', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x7, 0x1, 0x5, 0x9})
mq_getsetattr(r7, &(0x7f0000000300)={0x800, 0x0, 0x1}, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, @perf_bp={0x0, 0x8d5523e3b326dfeb}, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0xa49a4400, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x8400001b)
close_range(r4, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

2.249391715s ago: executing program 4 (id=470):
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x94}}, 0x20008841)
write$binfmt_misc(r0, &(0x7f0000000ac0)="432ec69fc762b57c65ac6e71a4cc3cd8f721ddc840411e988f50713a81b56ccdc064fb5ad24b214182e4b859e4ac2266c92fe8e4fc7f519c1cedd90b7b87e279628c1199272dd3f1fc3022c1d8bf9a86df96f22935e1e6188527fae76d245ae8d9436219c4bd15e452994e069bdb1438746fcf1617cb9f635241f34bbb92e8814ee800175a301adcf4ca9acec3977f9f7c7b094deb14e46de7232c8495c4f27e162811ff047378171ca783e2fe9c3205de8f75403edf8400", 0xb8)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet_sctp(0x2, 0x5, 0x84)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@grpid}, {@errors_remount}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'rr\x00', 0x4, 0x8, 0x7b}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

2.117685296s ago: executing program 2 (id=471):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x303600, 0x0)
fcntl$notify(r0, 0x402, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x6, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x101081, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
tkill(0x0, 0x12)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x45, 0x0, 0x1, 0xfffffffc}, {}, {0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0x5, 0x800000000003}, 0x100000, 0x5dd8, 0x5, 0x3, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f0000000080)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}}, 0x1e)
connect$pppoe(r6, &(0x7f00000001c0)={0x18, 0x0, {0x0, @remote, 'veth1_to_bond\x00'}}, 0x1e)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB="1200000002000000040000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000003de6e0f5f5c3f9d900edb78ebc9c33f7ead27037df3726679bac840257f3778e8b70303607474d5da7bdbe6eaf46c4fe17321e7378f3b63e61b23a2e11a43f0e5d7937386b0406c7bb4e083affe5025b0d618484b79d648b56145a938928fade821cb7dc280ffd0ac3b9a98740918ee5e9b35d4d9acea8a9043385e23087ca4f019fafa704981b1f7e45e7b777e6f9fdc1cfc0abcee8202e4b4ad709b2b0e6a68ae14e56c1b0549216dfdc17", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r7}, &(0x7f0000000040), &(0x7f0000000140)=r5}, 0x20)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001400)="acf1302bd8e09908c407277975a2ae95b61f8c154e3b64913731bfb7589a7751c1183f36461ad274cdf0dfcad2082b6eac9f7af4ed09a317712b722d1222cabf04d4bb00be6fe6e94902c20a363a298dd694cc4d08974b60f2004d01806c74bf3ed6967a21cb47519ce104de0db25cac6f0497c15bdc0357399f22466e02cfe93c7ef4d2becae4542d4399", &(0x7f0000001240)="1936f2cc56044a7ab726164647db7a55f32d4b1bfaff451e359a7a6a19b3f41b54ca4f7299f0882a7f998c251b5308fad32e802dfd8da87df3a96e6c60f9a609ccd45091c2f93328b96f58811d9b871717a8bc7736544d7f1b43b269a63711e3bd1dfcc773af8918bcaf6ddf693e1c644be237063132076e2f8a5885b7b1c6fe8c4065540d95d2b6a086c927c6cd6f25b7a5be528a", 0x4, r7, 0x4}, 0x38)
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x4}, @NFTA_QUEUE_NUM={0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)

1.004751073s ago: executing program 2 (id=474):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYRESOCT=r0, @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000580)=ANY=[@ANYRESDEC=r1, @ANYRES32=r2, @ANYRES16=r2], 0x0, 0x414, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x18, 0x1b, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000800000000000000100010018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000064810d000000000018100000", @ANYRES32=r0, @ANYBLOB="000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000576000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000bf91000000000000b702000000000000a100000084000000b7000000000000009500000000000000ff35e55e430964a685e5f25ad161701a253358d3"], &(0x7f0000000300)='syzkaller\x00', 0xfffffffa, 0xe7, &(0x7f0000000840)=""/231, 0x20900, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000500)={0x5, 0xc, 0x600000, 0x83b1}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000600)=[r0, r0, r0], &(0x7f0000000b80)=[{0x3, 0x1, 0xb, 0x5}, {0x1, 0x5, 0xc, 0xc}, {0x1, 0x3, 0x10, 0x1}, {0x4, 0x5, 0x2, 0x4}, {0x4, 0x5, 0x9, 0x4}, {0x2, 0x5, 0x9, 0x2}, {0x4, 0x5, 0xd}, {0x2, 0x2, 0x5, 0xb}, {0x2, 0x2, 0xd, 0x6}], 0x10, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='ext4_es_remove_extent\x00', r3}, 0x18)
sync_file_range(0xffffffffffffffff, 0x1000, 0x2, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000400)='net_dev_start_xmit\x00', r3, 0x0, 0x176}, 0x7)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
r6 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r6, 0x1, 0xf, &(0x7f00000002c0), 0x161)
sendmsg$inet(r6, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x10)
setsockopt$sock_attach_bpf(r6, 0x1, 0x31, &(0x7f0000000640)=r5, 0x4)
close(r6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='ext4_es_lookup_extent_enter\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff, 0x24, 0x7, @val=@uprobe_multi={&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x8, 0x0, 0x1}}, 0x40)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
fsmount(r5, 0x1, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000b40)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="8b3320000000000000001500000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900fcffffe60000000008001d8004000080"], 0x30}}, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

876.008974ms ago: executing program 4 (id=477):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)

789.726295ms ago: executing program 4 (id=482):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='task_newtask\x00', r2, 0x0, 0x1}, 0x18)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = io_uring_setup(0x10d7, &(0x7f00000000c0)={0x0, 0xbfff, 0x1, 0x2, 0x1d})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x103)
creat(&(0x7f0000002440)='./file0\x00', 0x70)
creat(&(0x7f0000009740)='./file0\x00', 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, r6, 0xd1, '\x00', 0x0, r6, 0x5, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x86dd}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88e7}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2e}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x1d}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x809b}]}]}, @NFT_MSG_NEWFLOWTABLE={0x130, 0x16, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0xd8, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pim6reg\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'macvlan1\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth1_to_team\x00'}, {0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'netdevsim0\x00'}, {0x14, 0x1, 'xfrm0\x00'}, {0x14, 0x1, 'veth1_to_bridge\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_RULE_COMPAT={0x44, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x9000}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0xd6319082c4c369db}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}]}, @NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x234}}, 0x44801)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @remote}, 0x1, 0x3, 0x2, 0x1}}, 0x26)

580.422156ms ago: executing program 3 (id=491):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0), 0x0, 0x9000)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x18)
lseek(r0, 0x5, 0x4)

559.628986ms ago: executing program 3 (id=492):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x1000000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$eJzs3UFrE1sYxvGnTW+TprTJhcuFe0E96EY3oY0fQIO0IAaU2hR1IUztREPGpMyESkRsNuLWD+Gq6M6doC7ddCNu3LsrguCmC3HETNImbVrTNklj+/9BmTd5z8OcttPyptDJ2o1n9/NZL5G1ShqMGA1KFa1L8V9VzUDtOFith9WoonOj3z6duH7z1pVUOj01Y8x0avZ80hgzfurNg0cvTr8rjc69Gn8d1mr89trX5OfVf1f/W/sxey/nmZxnCsWSscx8sViy5h3bLOS8fMKYa45tebbJFTzbbepnneLiYtlYhYWx6KJre56xCmWTt8umVDQlt2ysu1auYBKJhBmL6ngbamNNZmVmxkrt2PZDHd0Rum6k1ZOum6q0bmZWerAnAADQZ3af/4NZf+f5Pz0XHNua/18+l9qb/6VOzv8DPf2C9rlK06PfzP84Elw3ZUVrP7/NmP8BAAAAAAAAAAAAAAAAAAAAAPgTrPt+zPf9WP1Y/whLikiqPz7sfaI79vn9v3BI20WHNfzjXkRyni5lljLBMeinssrJka0JxfS9ej3UBPX05fTUhKmK662zXMsvL2VCCtfzdfFW+ZN/TwZ505z/S9HG8ycV0z+tz59smR/W2TMN+YRi+nBHRTlaqF7Xm/nHk8Zcuprekh+prgMAAAAA4ChImA3bXr9X+9UFEW3vB/k9/H1gy+vrIf3fzi0qAQAAAADAgXnlh3nLcWx3H0VY0gHieyj8ga6fonNFSH2xjS3FRUl9sI1eFRFJwTNmP/EvG/G2Un4ba4YkHfTzivTw0jrs30wAAAAAOm1z6N9D6OOTLu4IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDjp937gdXXb2vVG7vEG04X0vuNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjp2fAQAA//91iCZA")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="010000000700000061220000020000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\x00', @ANYRES32=r3], 0x50)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r7 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r8 = openat$binfmt(0xffffffffffffff9c, r7, 0x42, 0x1ff)
close(r8)
execveat$binfmt(0xffffffffffffff9c, r7, 0x0, &(0x7f0000001980), 0x100)
brk(0xde0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r9, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r1, 0xffffffffffffffff, 0x10000000000000)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, 0x0)

478.163187ms ago: executing program 3 (id=494):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
process_vm_readv(0x0, &(0x7f0000003e00), 0x0, &(0x7f00000042c0), 0x0, 0x0)

467.309757ms ago: executing program 1 (id=495):
r0 = socket(0x400000000010, 0x3, 0x0)
write(r0, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c040007031a00", 0x22)

418.371987ms ago: executing program 1 (id=497):
io_setup(0x8, &(0x7f0000000800)=<r0=>0x0)
io_destroy(r0)

390.118937ms ago: executing program 3 (id=498):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b00000000000000000000280080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xc, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = open(&(0x7f0000000180)='./file0\x00', 0x480, 0x4a)
write$UHID_CREATE(r3, &(0x7f0000000480)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000380)=""/249, 0xf9, 0x97, 0x80000000, 0x9, 0x9, 0x10}}, 0x120)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
timer_create(0x3, 0x0, &(0x7f0000044000)=<r4=>0x0)
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, 0x0, 0x20048840)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=<r6=>0xffffffffffffffff], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[], 0x84}}, 0x20000000)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001500)=ANY=[@ANYBLOB="990a772e328d1483d301612ccf32f4c7ec0d818d10b64b2fff249f58bb1fd0191209ce31f7663fe92d6d287c4201e9f09cfae62a188a7dac211eb09669ee2c3ad0b4c7a21d540afdfa8fe68e3b9021468b3b1a8156a4de205a5437059b1988f4c3fc05be146307758365a8d4564df53f8855de6a9e70401469bdbf00a7ea251930c5a834525a6202d893f97632482cb06d1574af0627c76fb7edd7fb04d26654690c53fedef269032bc4614c3a71181732ffe80a9cbc1c8190682f3f0a557f94a566244a5040c9b452a7b24943dff21b3c351c5921bdde80ecf801e6a6f60f5e40c6c081", @ANYRESHEX, @ANYRESDEC=r2, @ANYRES16=r6, @ANYRES32=r2, @ANYRES64=r3, @ANYRESDEC=r2, @ANYRESHEX=r5, @ANYRESHEX=r1], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
quotactl$Q_SETQUOTA(0xffffffff80000900, &(0x7f0000000c80)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
timer_delete(r4)
socket$tipc(0x1e, 0x2, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

389.279287ms ago: executing program 0 (id=499):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x12}], 0x1, 0x24)

324.555838ms ago: executing program 1 (id=500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
process_vm_readv(0x0, &(0x7f0000003e00), 0x0, &(0x7f00000042c0), 0x0, 0x0)

316.156118ms ago: executing program 0 (id=501):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r0}, 0x18)
msgsnd(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="7da8ab7cc6c17b12aabbf7833ac6bb2f8051de2f1f99bc21203f0b1e420e94a44bce568b06089912d9979787aa5b0bd78f4fa14fd0454cd6efc1e4d706a85d3fa4490b000035b749024ff1e6be6f3326394093b3203d"], 0x8, 0x800)

268.899288ms ago: executing program 1 (id=502):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0), 0x0, 0x9000)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x18)
lseek(r0, 0x5, 0x4)

268.703658ms ago: executing program 1 (id=503):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x1000000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="010000000700000061220000020000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\x00', @ANYRES32=r2], 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r3, &(0x7f0000000180)}, 0x20)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r7 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r8 = openat$binfmt(0xffffffffffffff9c, r7, 0x42, 0x1ff)
close(r8)
execveat$binfmt(0xffffffffffffff9c, r7, 0x0, &(0x7f0000001980), 0x100)
brk(0xde0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r9, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r0, 0xffffffffffffffff, 0x10000000000000)

268.455918ms ago: executing program 0 (id=504):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1e00000003000000feffffff02000000402c0400", @ANYRES32=0x1, @ANYBLOB="ee8a000000000800004f92d3db1d92e35ceef9d12d681cabeabcb0fda4b7b4d2a5bea83e91137aead4b7bf5ad187469b5f4deff136fc5ab576d18c8fb099903dd82693b9fdf167", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100000004000000040000000500"/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000100000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008400000b704000000000000850000000100000095"], 0x0, 0x2af, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r4, &(0x7f0000000300)={0x1d, r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xb, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
msync(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000004c0)='fsi_master_aspeed_opb_read\x00', r1, 0x0, 0x800}, 0xc)
r5 = socket(0x8, 0x803, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x2, 0xfffffffffffffffd, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=@newqdisc={0x64, 0x24, 0x4, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xffff, 0xc}, {0x9, 0x4}, {0xfff3}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x3ff}, @qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8, "0d000037c00cae90c9d3197e00bb3fcb"}}}, @qdisc_kind_options=@q_bfifo={{0xa}, {0x8, 0x2, 0x4}}]}, 0x64}}, 0x40000d0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xa, 0x6}, {0x1, 0xfff1}, {0x6, 0xd}}}, 0x24}}, 0x4044040)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfee, 0x0, 0x0, 0x0, 0x0, 0x100000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000e820000100000000000000000002000004"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r13 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x0, 0x0)
sendfile(r0, r8, 0x0, 0x7)
ioctl$RTC_UIE_ON(r13, 0x7003)
sendmsg$nl_route(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r11, 0x40082406, &(0x7f0000000180)='\x00')

251.118438ms ago: executing program 3 (id=505):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x1000000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="010000000700000061220000020000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\x00', @ANYRES32=r3], 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r4, 0x0}, 0x20)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r5, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r8 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r9 = openat$binfmt(0xffffffffffffff9c, r8, 0x42, 0x1ff)
close(r9)
execveat$binfmt(0xffffffffffffff9c, r8, 0x0, &(0x7f0000001980), 0x100)
brk(0xde0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
setsockopt$inet_MCAST_MSFILTER(r5, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r10, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r1, 0xffffffffffffffff, 0x10000000000000)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, 0x0)

205.784618ms ago: executing program 1 (id=506):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x60b0, &(0x7f0000000340)=ANY=[@ANYRESOCT=0x0, @ANYRES16, @ANYBLOB="dcbf3ca93635b864c5ca362fad5f90b0f0a575ae42c87864442b4ec0d5aba69cfd3c1967bdcd65075ff981b4458a83db25bf4d3e24e045bc5231b55cb5e8b605f7f60fec42fbe305de1f9cd98142917d579d125c7f77c5234cdaa937281447fa221bae379a5adb4929775598f0fcb47aa1942d05dddee853cf23b258dfab5423c4561e856d38a385489643289712e8c0d2c9da1f646dbf75e98639415907c259a2b5bca2fa0ddf5166e49f4604496b5b656ebd4d0f8dde42c742ed5ed241c1659e148c2c7ff895661a019fe3d5aeca7faa7e6a7d1083c00194f4985ce52a2de9a7526f4593", @ANYBLOB="c2cfa2f18da560fefa968f5107d73322e677bb1277fbfdf5d7f553b77c7456d4bee644e8ffb9ec6510f85ddc0684498512c5c7931eea61f728edc260e13ac7dc30f2e86273e2de50e9ecd2592332a9ca5ff03508ae1921d23e6287aed7a7613d417c462e6899e990a88ef29605e9e68e4824a4e26410ea830289a86abef766934c5dbe0414c25fde6b2b7524cc74e6426e94449755532218e9cf7af3747fb9b1ae4b49efc95c372e46fc24a2dcd691f349cd848dbd6629c8c344649a242ad03c02"], 0xf6, 0x303, &(0x7f00000006c0)="$eJzs3ctrK1UcwPHf5NEkrTVZiIgoHCqIIh2agDsXLdKCGFDaRrCCMLVTDZkmJRMKEbFZCG5du+jCpQgiuHMjl7vt5v4F97XrprtbuOWey2QeSZNp+ri3r9vvZ9Gczjm//s7JmSnT087p3ie/bdTWXfOp1iJa69SsdOTAkIIkJCm+jnx4d+fBu0t3XvM/V2phbrlYUiohIt/89NfU/62Jr/59/b+M7Ba+3dsvPd59Z1nk2fIPVVdVXVXXWllqtdFoGV7wWtWtmUp96diWa6tq3bWbraDeWnVste40NjfbyqqvTY5vNm3XVVa9rWp2W7UaqtVsK+t7q1pXpmmqyXGBiBSiUmKozhDJHhtY+fNAa9nXWutMx5t+Y7hNJyykg9fMC/cX18bA/I9sO3ByDJ9ruHEOdOrU849Xj3/9P/yd+b+dlr5e+XyuXJ5fVCorsvHrVmWr4r/69fcnpCqO2LKz+NHKYfcWMSCG93Hhs/L8jOoqyPsb20H89lbFv3ucWw/ii5L37lP64iWML/rx6mh8Wsb740uSlzfi40thvCT64sfkg/f64k3Jy73vpCGOrIkX24v/uajUp1+UB/Lnuu1i5C5xegAAAAAAAAAAOBdTRXrr90bvV72mmen+xUdU31399tr59dH6+ozk5TB+fX4mdn0/JW+nrm7cAAAAAADcJm77x5rlOHbzYgrJP3IjUqRFxCuI/DLldWbkF3wz6PHpso+JyHBVcnSKI4Xcx36+vxeDjslFvlEvqRA+rFGznH/CqpzENU6c6QSYHot957OXOkA5TePwaZezpsjEDjB81mVUuHEYHnkrto02Ts6uLScdHcmJyIl9nj3T5XBsIasHjkw/CkY84pvGk2iJDwAAAMAN0veDEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuCLn2jws2Le/u9lcr0qCfxEfbZwW7SyQHEjKvv8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArqHnAQAA///HfLUC")
r0 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffc000/0x2000)=nil)
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x7)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000140)={'full'}, 0xfffffdef)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000100)='kmem_cache_free\x00', r4, 0x0, 0x40}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$eJzs3U1vG1sZAODXzpeTm97kXu4CENBSCgVVdRK3jaouoKwQQpUQXYLUhsSNothxFDulCV2k/wGJSqxgyQ9g3RV7Ngh2bMoCiY8I1FRiYTTjSeomdpOSNI7i55FGM+eMM+85ieec+nXtE0DfuhQRWxExHBEPI2Iiq89lW9xtbcnjXm0/nd/Zfjqfi2bz/j9z6fmkLtp+JvFRds1CRPzoexE/zR2MW9/YXJ6rVMprWXmqUV2dqm9sXl+qzi2WF8srpdLszOz07Ru3SifW14vV4ezoyy//sPWtnyfNGs9q2vtxklpdH9qLE9nv/AcfIlgPDETEYPb8yVzoZXt4P/mI+DQiLqf3/0QMpH9NAOA8azYnojnRXgYAzrt8mgPL5YtZLmA88vlisZXD+yzG8pVavXHtUW19ZaGVK5uMofyjpUp5OssVTsZQLinPpMdvyqV95RsR8UlE/GJkNC0X52uVhV7+wwcA+thH++b//4y05n8A4Jwr9LoBAMCpM/8DQP8x/wNA/zH/A0D/Mf8DQP8x/wNA/zH/A0Bf+eG9e8nW3Mm+/3rh8cb6cu3x9YVyfblYXZ8vztfWVouLtdpi+p091cOuV6nVVmduxvqTyW+v1htT9Y3NB9Xa+krjQfq93g/KQ6fSKwDgXT65+OLPuYjYujOabtG2loO5Gs63fK8bAPTMQK8bAPSM1b6gfx3jNb70AJwTHZbofUshIkb3VzabzeaHaxLwgV39gvw/9Ku2/L//BQx9Rv4f+lfX/P+BF/vAedNs5o665n8c9YEAwNkmxw90ef//02z/2+zNgZ8s7H/E8/0VPlEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/9hd/7eYrdwxHvl8sRhxISImYyj3aKlSno6IjyPiTyNDI0l5psdtBgCOK/+3XLb+19WJK+P7zw7nXo+k+4j42a/u//LJXKOx9sek/l979Y3nWX2pF+0HAA6zO0+n+7YX8q+2n87vbqfZnr9/NyIKrfg728Oxsxd/MAbTfSGGImLs37ms3JJry10cx9aziPh8p/7nYjzNgbRWPt0fP4l94VTj59+Kn0/PtfbJ7+JzJ9AW6DcvkvHnbqf7Lx+X0n3n+7+QjlDHl41/yaXmd9Ix8E383fFvoMv4d+moMW7+/vuto9GD555FfHEwYjf2Ttv4sxs/1yX+lYOX6+gvX/rK5W7nmr+OuBqd47fHmmpUV6fqG5vXl6pzi+XF8kqpNDszO337xq3SVJqjnuo+G/zjzrWPu51L+j/WJX7hkP5//Wjdj9/89+GPv/qO+N/8Wqf4+fjsHfGTOfEbR4w/N/a7QrdzSfyFLv0/7O9/7YjxX/5188Cy4QBA79Q3NpfnKpXymgMHZ/8gecqegWZ0PPjOacUajvf6qWbz/4rVbcQ4iawbcBbs3fQR8brXjQEAAAAAAAAAAAAAADo6jU8s9bqPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CwAA//8wuNJ1")
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=ANY=[@ANYBLOB="2800000011140100000000000000000008004b0013"], 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x40)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=ANY=[@ANYBLOB="b40000001900010000000000000000001d01"], 0xb4}}, 0x0)

132.079739ms ago: executing program 2 (id=507):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
fremovexattr(0xffffffffffffffff, &(0x7f0000002f40)=@known='trusted.overlay.opaque\x00')

131.647779ms ago: executing program 0 (id=508):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
process_vm_readv(0x0, &(0x7f0000003e00), 0x0, &(0x7f00000042c0), 0x0, 0x0)

89.591429ms ago: executing program 2 (id=509):
r0 = socket(0x400000000010, 0x3, 0x0)
write(r0, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c040007031a00", 0x22)

71.668419ms ago: executing program 3 (id=510):
io_setup(0x8, &(0x7f0000000800)=<r0=>0x0)
io_destroy(r0)

52.986009ms ago: executing program 2 (id=511):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = dup(r1)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

653.84µs ago: executing program 0 (id=512):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r0)
sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

0s ago: executing program 0 (id=513):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

kernel console output (not intermixed with test programs):

.
[   37.099094][ T3763] loop0: detected capacity change from 0 to 512
[   37.105964][ T3763] EXT4-fs: Ignoring removed oldalloc option
[   37.119881][ T3763] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.102: Parent and EA inode have the same ino 15
[   37.134949][ T3766] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   37.134949][ T3766]    program syz.4.103 not setting count and/or reply_len properly
[   37.152711][ T3763] EXT4-fs (loop0): Remounting filesystem read-only
[   37.159269][ T3763] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   37.169532][ T3763] EXT4-fs (loop0): 1 orphan inode deleted
[   37.183318][ T3767] loop2: detected capacity change from 0 to 512
[   37.191502][ T3763] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.203811][ T3763] SELinux: (dev loop0, type ext4) getxattr errno 5
[   37.218281][ T3763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.230690][ T3767] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.243299][ T3767] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   37.277278][ T3767] lo speed is unknown, defaulting to 1000
[   37.329659][ T3767] dummy0 speed is unknown, defaulting to 1000
[   38.059322][ T3776] loop4: detected capacity change from 0 to 512
[   38.077748][ T3776] EXT4-fs (loop4): 1 orphan inode deleted
[   38.095539][ T3776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.108148][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 1
[   38.121775][ T3776] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.509543][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.533122][   T29] kauditd_printk_skb: 67 callbacks suppressed
[   38.533135][   T29] audit: type=1400 audit(1741275190.617:343): avc:  denied  { create } for  pid=3783 comm="syz.2.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   38.561632][ T3785] 9pnet_fd: Insufficient options for proto=fd
[   38.599118][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.626545][ T3788] loop2: detected capacity change from 0 to 512
[   38.636084][ T3793] loop4: detected capacity change from 0 to 1024
[   38.643147][ T3788] EXT4-fs: inline encryption not supported
[   38.646942][ T3793] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   38.660002][ T3793] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   38.669970][ T3793] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   38.679932][ T3788] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.680556][ T3793] EXT4-fs (loop4): invalid journal inode
[   38.693239][ T3788] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.699597][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.718224][   T29] audit: type=1400 audit(1741275190.807:344): avc:  denied  { setattr } for  pid=3783 comm="syz.2.107" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.718467][ T3793] EXT4-fs (loop4): can't get journal size
[   38.739877][   T29] audit: type=1400 audit(1741275190.807:345): avc:  denied  { ioctl } for  pid=3783 comm="syz.2.107" path="socket:[5234]" dev="sockfs" ino=5234 ioctlcmd=0x48e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   38.739904][   T29] audit: type=1400 audit(1741275190.807:346): avc:  denied  { bind } for  pid=3783 comm="syz.2.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   38.747331][ T3793] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #3: comm syz.4.109: blocks 2-2 from inode overlap system zone
[   38.770491][   T29] audit: type=1326 audit(1741275190.807:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3783 comm="syz.2.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   38.826995][   T29] audit: type=1326 audit(1741275190.807:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3783 comm="syz.2.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   38.850472][ T3793] EXT4-fs (loop4): failed to initialize system zone (-117)
[   38.857814][ T3793] EXT4-fs (loop4): mount failed
[   38.863373][ T3798] s
z1: rxe_newlink: already configured on lo
[   38.870059][ T3798] rdma_rxe: rxe_newlink: failed to add dummy0
[   38.878946][ T3798] loop3: detected capacity change from 0 to 512
[   38.887781][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.889016][ T3793] netlink: 24 bytes leftover after parsing attributes in process `syz.4.109'.
[   38.897539][ T3798] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   38.928851][ T3800] loop1: detected capacity change from 0 to 512
[   38.943447][ T3803] loop4: detected capacity change from 0 to 128
[   38.944645][ T3798] EXT4-fs (loop3): 1 truncate cleaned up
[   38.950991][ T3800] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.111: bg 0: block 35: padding at end of block bitmap is not set
[   38.955884][ T3798] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.972199][ T3800] EXT4-fs (loop1): Remounting filesystem read-only
[   38.989435][ T3800] EXT4-fs (loop1): 1 truncate cleaned up
[   39.004075][ T3800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.017018][ T3800] SELinux: (dev loop1, type ext4) getxattr errno 5
[   39.023952][ T3800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.101529][   T29] audit: type=1326 audit(1741275191.187:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3802 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   39.124869][   T29] audit: type=1326 audit(1741275191.187:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3802 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   39.148108][   T29] audit: type=1326 audit(1741275191.187:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3802 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   39.171473][   T29] audit: type=1326 audit(1741275191.187:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3802 comm="syz.4.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   39.308265][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.364295][ T3811] loop3: detected capacity change from 0 to 512
[   39.383970][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.403916][ T3811] EXT4-fs: Ignoring removed nobh option
[   39.425123][ T3813] loop0: detected capacity change from 0 to 512
[   39.435386][ T3813] EXT4-fs: Ignoring removed oldalloc option
[   39.455386][ T3817] loop1: detected capacity change from 0 to 128
[   39.458506][ T3813] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.115: Parent and EA inode have the same ino 15
[   39.467343][ T3817] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   39.488901][ T3813] EXT4-fs (loop0): Remounting filesystem read-only
[   39.495489][ T3813] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   39.510440][ T3813] EXT4-fs (loop0): 1 orphan inode deleted
[   39.511941][ T3821] loop2: detected capacity change from 0 to 512
[   39.520192][ T3817] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   39.535327][ T3811] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #3: comm syz.3.114: corrupted inode contents
[   39.553851][ T3821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.575906][ T3811] EXT4-fs (loop3): Remounting filesystem read-only
[   39.585018][ T3813] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.605731][ T3811] EXT4-fs (loop3): 1 truncate cleaned up
[   39.611573][ T3821] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.624234][ T3811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.655831][ T3813] SELinux: (dev loop0, type ext4) getxattr errno 5
[   39.669686][ T3813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.692854][ T3811] SELinux: (dev loop3, type ext4) getxattr errno 5
[   39.700584][ T3828] loop1: detected capacity change from 0 to 1024
[   39.707879][ T3811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.727338][ T3828] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   39.758978][ T3829] netlink: 766 bytes leftover after parsing attributes in process `syz.2.118'.
[   39.779815][ T3828] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.120: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   39.814826][ T3828] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.120: couldn't read orphan inode 11 (err -117)
[   39.843156][ T3834] FAULT_INJECTION: forcing a failure.
[   39.843156][ T3834] name failslab, interval 1, probability 0, space 0, times 0
[   39.855801][ T3834] CPU: 1 UID: 0 PID: 3834 Comm: syz.3.123 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   39.855875][ T3834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   39.855887][ T3834] Call Trace:
[   39.855894][ T3834]  <TASK>
[   39.855901][ T3834]  dump_stack_lvl+0xf2/0x150
[   39.855924][ T3834]  dump_stack+0x15/0x1a
[   39.855940][ T3834]  should_fail_ex+0x24a/0x260
[   39.856023][ T3834]  should_failslab+0x8f/0xb0
[   39.856050][ T3834]  kmem_cache_alloc_noprof+0x52/0x320
[   39.856083][ T3834]  ? skb_clone+0x154/0x1f0
[   39.856107][ T3834]  skb_clone+0x154/0x1f0
[   39.856128][ T3834]  dev_queue_xmit_nit+0x14b/0x680
[   39.856181][ T3834]  ? cgroup_rstat_updated+0x9f/0x570
[   39.856209][ T3834]  ? __rcu_read_unlock+0x4e/0x70
[   39.856233][ T3834]  dev_hard_start_xmit+0xcc/0x3f0
[   39.856252][ T3834]  ? validate_xmit_skb+0x645/0x830
[   39.856271][ T3834]  __dev_queue_xmit+0x100a/0x2090
[   39.856368][ T3834]  ? __dev_queue_xmit+0x186/0x2090
[   39.856388][ T3834]  ? __skb_clone+0x2d0/0x2f0
[   39.856410][ T3834]  __netlink_deliver_tap+0x3be/0x4f0
[   39.856519][ T3834]  netlink_unicast+0x64a/0x670
[   39.856543][ T3834]  netlink_sendmsg+0x5cc/0x6e0
[   39.856572][ T3834]  ? __pfx_netlink_sendmsg+0x10/0x10
[   39.856597][ T3834]  __sock_sendmsg+0x140/0x180
[   39.856701][ T3834]  ____sys_sendmsg+0x326/0x4b0
[   39.856723][ T3834]  __sys_sendmsg+0x19d/0x230
[   39.856820][ T3834]  __x64_sys_sendmsg+0x46/0x50
[   39.856839][ T3834]  x64_sys_call+0x2734/0x2dc0
[   39.856863][ T3834]  do_syscall_64+0xc9/0x1c0
[   39.856958][ T3834]  ? clear_bhb_loop+0x55/0xb0
[   39.856984][ T3834]  ? clear_bhb_loop+0x55/0xb0
[   39.857010][ T3834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.857098][ T3834] RIP: 0033:0x7f6a2153d169
[   39.857113][ T3834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.857160][ T3834] RSP: 002b:00007f6a1fba7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   39.857175][ T3834] RAX: ffffffffffffffda RBX: 00007f6a21755fa0 RCX: 00007f6a2153d169
[   39.857185][ T3834] RDX: 0000000000004810 RSI: 0000400000000100 RDI: 0000000000000003
[   39.857194][ T3834] RBP: 00007f6a1fba7090 R08: 0000000000000000 R09: 0000000000000000
[   39.857204][ T3834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.857258][ T3834] R13: 0000000000000000 R14: 00007f6a21755fa0 R15: 00007ffc40de3b38
[   39.857272][ T3834]  </TASK>
[   39.859289][ T3835] netlink: 'syz.2.118': attribute type 3 has an invalid length.
[   39.907102][ T3828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.137277][ T3828] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.120: Invalid block bitmap block 0 in block_group 0
[   40.163897][ T3843] loop4: detected capacity change from 0 to 1024
[   40.170742][ T3828] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.120: Failed to acquire dquot type 0
[   40.183193][ T3843] EXT4-fs: inline encryption not supported
[   40.199645][ T3844] 9pnet_fd: Insufficient options for proto=fd
[   40.246194][ T3843] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   40.258027][ T3843] EXT4-fs error (device loop4): ext4_map_blocks:705: inode #3: block 1: comm syz.4.126: lblock 1 mapped to illegal pblock 1 (length 1)
[   40.273938][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.284480][ T3843] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.126: Failed to acquire dquot type 0
[   40.301756][ T3843] EXT4-fs error (device loop4): ext4_free_blocks:6589: comm syz.4.126: Freeing blocks not in datazone - block = 0, count = 4096
[   40.315424][ T3843] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.126: Invalid inode bitmap blk 0 in block_group 0
[   40.328224][ T3843] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   40.336799][   T11] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   40.351681][ T3843] EXT4-fs (loop4): 1 orphan inode deleted
[   40.382158][ T3843] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.408557][ T3852] loop0: detected capacity change from 0 to 512
[   40.429142][ T3852] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.441794][ T3852] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.466683][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 0
[   40.559762][ T3856] loop1: detected capacity change from 0 to 512
[   40.586989][ T3843] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   40.601090][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.618762][ T3856] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.129: bg 0: block 35: padding at end of block bitmap is not set
[   40.694549][ T3856] EXT4-fs (loop1): Remounting filesystem read-only
[   40.719891][ T3856] EXT4-fs (loop1): 1 truncate cleaned up
[   40.752237][ T3861] loop3: detected capacity change from 0 to 128
[   40.759145][ T3856] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.773435][ T3861] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   40.794795][ T3856] SELinux: (dev loop1, type ext4) getxattr errno 5
[   40.807751][ T3861] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   40.817640][ T3856] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.927858][ T3865] loop3: detected capacity change from 0 to 1024
[   40.937496][ T3865] EXT4-fs: inline encryption not supported
[   40.956147][ T3865] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   40.970543][ T3865] EXT4-fs error (device loop3): ext4_map_blocks:705: inode #3: block 1: comm syz.3.134: lblock 1 mapped to illegal pblock 1 (length 1)
[   40.986371][ T3865] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.134: Failed to acquire dquot type 0
[   40.998023][ T3865] EXT4-fs error (device loop3): ext4_free_blocks:6589: comm syz.3.134: Freeing blocks not in datazone - block = 0, count = 4096
[   41.013009][ T3865] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.134: Invalid inode bitmap blk 0 in block_group 0
[   41.028240][ T1914] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[   41.043058][ T3865] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   41.078377][ T3865] EXT4-fs (loop3): 1 orphan inode deleted
[   41.084470][ T3865] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.098005][ T1914] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 0
[   41.114452][ T3865] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   41.369908][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.390409][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.471748][ T3874] FAULT_INJECTION: forcing a failure.
[   41.471748][ T3874] name failslab, interval 1, probability 0, space 0, times 0
[   41.484414][ T3874] CPU: 1 UID: 0 PID: 3874 Comm: syz.4.136 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   41.484497][ T3874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   41.484509][ T3874] Call Trace:
[   41.484515][ T3874]  <TASK>
[   41.484522][ T3874]  dump_stack_lvl+0xf2/0x150
[   41.484545][ T3874]  dump_stack+0x15/0x1a
[   41.484562][ T3874]  should_fail_ex+0x24a/0x260
[   41.484586][ T3874]  should_failslab+0x8f/0xb0
[   41.484666][ T3874]  kmem_cache_alloc_node_noprof+0x59/0x320
[   41.484688][ T3874]  ? __alloc_skb+0x10b/0x310
[   41.484765][ T3874]  __alloc_skb+0x10b/0x310
[   41.484784][ T3874]  netlink_alloc_large_skb+0xad/0xe0
[   41.484875][ T3874]  netlink_sendmsg+0x3b4/0x6e0
[   41.484955][ T3874]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.484998][ T3874]  __sock_sendmsg+0x140/0x180
[   41.485025][ T3874]  ____sys_sendmsg+0x326/0x4b0
[   41.485046][ T3874]  __sys_sendmsg+0x19d/0x230
[   41.485081][ T3874]  __x64_sys_sendmsg+0x46/0x50
[   41.485151][ T3874]  x64_sys_call+0x2734/0x2dc0
[   41.485212][ T3874]  do_syscall_64+0xc9/0x1c0
[   41.485241][ T3874]  ? clear_bhb_loop+0x55/0xb0
[   41.485263][ T3874]  ? clear_bhb_loop+0x55/0xb0
[   41.485283][ T3874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.485382][ T3874] RIP: 0033:0x7f379fb8d169
[   41.485395][ T3874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.485411][ T3874] RSP: 002b:00007f379e1f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.485428][ T3874] RAX: ffffffffffffffda RBX: 00007f379fda5fa0 RCX: 00007f379fb8d169
[   41.485437][ T3874] RDX: 0000000000000000 RSI: 0000400000000400 RDI: 0000000000000003
[   41.485448][ T3874] RBP: 00007f379e1f1090 R08: 0000000000000000 R09: 0000000000000000
[   41.485527][ T3874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.485537][ T3874] R13: 0000000000000000 R14: 00007f379fda5fa0 R15: 00007fffd6753888
[   41.485552][ T3874]  </TASK>
[   41.696811][ T3879] FAULT_INJECTION: forcing a failure.
[   41.696811][ T3879] name failslab, interval 1, probability 0, space 0, times 0
[   41.709506][ T3879] CPU: 0 UID: 0 PID: 3879 Comm: syz.4.138 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   41.709531][ T3879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   41.709541][ T3879] Call Trace:
[   41.709548][ T3879]  <TASK>
[   41.709554][ T3879]  dump_stack_lvl+0xf2/0x150
[   41.709622][ T3879]  dump_stack+0x15/0x1a
[   41.709642][ T3879]  should_fail_ex+0x24a/0x260
[   41.709672][ T3879]  should_failslab+0x8f/0xb0
[   41.709701][ T3879]  kmem_cache_alloc_noprof+0x52/0x320
[   41.709720][ T3879]  ? skb_clone+0x154/0x1f0
[   41.709783][ T3879]  skb_clone+0x154/0x1f0
[   41.709830][ T3879]  __netlink_deliver_tap+0x2bd/0x4f0
[   41.709891][ T3879]  netlink_unicast+0x64a/0x670
[   41.709919][ T3879]  netlink_sendmsg+0x5cc/0x6e0
[   41.709950][ T3879]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.709975][ T3879]  __sock_sendmsg+0x140/0x180
[   41.710002][ T3879]  ____sys_sendmsg+0x326/0x4b0
[   41.710166][ T3879]  __sys_sendmsg+0x19d/0x230
[   41.710193][ T3879]  __x64_sys_sendmsg+0x46/0x50
[   41.710216][ T3879]  x64_sys_call+0x2734/0x2dc0
[   41.710253][ T3879]  do_syscall_64+0xc9/0x1c0
[   41.710282][ T3879]  ? clear_bhb_loop+0x55/0xb0
[   41.710309][ T3879]  ? clear_bhb_loop+0x55/0xb0
[   41.710359][ T3879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.710381][ T3879] RIP: 0033:0x7f379fb8d169
[   41.710393][ T3879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.710408][ T3879] RSP: 002b:00007f379e1f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.710483][ T3879] RAX: ffffffffffffffda RBX: 00007f379fda5fa0 RCX: 00007f379fb8d169
[   41.710495][ T3879] RDX: 0000000000000840 RSI: 00004000000000c0 RDI: 0000000000000003
[   41.710506][ T3879] RBP: 00007f379e1f1090 R08: 0000000000000000 R09: 0000000000000000
[   41.710516][ T3879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.710525][ T3879] R13: 0000000000000000 R14: 00007f379fda5fa0 R15: 00007fffd6753888
[   41.710539][ T3879]  </TASK>
[   41.710553][ T3879] netlink: 'syz.4.138': attribute type 10 has an invalid length.
[   41.917425][ T3879] netlink: 40 bytes leftover after parsing attributes in process `syz.4.138'.
[   41.940349][ T3872] mmap: syz.3.135 (3872) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   41.952342][ T3879] batadv0: entered promiscuous mode
[   41.957637][ T3879] batadv0: entered allmulticast mode
[   41.963389][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.973224][ T3872] block device autoloading is deprecated and will be removed.
[   41.973579][ T3879] bridge0: port 3(batadv0) entered blocking state
[   41.987203][ T3879] bridge0: port 3(batadv0) entered disabled state
[   41.994498][ T3879] bridge0: port 3(batadv0) entered blocking state
[   41.998923][ T3872] syz.3.135: attempt to access beyond end of device
[   41.998923][ T3872] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   42.001082][ T3879] bridge0: port 3(batadv0) entered forwarding state
[   42.090455][ T3895] loop0: detected capacity change from 0 to 128
[   42.091278][ T3894] loop1: detected capacity change from 0 to 128
[   42.099961][ T3895] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   42.116648][ T3890] s
z1: rxe_newlink: already configured on lo
[   42.123133][ T3890] rdma_rxe: rxe_newlink: failed to add dummy0
[   42.125535][ T3894] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   42.141108][ T3890] loop3: detected capacity change from 0 to 512
[   42.147727][ T3895] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   42.159671][ T3894] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   42.162347][ T3890] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   42.172616][ T3897] dvmrp0: entered allmulticast mode
[   42.197059][ T3897] dvmrp0: left allmulticast mode
[   42.199071][ T3890] EXT4-fs (loop3): 1 truncate cleaned up
[   42.208395][ T3890] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.277909][ T3907] netlink: 12 bytes leftover after parsing attributes in process `syz.0.149'.
[   42.286844][ T3907] tipc: Started in network mode
[   42.291707][ T3907] tipc: Node identity , cluster identity 8
[   42.320401][ T3903] netlink: 1296 bytes leftover after parsing attributes in process `syz.4.145'.
[   42.435603][   T11] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   42.444939][   T11] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   42.508083][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.524108][ T3914] loop1: detected capacity change from 0 to 512
[   42.599881][ T3912] loop0: detected capacity change from 0 to 1024
[   42.609055][ T3912] EXT4-fs: inline encryption not supported
[   42.615645][ T3912] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   42.629547][ T3912] EXT4-fs error (device loop0): ext4_map_blocks:705: inode #3: block 1: comm syz.0.151: lblock 1 mapped to illegal pblock 1 (length 1)
[   42.671341][ T3912] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.151: Failed to acquire dquot type 0
[   42.685118][ T3914] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.697668][ T3914] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.711537][ T3912] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.151: Freeing blocks not in datazone - block = 0, count = 4096
[   42.727037][ T3912] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.151: Invalid inode bitmap blk 0 in block_group 0
[   42.740413][ T3912] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   42.793227][ T3920] loop2: detected capacity change from 0 to 512
[   42.800808][ T3912] EXT4-fs (loop0): 1 orphan inode deleted
[   42.823132][ T3920] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.153: bg 0: block 35: padding at end of block bitmap is not set
[   42.840051][ T3912] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.853550][ T3920] EXT4-fs (loop2): Remounting filesystem read-only
[   42.863996][ T3920] EXT4-fs (loop2): 1 truncate cleaned up
[   42.871088][ T3920] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.884404][ T3920] SELinux: (dev loop2, type ext4) getxattr errno 5
[   42.893820][ T3920] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.280075][ T3924] loop4: detected capacity change from 0 to 1024
[   43.293536][ T3924] EXT4-fs: inline encryption not supported
[   43.301202][ T3924] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   43.312715][ T3924] EXT4-fs error (device loop4): ext4_map_blocks:705: inode #3: block 1: comm syz.4.154: lblock 1 mapped to illegal pblock 1 (length 1)
[   43.327697][ T3924] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.154: Failed to acquire dquot type 0
[   43.340845][ T3924] EXT4-fs error (device loop4): ext4_free_blocks:6589: comm syz.4.154: Freeing blocks not in datazone - block = 0, count = 4096
[   43.355419][ T3924] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.154: Invalid inode bitmap blk 0 in block_group 0
[   43.369448][ T3924] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   43.378359][ T3924] EXT4-fs (loop4): 1 orphan inode deleted
[   43.384458][ T3924] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.421359][  T120] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[   43.466754][ T3927] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   43.466754][ T3927]    program syz.3.152 not setting count and/or reply_len properly
[   43.503746][  T120] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 0
[   43.541012][  T120] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[   43.573526][  T120] __quota_error: 46 callbacks suppressed
[   43.573541][  T120] Quota error (device loop4): remove_tree: Can't read quota data block 1
[   43.587786][  T120] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 0
[   43.635520][ T3923] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   43.647111][ T3912] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   43.668435][   T29] audit: type=1400 audit(1741275195.757:384): avc:  denied  { create } for  pid=3926 comm="syz.3.152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   43.779720][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.833116][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.891687][ T3939] loop4: detected capacity change from 0 to 128
[   43.905004][ T3939] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   43.917903][ T3939] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   43.932180][ T3942] loop2: detected capacity change from 0 to 512
[   43.949647][ T3942] EXT4-fs (loop2): 1 orphan inode deleted
[   43.961418][ T3942] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.975405][   T11] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   43.985441][   T11] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 1
[   44.037517][ T3954] loop4: detected capacity change from 0 to 512
[   44.060751][ T3954] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.162: bg 0: block 35: padding at end of block bitmap is not set
[   44.083826][ T3954] EXT4-fs (loop4): Remounting filesystem read-only
[   44.090606][ T3954] EXT4-fs (loop4): 1 truncate cleaned up
[   44.154780][ T3954] SELinux: (dev loop4, type ext4) getxattr errno 5
[   44.171421][ T3957] loop1: detected capacity change from 0 to 128
[   44.186128][ T3957] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   44.219881][ T3957] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   44.280716][ T3961] loop1: detected capacity change from 0 to 512
[   44.326652][ T3961] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.165: bg 0: block 35: padding at end of block bitmap is not set
[   44.341368][ T3961] EXT4-fs (loop1): Remounting filesystem read-only
[   44.348978][ T3961] EXT4-fs (loop1): 1 truncate cleaned up
[   44.364966][ T3961] SELinux: (dev loop1, type ext4) getxattr errno 5
[   44.380836][ T3965] netlink: 'syz.0.166': attribute type 13 has an invalid length.
[   44.400625][ T3965] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   44.421925][   T29] audit: type=1326 audit(1741275196.507:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.424717][ T3967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.447188][   T29] audit: type=1400 audit(1741275196.507:386): avc:  denied  { ioctl } for  pid=3966 comm="syz.3.167" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   44.526913][ T3967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   44.549240][ T3965] loop0: detected capacity change from 0 to 128
[   44.550449][   T29] audit: type=1326 audit(1741275196.637:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.579039][   T29] audit: type=1326 audit(1741275196.637:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.587244][ T3965] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   44.602266][   T29] audit: type=1326 audit(1741275196.637:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.637627][   T29] audit: type=1326 audit(1741275196.637:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.660938][   T29] audit: type=1326 audit(1741275196.637:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.0.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   44.684594][ T3965] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   44.870560][ T3979] FAULT_INJECTION: forcing a failure.
[   44.870560][ T3979] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   44.883729][ T3979] CPU: 1 UID: 0 PID: 3979 Comm: syz.3.167 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   44.883862][ T3979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   44.883871][ T3979] Call Trace:
[   44.883877][ T3979]  <TASK>
[   44.883882][ T3979]  dump_stack_lvl+0xf2/0x150
[   44.884005][ T3979]  dump_stack+0x15/0x1a
[   44.884020][ T3979]  should_fail_ex+0x24a/0x260
[   44.884083][ T3979]  should_fail+0xb/0x10
[   44.884102][ T3979]  should_fail_usercopy+0x1a/0x20
[   44.884179][ T3979]  _copy_to_iter+0xd5/0xd00
[   44.884223][ T3979]  copy_page_to_iter+0x171/0x2b0
[   44.884246][ T3979]  shmem_file_read_iter+0x2c1/0x540
[   44.884266][ T3979]  vfs_read+0x5cc/0x6f0
[   44.884353][ T3979]  ksys_read+0xe8/0x1b0
[   44.884371][ T3979]  __x64_sys_read+0x42/0x50
[   44.884469][ T3979]  x64_sys_call+0x2874/0x2dc0
[   44.884487][ T3979]  do_syscall_64+0xc9/0x1c0
[   44.884535][ T3979]  ? clear_bhb_loop+0x55/0xb0
[   44.884555][ T3979]  ? clear_bhb_loop+0x55/0xb0
[   44.884573][ T3979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.884651][ T3979] RIP: 0033:0x7f6a2153d169
[   44.884663][ T3979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.884676][ T3979] RSP: 002b:00007f6a1fb86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   44.884690][ T3979] RAX: ffffffffffffffda RBX: 00007f6a21756080 RCX: 00007f6a2153d169
[   44.884699][ T3979] RDX: 00000000ffffff39 RSI: 0000400000000100 RDI: 0000000000000006
[   44.884708][ T3979] RBP: 00007f6a1fb86090 R08: 0000000000000000 R09: 0000000000000000
[   44.884716][ T3979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.884724][ T3979] R13: 0000000000000000 R14: 00007f6a21756080 R15: 00007ffc40de3b38
[   44.884736][ T3979]  </TASK>
[   45.064599][ T3972] loop2: detected capacity change from 0 to 512
[   45.092380][ T3972] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.124566][ T3984] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.173' sets config #1
[   45.156787][   T50] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   45.202633][ T3993] syz.1.177: attempt to access beyond end of device
[   45.202633][ T3993] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   45.308259][ T3995] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.178' sets config #1
[   45.360939][ T3998] loop1: detected capacity change from 0 to 512
[   45.363020][ T3991] loop0: detected capacity change from 0 to 1024
[   45.379599][ T3998] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.180: bg 0: block 35: padding at end of block bitmap is not set
[   45.394182][ T3998] EXT4-fs (loop1): Remounting filesystem read-only
[   45.400813][ T3998] EXT4-fs (loop1): 1 truncate cleaned up
[   45.407582][ T3998] SELinux: (dev loop1, type ext4) getxattr errno 5
[   45.419312][ T4000] devpts: called with bogus options
[   45.566012][ T4008] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.182' sets config #1
[   45.644710][ T4016] loop2: detected capacity change from 0 to 128
[   45.678223][ T4015] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.186' sets config #1
[   45.818226][ T4028] Zero length message leads to an empty skb
[   45.838990][ T4031] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   45.838990][ T4031]    program syz.3.191 not setting count and/or reply_len properly
[   45.861895][ T4028] veth0_to_bond: entered promiscuous mode
[   45.884476][ T4028] loop4: detected capacity change from 0 to 1024
[   45.893509][ T4035] loop2: detected capacity change from 0 to 512
[   45.901894][ T4028] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   45.914294][ T4028] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.190: Invalid block bitmap block 0 in block_group 0
[   45.930853][ T4028] EXT4-fs (loop4): Remounting filesystem read-only
[   45.933735][ T4038] loop1: detected capacity change from 0 to 512
[   45.944238][ T4028] EXT4-fs (loop4): 1 orphan inode deleted
[   45.952550][ T4028] SELinux: (dev loop4, type ext4) getxattr errno 5
[   45.960389][ T4035] EXT4-fs (loop2): 1 orphan inode deleted
[   45.967748][ T4035] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.968026][ T1404] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[   45.979899][ T4038] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.192: bg 0: block 425: padding at end of block bitmap is not set
[   46.004144][ T4038] EXT4-fs (loop1): Remounting filesystem read-only
[   46.030266][ T4027] veth0_to_bond: left promiscuous mode
[   46.036697][ T4028] syz.4.190 (4028) used greatest stack depth: 9400 bytes left
[   46.287933][ T4053] loop4: detected capacity change from 0 to 128
[   46.294644][ T4053] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   46.310564][ T4054] loop1: detected capacity change from 0 to 512
[   46.334944][ T4053] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   46.361563][ T4054] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.503662][ T4064] syz.4.200: attempt to access beyond end of device
[   46.503662][ T4064] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   46.562924][ T4070] loop4: detected capacity change from 0 to 128
[   46.594837][ T4072] FAULT_INJECTION: forcing a failure.
[   46.594837][ T4072] name failslab, interval 1, probability 0, space 0, times 0
[   46.607605][ T4072] CPU: 0 UID: 0 PID: 4072 Comm: syz.2.204 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   46.607626][ T4072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   46.607636][ T4072] Call Trace:
[   46.607712][ T4072]  <TASK>
[   46.607719][ T4072]  dump_stack_lvl+0xf2/0x150
[   46.607744][ T4072]  dump_stack+0x15/0x1a
[   46.607764][ T4072]  should_fail_ex+0x24a/0x260
[   46.607859][ T4072]  ? bpf_prog_alloc_no_stats+0xc3/0x380
[   46.607888][ T4072]  should_failslab+0x8f/0xb0
[   46.608015][ T4072]  __kmalloc_cache_noprof+0x4e/0x320
[   46.608037][ T4072]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   46.608062][ T4072]  bpf_prog_alloc_no_stats+0xc3/0x380
[   46.608085][ T4072]  bpf_prog_alloc+0x3a/0x150
[   46.608171][ T4072]  bpf_prog_load+0x4d0/0x1050
[   46.608203][ T4072]  __sys_bpf+0x463/0x7a0
[   46.608261][ T4072]  __x64_sys_bpf+0x43/0x50
[   46.608285][ T4072]  x64_sys_call+0x2914/0x2dc0
[   46.608307][ T4072]  do_syscall_64+0xc9/0x1c0
[   46.608335][ T4072]  ? clear_bhb_loop+0x55/0xb0
[   46.608386][ T4072]  ? clear_bhb_loop+0x55/0xb0
[   46.608406][ T4072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.608504][ T4072] RIP: 0033:0x7ff77e8ed169
[   46.608517][ T4072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.608531][ T4072] RSP: 002b:00007ff77cf57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   46.608546][ T4072] RAX: ffffffffffffffda RBX: 00007ff77eb05fa0 RCX: 00007ff77e8ed169
[   46.608556][ T4072] RDX: 0000000000000090 RSI: 0000400000000840 RDI: 0000000000000005
[   46.608565][ T4072] RBP: 00007ff77cf57090 R08: 0000000000000000 R09: 0000000000000000
[   46.608575][ T4072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.608655][ T4072] R13: 0000000000000000 R14: 00007ff77eb05fa0 R15: 00007ffdb1839f38
[   46.608669][ T4072]  </TASK>
[   46.878975][ T4084] loop3: detected capacity change from 0 to 128
[   46.926047][ T4088] loop0: detected capacity change from 0 to 512
[   46.961159][ T4088] EXT4-fs: Ignoring removed oldalloc option
[   46.962957][ T4084] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   46.988152][ T4084] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   47.004902][ T4088] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.209: Parent and EA inode have the same ino 15
[   47.147212][ T4088] EXT4-fs (loop0): Remounting filesystem read-only
[   47.153855][ T4088] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   47.184390][ T4088] EXT4-fs (loop0): 1 orphan inode deleted
[   47.206146][ T4108] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   47.206146][ T4108]    program syz.2.215 not setting count and/or reply_len properly
[   47.462124][ T4105] loop1: detected capacity change from 0 to 512
[   47.468704][ T4105] EXT4-fs: Ignoring removed orlov option
[   47.489564][ T4105] EXT4-fs (loop1): inodes count not valid: 4 vs 32
[   47.497364][ T4088] SELinux: (dev loop0, type ext4) getxattr errno 5
[   47.548866][ T4099] loop3: detected capacity change from 0 to 512
[   47.559123][ T4099] EXT4-fs: Ignoring removed orlov option
[   47.571197][ T4099] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.212: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[   47.595349][ T4099] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.212: couldn't read orphan inode 15 (err -117)
[   47.662949][ T4117] rdma_rxe: rxe_newlink: failed to add lo
[   47.669344][ T4117] rdma_rxe: rxe_newlink: failed to add dummy0
[   47.678697][ T4117] loop0: detected capacity change from 0 to 512
[   47.685989][ T4117] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   47.706535][ T4117] EXT4-fs (loop0): 1 truncate cleaned up
[   47.726297][ T4124] loop4: detected capacity change from 0 to 128
[   47.974337][ T4130] loop1: detected capacity change from 0 to 128
[   47.981569][ T4130] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   47.999551][ T4131] loop3: detected capacity change from 0 to 512
[   48.052822][ T4130] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   48.079550][ T4131] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.219415][ T4135] netlink: 12 bytes leftover after parsing attributes in process `syz.1.224'.
[   48.228394][ T4135] tipc: Started in network mode
[   48.233239][ T4135] tipc: Node identity , cluster identity 8
[   48.356048][ T4141] loop2: detected capacity change from 0 to 512
[   48.400886][ T4141] EXT4-fs: Ignoring removed oldalloc option
[   48.454620][ T4141] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.227: Parent and EA inode have the same ino 15
[   48.490197][ T4148] loop4: detected capacity change from 0 to 128
[   48.532595][ T4141] EXT4-fs (loop2): Remounting filesystem read-only
[   48.539182][ T4141] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   48.609448][ T4141] EXT4-fs (loop2): 1 orphan inode deleted
[   48.618263][ T4141] SELinux: (dev loop2, type ext4) getxattr errno 5
[   48.656734][ T4151] ip6_vti0: mtu greater than device maximum
[   48.706009][ T4153] loop1: detected capacity change from 0 to 128
[   48.714877][ T4153] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.731604][ T4153] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   48.809820][ T4157] loop1: detected capacity change from 0 to 4096
[   48.819459][   T29] kauditd_printk_skb: 133 callbacks suppressed
[   48.819472][   T29] audit: type=1400 audit(1741537600.913:522): avc:  denied  { ioctl } for  pid=4156 comm="syz.1.234" path="socket:[6775]" dev="sockfs" ino=6775 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   48.850018][   T29] audit: type=1400 audit(1741537600.913:523): avc:  denied  { read } for  pid=4156 comm="syz.1.234" path="socket:[6775]" dev="sockfs" ino=6775 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   48.879344][ T4159] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   48.887055][ T4159] audit: out of memory in audit_log_start
[   48.901415][   T29] audit: type=1400 audit(1741537600.973:524): avc:  denied  { setopt } for  pid=4156 comm="syz.1.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   48.920724][   T29] audit: type=1400 audit(1741537600.973:525): avc:  denied  { create } for  pid=4156 comm="syz.1.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   48.940093][   T29] audit: type=1400 audit(1741537600.973:526): avc:  denied  { bind } for  pid=4156 comm="syz.1.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   48.959392][   T29] audit: type=1400 audit(1741537600.973:527): avc:  denied  { name_bind } for  pid=4156 comm="syz.1.234" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   48.980041][   T29] audit: type=1400 audit(1741537600.973:528): avc:  denied  { node_bind } for  pid=4156 comm="syz.1.234" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   49.000678][   T29] audit: type=1400 audit(1741537600.973:529): avc:  denied  { listen } for  pid=4156 comm="syz.1.234" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   49.071265][ T4163] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   49.071265][ T4163]    program syz.2.235 not setting count and/or reply_len properly
[   49.148039][ T4167] FAULT_INJECTION: forcing a failure.
[   49.148039][ T4167] name failslab, interval 1, probability 0, space 0, times 0
[   49.160721][ T4167] CPU: 0 UID: 0 PID: 4167 Comm: syz.0.236 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   49.160746][ T4167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   49.160758][ T4167] Call Trace:
[   49.160764][ T4167]  <TASK>
[   49.160772][ T4167]  dump_stack_lvl+0xf2/0x150
[   49.160842][ T4167]  dump_stack+0x15/0x1a
[   49.160862][ T4167]  should_fail_ex+0x24a/0x260
[   49.160890][ T4167]  should_failslab+0x8f/0xb0
[   49.160919][ T4167]  kmem_cache_alloc_node_noprof+0x59/0x320
[   49.160939][ T4167]  ? __alloc_skb+0x10b/0x310
[   49.161021][ T4167]  ? __rtnl_unlock+0x99/0xb0
[   49.161075][ T4167]  __alloc_skb+0x10b/0x310
[   49.161095][ T4167]  netlink_ack+0xef/0x4f0
[   49.161121][ T4167]  ? ref_tracker_free+0x3a5/0x410
[   49.161150][ T4167]  netlink_rcv_skb+0x19c/0x230
[   49.161237][ T4167]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   49.161273][ T4167]  rtnetlink_rcv+0x1c/0x30
[   49.161297][ T4167]  netlink_unicast+0x599/0x670
[   49.161327][ T4167]  netlink_sendmsg+0x5cc/0x6e0
[   49.161354][ T4167]  ? __pfx_netlink_sendmsg+0x10/0x10
[   49.161420][ T4167]  __sock_sendmsg+0x140/0x180
[   49.161445][ T4167]  ____sys_sendmsg+0x326/0x4b0
[   49.161515][ T4167]  __sys_sendmsg+0x19d/0x230
[   49.161548][ T4167]  __x64_sys_sendmsg+0x46/0x50
[   49.161572][ T4167]  x64_sys_call+0x2734/0x2dc0
[   49.161597][ T4167]  do_syscall_64+0xc9/0x1c0
[   49.161662][ T4167]  ? clear_bhb_loop+0x55/0xb0
[   49.161689][ T4167]  ? clear_bhb_loop+0x55/0xb0
[   49.161711][ T4167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.161743][ T4167] RIP: 0033:0x7ffbccdcd169
[   49.161755][ T4167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.161769][ T4167] RSP: 002b:00007ffbcb437038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   49.161788][ T4167] RAX: ffffffffffffffda RBX: 00007ffbccfe5fa0 RCX: 00007ffbccdcd169
[   49.161800][ T4167] RDX: 0000000000000000 RSI: 0000400000000140 RDI: 0000000000000003
[   49.161809][ T4167] RBP: 00007ffbcb437090 R08: 0000000000000000 R09: 0000000000000000
[   49.161819][ T4167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.161828][ T4167] R13: 0000000000000000 R14: 00007ffbccfe5fa0 R15: 00007fff5ca438f8
[   49.161842][ T4167]  </TASK>
[   49.428689][ T4173] program syz.3.237 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   49.448024][ T4175] loop0: detected capacity change from 0 to 512
[   49.488741][ T4175] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.509189][ T4175] netlink: 'syz.0.239': attribute type 10 has an invalid length.
[   49.517013][ T4175] netlink: 40 bytes leftover after parsing attributes in process `syz.0.239'.
[   49.535486][ T4175] batadv0: entered promiscuous mode
[   49.540737][ T4175] batadv0: entered allmulticast mode
[   49.547099][ T4175] bridge0: port 3(batadv0) entered blocking state
[   49.553625][ T4175] bridge0: port 3(batadv0) entered disabled state
[   49.561087][ T4175] bridge0: port 3(batadv0) entered blocking state
[   49.567580][ T4175] bridge0: port 3(batadv0) entered forwarding state
[   49.608723][ T4186] loop0: detected capacity change from 0 to 512
[   49.620231][ T4186] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.243: bg 0: block 35: padding at end of block bitmap is not set
[   49.634642][ T4186] EXT4-fs (loop0): Remounting filesystem read-only
[   49.641948][ T4186] EXT4-fs (loop0): 1 truncate cleaned up
[   49.648394][ T4186] SELinux: (dev loop0, type ext4) getxattr errno 5
[   49.669505][ T4192] netlink: 'syz.4.244': attribute type 13 has an invalid length.
[   49.711094][ T4192] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   49.732998][ T4192] loop4: detected capacity change from 0 to 128
[   49.740810][ T4192] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   49.777002][ T4192] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   49.893773][ T4203] loop1: detected capacity change from 0 to 512
[   49.917935][ T4200] lo speed is unknown, defaulting to 1000
[   49.948853][ T4200] dummy0 speed is unknown, defaulting to 1000
[   50.007835][ T4203] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.019868][   T50] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   50.029103][   T50] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   50.108456][ T4200] veth1_vlan: left promiscuous mode
[   50.509898][  T120] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   50.766435][ T4229] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   50.766435][ T4229]    program syz.3.259 not setting count and/or reply_len properly
[   50.798424][ T4230] 9pnet_fd: Insufficient options for proto=fd
[   51.099503][ T4235] loop0: detected capacity change from 0 to 1024
[   51.225751][ T4239] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   51.350260][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.359393][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.378343][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.388834][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.412034][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.429917][ T4241] netlink: 20 bytes leftover after parsing attributes in process `syz.2.261'.
[   51.487519][ T4249] loop2: detected capacity change from 0 to 1024
[   51.497930][ T4249] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   51.521926][ T4249] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #11: comm syz.2.264: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   51.541975][ T4249] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.264: couldn't read orphan inode 11 (err -117)
[   51.575217][ T4249] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.264: Invalid block bitmap block 0 in block_group 0
[   51.598769][ T4249] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.264: Failed to acquire dquot type 0
[   51.613592][ T4251] netlink: 8 bytes leftover after parsing attributes in process `syz.4.263'.
[   51.693864][ T4260] loop3: detected capacity change from 0 to 128
[   51.701183][ T4260] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   51.715817][ T4262] netlink: 'syz.1.265': attribute type 13 has an invalid length.
[   51.727705][ T4260] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   51.764366][ T4262] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   51.809431][ T4262] loop1: detected capacity change from 0 to 128
[   51.820974][ T4262] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   51.845323][ T4262] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   51.942047][ T4273] 9pnet_fd: Insufficient options for proto=fd
[   52.156355][ T4275] loop3: detected capacity change from 0 to 512
[   52.172770][ T4275] EXT4-fs: Ignoring removed oldalloc option
[   52.191997][ T4275] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.271: Parent and EA inode have the same ino 15
[   52.206107][ T4275] EXT4-fs (loop3): Remounting filesystem read-only
[   52.212799][ T4275] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   52.224614][ T4275] EXT4-fs (loop3): 1 orphan inode deleted
[   52.230791][ T4278] loop2: detected capacity change from 0 to 512
[   52.231451][ T4275] SELinux: (dev loop3, type ext4) getxattr errno 5
[   52.237970][ T4278] EXT4-fs: Ignoring removed oldalloc option
[   52.267611][ T4278] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.272: Parent and EA inode have the same ino 15
[   52.327291][ T4283] loop4: detected capacity change from 0 to 2048
[   52.341808][ T4278] EXT4-fs (loop2): Remounting filesystem read-only
[   52.348358][ T4278] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   52.366127][ T4283] EXT4-fs: Ignoring removed bh option
[   52.400938][ T4284] loop3: detected capacity change from 0 to 4096
[   52.409612][ T4278] EXT4-fs (loop2): 1 orphan inode deleted
[   52.417074][ T4278] SELinux: (dev loop2, type ext4) getxattr errno 5
[   52.431998][  T338] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   52.448135][  T338] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   52.460397][  T338] EXT4-fs (loop4): This should not happen!! Data will be lost
[   52.460397][  T338] 
[   52.470211][  T338] EXT4-fs (loop4): Total free blocks count 0
[   52.476279][  T338] EXT4-fs (loop4): Free/Dirty block details
[   52.482240][  T338] EXT4-fs (loop4): free_blocks=2415919104
[   52.488090][  T338] EXT4-fs (loop4): dirty_blocks=32
[   52.493385][  T338] EXT4-fs (loop4): Block reservation details
[   52.499393][  T338] EXT4-fs (loop4): i_reserved_data_blocks=2
[   52.516386][  T338] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   52.529032][  T338] EXT4-fs (loop4): This should not happen!! Data will be lost
[   52.529032][  T338] 
[   52.538881][   T50] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   52.607048][ T4298] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   52.607048][ T4298]    program syz.2.278 not setting count and/or reply_len properly
[   52.727230][ T4301] lo speed is unknown, defaulting to 1000
[   52.852840][ T4301] dummy0 speed is unknown, defaulting to 1000
[   53.197800][ T4310] loop1: detected capacity change from 0 to 1024
[   53.204360][ T4308] loop3: detected capacity change from 0 to 512
[   53.211283][ T4310] EXT4-fs: inline encryption not supported
[   53.223376][ T4310] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.236174][ T4310] EXT4-fs error (device loop1): ext4_map_blocks:705: inode #3: block 1: comm syz.1.281: lblock 1 mapped to illegal pblock 1 (length 1)
[   53.251167][ T4310] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.281: Failed to acquire dquot type 0
[   53.262916][ T4310] EXT4-fs error (device loop1): ext4_free_blocks:6589: comm syz.1.281: Freeing blocks not in datazone - block = 0, count = 4096
[   53.277594][ T4310] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.281: Invalid inode bitmap blk 0 in block_group 0
[   53.286372][ T4308] EXT4-fs (loop3): 1 orphan inode deleted
[   53.290468][ T4310] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   53.299598][ T4308] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.315224][   T11] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   53.332739][ T4310] EXT4-fs (loop1): 1 orphan inode deleted
[   53.341090][   T11] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 0
[   53.372560][ T4310] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   53.484360][ T4319] loop4: detected capacity change from 0 to 512
[   53.493247][ T4319] EXT4-fs: Ignoring removed oldalloc option
[   53.513708][ T4323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.286'.
[   53.522669][ T4323] tipc: Started in network mode
[   53.527570][ T4323] tipc: Node identity , cluster identity 8
[   53.530565][ T4319] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.284: Parent and EA inode have the same ino 15
[   53.546998][ T4326] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   53.546998][ T4326]    program syz.3.287 not setting count and/or reply_len properly
[   53.588613][ T4319] EXT4-fs (loop4): Remounting filesystem read-only
[   53.595225][ T4319] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   53.610654][ T4319] EXT4-fs (loop4): 1 orphan inode deleted
[   53.617375][ T4329] capability: warning: `syz.1.288' uses deprecated v2 capabilities in a way that may be insecure
[   53.617494][ T4319] SELinux: (dev loop4, type ext4) getxattr errno 5
[   53.702073][ T4332] loop2: detected capacity change from 0 to 1024
[   53.737064][ T4332] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.772278][ T4332] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #11: comm syz.2.289: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   53.845981][ T4332] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.289: couldn't read orphan inode 11 (err -117)
[   53.875896][ T4346] FAULT_INJECTION: forcing a failure.
[   53.875896][ T4346] name failslab, interval 1, probability 0, space 0, times 0
[   53.888573][ T4346] CPU: 0 UID: 0 PID: 4346 Comm: syz.0.293 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   53.888594][ T4346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   53.888604][ T4346] Call Trace:
[   53.888610][ T4346]  <TASK>
[   53.888699][ T4346]  dump_stack_lvl+0xf2/0x150
[   53.888720][ T4346]  dump_stack+0x15/0x1a
[   53.888735][ T4346]  should_fail_ex+0x24a/0x260
[   53.888757][ T4346]  should_failslab+0x8f/0xb0
[   53.888778][ T4346]  kmem_cache_alloc_node_noprof+0x59/0x320
[   53.888801][ T4346]  ? __alloc_skb+0x10b/0x310
[   53.888817][ T4346]  __alloc_skb+0x10b/0x310
[   53.888836][ T4346]  inet_netconf_notify_devconf+0x15a/0x210
[   53.888856][ T4346]  inetdev_event+0x743/0xc60
[   53.888893][ T4346]  ? ib_netdevice_event+0xe4/0x350
[   53.888915][ T4346]  ? __pfx_inetdev_event+0x10/0x10
[   53.888933][ T4346]  raw_notifier_call_chain+0x6f/0x1d0
[   53.889033][ T4346]  ? up_write+0x30/0xf0
[   53.889047][ T4346]  ? mutex_is_locked+0x12/0x30
[   53.889063][ T4346]  call_netdevice_notifiers_info+0xae/0x100
[   53.889164][ T4346]  unregister_netdevice_many_notify+0x98a/0x1280
[   53.889186][ T4346]  ? __fsnotify_parent+0x158/0x340
[   53.889203][ T4346]  unregister_netdevice_queue+0x1f4/0x220
[   53.889220][ T4346]  ppp_release+0x9c/0x140
[   53.889235][ T4346]  ? __pfx_ppp_release+0x10/0x10
[   53.889294][ T4346]  __fput+0x2ac/0x640
[   53.889337][ T4346]  __fput_sync+0x96/0xc0
[   53.889351][ T4346]  __x64_sys_close+0x55/0xe0
[   53.889367][ T4346]  x64_sys_call+0x266c/0x2dc0
[   53.889386][ T4346]  do_syscall_64+0xc9/0x1c0
[   53.889408][ T4346]  ? clear_bhb_loop+0x55/0xb0
[   53.889452][ T4346]  ? clear_bhb_loop+0x55/0xb0
[   53.889470][ T4346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.889489][ T4346] RIP: 0033:0x7ffbccdcd169
[   53.889501][ T4346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.889513][ T4346] RSP: 002b:00007ffbcb437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   53.889566][ T4346] RAX: ffffffffffffffda RBX: 00007ffbccfe5fa0 RCX: 00007ffbccdcd169
[   53.889575][ T4346] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   53.889583][ T4346] RBP: 00007ffbcb437090 R08: 0000000000000000 R09: 0000000000000000
[   53.889644][ T4346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.889652][ T4346] R13: 0000000000000000 R14: 00007ffbccfe5fa0 R15: 00007fff5ca438f8
[   53.889665][ T4346]  </TASK>
[   53.891811][ T4332] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.289: Invalid block bitmap block 0 in block_group 0
[   53.914289][   T29] kauditd_printk_skb: 302 callbacks suppressed
[   53.914301][   T29] audit: type=1326 audit(1741537606.013:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.923345][ T4332] Quota error (device loop2): write_blk: dquota write failed
[   53.924788][   T29] audit: type=1326 audit(1741537606.013:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.928902][ T4332] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   53.933385][   T29] audit: type=1326 audit(1741537606.013:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.933409][   T29] audit: type=1326 audit(1741537606.013:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.933432][   T29] audit: type=1326 audit(1741537606.013:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.933455][   T29] audit: type=1326 audit(1741537606.013:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.939941][ T4332] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.289: Failed to acquire dquot type 0
[   53.943872][   T29] audit: type=1326 audit(1741537606.013:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   53.943946][   T29] audit: type=1326 audit(1741537606.013:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4343 comm="syz.4.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f379fb8d169 code=0x7ffc0000
[   54.399630][ T4350] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   54.399630][ T4350]    program syz.0.295 not setting count and/or reply_len properly
[   54.461045][ T4353] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.511307][ T4353] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.552802][ T4367] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   54.552802][ T4367]    program syz.1.301 not setting count and/or reply_len properly
[   54.583707][ T4372] loop3: detected capacity change from 0 to 1024
[   54.592340][ T4353] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.603830][ T4372] EXT4-fs warning (device loop3): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[   54.616915][ T4372] SELinux: failed to load policy
[   54.623214][ T4372] netlink: 146340 bytes leftover after parsing attributes in process `syz.3.303'.
[   54.632759][ T4372] netlink: zone id is out of range
[   54.638024][ T4372] netlink: zone id is out of range
[   54.643208][ T4372] netlink: zone id is out of range
[   54.648375][ T4372] netlink: zone id is out of range
[   54.653570][ T4372] netlink: zone id is out of range
[   54.658708][ T4372] netlink: zone id is out of range
[   54.663816][ T4372] netlink: zone id is out of range
[   54.669981][ T4353] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.732432][ T4353] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.744891][ T4353] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.757977][ T4353] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.769662][ T4353] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.811357][ T4382] loop4: detected capacity change from 0 to 128
[   54.818097][ T4382] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   54.830330][ T4382] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   54.895340][ T4388] loop3: detected capacity change from 0 to 1024
[   54.918201][ T4386] syz.4.306: attempt to access beyond end of device
[   54.918201][ T4386] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   55.039384][ T4398] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   55.039384][ T4398]    program syz.4.309 not setting count and/or reply_len properly
[   55.380998][ T4408] loop0: detected capacity change from 0 to 2048
[   55.887263][ T4414] FAULT_INJECTION: forcing a failure.
[   55.887263][ T4414] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.900423][ T4414] CPU: 0 UID: 0 PID: 4414 Comm: syz.0.314 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   55.900445][ T4414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   55.900456][ T4414] Call Trace:
[   55.900462][ T4414]  <TASK>
[   55.900470][ T4414]  dump_stack_lvl+0xf2/0x150
[   55.900516][ T4414]  dump_stack+0x15/0x1a
[   55.900534][ T4414]  should_fail_ex+0x24a/0x260
[   55.900584][ T4414]  should_fail+0xb/0x10
[   55.900606][ T4414]  should_fail_usercopy+0x1a/0x20
[   55.900632][ T4414]  strncpy_from_user+0x25/0x210
[   55.900653][ T4414]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   55.900673][ T4414]  ? getname_flags+0x81/0x3b0
[   55.900755][ T4414]  getname_flags+0xb0/0x3b0
[   55.900785][ T4414]  user_path_at+0x26/0x120
[   55.900806][ T4414]  __se_sys_utimes+0xc6/0x210
[   55.901021][ T4414]  __x64_sys_utimes+0x31/0x40
[   55.901047][ T4414]  x64_sys_call+0x286a/0x2dc0
[   55.901075][ T4414]  do_syscall_64+0xc9/0x1c0
[   55.901147][ T4414]  ? clear_bhb_loop+0x55/0xb0
[   55.901174][ T4414]  ? clear_bhb_loop+0x55/0xb0
[   55.901255][ T4414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.901277][ T4414] RIP: 0033:0x7ffbccdcd169
[   55.901312][ T4414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.901330][ T4414] RSP: 002b:00007ffbcb437038 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb
[   55.901384][ T4414] RAX: ffffffffffffffda RBX: 00007ffbccfe5fa0 RCX: 00007ffbccdcd169
[   55.901397][ T4414] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000200
[   55.901408][ T4414] RBP: 00007ffbcb437090 R08: 0000000000000000 R09: 0000000000000000
[   55.901418][ T4414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.901427][ T4414] R13: 0000000000000000 R14: 00007ffbccfe5fa0 R15: 00007fff5ca438f8
[   55.901443][ T4414]  </TASK>
[   56.121689][ T4416] loop1: detected capacity change from 0 to 128
[   56.135625][ T4416] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   56.158888][ T4416] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.171283][ T4418] loop0: detected capacity change from 0 to 512
[   56.270902][ T4418] EXT4-fs (loop0): 1 orphan inode deleted
[   56.278542][ T4418] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.289074][   T50] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:3: Failed to release dquot type 1
[   56.369816][ T4433] loop4: detected capacity change from 0 to 128
[   56.376738][ T4433] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   56.401070][ T4433] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.419895][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[   56.427595][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[   56.440443][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.448209][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.456014][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.463702][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.471454][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.479317][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.487026][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.494663][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.502319][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.510003][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.517699][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.525400][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.533032][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.540725][   T24] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0
[   56.556390][ T4436] loop1: detected capacity change from 0 to 512
[   56.851396][ T4436] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.885215][ T4436] lo speed is unknown, defaulting to 1000
[   56.935378][ T4436] dummy0 speed is unknown, defaulting to 1000
[   57.451930][ T4447] loop2: detected capacity change from 0 to 512
[   57.496342][ T4447] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.323: bg 0: block 35: padding at end of block bitmap is not set
[   57.551140][ T4447] EXT4-fs (loop2): Remounting filesystem read-only
[   57.568213][   T24] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   57.582810][ T4447] EXT4-fs (loop2): 1 truncate cleaned up
[   57.640138][ T4447] SELinux: (dev loop2, type ext4) getxattr errno 5
[   57.871892][ T4459] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   57.913080][ T4465] loop1: detected capacity change from 0 to 1024
[   57.923075][ T4465] EXT4-fs: inline encryption not supported
[   57.938788][ T4465] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   57.965342][ T4465] EXT4-fs error (device loop1): ext4_map_blocks:705: inode #3: block 1: comm syz.1.332: lblock 1 mapped to illegal pblock 1 (length 1)
[   57.990438][ T4465] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.332: Failed to acquire dquot type 0
[   58.008591][ T4465] EXT4-fs error (device loop1): ext4_free_blocks:6589: comm syz.1.332: Freeing blocks not in datazone - block = 0, count = 4096
[   58.009667][ T4473] loop4: detected capacity change from 0 to 1024
[   58.030960][ T4465] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.332: Invalid inode bitmap blk 0 in block_group 0
[   58.046537][  T120] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[   58.067231][ T4473] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   58.087516][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   58.095338][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   58.105174][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.112938][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.120735][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.128413][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.136198][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.147186][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.158719][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.169210][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.178623][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.186459][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.194128][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.201841][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.209590][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.217300][ T3375] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   58.239065][ T4465] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   58.247889][  T120] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 0
[   58.260791][ T4473] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #11: comm syz.4.333: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   58.281225][ T4465] EXT4-fs (loop1): 1 orphan inode deleted
[   58.288555][ T3375] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   58.288659][ T4473] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.333: couldn't read orphan inode 11 (err -117)
[   58.318768][ T4465] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   58.429568][ T4473] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.333: Invalid block bitmap block 0 in block_group 0
[   58.488319][ T4473] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.333: Failed to acquire dquot type 0
[   58.506539][ T4496] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   58.623760][ T4506] loop4: detected capacity change from 0 to 512
[   58.631037][ T4506] EXT4-fs: Ignoring removed oldalloc option
[   58.640853][ T4506] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.346: Parent and EA inode have the same ino 15
[   58.657582][ T4506] EXT4-fs (loop4): Remounting filesystem read-only
[   58.664201][ T4506] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   58.720405][ T4506] EXT4-fs (loop4): 1 orphan inode deleted
[   58.738420][ T4511] syz.1.347: attempt to access beyond end of device
[   58.738420][ T4511] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   58.807792][ T4518] loop3: detected capacity change from 0 to 1024
[   58.917164][ T4506] SELinux: (dev loop4, type ext4) getxattr errno 5
[   59.032122][ T4524] loop1: detected capacity change from 0 to 512
[   59.104629][ T4524] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.133029][ T4524] lo speed is unknown, defaulting to 1000
[   59.183797][ T4524] dummy0 speed is unknown, defaulting to 1000
[   59.722371][ T4542] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   59.738924][ T4543] loop2: detected capacity change from 0 to 1024
[   59.774102][ T4543] EXT4-fs: inline encryption not supported
[   59.804459][ T4543] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   59.858277][ T4543] EXT4-fs error (device loop2): ext4_map_blocks:705: inode #3: block 1: comm syz.2.355: lblock 1 mapped to illegal pblock 1 (length 1)
[   59.895669][ T4548] FAULT_INJECTION: forcing a failure.
[   59.895669][ T4548] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.908877][ T4548] CPU: 0 UID: 0 PID: 4548 Comm: syz.0.357 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   59.908898][ T4548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   59.908908][ T4548] Call Trace:
[   59.908912][ T4548]  <TASK>
[   59.908938][ T4548]  dump_stack_lvl+0xf2/0x150
[   59.908963][ T4548]  dump_stack+0x15/0x1a
[   59.909018][ T4548]  should_fail_ex+0x24a/0x260
[   59.909046][ T4548]  should_fail+0xb/0x10
[   59.909067][ T4548]  should_fail_usercopy+0x1a/0x20
[   59.909111][ T4548]  _copy_to_user+0x20/0xa0
[   59.909131][ T4548]  simple_read_from_buffer+0xa0/0x110
[   59.909159][ T4548]  proc_fail_nth_read+0xf9/0x140
[   59.909295][ T4548]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   59.909346][ T4548]  vfs_read+0x19b/0x6f0
[   59.909366][ T4548]  ? __rcu_read_unlock+0x4e/0x70
[   59.909481][ T4548]  ? __fget_files+0x17c/0x1c0
[   59.909507][ T4548]  ksys_read+0xe8/0x1b0
[   59.909527][ T4548]  __x64_sys_read+0x42/0x50
[   59.909616][ T4548]  x64_sys_call+0x2874/0x2dc0
[   59.909642][ T4548]  do_syscall_64+0xc9/0x1c0
[   59.909766][ T4548]  ? clear_bhb_loop+0x55/0xb0
[   59.909790][ T4548]  ? clear_bhb_loop+0x55/0xb0
[   59.909815][ T4548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.909976][ T4548] RIP: 0033:0x7ffbccdcbb7c
[   59.910029][ T4548] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   59.910048][ T4548] RSP: 002b:00007ffbcb437030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   59.910062][ T4548] RAX: ffffffffffffffda RBX: 00007ffbccfe5fa0 RCX: 00007ffbccdcbb7c
[   59.910075][ T4548] RDX: 000000000000000f RSI: 00007ffbcb4370a0 RDI: 0000000000000006
[   59.910084][ T4548] RBP: 00007ffbcb437090 R08: 0000000000000000 R09: 0000000000000000
[   59.910093][ T4548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.910101][ T4548] R13: 0000000000000000 R14: 00007ffbccfe5fa0 R15: 00007fff5ca438f8
[   59.910113][ T4548]  </TASK>
[   59.911173][ T4543] __quota_error: 67 callbacks suppressed
[   59.911185][ T4543] Quota error (device loop2): write_blk: dquota write failed
[   60.116180][ T4543] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   60.240504][ T4550] loop4: detected capacity change from 0 to 512
[   60.274715][ T4550] EXT4-fs: Ignoring removed oldalloc option
[   60.335215][ T4543] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.355: Failed to acquire dquot type 0
[   60.350660][ T4543] EXT4-fs error (device loop2): ext4_free_blocks:6589: comm syz.2.355: Freeing blocks not in datazone - block = 0, count = 4096
[   60.364884][ T4543] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.355: Invalid inode bitmap blk 0 in block_group 0
[   60.384943][ T4550] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.358: Parent and EA inode have the same ino 15
[   60.397661][   T50] EXT4-fs error (device loop2): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   60.413058][   T29] audit: type=1326 audit(1741537612.473:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.436366][   T29] audit: type=1326 audit(1741537612.473:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.459589][   T29] audit: type=1326 audit(1741537612.473:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.483084][   T29] audit: type=1326 audit(1741537612.473:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.486741][ T4543] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   60.506506][   T29] audit: type=1326 audit(1741537612.473:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.525177][ T4543] EXT4-fs (loop2): 1 orphan inode deleted
[   60.538096][   T29] audit: type=1326 audit(1741537612.473:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.567072][   T29] audit: type=1326 audit(1741537612.473:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.575629][ T4550] EXT4-fs (loop4): Remounting filesystem read-only
[   60.590208][   T29] audit: type=1326 audit(1741537612.473:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   60.596744][ T4550] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   60.630277][ T4550] EXT4-fs (loop4): 1 orphan inode deleted
[   60.634359][   T50] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:3: Failed to release dquot type 0
[   60.636527][ T4550] SELinux: (dev loop4, type ext4) getxattr errno 5
[   60.670856][ T4557] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   60.670856][ T4557]    program syz.0.362 not setting count and/or reply_len properly
[   60.688135][ T4543] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   60.806947][ T4568] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   60.843355][ T4571] loop2: detected capacity change from 0 to 128
[   60.865289][ T4571] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.889918][ T4571] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.090224][ T4584] loop1: detected capacity change from 0 to 512
[   61.899896][ T4586] loop4: detected capacity change from 0 to 512
[   62.318751][ T4591] FAULT_INJECTION: forcing a failure.
[   62.318751][ T4591] name failslab, interval 1, probability 0, space 0, times 0
[   62.331551][ T4591] CPU: 0 UID: 0 PID: 4591 Comm: syz.0.373 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   62.331573][ T4591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   62.331588][ T4591] Call Trace:
[   62.331620][ T4591]  <TASK>
[   62.331628][ T4591]  dump_stack_lvl+0xf2/0x150
[   62.331655][ T4591]  dump_stack+0x15/0x1a
[   62.331672][ T4591]  should_fail_ex+0x24a/0x260
[   62.331711][ T4591]  should_failslab+0x8f/0xb0
[   62.331775][ T4591]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   62.331796][ T4591]  ? __d_alloc+0x3d/0x350
[   62.331818][ T4591]  __d_alloc+0x3d/0x350
[   62.331839][ T4591]  d_alloc_pseudo+0x1e/0x80
[   62.331900][ T4591]  alloc_file_pseudo+0x73/0x160
[   62.331919][ T4591]  __shmem_file_setup+0x1bb/0x1f0
[   62.331953][ T4591]  shmem_file_setup+0x3b/0x50
[   62.332004][ T4591]  __se_sys_memfd_create+0x2e1/0x5a0
[   62.332101][ T4591]  __x64_sys_memfd_create+0x31/0x40
[   62.332151][ T4591]  x64_sys_call+0x2d4c/0x2dc0
[   62.332173][ T4591]  do_syscall_64+0xc9/0x1c0
[   62.332223][ T4591]  ? clear_bhb_loop+0x55/0xb0
[   62.332255][ T4591]  ? clear_bhb_loop+0x55/0xb0
[   62.332275][ T4591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.332323][ T4591] RIP: 0033:0x7ffbccdcd169
[   62.332338][ T4591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.332389][ T4591] RSP: 002b:00007ffbcb436e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   62.332404][ T4591] RAX: ffffffffffffffda RBX: 0000000000000513 RCX: 00007ffbccdcd169
[   62.332417][ T4591] RDX: 00007ffbcb436ef0 RSI: 0000000000000000 RDI: 00007ffbcce4ec3c
[   62.332429][ T4591] RBP: 0000400000000c40 R08: 00007ffbcb436bb7 R09: 00007ffbcb436e40
[   62.332441][ T4591] R10: 000000000000000a R11: 0000000000000202 R12: 0000400000000200
[   62.332478][ T4591] R13: 00007ffbcb436ef0 R14: 00007ffbcb436eb0 R15: 00004000000006c0
[   62.332494][ T4591]  </TASK>
[   62.938962][ T4592] loop2: detected capacity change from 0 to 512
[   62.971452][ T4592] EXT4-fs: Ignoring removed oldalloc option
[   63.312525][ T4592] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.374: Parent and EA inode have the same ino 15
[   63.338924][ T4596] netlink: 4 bytes leftover after parsing attributes in process `syz.0.375'.
[   63.426073][ T4596] erspan0: entered promiscuous mode
[   63.541544][ T4596] macvtap1: entered promiscuous mode
[   63.547003][ T4596] macvtap1: entered allmulticast mode
[   63.552392][ T4596] erspan0: entered allmulticast mode
[   63.596336][ T4592] EXT4-fs (loop2): Remounting filesystem read-only
[   63.603044][ T4592] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   63.617695][ T4584] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.648016][ T4586] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.682946][ T4586] lo speed is unknown, defaulting to 1000
[   63.736867][ T4586] dummy0 speed is unknown, defaulting to 1000
[   63.812042][ T4592] EXT4-fs (loop2): 1 orphan inode deleted
[   63.889313][ T4592] SELinux: (dev loop2, type ext4) getxattr errno 5
[   64.051984][ T4610] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   64.108763][ T4618] loop0: detected capacity change from 0 to 512
[   64.126553][ T4621] netlink: 12 bytes leftover after parsing attributes in process `syz.2.381'.
[   64.135576][ T4621] tipc: Started in network mode
[   64.140461][ T4621] tipc: Node identity , cluster identity 8
[   64.198767][ T4626] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   64.198767][ T4626]    program syz.1.383 not setting count and/or reply_len properly
[   64.237723][ T4628] loop4: detected capacity change from 0 to 512
[   64.246389][ T4618] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.287247][ T4628] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.310636][ T4628] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.384: Failed to acquire dquot type 0
[   64.333791][ T4628] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 3: comm syz.4.384: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   64.374023][ T4628] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 3: comm syz.4.384: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   64.424824][ T4638] loop0: detected capacity change from 0 to 128
[   64.477665][ T4642] netlink: 108 bytes leftover after parsing attributes in process `syz.4.388'.
[   64.486818][ T4642] netlink: 108 bytes leftover after parsing attributes in process `syz.4.388'.
[   64.495804][ T4642] netlink: 108 bytes leftover after parsing attributes in process `syz.4.388'.
[   64.538708][ T4645] 9pnet_fd: Insufficient options for proto=fd
[   64.663465][ T4649] loop2: detected capacity change from 0 to 512
[   64.737957][ T4649] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.352913][   T29] kauditd_printk_skb: 142 callbacks suppressed
[   65.352927][   T29] audit: type=1400 audit(1741537617.443:1041): avc:  denied  { create } for  pid=4656 comm="syz.4.394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   65.390018][ T4655] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   65.390018][ T4655]    program syz.3.393 not setting count and/or reply_len properly
[   65.464295][ T4667] netlink: 12 bytes leftover after parsing attributes in process `syz.1.396'.
[   65.473315][ T4667] tipc: Started in network mode
[   65.478195][ T4667] tipc: Node identity , cluster identity 8
[   65.512788][   T29] audit: type=1326 audit(1741537617.603:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.536328][   T29] audit: type=1326 audit(1741537617.603:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.559767][   T29] audit: type=1326 audit(1741537617.603:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.584762][ T4668] syz.4.397: attempt to access beyond end of device
[   65.584762][ T4668] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[   65.638131][   T29] audit: type=1326 audit(1741537617.693:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.661567][   T29] audit: type=1326 audit(1741537617.693:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.684988][   T29] audit: type=1326 audit(1741537617.693:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.708362][   T29] audit: type=1326 audit(1741537617.693:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.731925][   T29] audit: type=1326 audit(1741537617.693:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.755176][   T29] audit: type=1326 audit(1741537617.693:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4664 comm="syz.0.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbccdcd169 code=0x7ffc0000
[   65.904166][ T4687] loop1: detected capacity change from 0 to 128
[   65.921396][ T4687] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   65.943007][ T4687] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.952584][ T3311] EXT4-fs unmount: 94 callbacks suppressed
[   65.952597][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.060315][ T4697] loop1: detected capacity change from 0 to 512
[   66.067289][ T4697] EXT4-fs: Ignoring removed nobh option
[   66.086813][ T4697] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #3: comm syz.1.408: corrupted inode contents
[   66.099455][ T4697] EXT4-fs (loop1): Remounting filesystem read-only
[   66.107206][ T4697] EXT4-fs (loop1): 1 truncate cleaned up
[   66.113426][ T4697] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.128548][ T4697] SELinux: (dev loop1, type ext4) getxattr errno 5
[   66.135514][ T4697] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.263996][ T4705] FAULT_INJECTION: forcing a failure.
[   66.263996][ T4705] name failslab, interval 1, probability 0, space 0, times 0
[   66.276763][ T4705] CPU: 0 UID: 0 PID: 4705 Comm: syz.0.411 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   66.276786][ T4705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   66.276796][ T4705] Call Trace:
[   66.276800][ T4705]  <TASK>
[   66.276807][ T4705]  dump_stack_lvl+0xf2/0x150
[   66.276829][ T4705]  dump_stack+0x15/0x1a
[   66.276882][ T4705]  should_fail_ex+0x24a/0x260
[   66.276911][ T4705]  should_failslab+0x8f/0xb0
[   66.276975][ T4705]  kmem_cache_alloc_noprof+0x52/0x320
[   66.276993][ T4705]  ? skb_clone+0x154/0x1f0
[   66.277016][ T4705]  skb_clone+0x154/0x1f0
[   66.277036][ T4705]  __netlink_deliver_tap+0x2bd/0x4f0
[   66.277077][ T4705]  netlink_unicast+0x64a/0x670
[   66.277107][ T4705]  netlink_sendmsg+0x5cc/0x6e0
[   66.277191][ T4705]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.277222][ T4705]  __sock_sendmsg+0x140/0x180
[   66.277290][ T4705]  ____sys_sendmsg+0x326/0x4b0
[   66.277315][ T4705]  __sys_sendmmsg+0x227/0x4b0
[   66.277357][ T4705]  __x64_sys_sendmmsg+0x57/0x70
[   66.277409][ T4705]  x64_sys_call+0x29aa/0x2dc0
[   66.277499][ T4705]  do_syscall_64+0xc9/0x1c0
[   66.277524][ T4705]  ? clear_bhb_loop+0x55/0xb0
[   66.277559][ T4705]  ? clear_bhb_loop+0x55/0xb0
[   66.277579][ T4705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.277601][ T4705] RIP: 0033:0x7ffbccdcd169
[   66.277613][ T4705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.277627][ T4705] RSP: 002b:00007ffbcb437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   66.277649][ T4705] RAX: ffffffffffffffda RBX: 00007ffbccfe5fa0 RCX: 00007ffbccdcd169
[   66.277659][ T4705] RDX: 04000000000001f2 RSI: 0000400000000000 RDI: 0000000000000003
[   66.277672][ T4705] RBP: 00007ffbcb437090 R08: 0000000000000000 R09: 0000000000000000
[   66.277743][ T4705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.277752][ T4705] R13: 0000000000000000 R14: 00007ffbccfe5fa0 R15: 00007fff5ca438f8
[   66.277767][ T4705]  </TASK>
[   66.537365][ T4707] loop2: detected capacity change from 0 to 4096
[   66.552064][ T4707] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.575821][ T4713] loop0: detected capacity change from 0 to 1024
[   66.583637][ T4713] EXT4-fs: inline encryption not supported
[   66.589509][ T4711] netlink: 12 bytes leftover after parsing attributes in process `syz.3.413'.
[   66.589523][ T4711] tipc: Started in network mode
[   66.589531][ T4711] tipc: Node identity , cluster identity 8
[   66.609873][ T4709] loop1: detected capacity change from 0 to 4096
[   66.616617][ T4709] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.623785][ T4707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.641842][ T4713] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.664950][ T4713] EXT4-fs error (device loop0): ext4_map_blocks:705: inode #3: block 1: comm syz.0.414: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.686190][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.695333][ T4713] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.414: Failed to acquire dquot type 0
[   66.706908][ T4709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.720640][ T4713] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.414: Freeing blocks not in datazone - block = 0, count = 4096
[   66.734770][ T4709] FAULT_INJECTION: forcing a failure.
[   66.734770][ T4709] name failslab, interval 1, probability 0, space 0, times 0
[   66.747434][ T4709] CPU: 1 UID: 0 PID: 4709 Comm: syz.1.412 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   66.747458][ T4709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   66.747505][ T4709] Call Trace:
[   66.747511][ T4709]  <TASK>
[   66.747518][ T4709]  dump_stack_lvl+0xf2/0x150
[   66.747608][ T4709]  dump_stack+0x15/0x1a
[   66.747625][ T4709]  should_fail_ex+0x24a/0x260
[   66.747671][ T4709]  should_failslab+0x8f/0xb0
[   66.747699][ T4709]  __kmalloc_noprof+0xab/0x3f0
[   66.747719][ T4709]  ? find_tree_dqentry+0x3e/0x910
[   66.747743][ T4709]  find_tree_dqentry+0x3e/0x910
[   66.747845][ T4709]  ? __rcu_read_unlock+0x34/0x70
[   66.747911][ T4709]  qtree_read_dquot+0x353/0x4b0
[   66.747935][ T4709]  v2_read_dquot+0x96/0xd0
[   66.747953][ T4709]  dquot_acquire+0xc3/0x2b0
[   66.747978][ T4709]  ? __ext4_journal_start_sb+0x130/0x340
[   66.748057][ T4709]  ext4_acquire_dquot+0x170/0x210
[   66.748075][ T4709]  dqget+0x522/0x8b0
[   66.748174][ T4709]  dquot_set_dqblk+0x2b/0x8f0
[   66.748206][ T4709]  ? make_kgid+0x113/0x300
[   66.748226][ T4709]  quota_setquota+0x32c/0x370
[   66.748289][ T4709]  do_quotactl+0x5de/0x6d0
[   66.748333][ T4709]  __se_sys_quotactl+0x201/0x660
[   66.748354][ T4709]  __x64_sys_quotactl+0x55/0x70
[   66.748372][ T4709]  x64_sys_call+0x826/0x2dc0
[   66.748396][ T4709]  do_syscall_64+0xc9/0x1c0
[   66.748488][ T4709]  ? clear_bhb_loop+0x55/0xb0
[   66.748512][ T4709]  ? clear_bhb_loop+0x55/0xb0
[   66.748537][ T4709]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.748560][ T4709] RIP: 0033:0x7f868e7fd169
[   66.748575][ T4709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.748607][ T4709] RSP: 002b:00007f868ce67038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   66.748625][ T4709] RAX: ffffffffffffffda RBX: 00007f868ea15fa0 RCX: 00007f868e7fd169
[   66.748637][ T4709] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: ffffffff80000801
[   66.748647][ T4709] RBP: 00007f868ce67090 R08: 0000000000000000 R09: 0000000000000000
[   66.748657][ T4709] R10: 0000400000000280 R11: 0000000000000246 R12: 0000000000000001
[   66.748669][ T4709] R13: 0000000000000000 R14: 00007f868ea15fa0 R15: 00007fffb82698a8
[   66.748685][ T4709]  </TASK>
[   66.748694][ T4709] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.412: Failed to acquire dquot type 1
[   66.761630][ T4725] loop2: detected capacity change from 0 to 128
[   66.798286][ T4727] loop4: detected capacity change from 0 to 512
[   66.802941][ T4725] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   66.803875][ T4713] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.414: Invalid inode bitmap blk 0 in block_group 0
[   66.813131][ T4727] EXT4-fs: Ignoring removed oldalloc option
[   66.813990][ T4713] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   66.844270][ T4725] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   66.855918][ T4713] EXT4-fs (loop0): 1 orphan inode deleted
[   66.905299][   T50] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.920234][ T4713] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.928999][ T4727] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.419: Parent and EA inode have the same ino 15
[   66.949686][   T50] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:3: Failed to release dquot type 0
[   66.988672][ T4727] EXT4-fs (loop4): Remounting filesystem read-only
[   66.996273][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.006521][ T4727] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   67.134520][ T4713] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   67.154544][ T4735] SELinux:  Context system_u:object_r:printer_device_t:s0 is not valid (left unmapped).
[   67.158724][ T4734] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in;
[   67.158724][ T4734]    program syz.1.420 not setting count and/or reply_len properly
[   67.166258][ T4727] EXT4-fs (loop4): 1 orphan inode deleted
[   67.201673][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.206871][ T4727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.258218][ T4744] netlink: 32 bytes leftover after parsing attributes in process `syz.0.423'.
[   67.273267][ T4727] SELinux: (dev loop4, type ext4) getxattr errno 5
[   67.297447][ T4727] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.374090][ T4761] loop0: detected capacity change from 0 to 128
[   67.382084][ T4761] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   67.401433][ T4762] netlink: 196 bytes leftover after parsing attributes in process `syz.3.425'.
[   67.416105][ T4761] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   67.439221][ T4766] netlink: 12 bytes leftover after parsing attributes in process `syz.2.432'.
[   67.448332][ T4766] tipc: Started in network mode
[   67.453194][ T4766] tipc: Node identity , cluster identity 8
[   67.510222][ T4770] loop0: detected capacity change from 0 to 2048
[   67.526425][ T4772] loop4: detected capacity change from 0 to 1024
[   67.539400][ T4772] EXT4-fs: inline encryption not supported
[   67.545814][ T4772] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.576591][ T4770] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842e02c, mo2=0002]
[   67.585528][ T4770] System zones: 0-7
[   67.589350][ T4772] EXT4-fs error (device loop4): ext4_map_blocks:705: inode #3: block 1: comm syz.4.435: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.589932][ T4770] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.638288][ T4772] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.435: Failed to acquire dquot type 0
[   67.653675][ T4772] EXT4-fs error (device loop4): ext4_free_blocks:6589: comm syz.4.435: Freeing blocks not in datazone - block = 0, count = 4096
[   67.678646][ T4772] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.435: Invalid inode bitmap blk 0 in block_group 0
[   67.696251][   T11] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.727630][ T4772] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   67.739182][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 0
[   67.751475][ T4772] EXT4-fs (loop4): 1 orphan inode deleted
[   67.758012][ T4772] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.773096][ T4772] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   67.805918][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.891200][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.929716][ T4791] vlan2: entered allmulticast mode
[   67.960681][ T4795] loop2: detected capacity change from 0 to 164
[   68.041810][ T4800] loop2: detected capacity change from 0 to 128
[   68.076186][ T4800] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   68.108894][ T4802] loop1: detected capacity change from 0 to 1024
[   68.156351][ T4800] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   68.301741][ T4802] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.338751][ T4802] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.445: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   68.508834][ T4802] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.445: couldn't read orphan inode 11 (err -117)
[   68.526495][ T4802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.593050][ T4802] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.445: Invalid block bitmap block 0 in block_group 0
[   68.642242][ T4802] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.445: Failed to acquire dquot type 0
[   68.734520][ T4817] loop4: detected capacity change from 0 to 512
[   68.757265][ T4817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.770051][ T4817] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.828783][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.847328][ T4817] SET target dimension over the limit!
[   68.916134][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.926023][ T4825] loop1: detected capacity change from 0 to 512
[   68.932691][ T4825] EXT4-fs: Ignoring removed oldalloc option
[   68.944061][ T4829] netlink: 12 bytes leftover after parsing attributes in process `syz.3.456'.
[   68.953059][ T4829] tipc: Started in network mode
[   68.958074][ T4829] tipc: Node identity , cluster identity 8
[   68.976330][ T4825] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.453: Parent and EA inode have the same ino 15
[   69.013655][ T4835] loop0: detected capacity change from 0 to 512
[   69.034606][ T4834] loop4: detected capacity change from 0 to 512
[   69.050348][ T4825] EXT4-fs (loop1): Remounting filesystem read-only
[   69.057084][ T4825] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   69.078756][ T4835] EXT4-fs: Ignoring removed nobh option
[   69.102988][ T4834] EXT4-fs: Ignoring removed oldalloc option
[   69.126284][ T4825] EXT4-fs (loop1): 1 orphan inode deleted
[   69.132610][ T4825] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.153948][ T4835] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #3: comm syz.0.457: corrupted inode contents
[   69.176603][ T4837] syz.3.458 uses obsolete (PF_INET,SOCK_PACKET)
[   69.184678][ T4834] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.455: Parent and EA inode have the same ino 15
[   69.205141][ T4825] SELinux: (dev loop1, type ext4) getxattr errno 5
[   69.213964][ T4835] EXT4-fs (loop0): Remounting filesystem read-only
[   69.225721][ T4825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.245757][ T4834] EXT4-fs (loop4): Remounting filesystem read-only
[   69.252297][ T4834] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   69.266876][ T4835] EXT4-fs (loop0): 1 truncate cleaned up
[   69.273021][ T4835] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.295157][ T4834] EXT4-fs (loop4): 1 orphan inode deleted
[   69.301272][ T4835] SELinux: (dev loop0, type ext4) getxattr errno 5
[   69.307228][ T4834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.322039][ T4835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.322540][ T4834] SELinux: (dev loop4, type ext4) getxattr errno 5
[   69.367577][ T4834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.390043][ T4849] loop1: detected capacity change from 0 to 128
[   69.422644][ T4846] netlink: 24 bytes leftover after parsing attributes in process `syz.0.461'.
[   69.509861][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[   69.517871][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[   69.541503][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.549268][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.556980][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.564621][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.572290][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.579943][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.587629][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.595394][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.603167][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.610898][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.611894][ T4859] loop4: detected capacity change from 0 to 128
[   69.618551][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.632466][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.640225][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.647916][ T3375] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[   69.673907][ T3375] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   69.769558][ T4866] FAULT_INJECTION: forcing a failure.
[   69.769558][ T4866] name failslab, interval 1, probability 0, space 0, times 0
[   69.782321][ T4866] CPU: 0 UID: 0 PID: 4866 Comm: syz.3.467 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   69.782351][ T4866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   69.782361][ T4866] Call Trace:
[   69.782366][ T4866]  <TASK>
[   69.782373][ T4866]  dump_stack_lvl+0xf2/0x150
[   69.782401][ T4866]  dump_stack+0x15/0x1a
[   69.782421][ T4866]  should_fail_ex+0x24a/0x260
[   69.782445][ T4866]  ? netlbl_cipsov4_add+0x31e/0x1280
[   69.782528][ T4866]  should_failslab+0x8f/0xb0
[   69.782571][ T4866]  __kmalloc_cache_noprof+0x4e/0x320
[   69.782593][ T4866]  netlbl_cipsov4_add+0x31e/0x1280
[   69.782614][ T4866]  ? genl_family_rcv_msg_attrs_parse+0x148/0x1a0
[   69.782695][ T4866]  ? genl_family_rcv_msg_attrs_parse+0x182/0x1a0
[   69.782766][ T4866]  genl_rcv_msg+0x620/0x6d0
[   69.782784][ T4866]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[   69.782810][ T4866]  ? should_fail_ex+0x31/0x260
[   69.782918][ T4866]  netlink_rcv_skb+0x12c/0x230
[   69.782947][ T4866]  ? __pfx_genl_rcv_msg+0x10/0x10
[   69.782973][ T4866]  genl_rcv+0x28/0x40
[   69.782991][ T4866]  netlink_unicast+0x599/0x670
[   69.783066][ T4866]  netlink_sendmsg+0x5cc/0x6e0
[   69.783093][ T4866]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.783125][ T4866]  __sock_sendmsg+0x140/0x180
[   69.783153][ T4866]  ____sys_sendmsg+0x326/0x4b0
[   69.783179][ T4866]  __sys_sendmsg+0x19d/0x230
[   69.783213][ T4866]  __x64_sys_sendmsg+0x46/0x50
[   69.783280][ T4866]  x64_sys_call+0x2734/0x2dc0
[   69.783300][ T4866]  do_syscall_64+0xc9/0x1c0
[   69.783328][ T4866]  ? clear_bhb_loop+0x55/0xb0
[   69.783354][ T4866]  ? clear_bhb_loop+0x55/0xb0
[   69.783379][ T4866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.783471][ T4866] RIP: 0033:0x7f6a2153d169
[   69.783484][ T4866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.783499][ T4866] RSP: 002b:00007f6a1fba7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.783557][ T4866] RAX: ffffffffffffffda RBX: 00007f6a21755fa0 RCX: 00007f6a2153d169
[   69.783570][ T4866] RDX: 0000000000000000 RSI: 0000400000000580 RDI: 0000000000000004
[   69.783582][ T4866] RBP: 00007f6a1fba7090 R08: 0000000000000000 R09: 0000000000000000
[   69.783640][ T4866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.783649][ T4866] R13: 0000000000000000 R14: 00007f6a21755fa0 R15: 00007ffc40de3b38
[   69.783664][ T4866]  </TASK>
[   70.029193][ T4864] loop1: detected capacity change from 0 to 512
[   70.047000][ T4864] EXT4-fs (loop1): orphan cleanup on readonly fs
[   70.058434][ T4864] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.468: bg 0: block 248: padding at end of block bitmap is not set
[   70.108834][ T4864] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.468: Failed to acquire dquot type 1
[   70.136567][ T4870] loop3: detected capacity change from 0 to 512
[   70.144690][ T4864] EXT4-fs (loop1): 1 truncate cleaned up
[   70.238457][ T4864] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.279150][ T4864] netlink: 24 bytes leftover after parsing attributes in process `syz.1.468'.
[   70.346945][ T4877] loop4: detected capacity change from 0 to 512
[   70.388334][   T29] kauditd_printk_skb: 259 callbacks suppressed
[   70.388350][   T29] audit: type=1326 audit(1741537622.483:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.477269][ T4877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.489965][ T4877] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.519598][ T4877] lo speed is unknown, defaulting to 1000
[   70.572180][ T4877] dummy0 speed is unknown, defaulting to 1000
[   70.707227][ T4882] loop0: detected capacity change from 0 to 512
[   70.761224][ T4870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.794400][ T4882] EXT4-fs: Ignoring removed nobh option
[   70.812723][   T29] audit: type=1326 audit(1741537622.523:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.836322][   T29] audit: type=1326 audit(1741537622.523:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.859657][   T29] audit: type=1326 audit(1741537622.523:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.882972][   T29] audit: type=1326 audit(1741537622.523:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.906284][   T29] audit: type=1326 audit(1741537622.523:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.929689][   T29] audit: type=1326 audit(1741537622.523:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.953030][   T29] audit: type=1326 audit(1741537622.523:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.976352][   T29] audit: type=1326 audit(1741537622.523:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   70.999671][   T29] audit: type=1326 audit(1741537622.523:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4874 comm="syz.2.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff77e8ed169 code=0x7ffc0000
[   71.075351][ T4870] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.099071][ T4870] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.469: Failed to acquire dquot type 0
[   71.135355][ T4870] EXT4-fs error (device loop3): ext4_search_dir:1505: inode #2: block 3: comm syz.3.469: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   71.157858][ T4870] EXT4-fs error (device loop3): ext4_search_dir:1505: inode #2: block 3: comm syz.3.469: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   71.180028][ T4882] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #3: comm syz.0.472: corrupted inode contents
[   71.214752][ T4882] EXT4-fs (loop0): Remounting filesystem read-only
[   71.231836][ T4882] EXT4-fs (loop0): 1 truncate cleaned up
[   71.239045][ T4864] syz.1.468 (4864) used greatest stack depth: 9272 bytes left
[   71.276771][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.304735][ T4882] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.346335][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.361387][ T4892] random: crng reseeded on system resumption
[   71.374443][ T4882] SELinux: (dev loop0, type ext4) getxattr errno 5
[   71.468119][ T4882] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.495538][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.572287][ T4907] netlink: 'syz.2.474': attribute type 29 has an invalid length.
[   71.607211][ T4916] loop1: detected capacity change from 0 to 512
[   71.624616][ T4916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.642701][ T4916] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.645972][ T4921] loop0: detected capacity change from 0 to 256
[   71.661157][ T4916] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.484: Failed to acquire dquot type 0
[   71.674739][ T4916] EXT4-fs error (device loop1): ext4_search_dir:1505: inode #2: block 3: comm syz.1.484: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   71.696824][ T4916] EXT4-fs error (device loop1): ext4_search_dir:1505: inode #2: block 3: comm syz.1.484: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   71.728544][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.791442][ T4932] netlink: 12 bytes leftover after parsing attributes in process `syz.0.490'.
[   71.800489][ T4932] tipc: Started in network mode
[   71.805388][ T4932] tipc: Node identity , cluster identity 8
[   71.817749][ T4936] loop3: detected capacity change from 0 to 128
[   71.826373][ T4938] loop1: detected capacity change from 0 to 128
[   71.834460][ T4938] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.840649][ T4936] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.847488][ T4938] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.864685][ T4936] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.921474][ T4942] loop0: detected capacity change from 0 to 128
[   71.929238][ T4942] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.953404][ T4942] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.991848][ T4948] loop3: detected capacity change from 0 to 512
[   72.007269][ T4948] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.019890][ T4948] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.034091][ T4948] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.498: Failed to acquire dquot type 0
[   72.057393][ T4948] EXT4-fs error (device loop3): ext4_search_dir:1505: inode #2: block 3: comm syz.3.498: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   72.091117][ T4959] loop1: detected capacity change from 0 to 128
[   72.106448][ T4959] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.121171][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.127609][ T4962] netlink: 12 bytes leftover after parsing attributes in process `syz.0.504'.
[   72.140565][ T4959] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.172241][ T4966] loop1: detected capacity change from 0 to 128
[   72.178817][ T4965] loop3: detected capacity change from 0 to 128
[   72.193230][ T4965] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.251725][ T4965] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.288717][ T4966] loop1: detected capacity change from 0 to 512
[   72.327112][ T4966] EXT4-fs (loop1): too many log groups per flexible block group
[   72.334873][ T4966] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   72.342505][ T4966] EXT4-fs (loop1): mount failed
[   72.350253][ T4980] netlink: 24 bytes leftover after parsing attributes in process `syz.0.512'.
[   72.355533][ T4966] netlink: 16 bytes leftover after parsing attributes in process `syz.1.506'.
[   72.375794][ T3454] ==================================================================
[   72.379858][ T4966] netlink: 160 bytes leftover after parsing attributes in process `syz.1.506'.
[   72.383893][ T3454] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_symlink
[   72.383926][ T3454] 
[   72.383931][ T3454] write to 0xffff888104268c94 of 4 bytes by task 3285 on cpu 1:
[   72.409849][ T3454]  shmem_symlink+0x344/0x390
[   72.414432][ T3454]  vfs_symlink+0xca/0x1d0
[   72.418750][ T3454]  do_symlinkat+0xe1/0x350
[   72.423155][ T3454]  __x64_sys_symlink+0x50/0x60
[   72.427905][ T3454]  x64_sys_call+0x28b0/0x2dc0
[   72.432575][ T3454]  do_syscall_64+0xc9/0x1c0
[   72.437071][ T3454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.443016][ T3454] 
[   72.445322][ T3454] read to 0xffff888104268c94 of 4 bytes by task 3454 on cpu 0:
[   72.453027][ T3454]  fill_mg_cmtime+0x58/0x280
[   72.457608][ T3454]  generic_fillattr+0x241/0x330
[   72.462451][ T3454]  shmem_getattr+0x17b/0x200
[   72.467115][ T3454]  vfs_getattr+0x172/0x1b0
[   72.471528][ T3454]  vfs_statx+0x12d/0x320
[   72.475759][ T3454]  vfs_fstatat+0xe4/0x130
[   72.480072][ T3454]  __se_sys_newfstatat+0x58/0x260
[   72.485084][ T3454]  __x64_sys_newfstatat+0x55/0x70
[   72.490093][ T3454]  x64_sys_call+0x236d/0x2dc0
[   72.494852][ T3454]  do_syscall_64+0xc9/0x1c0
[   72.499345][ T3454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.505250][ T3454] 
[   72.507555][ T3454] value changed: 0x1c2e848a -> 0x1c3b5986
[   72.513251][ T3454] 
[   72.515557][ T3454] Reported by Kernel Concurrency Sanitizer on:
[   72.521685][ T3454] CPU: 0 UID: 0 PID: 3454 Comm: udevd Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0
[   72.531913][ T3454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   72.541957][ T3454] ==================================================================