last executing test programs:

27.825550195s ago: executing program 3 (id=93):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001740)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3, 0x4, 0x0, 0x0, 0x10001}, {0x0, 0x5}, {0x9}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x8ee, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x9, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x7f, 0x0, 0x1, 0x3}, {0x80, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0xffffffff, 0x0, 0x5}, {}, {0x0, 0x0, 0x40008, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x2}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {0x0, 0x0, 0x2400000}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x5}, {}, {0x0, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {0x0, 0x0, 0xfffffffd}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x6, 0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0xfffffffd, 0x0, 0xffffffff}, {0x6}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x200, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {0x0, 0xfffffffc, 0x0, 0x2}, {0x9}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x6, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x2, 0x101}, {0x0, 0x5, 0x0, 0x6, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x4, 0x4}, {0x0, 0x2e9c, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8, 0x2, 0x6}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x4}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x6}, {0x0, 0x80000000, 0x0, 0x7dff800}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x3}], [{}, {}, {0x0, 0x1}, {0x5}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {0x4}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {}, {}, {0x3}, {0x4}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}, 0x1, 0x0, 0x0, 0x40014}, 0x0) (fail_nth: 12)

27.650423088s ago: executing program 3 (id=94):
r0 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000001c0)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r0, 0xffffffffffffffff, 0xa, 0x0, @val=@tracing={0x0, 0x5}}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a00)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000a80)={@map=r1, r4, 0x20, 0x2018, r0, @value=r2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x25, 0x0, 0x0, 0xb, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x4, 0x6, 0xfff, 0x7}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0)

27.647878238s ago: executing program 3 (id=95):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000100001000000000000000000050000"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x702, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))

27.371748143s ago: executing program 3 (id=97):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x62, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x5, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc1}, 0x0, 0x6, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000780)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100fcffffff0000000049000000080000000080000008000300030000000e00010300000064657673696d0000000f0002006e457464657673696d300000d2ddf31cdf4e20e74449d70e2f232ccfc5185108d571c3e8"], 0x44}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000200), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000000580)={"644122f97a00a6293e846b7523d5d495", 0x0, <r6=>0x0, {0x8, 0x5}, {0x9, 0x7fffffff}, 0x5, [0x2, 0x1, 0x203fe8c6, 0x8, 0x80000001, 0x4, 0x9, 0xe, 0x5, 0x1, 0x5, 0xffff, 0x1, 0x1, 0x6, 0xd5]})
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$getregset(0x4204, r7, 0x202, &(0x7f0000000080)={&(0x7f0000000040)=""/8, 0x8})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r4, 0x5000943f, &(0x7f0000001500)={{r0}, r6, 0x2e, @unused=[0x101, 0x8000000000000001, 0x10000, 0x2], @name="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"})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x9e, &(0x7f0000000280)={@multicast, @remote, @void, {@ipv4={0x800, @icmp={{0xc, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@ssrr={0x89, 0x1b, 0xf7, [@rand_addr=0x64010100, @empty, @local, @loopback, @rand_addr=0x64010102, @rand_addr=0x64010102]}]}}, @time_exceeded={0x3, 0x1, 0x0, 0x3, 0x61, 0x0, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x2f, 0x9, @local, @remote, {[@timestamp_addr={0x44, 0x44, 0x0, 0x1, 0x0, [{@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}}, {@rand_addr, 0x4f}, {@multicast2}, {@loopback}, {@local, 0x4}, {@multicast2}]}]}}}}}}}, 0x0)
ioctl$sock_ifreq(r1, 0x891e, &(0x7f00000004c0)={'pim6reg1\x00', @ifru_flags=0x2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8, 0x0, 0xffffffffffffffff}, 0x18)
creat(&(0x7f00000000c0)='./bus\x00', 0x1a2)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c252500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1ad8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000080000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = socket$kcm(0x28, 0x5, 0x0)
setsockopt$sock_attach_bpf(r10, 0x28, 0x2, 0x0, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000000000f2ffffffffffffff000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x14, &(0x7f0000001440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @printk={@lld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2002}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0xe, 0xfffffffffffffffd, &(0x7f00000001c0)="186bf7ffffffffffffffef0a3254", 0x0, 0xff, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0xa4c42, 0x108)

27.214539137s ago: executing program 3 (id=98):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000040), &(0x7f00000003c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

26.944926772s ago: executing program 3 (id=108):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)={0xfffffffffffffffd, 0xfffffffffffffffe, 0xa, 0xd2, 0x5, 0x2000000000002, 0x7, 0x0, 0xc})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000540), 0x402, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x800, 0x0)

26.904731872s ago: executing program 32 (id=108):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)={0xfffffffffffffffd, 0xfffffffffffffffe, 0xa, 0xd2, 0x5, 0x2000000000002, 0x7, 0x0, 0xc})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000540), 0x402, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x800, 0x0)

12.423069095s ago: executing program 4 (id=377):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r0}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

12.403211716s ago: executing program 4 (id=378):
r0 = syz_open_dev$usbfs(0x0, 0x204, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000feffffff850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
setrlimit(0x40000000000008, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x108000)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0xdd3}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', <r4=>0x0, 0x4, 0x1, 0x8, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @loopback}, 0x8001, 0x80, 0x9, 0x7ff}})
setsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, r4}, 0x14)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x81, 0x0, 0x1, 0x101, 0x0})

12.388070786s ago: executing program 4 (id=379):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

11.452675324s ago: executing program 4 (id=400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r2 = open(&(0x7f0000000340)='./file1\x00', 0x4c27e, 0x6e)
fallocate(r2, 0x0, 0x0, 0x8800000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r3, 0x20, 0x0, 0x8000)

11.216643558s ago: executing program 4 (id=403):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r1 = syz_io_uring_setup(0x5ca, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x3, 0x32c}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r1, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@fallback=r0, 0x44297362b390898, 0x0, 0x40, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x63, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r6}, 0x18)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES16=r5], &(0x7f0000000500)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r7}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6})
pipe(&(0x7f0000000400)={<r8=>0xffffffffffffffff})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r8, 0x0, r9, 0x0, 0x88000cc, 0x0)
process_vm_writev(0x0, &(0x7f0000000000), 0x0, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xe7}], 0x1, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@bridge_dellink={0x2c, 0x13, 0x5, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4, 0x7}}]}]}, 0x2c}}, 0x0)

10.176873968s ago: executing program 4 (id=431):
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="16000000000000000400000007"], 0x48) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x80000001, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) (async)
r1 = syz_open_pts(r0, 0x121500)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000280)=0x3)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="400000001000010400009a130000000000000000", @ANYRES32=0x0, @ANYBLOB="7b13000000000000200012800b00010067656e657665000010000280060005004e20000004000600"], 0x40}}, 0x40800) (async)
r3 = syz_pidfd_open(0xffffffffffffffff, 0x0)
pidfd_getfd(r3, r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xd}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r5, &(0x7f0000000340)={0x1d, r6, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) (async)
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4) (async)
sendmsg$inet(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048081) (async)
setsockopt$SO_J1939_FILTER(r5, 0x6b, 0x1, &(0x7f0000000580)=[{0x1, 0xffffffffffffffff, {0x0, 0x1, 0x2}, {0x1, 0x1}, 0x0, 0xfd}], 0x20)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newtfilter={0x2c, 0x11, 0x1, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x74, r6, {0xb, 0xfff2}, {0xfff1, 0x9}, {0x2, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x14, 0x7}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x20000050) (async)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r7, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c) (async)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000200)={0x1, &(0x7f0000000000)=[{0x6, 0x9, 0x8}]}, 0x10) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02})
socket$inet_sctp(0x2, 0x5, 0x84)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) (async)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r9}, 0x18) (async)
close(0x3) (async)
readv(0xffffffffffffffff, &(0x7f0000000080)=[{0x0}, {&(0x7f0000002140)=""/4096, 0x1000}], 0x2)

2.161031979s ago: executing program 5 (id=641):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_setup(0x403, &(0x7f0000000500)=<r3=>0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000240)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000580), &(0x7f00000005c0)=r5}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
io_submit(r3, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x12, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xffffffff, 0xfd}, 0x0, 0x0, 0x800002, 0x6, 0x2, 0xcb, 0xffff, 0x0, 0x8, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r6, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r8, @ANYBLOB="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"], 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0xe, 0x4, &(0x7f00000007c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffbffffc}, 0x94)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r9, 0x0, 0x48c, &(0x7f00000002c0)={0x1, 'wg1\x00', 0x2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000000)='./bus\x00', 0x2000404, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000ac0)="$eJzs3NFLU38Yx/Hn5/y5OdEtiKCgeqibuhm6/oAaoRANCnNSXQTHPKux0ybnDGMRuZvotr9DuuwuqP4Bb6Kb7ruTIOjGi+gbnrPpmU6durml7xfIeXae74fzdZvybLCt3n/7rJj3UnmrIgMxlQGRmqyJJNeruv/qxwG/HpKwmlwd+fXt/L0HD29nstnJadWpzMy1tKqOXfz4/OW7S58rI7Pvxz5EZSX5aPVn+vvK0MrZ1T8zTwueFjwtlStq6Vy5XLHmHFvnC14xpXrXsS3P1kLJs92mft4pLyxU1SrNj8YXXNvz1CpVtWhXtVLWiltV64lVKGkqldLRuJxsg22syS1PT1uZHdsm0tEdoeuGW5103UytdTO3fAR7AgAAfWb3+T+Y9Xee/7OzwXE/8/+Zved/Eeb/Lqk13dpj/sex4LoZK17/+23G/A8AAAAAAAAAAAAAAAAAAAAAwL9gzZiEMSaxfqyf8m9HRSQmIqbe7/E20SXhx9+EfvZ4/K/3aLvosNAH92IizpvF3GIuOAb9TF4K4ogt45KQ3/7zoS6op25lJ8fVl5RPzlI9v7SYi0i0kW9ItspfODUR5LU5/7/Ew9dPS0JOt75+umV+SK5cDuVTkpAvj6Usjsz7z+vN/KsJ1Zt3slvyw/46AAAAAACOg5Ru2Pb63e/7C2KyvR/kQ+8PGGOWdnt/YMvr60E5185XVAIAAAAAgEPzqi+KluPY7gGKqIgcIt75whiR3m8jIv1xbzQXN0SkD7ZxVEVMRIIzepD4j414WynTxppBEen53bKPotf/mQAAAAB02ubQv4/Q19dd3BEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACdPu98H1li/rdVo7BIPXS5y5L8gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Ef+BgAA//+4IRyf")
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r10)
sendmsg$NLBL_CIPSOV4_C_ADD(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="349936fa00dd981a00fbbe000000ae857c00", @ANYRES16=r11, @ANYBLOB="010000000000000000000100000008000100030000001c0004800500030001000000050003000000000005000300050000000800020003000000"], 0x40}}, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb5b8d3284e9edc15, 0xb, &(0x7f00000008c0)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x18)

1.820725566s ago: executing program 5 (id=647):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a00)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0)

1.783122926s ago: executing program 2 (id=648):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
setrlimit(0x40000000000008, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x108000)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0xdd3}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', <r4=>0x0, 0x4, 0x1, 0x8, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @loopback}, 0x8001, 0x80, 0x9, 0x7ff}})
setsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, r4}, 0x14)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x81, 0x0, 0x1, 0x101, 0x0})

1.751782717s ago: executing program 5 (id=650):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
gettid() (async)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) (async)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r1) (async)
close(r1)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r3, 0x400, 0x1) (async)
fcntl$setlease(r3, 0x400, 0x1)
r4 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
write$binfmt_script(r4, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
syz_io_uring_setup(0x1d0d, &(0x7f00000002c0)={0x0, 0x3e38, 0x8000, 0x2, 0xca, 0x0, r1}, &(0x7f0000000040), &(0x7f0000000380))
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.710773498s ago: executing program 2 (id=651):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="010000000400000008000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

899.675743ms ago: executing program 5 (id=656):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000480))
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r2, 0x7, &(0x7f0000001140)={0x1, 0x1, 0xfe5, 0x9, r1})

843.937864ms ago: executing program 2 (id=657):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000680), &(0x7f00000006c0), 0x9, r0}, 0x38)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002d000b12d25a80648c2594f90124fc60100c022300040000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0xfff1, &(0x7f0000000240)={&(0x7f0000000800)=@newqdisc={0x60, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x6, 0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x8}]}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0xc, 0xc89f, 0xffff5ef5, 0x0, 0x19, 0x3}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x803}, 0x20004004)

843.452364ms ago: executing program 1 (id=669):
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400017e)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
syncfs(0xffffffffffffffff)

826.716785ms ago: executing program 2 (id=658):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
socket$can_bcm(0x1d, 0x2, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="b70000008100003bbfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071105400000000001d400500000000004704000001ed00000f030000000000001d440000000000006b0a00fe000000007313000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff31a8fd3c0fd8b7ff831028e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646c0200000000000000020000e35208b0bb0d2cd829e654400e2438ec649dc76128610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda82fc9c4d7ecc7a803bf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714f62ba7a54f0c33d39000d0bfed3a6a59ff616236fd8f2477184bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06fa2e04cfe0649226c697d9e8eaade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00023ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a83469620c6e74e1f46132559c4f8700a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88f15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a920099c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40fc5d2f55ff07c53147de202ce517b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661061173f359e9052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff26b61aac8aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3ba18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e26534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336dfaa6d5d164301190bc2d4c04087729033342045804a28082abc3b4762302a271722fb515f31e0dd115a292f1e68481a62c49d15ea5460a29c60b1058fb7aa9bf4ee3cbe11b03711a15d730646b72d074dab1e8c429339f3460d324c17a4a8bfc7d7eab45bef00664d6dc823000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000080)=r1)
close(r2)

529.63835ms ago: executing program 1 (id=659):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
setrlimit(0x40000000000008, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x108000)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0xdd3}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', <r4=>0x0, 0x4, 0x1, 0x8, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @loopback}, 0x8001, 0x80, 0x9, 0x7ff}})
setsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, r4}, 0x14)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x81, 0x0, 0x1, 0x101, 0x0})

528.58109ms ago: executing program 2 (id=660):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r2 = open(&(0x7f0000000340)='./file1\x00', 0x4c27e, 0x6e)
fallocate(r2, 0x0, 0x0, 0x8800000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r3, 0x20, 0x0, 0x8000)

499.727691ms ago: executing program 0 (id=661):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a00)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0)

478.402881ms ago: executing program 0 (id=662):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
setrlimit(0x40000000000008, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x108000)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0xdd3}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', <r4=>0x0, 0x4, 0x1, 0x8, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @loopback}, 0x8001, 0x80, 0x9, 0x7ff}})
setsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, r4}, 0x14)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x81, 0x0, 0x1, 0x101, 0x0})

454.053292ms ago: executing program 1 (id=663):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x90410, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x108114, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x1, 0x0, 0x25b}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f00000001c0)=0x400000001, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x30004001)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
truncate(&(0x7f0000000400)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xaf2)
setsockopt$sock_attach_bpf(r1, 0x1, 0x24, &(0x7f0000000000), 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x40000800, @loopback, 0x800000}, 0x1c)
sendto$inet6(r0, 0x0, 0x2, 0x0, 0x0, 0x0)

406.528552ms ago: executing program 1 (id=665):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'dummy0\x00'})
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x3004408c)

406.299952ms ago: executing program 1 (id=666):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

404.707212ms ago: executing program 0 (id=668):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x140, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='#{*%-:)-{\x00')
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000001140)={0x1, 0x1, 0xfe5, 0x9, r1})

403.754852ms ago: executing program 1 (id=670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="010000000400000008000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

403.291672ms ago: executing program 2 (id=671):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid() (async)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
accept$unix(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000180)=0x6e)
r4 = getpid()
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000001946}, 0x80, 0x0, 0x0, 0x8, 0x1ff, 0x7fffffff, 0x0, 0x0, 0x8}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) (async)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000001946}, 0x80, 0x0, 0x0, 0x8, 0x1ff, 0x7fffffff, 0x0, 0x0, 0x8}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000140)=0xcd9)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000100)={0x4})
close_range(r5, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r8, &(0x7f0000000040)=[{&(0x7f0000000240)='4', 0x1}], 0x1) (async)
writev(r8, &(0x7f0000000040)=[{&(0x7f0000000240)='4', 0x1}], 0x1)

389.008802ms ago: executing program 0 (id=672):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004"], 0x48) (async)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c}, 0x94) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) (async)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000280)='./file1\x00', 0x808010, &(0x7f0000000640)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES32], 0x1, 0x2b8, &(0x7f00000006c0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1) (async)
sendfile(r2, r1, 0x0, 0x3ffff)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[], 0x15)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x2000af1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10) (async)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x600002, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0) (async, rerun: 32)
r7 = socket(0x10, 0x3, 0x0) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 32)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r8}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) (async, rerun: 32)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4048000) (async)
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101840, 0x0) (async, rerun: 64)
dup(r3) (rerun: 64)

242.062946ms ago: executing program 0 (id=673):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000d40)=ANY=[@ANYRES32=r1], 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4044004)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000900)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd608a96460014040000ffff00000000000000000000000000fe8000000000000000000000000000aa"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYRESHEX=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
msgsnd(0x0, &(0x7f0000000300)={0x2}, 0x8, 0x800)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000600)={'syztnl2\x00', <r4=>0x0, 0x0, 0xfe, 0xf7, 0x3ff, 0x40, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, 0x10, 0x80, 0x2, 0x7}})
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000680)=0xffffffffffffffff, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0xe, &(0x7f0000000380)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @ldst={0x1, 0x0, 0x3, 0x3, 0xb, 0xffffffffffffffff, 0xfffffffffffffffc}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x9c, &(0x7f0000000540)=""/156, 0x41100, 0x76, '\x00', r4, 0x0, r5, 0x8, &(0x7f00000006c0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000700)={0x2, 0x10, 0xb7, 0x9}, 0xffffffffffffffcc, 0x0, 0x0, 0x6, 0x0, &(0x7f00000007c0)=[{0x4, 0x4, 0x4, 0x2}, {0x1, 0x4, 0x8, 0x1}, {0x5, 0x4, 0x4, 0x8}, {0x1, 0x3, 0xd, 0x5}, {0x1, 0x1, 0xa, 0xd41c6b9123bf33c3}, {0x5, 0x3, 0x7, 0xb}], 0x10, 0x6}, 0x94)

170.480077ms ago: executing program 0 (id=674):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r1 = syz_io_uring_setup(0x5ca, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x3, 0x32c}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r1, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@fallback=r0, 0x44297362b390898, 0x0, 0x40, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x63, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r6}, 0x18)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES16=r5], &(0x7f0000000500)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r7}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6})
pipe(&(0x7f0000000400)={<r8=>0xffffffffffffffff})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r8, 0x0, r9, 0x0, 0x88000cc, 0x0)
process_vm_writev(0x0, &(0x7f0000000000), 0x0, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xe7}], 0x1, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@bridge_dellink={0x2c, 0x13, 0x5, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4, 0x7}}]}]}, 0x2c}}, 0x0)

59.124379ms ago: executing program 5 (id=675):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
socket$can_bcm(0x1d, 0x2, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000080)=r1)
close(r2)

0s ago: executing program 5 (id=676):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x80040c, &(0x7f0000000580)={[{@orlov}, {@norecovery}]}, 0x1, 0x5e8, &(0x7f0000001200)="$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")
socket$inet6(0xa, 0x3, 0x3a)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
timer_create(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x2}, 0x18)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x44)
ioctl$KDSETMODE(r4, 0x4b3a, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mkdir(&(0x7f00000001c0)='./bus\x00', 0x50)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x8804)
ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000100)=0x10000)
r6 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100, 0x0, 0x2f9}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000000)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r6, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r5, 0x5402, &(0x7f00000000c0)={0xffffffff, 0x0, 0x0, 0xffffffff, 0x0, "0400"})
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_x25_SIOCADDRT(r9, 0x890b, &(0x7f0000000040)={@remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2}, 0x200002, 'vlan1\x00'})
sendfile(r4, r3, 0x0, 0x3ffff)
sendfile(r4, r3, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

AN 0 to HW filter on device bond0
[   37.915198][ T3762] 8021q: adding VLAN 0 to HW filter on device team0
[   37.928570][ T3990] loop4: detected capacity change from 0 to 1024
[   37.931989][  T292] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.941997][  T292] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.953781][ T3990] EXT4-fs: Ignoring removed orlov option
[   37.974528][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.981650][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.994292][ T3990] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.017524][   T29] kauditd_printk_skb: 156 callbacks suppressed
[   38.017547][   T29] audit: type=1400 audit(1757393785.606:606): avc:  denied  { create } for  pid=3989 comm="syz.4.159" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.071825][   T29] audit: type=1400 audit(1757393785.646:607): avc:  denied  { read open } for  pid=3989 comm="syz.4.159" path="/31/bus/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.094757][   T29] audit: type=1400 audit(1757393785.646:608): avc:  denied  { write } for  pid=3989 comm="syz.4.159" name="bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.116488][   T29] audit: type=1400 audit(1757393785.646:609): avc:  denied  { ioctl } for  pid=3989 comm="syz.4.159" path="/31/bus/bus" dev="loop4" ino=18 ioctlcmd=0x4b3a scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.168076][ T4009] netlink: 'syz.0.165': attribute type 3 has an invalid length.
[   38.174984][ T3762] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.277900][ T4017] vhci_hcd: invalid port number 96
[   38.283153][ T4017] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   38.349056][ T4030] 9pnet_fd: Insufficient options for proto=fd
[   38.398029][ T3762] veth0_vlan: entered promiscuous mode
[   38.410628][ T4035] FAULT_INJECTION: forcing a failure.
[   38.410628][ T4035] name failslab, interval 1, probability 0, space 0, times 0
[   38.418557][ T4036] 9pnet_fd: Insufficient options for proto=fd
[   38.423394][ T4035] CPU: 1 UID: 0 PID: 4035 Comm: syz.0.172 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.423460][ T4035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   38.423472][ T4035] Call Trace:
[   38.423478][ T4035]  <TASK>
[   38.423486][ T4035]  __dump_stack+0x1d/0x30
[   38.423584][ T4035]  dump_stack_lvl+0xe8/0x140
[   38.423603][ T4035]  dump_stack+0x15/0x1b
[   38.423619][ T4035]  should_fail_ex+0x265/0x280
[   38.423709][ T4035]  should_failslab+0x8c/0xb0
[   38.423732][ T4035]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   38.423760][ T4035]  ? trace_probe_init+0x1a2/0x280
[   38.423780][ T4035]  kstrdup+0x3e/0xd0
[   38.423801][ T4035]  trace_probe_init+0x1a2/0x280
[   38.423856][ T4035]  alloc_trace_uprobe+0x8b/0x1e0
[   38.423925][ T4035]  create_local_trace_uprobe+0xb5/0x2c0
[   38.423954][ T4035]  perf_uprobe_init+0xc0/0x150
[   38.423982][ T4035]  perf_uprobe_event_init+0xc4/0x140
[   38.424069][ T4035]  perf_try_init_event+0xd6/0x540
[   38.424244][ T4035]  ? perf_event_alloc+0xb1c/0x1740
[   38.424271][ T4035]  perf_event_alloc+0xb27/0x1740
[   38.424300][ T4035]  __se_sys_perf_event_open+0x615/0x11c0
[   38.424350][ T4035]  ? __rcu_read_unlock+0x4f/0x70
[   38.424376][ T4035]  __x64_sys_perf_event_open+0x67/0x80
[   38.424423][ T4035]  x64_sys_call+0x7bd/0x2ff0
[   38.424442][ T4035]  do_syscall_64+0xd2/0x200
[   38.424488][ T4035]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.424509][ T4035]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.424535][ T4035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.424603][ T4035] RIP: 0033:0x7f85d7c4ebe9
[   38.424618][ T4035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.424634][ T4035] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   38.424652][ T4035] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   38.424664][ T4035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[   38.424676][ T4035] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   38.424687][ T4035] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   38.424778][ T4035] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   38.424794][ T4035]  </TASK>
[   38.424809][ T4035] trace_uprobe: Failed to allocate trace_uprobe.(-12)
[   38.430480][ T3762] veth1_vlan: entered promiscuous mode
[   38.666478][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.711622][ T3762] veth0_macvtap: entered promiscuous mode
[   38.733620][ T3762] veth1_macvtap: entered promiscuous mode
[   38.752606][ T4052] FAULT_INJECTION: forcing a failure.
[   38.752606][ T4052] name failslab, interval 1, probability 0, space 0, times 0
[   38.765451][ T4052] CPU: 0 UID: 0 PID: 4052 Comm: syz.0.178 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.765526][ T4052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   38.765535][ T4052] Call Trace:
[   38.765540][ T4052]  <TASK>
[   38.765545][ T4052]  __dump_stack+0x1d/0x30
[   38.765566][ T4052]  dump_stack_lvl+0xe8/0x140
[   38.765585][ T4052]  dump_stack+0x15/0x1b
[   38.765601][ T4052]  should_fail_ex+0x265/0x280
[   38.765679][ T4052]  should_failslab+0x8c/0xb0
[   38.765702][ T4052]  __kvmalloc_node_noprof+0x123/0x4e0
[   38.765728][ T4052]  ? copy_regset_to_user+0x7f/0x180
[   38.765746][ T4052]  copy_regset_to_user+0x7f/0x180
[   38.765794][ T4052]  arch_ptrace+0x23f/0x3f0
[   38.765811][ T4052]  __se_sys_ptrace+0xf3/0x2c0
[   38.765900][ T4052]  __x64_sys_ptrace+0x55/0x70
[   38.765987][ T4052]  x64_sys_call+0x286c/0x2ff0
[   38.766004][ T4052]  do_syscall_64+0xd2/0x200
[   38.766032][ T4052]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.766056][ T4052]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.766103][ T4052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.766119][ T4052] RIP: 0033:0x7f85d7c4ebe9
[   38.766131][ T4052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.766213][ T4052] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[   38.766256][ T4052] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   38.766268][ T4052] RDX: 0000000000000016 RSI: 0000000000000072 RDI: 000000000000000e
[   38.766359][ T4052] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   38.766371][ T4052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.766383][ T4052] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   38.766401][ T4052]  </TASK>
[   38.769461][ T3762] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.967238][ T3762] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.998455][  T315] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.013677][  T315] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.044180][  T315] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.058302][   T29] audit: type=1400 audit(1757393786.646:610): avc:  denied  { checkpoint_restore } for  pid=4060 comm="syz.1.180" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   39.061908][ T4063] 9pnet_fd: Insufficient options for proto=fd
[   39.088383][  T315] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.125084][   T29] audit: type=1400 audit(1757393786.706:611): avc:  denied  { mount } for  pid=3762 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   39.147175][   T29] audit: type=1400 audit(1757393786.706:612): avc:  denied  { mounton } for  pid=3762 comm="syz-executor" path="/root/syzkaller.O7Ccqa/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   39.231583][   T29] audit: type=1326 audit(1757393786.776:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4067 comm="syz.4.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde05c3ebe9 code=0x7ffc0000
[   39.254961][   T29] audit: type=1326 audit(1757393786.776:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4067 comm="syz.4.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fde05c3ebe9 code=0x7ffc0000
[   39.278249][   T29] audit: type=1326 audit(1757393786.776:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4067 comm="syz.4.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fde05c3ec23 code=0x7ffc0000
[   39.318468][ T4078] SELinux: failed to load policy
[   39.327992][ T4080] vlan2: entered allmulticast mode
[   39.416145][ T4093] 9pnet_fd: Insufficient options for proto=fd
[   39.503961][ T4099] vhci_hcd: invalid port number 96
[   39.509253][ T4099] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   39.516399][ T4084] loop2: detected capacity change from 0 to 512
[   39.520013][ T4098] vhci_hcd: invalid port number 96
[   39.524076][ T4084] EXT4-fs: journaled quota format not specified
[   39.527901][ T4098] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   39.562619][ T4104] __nla_validate_parse: 4 callbacks suppressed
[   39.562635][ T4104] netlink: 300 bytes leftover after parsing attributes in process `syz.5.197'.
[   39.581583][ T4104] syz.5.197 uses obsolete (PF_INET,SOCK_PACKET)
[   39.752912][ T4103] netlink: 197276 bytes leftover after parsing attributes in process `syz.1.196'.
[   39.820839][ T4111] FAULT_INJECTION: forcing a failure.
[   39.820839][ T4111] name failslab, interval 1, probability 0, space 0, times 0
[   39.833508][ T4111] CPU: 1 UID: 0 PID: 4111 Comm: syz.1.200 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   39.833603][ T4111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   39.833613][ T4111] Call Trace:
[   39.833618][ T4111]  <TASK>
[   39.833624][ T4111]  __dump_stack+0x1d/0x30
[   39.833664][ T4111]  dump_stack_lvl+0xe8/0x140
[   39.833679][ T4111]  dump_stack+0x15/0x1b
[   39.833692][ T4111]  should_fail_ex+0x265/0x280
[   39.833729][ T4111]  should_failslab+0x8c/0xb0
[   39.833751][ T4111]  __kmalloc_noprof+0xa5/0x3e0
[   39.833772][ T4111]  ? ip_options_get+0x52/0x350
[   39.833845][ T4111]  ip_options_get+0x52/0x350
[   39.833871][ T4111]  do_ip_setsockopt+0x19d4/0x2240
[   39.833891][ T4111]  ip_setsockopt+0x58/0x110
[   39.833909][ T4111]  ipv6_setsockopt+0xfb/0x130
[   39.834030][ T4111]  tcp_setsockopt+0x98/0xb0
[   39.834049][ T4111]  sock_common_setsockopt+0x69/0x80
[   39.834100][ T4111]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   39.834131][ T4111]  __sys_setsockopt+0x181/0x200
[   39.834154][ T4111]  __x64_sys_setsockopt+0x64/0x80
[   39.834229][ T4111]  x64_sys_call+0x20ec/0x2ff0
[   39.834249][ T4111]  do_syscall_64+0xd2/0x200
[   39.834277][ T4111]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   39.834364][ T4111]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   39.834385][ T4111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.834455][ T4111] RIP: 0033:0x7f26166febe9
[   39.834470][ T4111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.834483][ T4111] RSP: 002b:00007f261515f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   39.834565][ T4111] RAX: ffffffffffffffda RBX: 00007f2616935fa0 RCX: 00007f26166febe9
[   39.834576][ T4111] RDX: 0000000000000004 RSI: 0004000000000000 RDI: 0000000000000004
[   39.834587][ T4111] RBP: 00007f261515f090 R08: 0000000000000000 R09: 0000000000000000
[   39.834598][ T4111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.834608][ T4111] R13: 00007f2616936038 R14: 00007f2616935fa0 R15: 00007ffc6a2ebd48
[   39.834625][ T4111]  </TASK>
[   40.133299][ T4118] program syz.1.203 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   40.330771][ T4118] loop1: detected capacity change from 0 to 256
[   40.366275][ T4129] netlink: 'syz.1.206': attribute type 1 has an invalid length.
[   40.374004][ T4129] netlink: 228 bytes leftover after parsing attributes in process `syz.1.206'.
[   40.385830][ T4129] nfs: Bad value for 'source'
[   40.399386][ T4127] vhci_hcd: invalid port number 96
[   40.404569][ T4127] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   40.478077][ T4135] msdos: Unknown parameter 'ÿ'
[   40.484093][ T4133] veth0: entered promiscuous mode
[   40.489870][ T4133] netlink: 4 bytes leftover after parsing attributes in process `syz.0.208'.
[   40.543272][ T4139] loop1: detected capacity change from 0 to 1024
[   40.549974][ T4139] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   40.593256][ T4144] FAULT_INJECTION: forcing a failure.
[   40.593256][ T4144] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   40.606451][ T4144] CPU: 0 UID: 0 PID: 4144 Comm: syz.0.215 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   40.606497][ T4144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   40.606509][ T4144] Call Trace:
[   40.606515][ T4144]  <TASK>
[   40.606522][ T4144]  __dump_stack+0x1d/0x30
[   40.606543][ T4144]  dump_stack_lvl+0xe8/0x140
[   40.606562][ T4144]  dump_stack+0x15/0x1b
[   40.606596][ T4144]  should_fail_ex+0x265/0x280
[   40.606615][ T4144]  should_fail+0xb/0x20
[   40.606632][ T4144]  should_fail_usercopy+0x1a/0x20
[   40.606655][ T4144]  _copy_from_iter+0xd2/0xe80
[   40.606699][ T4144]  ? __build_skb_around+0x1a0/0x200
[   40.606783][ T4144]  ? __alloc_skb+0x223/0x320
[   40.606861][ T4144]  netlink_sendmsg+0x471/0x6b0
[   40.606884][ T4144]  ? __pfx_netlink_sendmsg+0x10/0x10
[   40.606949][ T4144]  __sock_sendmsg+0x142/0x180
[   40.607004][ T4144]  ____sys_sendmsg+0x31e/0x4e0
[   40.607031][ T4144]  ___sys_sendmsg+0x17b/0x1d0
[   40.607062][ T4144]  __x64_sys_sendmsg+0xd4/0x160
[   40.607109][ T4144]  x64_sys_call+0x191e/0x2ff0
[   40.607129][ T4144]  do_syscall_64+0xd2/0x200
[   40.607156][ T4144]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   40.607179][ T4144]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   40.607210][ T4144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.607231][ T4144] RIP: 0033:0x7f85d7c4ebe9
[   40.607246][ T4144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.607263][ T4144] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   40.607283][ T4144] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   40.607296][ T4144] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[   40.607308][ T4144] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   40.607386][ T4144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.607399][ T4144] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   40.607417][ T4144]  </TASK>
[   40.854746][ T4151] program syz.0.218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   40.883127][ T4151] loop0: detected capacity change from 0 to 256
[   40.933047][ T4156] loop0: detected capacity change from 0 to 1024
[   40.947403][ T4156] EXT4-fs: Ignoring removed orlov option
[   40.958335][ T4156] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.046148][ T4165] msdos: Unknown parameter 'ÿ'
[   41.203976][ T4169] loop5: detected capacity change from 0 to 512
[   41.221329][ T4169] EXT4-fs: journaled quota format not specified
[   41.250253][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.297515][ T4174] netlink: 197276 bytes leftover after parsing attributes in process `syz.4.226'.
[   41.454593][ T4185] loop4: detected capacity change from 0 to 1024
[   41.466525][ T4185] EXT4-fs: Ignoring removed nobh option
[   41.472188][ T4185] EXT4-fs: Ignoring removed bh option
[   41.507258][ T4185] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.537661][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.560460][ T4190] program syz.4.231 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   41.587926][ T4190] loop4: detected capacity change from 0 to 256
[   41.617679][ T4192] FAULT_INJECTION: forcing a failure.
[   41.617679][ T4192] name failslab, interval 1, probability 0, space 0, times 0
[   41.630389][ T4192] CPU: 0 UID: 0 PID: 4192 Comm: syz.4.232 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.630414][ T4192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   41.630425][ T4192] Call Trace:
[   41.630431][ T4192]  <TASK>
[   41.630438][ T4192]  __dump_stack+0x1d/0x30
[   41.630516][ T4192]  dump_stack_lvl+0xe8/0x140
[   41.630532][ T4192]  dump_stack+0x15/0x1b
[   41.630545][ T4192]  should_fail_ex+0x265/0x280
[   41.630589][ T4192]  should_failslab+0x8c/0xb0
[   41.630610][ T4192]  __kmalloc_node_noprof+0xa9/0x410
[   41.630637][ T4192]  ? x64_sys_call+0x191e/0x2ff0
[   41.630657][ T4192]  ? qdisc_alloc+0x65/0x440
[   41.630738][ T4192]  qdisc_alloc+0x65/0x440
[   41.630755][ T4192]  qdisc_create_dflt+0x7f/0x2d0
[   41.630776][ T4192]  taprio_init+0x286/0x5f0
[   41.630853][ T4192]  ? __pfx_taprio_init+0x10/0x10
[   41.630914][ T4192]  qdisc_create+0x58e/0x9e0
[   41.630944][ T4192]  tc_modify_qdisc+0xf2e/0x1420
[   41.631044][ T4192]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   41.631067][ T4192]  rtnetlink_rcv_msg+0x65a/0x6d0
[   41.631173][ T4192]  netlink_rcv_skb+0x123/0x220
[   41.631195][ T4192]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   41.631316][ T4192]  rtnetlink_rcv+0x1c/0x30
[   41.631338][ T4192]  netlink_unicast+0x5bd/0x690
[   41.631357][ T4192]  netlink_sendmsg+0x58b/0x6b0
[   41.631438][ T4192]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.631462][ T4192]  __sock_sendmsg+0x142/0x180
[   41.631504][ T4192]  ____sys_sendmsg+0x31e/0x4e0
[   41.631530][ T4192]  ___sys_sendmsg+0x17b/0x1d0
[   41.631559][ T4192]  __x64_sys_sendmsg+0xd4/0x160
[   41.631659][ T4192]  x64_sys_call+0x191e/0x2ff0
[   41.631692][ T4192]  do_syscall_64+0xd2/0x200
[   41.631728][ T4192]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.631805][ T4192]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   41.631907][ T4192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.631947][ T4192] RIP: 0033:0x7fde05c3ebe9
[   41.631965][ T4192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.631981][ T4192] RSP: 002b:00007fde046a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.632000][ T4192] RAX: ffffffffffffffda RBX: 00007fde05e75fa0 RCX: 00007fde05c3ebe9
[   41.632011][ T4192] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[   41.632051][ T4192] RBP: 00007fde046a7090 R08: 0000000000000000 R09: 0000000000000000
[   41.632063][ T4192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   41.632072][ T4192] R13: 00007fde05e76038 R14: 00007fde05e75fa0 R15: 00007fffacd4eb68
[   41.632087][ T4192]  </TASK>
[   41.897463][ T4166] delete_channel: no stack
[   41.936806][ T4198] FAULT_INJECTION: forcing a failure.
[   41.936806][ T4198] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   41.949941][ T4198] CPU: 0 UID: 0 PID: 4198 Comm: syz.4.235 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.950035][ T4198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   41.950044][ T4198] Call Trace:
[   41.950050][ T4198]  <TASK>
[   41.950056][ T4198]  __dump_stack+0x1d/0x30
[   41.950074][ T4198]  dump_stack_lvl+0xe8/0x140
[   41.950191][ T4198]  dump_stack+0x15/0x1b
[   41.950207][ T4198]  should_fail_ex+0x265/0x280
[   41.950239][ T4198]  should_fail+0xb/0x20
[   41.950254][ T4198]  should_fail_usercopy+0x1a/0x20
[   41.950311][ T4198]  _copy_from_user+0x1c/0xb0
[   41.950339][ T4198]  memdup_user+0x5e/0xd0
[   41.950361][ T4198]  strndup_user+0x68/0xb0
[   41.950384][ T4198]  __se_sys_mount+0x8e/0x2e0
[   41.950531][ T4198]  ? fput+0x8f/0xc0
[   41.950557][ T4198]  ? ksys_write+0x192/0x1a0
[   41.950575][ T4198]  __x64_sys_mount+0x67/0x80
[   41.950594][ T4198]  x64_sys_call+0x2b4d/0x2ff0
[   41.950612][ T4198]  do_syscall_64+0xd2/0x200
[   41.950664][ T4198]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.950685][ T4198]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   41.950728][ T4198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.950785][ T4198] RIP: 0033:0x7fde05c3ebe9
[   41.950797][ T4198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.950811][ T4198] RSP: 002b:00007fde046a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   41.950858][ T4198] RAX: ffffffffffffffda RBX: 00007fde05e75fa0 RCX: 00007fde05c3ebe9
[   41.950869][ T4198] RDX: 0000200000000180 RSI: 00002000000000c0 RDI: 0000200000000080
[   41.950880][ T4198] RBP: 00007fde046a7090 R08: 0000000000000000 R09: 0000000000000000
[   41.950891][ T4198] R10: 0000000002804080 R11: 0000000000000246 R12: 0000000000000001
[   41.950904][ T4198] R13: 00007fde05e76038 R14: 00007fde05e75fa0 R15: 00007fffacd4eb68
[   41.950920][ T4198]  </TASK>
[   42.012588][ T4200] msdos: Unknown parameter 'ÿ'
[   42.119011][ T4202] loop2: detected capacity change from 0 to 128
[   42.226390][ T4211] loop0: detected capacity change from 0 to 1024
[   42.248401][ T4211] EXT4-fs: Ignoring removed orlov option
[   42.257810][ T4211] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.300471][ T4213] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.242'.
[   42.307307][ T4216] FAULT_INJECTION: forcing a failure.
[   42.307307][ T4216] name failslab, interval 1, probability 0, space 0, times 0
[   42.310504][ T4213] netlink: 4 bytes leftover after parsing attributes in process `syz.4.242'.
[   42.322429][ T4216] CPU: 0 UID: 0 PID: 4216 Comm: syz.5.237 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.322456][ T4216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   42.322467][ T4216] Call Trace:
[   42.322474][ T4216]  <TASK>
[   42.322482][ T4216]  __dump_stack+0x1d/0x30
[   42.322503][ T4216]  dump_stack_lvl+0xe8/0x140
[   42.322521][ T4216]  dump_stack+0x15/0x1b
[   42.322561][ T4216]  should_fail_ex+0x265/0x280
[   42.322580][ T4216]  ? alloc_fdtable+0x8c/0x1d0
[   42.322650][ T4216]  should_failslab+0x8c/0xb0
[   42.322673][ T4216]  __kmalloc_cache_noprof+0x4c/0x320
[   42.322702][ T4216]  alloc_fdtable+0x8c/0x1d0
[   42.322722][ T4216]  dup_fd+0x4c7/0x540
[   42.322869][ T4216]  copy_files+0x98/0xf0
[   42.322893][ T4216]  copy_process+0xc5b/0x2000
[   42.322921][ T4216]  kernel_clone+0x16c/0x5c0
[   42.322944][ T4216]  ? vfs_write+0x7e8/0x960
[   42.323009][ T4216]  __x64_sys_clone+0xe6/0x120
[   42.323104][ T4216]  x64_sys_call+0x119c/0x2ff0
[   42.323124][ T4216]  do_syscall_64+0xd2/0x200
[   42.323163][ T4216]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.323193][ T4216]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   42.323215][ T4216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.323287][ T4216] RIP: 0033:0x7f7dd1a2ebe9
[   42.323300][ T4216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.323313][ T4216] RSP: 002b:00007f7dd0496fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   42.323329][ T4216] RAX: ffffffffffffffda RBX: 00007f7dd1c65fa0 RCX: 00007f7dd1a2ebe9
[   42.323341][ T4216] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000630c1000
[   42.323353][ T4216] RBP: 00007f7dd0497090 R08: 0000000000000000 R09: 0000000000000000
[   42.323364][ T4216] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   42.323428][ T4216] R13: 00007f7dd1c66038 R14: 00007f7dd1c65fa0 R15: 00007ffe48876398
[   42.323445][ T4216]  </TASK>
[   42.535870][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.567710][ T4222] netlink: 'syz.0.243': attribute type 3 has an invalid length.
[   42.575621][ T4222] netlink: 16 bytes leftover after parsing attributes in process `syz.0.243'.
[   42.618385][ T4231] 9pnet_fd: Insufficient options for proto=fd
[   42.636978][ T4234] FAULT_INJECTION: forcing a failure.
[   42.636978][ T4234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.650228][ T4234] CPU: 1 UID: 0 PID: 4234 Comm: syz.4.250 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.650244][ T4234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   42.650251][ T4234] Call Trace:
[   42.650254][ T4234]  <TASK>
[   42.650259][ T4234]  __dump_stack+0x1d/0x30
[   42.650271][ T4234]  dump_stack_lvl+0xe8/0x140
[   42.650400][ T4234]  dump_stack+0x15/0x1b
[   42.650413][ T4234]  should_fail_ex+0x265/0x280
[   42.650426][ T4234]  should_fail+0xb/0x20
[   42.650471][ T4234]  should_fail_usercopy+0x1a/0x20
[   42.650644][ T4234]  _copy_from_iter+0xd2/0xe80
[   42.650734][ T4234]  ? __build_skb_around+0x1a0/0x200
[   42.650821][ T4234]  ? __alloc_skb+0x223/0x320
[   42.650841][ T4234]  netlink_sendmsg+0x471/0x6b0
[   42.650856][ T4234]  ? __pfx_netlink_sendmsg+0x10/0x10
[   42.650869][ T4234]  __sock_sendmsg+0x142/0x180
[   42.650958][ T4234]  ____sys_sendmsg+0x31e/0x4e0
[   42.650992][ T4234]  ___sys_sendmsg+0x17b/0x1d0
[   42.651011][ T4234]  __x64_sys_sendmsg+0xd4/0x160
[   42.651026][ T4234]  x64_sys_call+0x191e/0x2ff0
[   42.651090][ T4234]  do_syscall_64+0xd2/0x200
[   42.651187][ T4234]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.651200][ T4234]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   42.651281][ T4234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.651337][ T4234] RIP: 0033:0x7fde05c3ebe9
[   42.651354][ T4234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.651363][ T4234] RSP: 002b:00007fde046a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   42.651374][ T4234] RAX: ffffffffffffffda RBX: 00007fde05e75fa0 RCX: 00007fde05c3ebe9
[   42.651381][ T4234] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000007
[   42.651388][ T4234] RBP: 00007fde046a7090 R08: 0000000000000000 R09: 0000000000000000
[   42.651394][ T4234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.651427][ T4234] R13: 00007fde05e76038 R14: 00007fde05e75fa0 R15: 00007fffacd4eb68
[   42.651443][ T4234]  </TASK>
[   42.851671][ T4235] netlink: 'syz.0.247': attribute type 1 has an invalid length.
[   42.859389][ T4235] netlink: 'syz.0.247': attribute type 4 has an invalid length.
[   42.867105][ T4235] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.247'.
[   42.876816][ T4235] netlink: 'syz.0.247': attribute type 1 has an invalid length.
[   42.884477][ T4235] netlink: 'syz.0.247': attribute type 4 has an invalid length.
[   42.892154][ T4235] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.247'.
[   42.920344][ T4239] program syz.5.252 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   42.950694][ T4239] loop5: detected capacity change from 0 to 256
[   43.013672][ T4252] loop5: detected capacity change from 0 to 1024
[   43.020438][ T4252] EXT4-fs: Ignoring removed orlov option
[   43.028630][ T4252] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.065737][ T4256] loop2: detected capacity change from 0 to 1024
[   43.072900][ T4256] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   43.087330][ T4258] FAULT_INJECTION: forcing a failure.
[   43.087330][ T4258] name failslab, interval 1, probability 0, space 0, times 0
[   43.095829][ T4256] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.257: Invalid block bitmap block 0 in block_group 0
[   43.100095][ T4258] CPU: 1 UID: 0 PID: 4258 Comm: syz.1.259 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   43.100121][ T4258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   43.100132][ T4258] Call Trace:
[   43.100139][ T4258]  <TASK>
[   43.100147][ T4258]  __dump_stack+0x1d/0x30
[   43.100166][ T4258]  dump_stack_lvl+0xe8/0x140
[   43.100247][ T4258]  dump_stack+0x15/0x1b
[   43.100263][ T4258]  should_fail_ex+0x265/0x280
[   43.100283][ T4258]  should_failslab+0x8c/0xb0
[   43.100306][ T4258]  __kmalloc_noprof+0xa5/0x3e0
[   43.100400][ T4258]  ? copy_splice_read+0xc2/0x660
[   43.100419][ T4258]  copy_splice_read+0xc2/0x660
[   43.100442][ T4258]  sock_splice_read+0xa5/0xb0
[   43.100586][ T4258]  ? __pfx_sock_splice_read+0x10/0x10
[   43.100614][ T4258]  splice_file_to_pipe+0x241/0x3a0
[   43.100674][ T4258]  do_splice+0xc4d/0x10b0
[   43.100694][ T4258]  ? __ia32_sys_rt_sigreturn+0x2a8/0x350
[   43.100713][ T4258]  ? __rcu_read_unlock+0x4f/0x70
[   43.100732][ T4258]  ? __fget_files+0x184/0x1c0
[   43.100756][ T4258]  __se_sys_splice+0x26c/0x3a0
[   43.100807][ T4258]  __x64_sys_splice+0x78/0x90
[   43.100826][ T4258]  x64_sys_call+0x28a3/0x2ff0
[   43.100845][ T4258]  do_syscall_64+0xd2/0x200
[   43.100873][ T4258]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.100962][ T4258]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   43.100988][ T4258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.101081][ T4258] RIP: 0033:0x7f26166febe9
[   43.101096][ T4258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.101111][ T4258] RSP: 002b:00007f261515f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   43.101129][ T4258] RAX: ffffffffffffffda RBX: 00007f2616935fa0 RCX: 00007f26166febe9
[   43.101141][ T4258] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000006
[   43.101153][ T4258] RBP: 00007f261515f090 R08: 0000000000000007 R09: 0000000000000009
[   43.101164][ T4258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.101255][ T4258] R13: 00007f2616936038 R14: 00007f2616935fa0 R15: 00007ffc6a2ebd48
[   43.101272][ T4258]  </TASK>
[   43.264764][ T4261] loop1: detected capacity change from 0 to 512
[   43.271988][ T4256] __quota_error: 377 callbacks suppressed
[   43.272001][ T4256] Quota error (device loop2): write_blk: dquota write failed
[   43.286123][ T4261] EXT4-fs: Ignoring removed oldalloc option
[   43.288333][ T4256] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   43.328415][ T4261] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.259: Parent and EA inode have the same ino 15
[   43.329569][ T4256] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.257: Failed to acquire dquot type 0
[   43.342115][ T4261] EXT4-fs (loop1): Remounting filesystem read-only
[   43.343032][ T4256] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.257: Freeing blocks not in datazone - block = 0, count = 4096
[   43.356431][ T4261] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30)
[   43.358905][ T4256] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.257: Invalid inode bitmap blk 0 in block_group 0
[   43.387335][ T4261] EXT4-fs (loop1): 1 orphan inode deleted
[   43.388871][ T4256] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   43.405229][ T1894] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[   43.411017][ T4256] EXT4-fs (loop2): 1 orphan inode deleted
[   43.423570][ T1894] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 0
[   43.464964][ T4256] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.464993][ T4261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.486840][ T4264] loop0: detected capacity change from 0 to 1024
[   43.495755][ T3762] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.506146][ T4264] EXT4-fs: Ignoring removed orlov option
[   43.515709][ T4264] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.549237][   T29] audit: type=1400 audit(1757393791.136:993): avc:  denied  { create } for  pid=4269 comm="syz.5.262" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   43.585879][   T29] audit: type=1326 audit(1757393791.166:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4269 comm="syz.5.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   43.609227][   T29] audit: type=1326 audit(1757393791.166:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4269 comm="syz.5.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   43.632482][   T29] audit: type=1326 audit(1757393791.166:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4269 comm="syz.5.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   43.655838][   T29] audit: type=1326 audit(1757393791.166:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4269 comm="syz.5.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   43.679249][   T29] audit: type=1400 audit(1757393791.166:998): avc:  denied  { unlink } for  pid=3762 comm="syz-executor" name="file0" dev="tmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   43.774449][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.794134][   T29] audit: type=1326 audit(1757393791.386:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.0.264" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f85d7c4ebe9 code=0x0
[   43.823960][ T4278] program syz.4.265 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   43.847269][ T4256] syz.2.257 (4256) used greatest stack depth: 9656 bytes left
[   43.855765][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.881627][ T4286] loop2: detected capacity change from 0 to 128
[   43.893959][ T4286] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   43.923086][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.932570][ T4286] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.946207][ T4278] loop4: detected capacity change from 0 to 256
[   43.975829][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.043664][ T4302] loop4: detected capacity change from 0 to 1024
[   44.050647][ T4302] EXT4-fs: Ignoring removed nobh option
[   44.056251][ T4302] EXT4-fs: Ignoring removed bh option
[   44.178650][ T4302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.191864][ T4310] FAULT_INJECTION: forcing a failure.
[   44.191864][ T4310] name failslab, interval 1, probability 0, space 0, times 0
[   44.204597][ T4310] CPU: 0 UID: 0 PID: 4310 Comm: syz.1.273 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.204619][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.204629][ T4310] Call Trace:
[   44.204634][ T4310]  <TASK>
[   44.204654][ T4310]  __dump_stack+0x1d/0x30
[   44.204675][ T4310]  dump_stack_lvl+0xe8/0x140
[   44.204694][ T4310]  dump_stack+0x15/0x1b
[   44.204737][ T4310]  should_fail_ex+0x265/0x280
[   44.204833][ T4310]  ? find_get_context+0x8f/0x540
[   44.204857][ T4310]  should_failslab+0x8c/0xb0
[   44.204876][ T4310]  __kmalloc_cache_noprof+0x4c/0x320
[   44.204956][ T4310]  find_get_context+0x8f/0x540
[   44.204985][ T4310]  __se_sys_perf_event_open+0x8a7/0x11c0
[   44.205015][ T4310]  __x64_sys_perf_event_open+0x67/0x80
[   44.205091][ T4310]  x64_sys_call+0x7bd/0x2ff0
[   44.205108][ T4310]  do_syscall_64+0xd2/0x200
[   44.205152][ T4310]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.205180][ T4310]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.205208][ T4310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.205278][ T4310] RIP: 0033:0x7f26166febe9
[   44.205294][ T4310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.205310][ T4310] RSP: 002b:00007f261511d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   44.205327][ T4310] RAX: ffffffffffffffda RBX: 00007f2616936180 RCX: 00007f26166febe9
[   44.205337][ T4310] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00002000000014c0
[   44.205347][ T4310] RBP: 00007f261511d090 R08: 0000000000000001 R09: 0000000000000000
[   44.205421][ T4310] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   44.205434][ T4310] R13: 00007f2616936218 R14: 00007f2616936180 R15: 00007ffc6a2ebd48
[   44.205453][ T4310]  </TASK>
[   44.398138][ T4302] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.274: Allocating blocks 385-513 which overlap fs metadata
[   44.423877][ T4302] EXT4-fs (loop4): pa ffff888106d44380: logic 16, phys. 129, len 24
[   44.431952][ T4302] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   44.459857][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.478504][ T4314] loop1: detected capacity change from 0 to 1024
[   44.480462][ T4316] loop4: detected capacity change from 0 to 128
[   44.486215][ T4314] EXT4-fs: Ignoring removed orlov option
[   44.499288][ T4314] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.516136][ T4316] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   44.528635][ T4316] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   44.593376][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.656268][ T4322] FAULT_INJECTION: forcing a failure.
[   44.656268][ T4322] name failslab, interval 1, probability 0, space 0, times 0
[   44.668991][ T4322] CPU: 0 UID: 0 PID: 4322 Comm: syz.0.278 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.669015][ T4322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.669026][ T4322] Call Trace:
[   44.669057][ T4322]  <TASK>
[   44.669066][ T4322]  __dump_stack+0x1d/0x30
[   44.669087][ T4322]  dump_stack_lvl+0xe8/0x140
[   44.669105][ T4322]  dump_stack+0x15/0x1b
[   44.669121][ T4322]  should_fail_ex+0x265/0x280
[   44.669140][ T4322]  ? __pfx_ip6_dst_gc+0x10/0x10
[   44.669224][ T4322]  should_failslab+0x8c/0xb0
[   44.669244][ T4322]  kmem_cache_alloc_noprof+0x50/0x310
[   44.669266][ T4322]  ? dst_alloc+0xbd/0x100
[   44.669284][ T4322]  ? __pfx_ip6_dst_gc+0x10/0x10
[   44.669328][ T4322]  dst_alloc+0xbd/0x100
[   44.669350][ T4322]  ip6_pol_route+0x6bf/0xb40
[   44.669388][ T4322]  ? ip6_pol_route+0x389/0xb40
[   44.669420][ T4322]  ip6_pol_route_input+0x42/0x60
[   44.669452][ T4322]  ? __pfx_ip6_pol_route_input+0x10/0x10
[   44.669468][ T4322]  fib6_rule_lookup+0x32c/0x470
[   44.669490][ T4322]  ? __pfx_ip6_pol_route_input+0x10/0x10
[   44.669543][ T4322]  ip6_route_input+0x412/0x4e0
[   44.669568][ T4322]  ip6_rcv_finish+0x1c1/0x340
[   44.669594][ T4322]  ipv6_rcv+0x72/0x150
[   44.669616][ T4322]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   44.669717][ T4322]  __netif_receive_skb+0x9e/0x270
[   44.669740][ T4322]  ? tun_rx_batched+0xc7/0x430
[   44.669758][ T4322]  netif_receive_skb+0x4b/0x2e0
[   44.669827][ T4322]  ? tun_rx_batched+0xc7/0x430
[   44.669916][ T4322]  tun_rx_batched+0xfc/0x430
[   44.669934][ T4322]  tun_get_user+0x1eb6/0x2680
[   44.669953][ T4322]  ? ref_tracker_alloc+0x1f2/0x2f0
[   44.669977][ T4322]  tun_chr_write_iter+0x15e/0x210
[   44.670061][ T4322]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   44.670154][ T4322]  vfs_write+0x527/0x960
[   44.670180][ T4322]  ksys_write+0xda/0x1a0
[   44.670199][ T4322]  __x64_sys_write+0x40/0x50
[   44.670216][ T4322]  x64_sys_call+0x27fe/0x2ff0
[   44.670268][ T4322]  do_syscall_64+0xd2/0x200
[   44.670291][ T4322]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.670312][ T4322]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.670339][ T4322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.670395][ T4322] RIP: 0033:0x7f85d7c4d69f
[   44.670410][ T4322] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   44.670474][ T4322] RSP: 002b:00007f85d66b7000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   44.670493][ T4322] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4d69f
[   44.670506][ T4322] RDX: 0000000000000062 RSI: 0000200000001000 RDI: 00000000000000c8
[   44.670530][ T4322] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   44.670540][ T4322] R10: 0000000000000062 R11: 0000000000000293 R12: 0000000000000001
[   44.670552][ T4322] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   44.670569][ T4322]  </TASK>
[   44.983707][ T4328] program syz.5.281 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   45.003962][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.024416][ T4328] loop5: detected capacity change from 0 to 256
[   45.049088][ T4335] FAULT_INJECTION: forcing a failure.
[   45.049088][ T4335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.062343][ T4335] CPU: 0 UID: 0 PID: 4335 Comm: syz.1.282 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.062372][ T4335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   45.062390][ T4335] Call Trace:
[   45.062397][ T4335]  <TASK>
[   45.062404][ T4335]  __dump_stack+0x1d/0x30
[   45.062426][ T4335]  dump_stack_lvl+0xe8/0x140
[   45.062445][ T4335]  dump_stack+0x15/0x1b
[   45.062461][ T4335]  should_fail_ex+0x265/0x280
[   45.062484][ T4335]  should_fail+0xb/0x20
[   45.062573][ T4335]  should_fail_usercopy+0x1a/0x20
[   45.062603][ T4335]  _copy_to_user+0x20/0xa0
[   45.062628][ T4335]  simple_read_from_buffer+0xb5/0x130
[   45.062646][ T4335]  proc_fail_nth_read+0x10e/0x150
[   45.062702][ T4335]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   45.062739][ T4335]  vfs_read+0x1a5/0x770
[   45.062755][ T4335]  ? __rcu_read_unlock+0x4f/0x70
[   45.062818][ T4335]  ? __fget_files+0x184/0x1c0
[   45.062840][ T4335]  ksys_read+0xda/0x1a0
[   45.062870][ T4335]  __x64_sys_read+0x40/0x50
[   45.062887][ T4335]  x64_sys_call+0x27bc/0x2ff0
[   45.062904][ T4335]  do_syscall_64+0xd2/0x200
[   45.062942][ T4335]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.062961][ T4335]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.062984][ T4335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.063025][ T4335] RIP: 0033:0x7f26166fd5fc
[   45.063038][ T4335] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   45.063052][ T4335] RSP: 002b:00007f261515f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   45.063067][ T4335] RAX: ffffffffffffffda RBX: 00007f2616935fa0 RCX: 00007f26166fd5fc
[   45.063077][ T4335] RDX: 000000000000000f RSI: 00007f261515f0a0 RDI: 0000000000000004
[   45.063087][ T4335] RBP: 00007f261515f090 R08: 0000000000000000 R09: 0000000000000000
[   45.063209][ T4335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.063220][ T4335] R13: 00007f2616936038 R14: 00007f2616935fa0 R15: 00007ffc6a2ebd48
[   45.063237][ T4335]  </TASK>
[   45.328324][ T4352] loop4: detected capacity change from 0 to 128
[   45.340473][ T4359] loop1: detected capacity change from 0 to 1024
[   45.347503][ T4359] EXT4-fs: Ignoring removed nobh option
[   45.353173][ T4359] EXT4-fs: Ignoring removed bh option
[   45.382354][ T4359] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.397408][ T4352] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   45.410640][ T4352] ext4 filesystem being mounted at /60/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   45.454287][ T4359] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.288: Allocating blocks 385-513 which overlap fs metadata
[   45.455641][ T4374] program syz.0.296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   45.470487][ T4359] EXT4-fs (loop1): pa ffff888106d44310: logic 16, phys. 129, len 24
[   45.485581][ T4359] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   45.510211][ T4377] loop0: detected capacity change from 0 to 256
[   45.526400][ T4373] bridge_slave_0: left promiscuous mode
[   45.532262][ T4373] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.544051][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   45.559094][ T4373] bridge_slave_1: left allmulticast mode
[   45.564884][ T4373] bridge_slave_1: left promiscuous mode
[   45.570745][ T4373] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.579077][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.588452][ T4373] bond0: (slave bond_slave_0): Releasing backup interface
[   45.595935][ T4381] loop0: detected capacity change from 0 to 1024
[   45.603388][ T4381] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.610344][ T4373] bond0: (slave bond_slave_1): Releasing backup interface
[   45.617877][ T4381] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   45.631516][ T4373] team0: Port device team_slave_0 removed
[   45.633309][ T4381] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.652261][ T4373] team0: Port device team_slave_1 removed
[   45.659240][ T4373] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   45.666903][ T4373] batman_adv: batadv0: Removing interface: batadv_slave_0
[   45.674427][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.675530][ T4373] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   45.690879][ T4373] batman_adv: batadv0: Removing interface: batadv_slave_1
[   45.757623][ T4392] FAULT_INJECTION: forcing a failure.
[   45.757623][ T4392] name failslab, interval 1, probability 0, space 0, times 0
[   45.770295][ T4392] CPU: 0 UID: 0 PID: 4392 Comm: syz.0.302 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.770321][ T4392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   45.770342][ T4392] Call Trace:
[   45.770348][ T4392]  <TASK>
[   45.770356][ T4392]  __dump_stack+0x1d/0x30
[   45.770383][ T4392]  dump_stack_lvl+0xe8/0x140
[   45.770400][ T4392]  dump_stack+0x15/0x1b
[   45.770414][ T4392]  should_fail_ex+0x265/0x280
[   45.770437][ T4392]  should_failslab+0x8c/0xb0
[   45.770456][ T4392]  kmem_cache_alloc_noprof+0x50/0x310
[   45.770501][ T4392]  ? prepare_creds+0x37/0x4c0
[   45.770545][ T4392]  prepare_creds+0x37/0x4c0
[   45.770582][ T4392]  copy_creds+0x8f/0x3f0
[   45.770680][ T4392]  copy_process+0x658/0x2000
[   45.770699][ T4392]  ? kstrtouint+0x76/0xc0
[   45.770718][ T4392]  ? __rcu_read_unlock+0x4f/0x70
[   45.770785][ T4392]  kernel_clone+0x16c/0x5c0
[   45.770835][ T4392]  ? vfs_write+0x7e8/0x960
[   45.770926][ T4392]  __x64_sys_clone+0xe6/0x120
[   45.771010][ T4392]  x64_sys_call+0x119c/0x2ff0
[   45.771033][ T4392]  do_syscall_64+0xd2/0x200
[   45.771056][ T4392]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.771075][ T4392]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.771135][ T4392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.771152][ T4392] RIP: 0033:0x7f85d7c4ebe9
[   45.771232][ T4392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.771248][ T4392] RSP: 002b:00007f85d66b6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   45.771267][ T4392] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   45.771277][ T4392] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000000004021400
[   45.771288][ T4392] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   45.771380][ T4392] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   45.771391][ T4392] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   45.771407][ T4392]  </TASK>
[   45.984213][ T4394] __nla_validate_parse: 2 callbacks suppressed
[   45.984229][ T4394] netlink: 8 bytes leftover after parsing attributes in process `syz.2.303'.
[   46.067631][ T4403] loop2: detected capacity change from 0 to 128
[   46.090118][ T4403] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.102783][ T4403] ext4 filesystem being mounted at /45/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   46.152936][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   46.161773][ T4408] program syz.4.309 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   46.196053][ T4408] loop4: detected capacity change from 0 to 256
[   46.233444][ T4410] loop5: detected capacity change from 0 to 512
[   46.246191][ T4410] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   46.274583][ T4410] EXT4-fs (loop5): orphan cleanup on readonly fs
[   46.288452][ T4410] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.311: Failed to acquire dquot type 1
[   46.336493][ T4410] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.311: bg 0: block 40: padding at end of block bitmap is not set
[   46.351742][ T4410] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   46.361717][ T4410] EXT4-fs (loop5): 1 truncate cleaned up
[   46.371283][ T4419] vhci_hcd: invalid port number 96
[   46.375096][ T4410] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.376455][ T4419] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   46.410850][ T3762] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.456639][ T4437] tipc: Started in network mode
[   46.459481][ T4440] program syz.0.322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   46.461611][ T4437] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711
[   46.461650][ T4437] tipc: Enabled bearer <eth:batadv0>, priority 10
[   46.465384][ T4438] 9pnet_fd: Insufficient options for proto=fd
[   46.517968][ T4445] loop4: detected capacity change from 0 to 164
[   46.534728][ T4442] SELinux:  Context Ü is not valid (left unmapped).
[   46.542101][ T4442] netlink: 16182 bytes leftover after parsing attributes in process `syz.2.324'.
[   46.550791][ T4440] loop0: detected capacity change from 0 to 256
[   46.563736][ T4448] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   46.571369][ T4448] SELinux: failed to load policy
[   46.587225][ T4442] wireguard0: entered promiscuous mode
[   46.592794][ T4442] wireguard0: entered allmulticast mode
[   46.663095][ T4463] netlink: 256 bytes leftover after parsing attributes in process `syz.1.327'.
[   46.695775][ T4463] loop1: detected capacity change from 0 to 512
[   46.703471][ T4460] loop0: detected capacity change from 0 to 4096
[   46.710519][ T4467] FAULT_INJECTION: forcing a failure.
[   46.710519][ T4467] name failslab, interval 1, probability 0, space 0, times 0
[   46.712682][ T4469] 9pnet_fd: Insufficient options for proto=fd
[   46.723330][ T4467] CPU: 0 UID: 0 PID: 4467 Comm: syz.5.332 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.723411][ T4467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.723423][ T4467] Call Trace:
[   46.723430][ T4467]  <TASK>
[   46.723438][ T4467]  __dump_stack+0x1d/0x30
[   46.723458][ T4467]  dump_stack_lvl+0xe8/0x140
[   46.723476][ T4467]  dump_stack+0x15/0x1b
[   46.723530][ T4467]  should_fail_ex+0x265/0x280
[   46.723552][ T4467]  ? flow_change+0x1bf/0xc80
[   46.723573][ T4467]  should_failslab+0x8c/0xb0
[   46.723595][ T4467]  __kmalloc_cache_noprof+0x4c/0x320
[   46.723655][ T4467]  flow_change+0x1bf/0xc80
[   46.723677][ T4467]  ? flow_init+0x31/0x80
[   46.723701][ T4467]  ? __pfx_flow_change+0x10/0x10
[   46.723722][ T4467]  tc_new_tfilter+0xde1/0x10a0
[   46.723776][ T4467]  ? __rcu_read_unlock+0x4f/0x70
[   46.723805][ T4467]  ? ns_capable+0x7d/0xb0
[   46.723823][ T4467]  ? __pfx_tc_new_tfilter+0x10/0x10
[   46.723845][ T4467]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   46.723920][ T4467]  netlink_rcv_skb+0x123/0x220
[   46.723941][ T4467]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   46.723982][ T4467]  rtnetlink_rcv+0x1c/0x30
[   46.724007][ T4467]  netlink_unicast+0x5bd/0x690
[   46.724069][ T4467]  netlink_sendmsg+0x58b/0x6b0
[   46.724094][ T4467]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.724116][ T4467]  __sock_sendmsg+0x142/0x180
[   46.724189][ T4467]  ____sys_sendmsg+0x31e/0x4e0
[   46.724267][ T4467]  ___sys_sendmsg+0x17b/0x1d0
[   46.724301][ T4467]  __x64_sys_sendmsg+0xd4/0x160
[   46.724344][ T4467]  x64_sys_call+0x191e/0x2ff0
[   46.724364][ T4467]  do_syscall_64+0xd2/0x200
[   46.724391][ T4467]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.724477][ T4467]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   46.724503][ T4467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.724522][ T4467] RIP: 0033:0x7f7dd1a2ebe9
[   46.724538][ T4467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.724583][ T4467] RSP: 002b:00007f7dd0497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.724602][ T4467] RAX: ffffffffffffffda RBX: 00007f7dd1c65fa0 RCX: 00007f7dd1a2ebe9
[   46.724613][ T4467] RDX: 0000000020040054 RSI: 0000200000006040 RDI: 0000000000000004
[   46.724653][ T4467] RBP: 00007f7dd0497090 R08: 0000000000000000 R09: 0000000000000000
[   46.724665][ T4467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.724677][ T4467] R13: 00007f7dd1c66038 R14: 00007f7dd1c65fa0 R15: 00007ffe48876398
[   46.724693][ T4467]  </TASK>
[   46.988587][ T4460] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.016833][ T4460] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.330: corrupted inode contents
[   47.033545][ T4460] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #15: comm syz.0.330: mark_inode_dirty error
[   47.045588][ T4460] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.330: corrupted inode contents
[   47.058463][ T4460] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #15: comm syz.0.330: mark_inode_dirty error
[   47.072915][ T4460] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.330: corrupted inode contents
[   47.085126][ T4460] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #15: comm syz.0.330: mark_inode_dirty error
[   47.102419][ T4460] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.330: corrupted inode contents
[   47.114528][ T4460] EXT4-fs error (device loop0): ext4_truncate:4666: inode #15: comm syz.0.330: mark_inode_dirty error
[   47.138428][ T4481] mmap: syz.2.338 (4481) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   47.190733][ T4484] program syz.2.339 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   47.197139][ T4479] vlan2: entered allmulticast mode
[   47.201673][ T4460] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[   47.221497][ T4479] dummy0: entered allmulticast mode
[   47.234327][ T4484] loop2: detected capacity change from 0 to 256
[   47.260513][ T4476] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #15: comm syz.0.330: corrupted inode contents
[   47.295463][ T4490] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.302983][ T4490] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.311015][ T4490] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.318475][ T4490] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.344072][ T3313] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   47.356590][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.515203][ T4497] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.525028][ T4497] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.572036][ T3406] tipc: Node number set to 8432298
[   47.840422][ T4509] IPv6: NLM_F_CREATE should be specified when creating new route
[   47.872646][ T4511] loop4: detected capacity change from 0 to 1024
[   47.879575][ T4511] EXT4-fs: Ignoring removed nobh option
[   47.885174][ T4511] EXT4-fs: Ignoring removed bh option
[   47.894264][ T4511] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.908887][ T4511] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.347: Allocating blocks 385-513 which overlap fs metadata
[   47.924617][ T4511] EXT4-fs (loop4): pa ffff888106d44380: logic 16, phys. 129, len 24
[   47.932672][ T4511] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   47.953936][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.981245][ T4515] loop4: detected capacity change from 0 to 1024
[   47.989693][ T4515] EXT4-fs: Ignoring removed nobh option
[   47.995288][ T4515] EXT4-fs: Ignoring removed bh option
[   48.008544][ T4515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.026014][ T4515] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.348: Allocating blocks 385-513 which overlap fs metadata
[   48.041247][ T4515] EXT4-fs (loop4): pa ffff888106e84850: logic 16, phys. 129, len 24
[   48.049307][ T4515] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   48.072864][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.105074][ T4521] program syz.4.350 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   48.107017][ T4525] netlink: 24 bytes leftover after parsing attributes in process `syz.0.352'.
[   48.135894][ T4525] netlink: 48 bytes leftover after parsing attributes in process `syz.0.352'.
[   48.179300][ T4521] loop4: detected capacity change from 0 to 256
[   48.224385][ T4543] loop4: detected capacity change from 0 to 1024
[   48.231387][ T4543] EXT4-fs: inline encryption not supported
[   48.248910][ T4543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.258067][ T4548] loop5: detected capacity change from 0 to 1024
[   48.269557][ T4548] EXT4-fs: Ignoring removed nobh option
[   48.275227][ T4548] EXT4-fs: Ignoring removed bh option
[   48.295104][ T4548] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.331302][ T4557] loop2: detected capacity change from 0 to 128
[   48.339300][ T4557] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   48.381074][ T4548] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.359: Allocating blocks 385-513 which overlap fs metadata
[   48.400687][ T4543] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.358: path /77/file1: bad entry in directory: inode out of bounds - offset=12, inode=524290, rec_len=12, size=1024 fake=1
[   48.402156][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   48.446491][ T4548] EXT4-fs (loop5): pa ffff888106e84850: logic 16, phys. 129, len 24
[   48.454555][ T4548] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   48.467088][   T29] kauditd_printk_skb: 439 callbacks suppressed
[   48.467100][   T29] audit: type=1400 audit(48.444:1437): avc:  denied  { setattr } for  pid=4542 comm="syz.4.358" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   48.496310][ T3762] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.511516][ T4567] vhci_hcd: invalid port number 96
[   48.516709][ T4567] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   48.549792][ T4573] program syz.1.368 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   48.613043][ T4575] loop1: detected capacity change from 0 to 256
[   48.706354][ T4582] FAULT_INJECTION: forcing a failure.
[   48.706354][ T4582] name failslab, interval 1, probability 0, space 0, times 0
[   48.719203][ T4582] CPU: 1 UID: 0 PID: 4582 Comm: syz.2.365 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   48.719229][ T4582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   48.719241][ T4582] Call Trace:
[   48.719248][ T4582]  <TASK>
[   48.719255][ T4582]  __dump_stack+0x1d/0x30
[   48.719276][ T4582]  dump_stack_lvl+0xe8/0x140
[   48.719293][ T4582]  dump_stack+0x15/0x1b
[   48.719305][ T4582]  should_fail_ex+0x265/0x280
[   48.719326][ T4582]  should_failslab+0x8c/0xb0
[   48.719349][ T4582]  kmem_cache_alloc_bulk_noprof+0x5b/0x410
[   48.719378][ T4582]  ? should_failslab+0x8c/0xb0
[   48.719399][ T4582]  ? kmem_cache_alloc_noprof+0x186/0x310
[   48.719422][ T4582]  ? mas_alloc_nodes+0x265/0x520
[   48.719449][ T4582]  mas_alloc_nodes+0x333/0x520
[   48.719475][ T4582]  mas_preallocate+0x33e/0x520
[   48.719501][ T4582]  __split_vma+0x240/0x650
[   48.719528][ T4582]  vma_modify+0x3f2/0xc80
[   48.719547][ T4582]  vma_modify_policy+0x101/0x130
[   48.719568][ T4582]  mbind_range+0x1b8/0x440
[   48.719582][ T4582]  ? mas_find+0x5d5/0x700
[   48.719603][ T4582]  __se_sys_mbind+0x648/0xac0
[   48.719634][ T4582]  __x64_sys_mbind+0x78/0x90
[   48.719660][ T4582]  x64_sys_call+0x2932/0x2ff0
[   48.719679][ T4582]  do_syscall_64+0xd2/0x200
[   48.719713][ T4582]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.719734][ T4582]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   48.719757][ T4582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.719773][ T4582] RIP: 0033:0x7fb97c6aebe9
[   48.719785][ T4582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.719798][ T4582] RSP: 002b:00007fb97b0d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[   48.719813][ T4582] RAX: ffffffffffffffda RBX: 00007fb97c8e6180 RCX: 00007fb97c6aebe9
[   48.719823][ T4582] RDX: 0000000000000004 RSI: 0000000000800000 RDI: 0000200000001000
[   48.719835][ T4582] RBP: 00007fb97b0d5090 R08: 0000000000000000 R09: 0000000000000000
[   48.719847][ T4582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.719858][ T4582] R13: 00007fb97c8e6218 R14: 00007fb97c8e6180 R15: 00007ffe32343348
[   48.719876][ T4582]  </TASK>
[   48.938152][   T29] audit: type=1400 audit(48.664:1438): avc:  denied  { setopt } for  pid=4576 comm="syz.5.367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   48.976932][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.994936][   T29] audit: type=1326 audit(48.974:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.024102][ T4583] loop0: detected capacity change from 0 to 256
[   49.038648][   T29] audit: type=1326 audit(48.994:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.062148][   T29] audit: type=1326 audit(48.994:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7dd1a2ec23 code=0x7ffc0000
[   49.084847][   T29] audit: type=1326 audit(48.994:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7dd1a2ec23 code=0x7ffc0000
[   49.107396][   T29] audit: type=1326 audit(48.994:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.130108][   T29] audit: type=1326 audit(48.994:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.152927][   T29] audit: type=1326 audit(48.994:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.175620][   T29] audit: type=1326 audit(48.994:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f7dd1a2ebe9 code=0x7ffc0000
[   49.219728][ T4598] netlink: 168 bytes leftover after parsing attributes in process `syz.0.375'.
[   49.220024][ T4597] loop1: detected capacity change from 0 to 128
[   49.245834][ T4597] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   49.275485][ T3303] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   49.329513][ T4609] loop1: detected capacity change from 0 to 2048
[   49.338232][ T4610] 9pnet_fd: Insufficient options for proto=fd
[   49.411669][ T4613] loop1: detected capacity change from 0 to 1024
[   49.420991][ T4616] can0: slcan on ptm0.
[   49.434934][ T4613] EXT4-fs: Ignoring removed nomblk_io_submit option
[   49.441876][ T4613] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   49.451745][ T4616] FAULT_INJECTION: forcing a failure.
[   49.451745][ T4616] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.464827][ T4616] CPU: 1 UID: 0 PID: 4616 Comm: syz.2.382 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   49.464999][ T4616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   49.465011][ T4616] Call Trace:
[   49.465046][ T4616]  <TASK>
[   49.465054][ T4616]  __dump_stack+0x1d/0x30
[   49.465071][ T4616]  dump_stack_lvl+0xe8/0x140
[   49.465163][ T4616]  dump_stack+0x15/0x1b
[   49.465178][ T4616]  should_fail_ex+0x265/0x280
[   49.465196][ T4616]  should_fail+0xb/0x20
[   49.465211][ T4616]  should_fail_usercopy+0x1a/0x20
[   49.465289][ T4616]  _copy_from_iter+0xd2/0xe80
[   49.465314][ T4616]  ? __build_skb_around+0x1a0/0x200
[   49.465332][ T4616]  ? __alloc_skb+0x223/0x320
[   49.465373][ T4616]  netlink_sendmsg+0x471/0x6b0
[   49.465397][ T4616]  ? __pfx_netlink_sendmsg+0x10/0x10
[   49.465420][ T4616]  __sock_sendmsg+0x142/0x180
[   49.465513][ T4616]  ____sys_sendmsg+0x31e/0x4e0
[   49.465536][ T4616]  ___sys_sendmsg+0x17b/0x1d0
[   49.465564][ T4616]  __x64_sys_sendmsg+0xd4/0x160
[   49.465592][ T4616]  x64_sys_call+0x191e/0x2ff0
[   49.465689][ T4616]  do_syscall_64+0xd2/0x200
[   49.465713][ T4616]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.465737][ T4616]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   49.465762][ T4616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.465861][ T4616] RIP: 0033:0x7fb97c6aebe9
[   49.465874][ T4616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.465888][ T4616] RSP: 002b:00007fb97b117038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   49.465906][ T4616] RAX: ffffffffffffffda RBX: 00007fb97c8e5fa0 RCX: 00007fb97c6aebe9
[   49.465994][ T4616] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000005
[   49.466004][ T4616] RBP: 00007fb97b117090 R08: 0000000000000000 R09: 0000000000000000
[   49.466015][ T4616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.466026][ T4616] R13: 00007fb97c8e6038 R14: 00007fb97c8e5fa0 R15: 00007ffe32343348
[   49.466042][ T4616]  </TASK>
[   49.468245][ T4613] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.692625][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.712218][ T4621] loop1: detected capacity change from 0 to 1024
[   49.718951][ T4621] EXT4-fs: Ignoring removed nobh option
[   49.724669][ T4621] EXT4-fs: Ignoring removed bh option
[   49.732103][ T4614] can0 (unregistered): slcan off ptm0.
[   49.741129][ T4621] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.757965][ T4621] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.385: Allocating blocks 385-513 which overlap fs metadata
[   49.773139][ T4621] EXT4-fs (loop1): pa ffff888106e847e0: logic 16, phys. 129, len 24
[   49.781164][ T4621] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   49.814257][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.826421][ T4634] loop2: detected capacity change from 0 to 128
[   49.834387][ T4634] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   49.883406][ T4641] loop5: detected capacity change from 0 to 512
[   49.893933][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   49.895940][ T4645] loop1: detected capacity change from 0 to 256
[   49.904070][ T4641] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   49.921411][ T4641] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.393: Invalid block bitmap block 0 in block_group 0
[   49.938516][ T4645] FAT-fs (loop1): Directory bread(block 64) failed
[   49.945118][ T4641] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   49.954371][ T4645] FAT-fs (loop1): Directory bread(block 65) failed
[   49.960909][ T4645] FAT-fs (loop1): Directory bread(block 66) failed
[   49.971187][ T4641] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.393: attempt to clear invalid blocks 983261 len 1
[   49.972777][ T4645] FAT-fs (loop1): Directory bread(block 67) failed
[   49.991060][ T4648] loop2: detected capacity change from 0 to 1024
[   49.999944][ T4648] EXT4-fs: Ignoring removed nomblk_io_submit option
[   50.006829][ T4648] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   50.007233][ T4641] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.393: Invalid inode table block 0 in block_group 0
[   50.015679][ T4645] FAT-fs (loop1): Directory bread(block 68) failed
[   50.034764][ T4645] FAT-fs (loop1): Directory bread(block 69) failed
[   50.041287][ T4645] FAT-fs (loop1): Directory bread(block 70) failed
[   50.043906][ T4648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.054933][ T4645] FAT-fs (loop1): Directory bread(block 71) failed
[   50.063048][ T4641] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   50.066776][ T4645] FAT-fs (loop1): Directory bread(block 72) failed
[   50.082626][ T4645] FAT-fs (loop1): Directory bread(block 73) failed
[   50.100634][ T4641] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   50.116873][ T4641] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.393: Invalid inode table block 0 in block_group 0
[   50.129887][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.130333][ T4645] syz.1.395: attempt to access beyond end of device
[   50.130333][ T4645] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256
[   50.153865][ T4641] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   50.176414][ T4653] loop0: detected capacity change from 0 to 512
[   50.222543][ T4662] loop4: detected capacity change from 0 to 1024
[   50.229585][ T4662] EXT4-fs: Ignoring removed nobh option
[   50.235182][ T4662] EXT4-fs: Ignoring removed bh option
[   50.260980][ T4641] EXT4-fs error (device loop5): ext4_truncate:4666: inode #11: comm syz.5.393: mark_inode_dirty error
[   50.272161][ T4653] EXT4-fs (loop0): too many log groups per flexible block group
[   50.277153][ T4641] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   50.279853][ T4653] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   50.289607][ T4641] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.393: Invalid inode table block 0 in block_group 0
[   50.308060][ T4653] EXT4-fs (loop0): mount failed
[   50.310583][ T4641] EXT4-fs (loop5): 1 truncate cleaned up
[   50.325799][ T4662] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.400: Allocating blocks 385-513 which overlap fs metadata
[   50.353618][ T4641] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.393: Invalid inode bitmap blk 0 in block_group 0
[   50.355087][ T4662] EXT4-fs (loop4): pa ffff888106d44310: logic 16, phys. 129, len 24
[   50.374239][ T4662] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   50.500313][ T4678] netlink: 16 bytes leftover after parsing attributes in process `syz.0.404'.
[   50.846287][ T4690] loop5: detected capacity change from 0 to 1024
[   50.905010][ T4690] EXT4-fs: Ignoring removed nobh option
[   50.910609][ T4690] EXT4-fs: Ignoring removed bh option
[   50.928885][ T4690] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.407: Allocating blocks 385-513 which overlap fs metadata
[   50.946887][ T4690] EXT4-fs (loop5): pa ffff888106d44460: logic 16, phys. 129, len 24
[   50.954994][ T4690] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   50.984428][ T4696] loop5: detected capacity change from 0 to 1024
[   50.991228][ T4696] EXT4-fs: Ignoring removed nobh option
[   50.996931][ T4696] EXT4-fs: Ignoring removed bh option
[   51.016344][ T4696] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.409: Allocating blocks 385-513 which overlap fs metadata
[   51.033497][ T4696] EXT4-fs (loop5): pa ffff888106d444d0: logic 16, phys. 129, len 24
[   51.041579][ T4696] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   51.164001][ T4717] 9pnet_fd: Insufficient options for proto=fd
[   51.216881][ T4719] vhci_hcd: invalid port number 96
[   51.222098][ T4719] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   51.258998][ T4723] loop1: detected capacity change from 0 to 1024
[   51.264697][ T4725] loop2: detected capacity change from 0 to 128
[   51.265897][ T4723] EXT4-fs: Ignoring removed nobh option
[   51.277376][ T4723] EXT4-fs: Ignoring removed bh option
[   51.300416][ T4723] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.420: Allocating blocks 385-513 which overlap fs metadata
[   51.315446][ T4723] EXT4-fs (loop1): pa ffff888106e847e0: logic 16, phys. 129, len 24
[   51.323486][ T4723] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   51.363219][ T4734] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4734 comm=syz.1.424
[   51.426467][ T4745] loop2: detected capacity change from 0 to 1024
[   51.433852][ T4745] EXT4-fs: Ignoring removed nomblk_io_submit option
[   51.440711][ T4745] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   51.444001][ T4743] loop1: detected capacity change from 0 to 8192
[   51.456999][ T4743] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   51.491885][ T4751] netlink: 12 bytes leftover after parsing attributes in process `syz.4.431'.
[   51.501944][ T4750] geneve2: entered promiscuous mode
[   51.507479][ T4750] geneve2: entered allmulticast mode
[   51.517740][   T31] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   51.529284][ T4755] netlink: 24 bytes leftover after parsing attributes in process `syz.1.428'.
[   51.538835][   T31] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   51.554457][   T31] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   51.564315][   T31] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   51.705543][ T4760] loop0: detected capacity change from 0 to 128
[   51.736510][ T4763] loop2: detected capacity change from 0 to 1024
[   51.751390][ T4763] EXT4-fs: Ignoring removed nobh option
[   51.757035][ T4763] EXT4-fs: Ignoring removed bh option
[   51.774916][ T4763] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.434: Allocating blocks 385-513 which overlap fs metadata
[   51.789464][ T4763] EXT4-fs (loop2): pa ffff888106d445b0: logic 16, phys. 129, len 24
[   51.797592][ T4763] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   51.831470][ T4767] loop2: detected capacity change from 0 to 164
[   51.875657][ T4771] syz_tun: entered allmulticast mode
[   51.884246][ T4773] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=4773 comm=syz.1.437
[   51.892398][ T4771] netlink: 60 bytes leftover after parsing attributes in process `syz.0.435'.
[   51.916208][ T4775] loop2: detected capacity change from 0 to 1024
[   51.929131][ T4773] loop1: detected capacity change from 0 to 1024
[   51.936708][ T4773] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   51.947653][ T4773] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   51.958325][ T4773] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   51.969519][ T4775] FAULT_INJECTION: forcing a failure.
[   51.969519][ T4775] name failslab, interval 1, probability 0, space 0, times 0
[   51.969710][ T4773] EXT4-fs error (device loop1): ext4_get_journal_inode:5800: inode #32: comm syz.1.437: iget: special inode unallocated
[   51.982219][ T4775] CPU: 0 UID: 0 PID: 4775 Comm: syz.2.439 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   51.982240][ T4775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   51.982251][ T4775] Call Trace:
[   51.982256][ T4775]  <TASK>
[   51.982263][ T4775]  __dump_stack+0x1d/0x30
[   51.982314][ T4775]  dump_stack_lvl+0xe8/0x140
[   51.982376][ T4775]  dump_stack+0x15/0x1b
[   51.982402][ T4775]  should_fail_ex+0x265/0x280
[   51.982424][ T4775]  should_failslab+0x8c/0xb0
[   51.982446][ T4775]  kmem_cache_alloc_noprof+0x50/0x310
[   51.982472][ T4775]  ? ext4_mb_new_blocks+0x79f/0x2080
[   51.982572][ T4775]  ext4_mb_new_blocks+0x79f/0x2080
[   51.982621][ T4775]  ? ext4_ext_search_right+0x30b/0x4f0
[   51.982643][ T4775]  ? ext4_inode_to_goal_block+0x1be/0x1e0
[   51.982719][ T4775]  ext4_ext_map_blocks+0xff5/0x38a0
[   51.982751][ T4775]  ext4_map_blocks+0x5ee/0xd00
[   51.982775][ T4775]  ? ext4_get_group_desc+0x16b/0x190
[   51.982840][ T4775]  ext4_iomap_begin+0x88d/0xe00
[   51.982934][ T4775]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   51.982961][ T4775]  iomap_iter+0x332/0x730
[   51.983022][ T4775]  ? should_failslab+0x8c/0xb0
[   51.983123][ T4775]  __iomap_dio_rw+0x708/0x1250
[   51.983152][ T4775]  ? ext4_journal_check_start+0x11a/0x1b0
[   51.983172][ T4775]  iomap_dio_rw+0x40/0x90
[   51.983202][ T4775]  ext4_file_write_iter+0xad9/0xf00
[   51.983235][ T4775]  do_iter_readv_writev+0x49c/0x540
[   51.983284][ T4775]  vfs_writev+0x2df/0x8b0
[   51.983316][ T4775]  __se_sys_pwritev2+0xfc/0x1c0
[   51.983340][ T4775]  __x64_sys_pwritev2+0x67/0x80
[   51.983417][ T4775]  x64_sys_call+0x2c55/0x2ff0
[   51.983457][ T4775]  do_syscall_64+0xd2/0x200
[   51.983484][ T4775]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.983507][ T4775]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   51.983550][ T4775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.983570][ T4775] RIP: 0033:0x7fb97c6aebe9
[   51.983585][ T4775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.983600][ T4775] RSP: 002b:00007fb97b117038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   51.983616][ T4775] RAX: ffffffffffffffda RBX: 00007fb97c8e5fa0 RCX: 00007fb97c6aebe9
[   51.983709][ T4775] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000007
[   51.983721][ T4775] RBP: 00007fb97b117090 R08: 0000000000000000 R09: 0000000000000003
[   51.983733][ T4775] R10: 0000000000007000 R11: 0000000000000246 R12: 0000000000000001
[   51.983745][ T4775] R13: 00007fb97c8e6038 R14: 00007fb97c8e5fa0 R15: 00007ffe32343348
[   51.983807][ T4775]  </TASK>
[   52.247137][ T4773] EXT4-fs (loop1): no journal found
[   52.252357][ T4773] EXT4-fs (loop1): can't get journal size
[   52.259095][ T4768] syz_tun: left allmulticast mode
[   52.266066][ T4773] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   52.284759][ T4783] loop2: detected capacity change from 0 to 1024
[   52.290539][ T4773] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.437: iget: special inode unallocated
[   52.300837][ T4783] EXT4-fs: Ignoring removed nomblk_io_submit option
[   52.313002][ T4785] msdos: Unknown parameter 'ÿ'
[   52.320890][ T4773] EXT4-fs (loop1): failed to initialize system zone (-117)
[   52.328418][ T4773] EXT4-fs (loop1): mount failed
[   52.330898][ T4783] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   52.384839][ T4794] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.444'.
[   52.403164][ T4794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.444'.
[   52.404697][ T4797] loop2: detected capacity change from 0 to 1024
[   52.420332][ T4797] EXT4-fs: Ignoring removed nobh option
[   52.426169][ T4797] EXT4-fs: Ignoring removed bh option
[   52.446138][ T4797] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.447: Allocating blocks 385-513 which overlap fs metadata
[   52.461356][ T4797] EXT4-fs (loop2): pa ffff888106e848c0: logic 16, phys. 129, len 24
[   52.469474][ T4797] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   52.497030][ T4806] FAULT_INJECTION: forcing a failure.
[   52.497030][ T4806] name failslab, interval 1, probability 0, space 0, times 0
[   52.509814][ T4806] CPU: 0 UID: 0 PID: 4806 Comm: syz.1.451 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   52.509840][ T4806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   52.509851][ T4806] Call Trace:
[   52.509857][ T4806]  <TASK>
[   52.509864][ T4806]  __dump_stack+0x1d/0x30
[   52.509925][ T4806]  dump_stack_lvl+0xe8/0x140
[   52.509940][ T4806]  dump_stack+0x15/0x1b
[   52.509953][ T4806]  should_fail_ex+0x265/0x280
[   52.509973][ T4806]  should_failslab+0x8c/0xb0
[   52.509994][ T4806]  kmem_cache_alloc_noprof+0x50/0x310
[   52.510031][ T4806]  ? getname_flags+0x80/0x3b0
[   52.510054][ T4806]  getname_flags+0x80/0x3b0
[   52.510112][ T4806]  __se_sys_quotactl+0x16a/0x670
[   52.510128][ T4806]  ? fput+0x8f/0xc0
[   52.510170][ T4806]  __x64_sys_quotactl+0x55/0x70
[   52.510187][ T4806]  x64_sys_call+0x15d6/0x2ff0
[   52.510215][ T4806]  do_syscall_64+0xd2/0x200
[   52.510241][ T4806]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.510261][ T4806]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   52.510369][ T4806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.510448][ T4806] RIP: 0033:0x7f26166febe9
[   52.510464][ T4806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.510479][ T4806] RSP: 002b:00007f261515f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   52.510498][ T4806] RAX: ffffffffffffffda RBX: 00007f2616935fa0 RCX: 00007f26166febe9
[   52.510510][ T4806] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffff80000300
[   52.510521][ T4806] RBP: 00007f261515f090 R08: 0000000000000000 R09: 0000000000000000
[   52.510531][ T4806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.510590][ T4806] R13: 00007f2616936038 R14: 00007f2616935fa0 R15: 00007ffc6a2ebd48
[   52.510608][ T4806]  </TASK>
[   52.747097][ T4814] openvswitch: netlink: Message has 6 unknown bytes.
[   52.786332][ T4819] loop1: detected capacity change from 0 to 1024
[   52.793731][ T4819] EXT4-fs: test_dummy_encryption option not supported
[   52.826253][ T4821] loop1: detected capacity change from 0 to 1024
[   52.836747][ T4821] EXT4-fs: Ignoring removed nomblk_io_submit option
[   52.845634][ T4821] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   52.891876][ T4826] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.459'.
[   52.902127][ T4826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.459'.
[   52.932467][ T4830] loop1: detected capacity change from 0 to 1024
[   52.939582][ T4830] EXT4-fs: Ignoring removed nobh option
[   52.945260][ T4830] EXT4-fs: Ignoring removed bh option
[   52.955005][ T4830] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.460: Allocating blocks 385-513 which overlap fs metadata
[   52.969405][ T4830] EXT4-fs (loop1): pa ffff888106e848c0: logic 16, phys. 129, len 24
[   52.977539][ T4830] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   52.993157][ T4832] vhci_hcd: invalid port number 96
[   52.998431][ T4832] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   53.045382][ T4845] loop0: detected capacity change from 0 to 1024
[   53.066827][ T4845] usb usb1: check_ctrlrecip: process 4845 (+}[@) requesting ep 01 but needs 81
[   53.075968][ T4845] vhci_hcd: default hub control req: 020f v0004 i0001 l0
[   53.084971][ T4845] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 15)
[   53.099201][ T4845] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   53.111637][ T4845] EXT4-fs (loop0): This should not happen!! Data will be lost
[   53.111637][ T4845] 
[   53.207958][ T4851] loop5: detected capacity change from 0 to 8192
[   53.222777][ T4851] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   53.259176][ T4853] loop0: detected capacity change from 0 to 1024
[   53.266055][ T4853] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.272890][ T4853] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   53.287081][ T4855] netlink: 24 bytes leftover after parsing attributes in process `syz.5.468'.
[   53.308669][ T4857] loop0: detected capacity change from 0 to 128
[   53.383273][ T4861] netlink: 12 bytes leftover after parsing attributes in process `syz.0.471'.
[   53.396582][ T4860] netlink: 12 bytes leftover after parsing attributes in process `syz.0.471'.
[   53.459891][ T4869] loop0: detected capacity change from 0 to 1024
[   53.466972][ T4869] EXT4-fs: Ignoring removed nobh option
[   53.472560][ T4869] EXT4-fs: Ignoring removed bh option
[   53.499598][ T4869] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.475: Allocating blocks 385-513 which overlap fs metadata
[   53.529712][ T4869] EXT4-fs (loop0): pa ffff888106e848c0: logic 16, phys. 129, len 24
[   53.537800][ T4869] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   53.551020][   T29] kauditd_printk_skb: 452 callbacks suppressed
[   53.551035][   T29] audit: type=1326 audit(53.524:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.581638][   T29] audit: type=1326 audit(53.524:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.604460][   T29] audit: type=1326 audit(53.524:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.627343][   T29] audit: type=1326 audit(53.524:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb97c6aec23 code=0x7ffc0000
[   53.650298][   T29] audit: type=1326 audit(53.524:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb97c6aec23 code=0x7ffc0000
[   53.672818][   T29] audit: type=1326 audit(53.524:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.695547][   T29] audit: type=1326 audit(53.524:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.718191][   T29] audit: type=1326 audit(53.524:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.740909][   T29] audit: type=1326 audit(53.524:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.763627][   T29] audit: type=1326 audit(53.544:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4877 comm="syz.2.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   53.797196][ T4882] loop0: detected capacity change from 0 to 1024
[   53.804086][ T4882] EXT4-fs: Ignoring removed nobh option
[   53.809717][ T4882] EXT4-fs: Ignoring removed bh option
[   53.827499][ T4882] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.479: Allocating blocks 385-513 which overlap fs metadata
[   53.843259][ T4882] EXT4-fs (loop0): pa ffff888106d445b0: logic 16, phys. 129, len 24
[   53.851271][ T4882] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   53.898921][ T4890] loop5: detected capacity change from 0 to 1024
[   53.905979][ T4890] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.913186][ T4890] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   53.963901][ T4896] program syz.5.484 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   53.990481][ T4896] loop5: detected capacity change from 0 to 256
[   54.019049][ T4898] loop5: detected capacity change from 0 to 128
[   54.139028][ T4900] new mount options do not match the existing superblock, will be ignored
[   54.224487][ T4911] 9pnet_fd: Insufficient options for proto=fd
[   54.378049][ T4931] vhci_hcd: invalid port number 96
[   54.383240][ T4931] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   54.440813][ T4940] 9pnet_fd: Insufficient options for proto=fd
[   54.588490][ T4967] 9pnet_fd: Insufficient options for proto=fd
[   54.709131][ T4979] loop5: detected capacity change from 0 to 1024
[   54.715951][ T4979] EXT4-fs: Ignoring removed orlov option
[   54.799236][ T4987] FAULT_INJECTION: forcing a failure.
[   54.799236][ T4987] name failslab, interval 1, probability 0, space 0, times 0
[   54.811933][ T4987] CPU: 0 UID: 0 PID: 4987 Comm: syz.0.522 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.811977][ T4987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   54.812068][ T4987] Call Trace:
[   54.812154][ T4987]  <TASK>
[   54.812161][ T4987]  __dump_stack+0x1d/0x30
[   54.812182][ T4987]  dump_stack_lvl+0xe8/0x140
[   54.812201][ T4987]  dump_stack+0x15/0x1b
[   54.812214][ T4987]  should_fail_ex+0x265/0x280
[   54.812236][ T4987]  should_failslab+0x8c/0xb0
[   54.812272][ T4987]  kmem_cache_alloc_noprof+0x50/0x310
[   54.812298][ T4987]  ? __anon_vma_prepare+0x70/0x2f0
[   54.812315][ T4987]  ? pte_alloc_one+0xf8/0x120
[   54.812336][ T4987]  __anon_vma_prepare+0x70/0x2f0
[   54.812365][ T4987]  handle_mm_fault+0x1d58/0x2c20
[   54.812393][ T4987]  ? check_vma_flags+0x26e/0x340
[   54.812416][ T4987]  __get_user_pages+0x102e/0x1fa0
[   54.812444][ T4987]  ? vma_link+0x1d4/0x220
[   54.812522][ T4987]  get_user_pages_remote+0x1d5/0x6d0
[   54.812545][ T4987]  ? down_read+0x77/0xe0
[   54.812571][ T4987]  get_arg_page+0x8e/0x1e0
[   54.812588][ T4987]  copy_string_kernel+0x12c/0x1f0
[   54.812746][ T4987]  do_execveat_common+0x5ad/0x750
[   54.812767][ T4987]  __x64_sys_execve+0x5c/0x70
[   54.812805][ T4987]  x64_sys_call+0x2716/0x2ff0
[   54.812826][ T4987]  do_syscall_64+0xd2/0x200
[   54.812853][ T4987]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.812955][ T4987]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.812977][ T4987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.812994][ T4987] RIP: 0033:0x7f85d7c4ebe9
[   54.813008][ T4987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.813085][ T4987] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   54.813103][ T4987] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   54.813113][ T4987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000280
[   54.813125][ T4987] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   54.813137][ T4987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.813160][ T4987] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   54.813177][ T4987]  </TASK>
[   55.052160][ T4996] 9pnet_fd: Insufficient options for proto=fd
[   55.067528][ T4998] loop5: detected capacity change from 0 to 512
[   55.098084][ T5004] loop0: detected capacity change from 0 to 1024
[   55.107595][ T5004] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.115172][ T5004] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.197398][ T5011] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5011 comm=syz.1.529
[   55.271625][ T5016] netlink: zone id is out of range
[   55.291214][ T5016] netlink: zone id is out of range
[   55.300887][ T5016] netlink: zone id is out of range
[   55.306133][ T5016] netlink: zone id is out of range
[   55.313620][ T5016] netlink: zone id is out of range
[   55.319274][ T5016] netlink: zone id is out of range
[   55.325177][ T5016] netlink: zone id is out of range
[   55.330393][ T5016] netlink: zone id is out of range
[   55.340095][ T5016] netlink: zone id is out of range
[   55.365275][ T5024] loop1: detected capacity change from 0 to 1024
[   55.385814][ T5024] EXT4-fs: inline encryption not supported
[   55.403976][ T5028] loop5: detected capacity change from 0 to 1024
[   55.412721][ T5028] EXT4-fs: Ignoring removed orlov option
[   55.493010][ T5035] FAULT_INJECTION: forcing a failure.
[   55.493010][ T5035] name failslab, interval 1, probability 0, space 0, times 0
[   55.506071][ T5035] CPU: 1 UID: 0 PID: 5035 Comm: syz.2.538 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   55.506098][ T5035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   55.506123][ T5035] Call Trace:
[   55.506130][ T5035]  <TASK>
[   55.506136][ T5035]  __dump_stack+0x1d/0x30
[   55.506155][ T5035]  dump_stack_lvl+0xe8/0x140
[   55.506173][ T5035]  dump_stack+0x15/0x1b
[   55.506190][ T5035]  should_fail_ex+0x265/0x280
[   55.506280][ T5035]  should_failslab+0x8c/0xb0
[   55.506304][ T5035]  kmem_cache_alloc_noprof+0x50/0x310
[   55.506386][ T5035]  ? skb_clone+0x151/0x1f0
[   55.506407][ T5035]  skb_clone+0x151/0x1f0
[   55.506425][ T5035]  __netlink_deliver_tap+0x2c9/0x500
[   55.506448][ T5035]  ? netlink_attachskb+0x2d0/0x610
[   55.506469][ T5035]  netlink_sendskb+0x126/0x150
[   55.506520][ T5035]  netlink_unicast+0x2a2/0x690
[   55.506539][ T5035]  netlink_ack+0x4c8/0x500
[   55.506563][ T5035]  netlink_rcv_skb+0x192/0x220
[   55.506584][ T5035]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   55.506686][ T5035]  rtnetlink_rcv+0x1c/0x30
[   55.506753][ T5035]  netlink_unicast+0x5bd/0x690
[   55.506771][ T5035]  netlink_sendmsg+0x58b/0x6b0
[   55.506793][ T5035]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.506817][ T5035]  __sock_sendmsg+0x142/0x180
[   55.506885][ T5035]  ____sys_sendmsg+0x31e/0x4e0
[   55.506911][ T5035]  ___sys_sendmsg+0x17b/0x1d0
[   55.506938][ T5035]  __x64_sys_sendmsg+0xd4/0x160
[   55.506967][ T5035]  x64_sys_call+0x191e/0x2ff0
[   55.507026][ T5035]  do_syscall_64+0xd2/0x200
[   55.507103][ T5035]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   55.507149][ T5035]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   55.507176][ T5035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.507197][ T5035] RIP: 0033:0x7fb97c6aebe9
[   55.507212][ T5035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.507240][ T5035] RSP: 002b:00007fb97b117038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.507256][ T5035] RAX: ffffffffffffffda RBX: 00007fb97c8e5fa0 RCX: 00007fb97c6aebe9
[   55.507272][ T5035] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[   55.507344][ T5035] RBP: 00007fb97b117090 R08: 0000000000000000 R09: 0000000000000000
[   55.507356][ T5035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.507368][ T5035] R13: 00007fb97c8e6038 R14: 00007fb97c8e5fa0 R15: 00007ffe32343348
[   55.507402][ T5035]  </TASK>
[   55.755219][ T5024] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.534: path /116/file1: bad entry in directory: inode out of bounds - offset=12, inode=524290, rec_len=12, size=1024 fake=1
[   55.792052][ T5041] FAULT_INJECTION: forcing a failure.
[   55.792052][ T5041] name failslab, interval 1, probability 0, space 0, times 0
[   55.804880][ T5041] CPU: 1 UID: 0 PID: 5041 Comm: syz.5.540 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   55.804909][ T5041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   55.804921][ T5041] Call Trace:
[   55.804928][ T5041]  <TASK>
[   55.804936][ T5041]  __dump_stack+0x1d/0x30
[   55.804958][ T5041]  dump_stack_lvl+0xe8/0x140
[   55.804990][ T5041]  dump_stack+0x15/0x1b
[   55.805006][ T5041]  should_fail_ex+0x265/0x280
[   55.805030][ T5041]  should_failslab+0x8c/0xb0
[   55.805058][ T5041]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   55.805088][ T5041]  ? sidtab_sid2str_get+0xa0/0x130
[   55.805111][ T5041]  kmemdup_noprof+0x2b/0x70
[   55.805136][ T5041]  sidtab_sid2str_get+0xa0/0x130
[   55.805215][ T5041]  security_sid_to_context_core+0x1eb/0x2e0
[   55.805243][ T5041]  security_sid_to_context+0x27/0x40
[   55.805263][ T5041]  avc_audit_post_callback+0x9d/0x520
[   55.805351][ T5041]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   55.805377][ T5041]  common_lsm_audit+0x1bb/0x230
[   55.805426][ T5041]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   55.805450][ T5041]  slow_avc_audit+0x104/0x140
[   55.805486][ T5041]  avc_has_perm+0x13a/0x180
[   55.805529][ T5041]  selinux_inode_setattr+0x465/0x4e0
[   55.805559][ T5041]  ? ktime_get_coarse_real_ts64_mg+0x187/0x1a0
[   55.805591][ T5041]  security_inode_setattr+0x88/0xd0
[   55.805657][ T5041]  notify_change+0x723/0x890
[   55.805674][ T5041]  chown_common+0x2be/0x3f0
[   55.805748][ T5041]  do_fchownat+0x110/0x210
[   55.805771][ T5041]  __x64_sys_lchown+0x4a/0x60
[   55.805855][ T5041]  x64_sys_call+0x2861/0x2ff0
[   55.805872][ T5041]  do_syscall_64+0xd2/0x200
[   55.805896][ T5041]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   55.805940][ T5041]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   55.805966][ T5041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.805986][ T5041] RIP: 0033:0x7f7dd1a2ebe9
[   55.806005][ T5041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.806096][ T5041] RSP: 002b:00007f7dd0497038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e
[   55.806115][ T5041] RAX: ffffffffffffffda RBX: 00007f7dd1c65fa0 RCX: 00007f7dd1a2ebe9
[   55.806128][ T5041] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000700
[   55.806140][ T5041] RBP: 00007f7dd0497090 R08: 0000000000000000 R09: 0000000000000000
[   55.806151][ T5041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.806161][ T5041] R13: 00007f7dd1c66038 R14: 00007f7dd1c65fa0 R15: 00007ffe48876398
[   55.806176][ T5041]  </TASK>
[   55.807703][ T5043] loop2: detected capacity change from 0 to 1024
[   56.064275][ T5043] EXT4-fs: Ignoring removed nomblk_io_submit option
[   56.072274][ T5043] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   56.107516][ T5048] msdos: Unknown parameter 'ÿ'
[   56.148744][ T5059] FAULT_INJECTION: forcing a failure.
[   56.148744][ T5059] name failslab, interval 1, probability 0, space 0, times 0
[   56.161558][ T5059] CPU: 1 UID: 0 PID: 5059 Comm: syz.5.543 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.161582][ T5059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   56.161593][ T5059] Call Trace:
[   56.161657][ T5059]  <TASK>
[   56.161711][ T5059]  __dump_stack+0x1d/0x30
[   56.161732][ T5059]  dump_stack_lvl+0xe8/0x140
[   56.161802][ T5059]  dump_stack+0x15/0x1b
[   56.161815][ T5059]  should_fail_ex+0x265/0x280
[   56.161862][ T5059]  should_failslab+0x8c/0xb0
[   56.161884][ T5059]  __kmalloc_noprof+0xa5/0x3e0
[   56.161938][ T5059]  ? taskstats_user_cmd+0x2de/0x8a0
[   56.161967][ T5059]  taskstats_user_cmd+0x2de/0x8a0
[   56.161991][ T5059]  ? genl_family_rcv_msg_attrs_parse+0x13b/0x190
[   56.162024][ T5059]  ? genl_family_rcv_msg_attrs_parse+0x184/0x190
[   56.162050][ T5059]  genl_family_rcv_msg_doit+0x140/0x1b0
[   56.162079][ T5059]  genl_rcv_msg+0x422/0x460
[   56.162129][ T5059]  ? __pfx_taskstats_user_cmd+0x10/0x10
[   56.162155][ T5059]  netlink_rcv_skb+0x123/0x220
[   56.162171][ T5059]  ? __pfx_genl_rcv_msg+0x10/0x10
[   56.162206][ T5059]  genl_rcv+0x28/0x40
[   56.162233][ T5059]  netlink_unicast+0x5bd/0x690
[   56.162250][ T5059]  netlink_sendmsg+0x58b/0x6b0
[   56.162317][ T5059]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.162336][ T5059]  __sock_sendmsg+0x142/0x180
[   56.162428][ T5059]  ____sys_sendmsg+0x31e/0x4e0
[   56.162463][ T5059]  ___sys_sendmsg+0x17b/0x1d0
[   56.162490][ T5059]  __x64_sys_sendmsg+0xd4/0x160
[   56.162512][ T5059]  x64_sys_call+0x191e/0x2ff0
[   56.162527][ T5059]  do_syscall_64+0xd2/0x200
[   56.162620][ T5059]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.162652][ T5059]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.162672][ T5059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.162804][ T5059] RIP: 0033:0x7f7dd1a2ebe9
[   56.162817][ T5059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.162830][ T5059] RSP: 002b:00007f7dd0497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.162845][ T5059] RAX: ffffffffffffffda RBX: 00007f7dd1c65fa0 RCX: 00007f7dd1a2ebe9
[   56.162855][ T5059] RDX: 000000000000c000 RSI: 0000200000000080 RDI: 0000000000000005
[   56.162912][ T5059] RBP: 00007f7dd0497090 R08: 0000000000000000 R09: 0000000000000000
[   56.162922][ T5059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.162932][ T5059] R13: 00007f7dd1c66038 R14: 00007f7dd1c65fa0 R15: 00007ffe48876398
[   56.163000][ T5059]  </TASK>
[   56.442374][ T5066] loop5: detected capacity change from 0 to 1024
[   56.449420][ T5066] EXT4-fs: Ignoring removed orlov option
[   56.638680][ T5077] loop2: detected capacity change from 0 to 1024
[   56.654976][ T5077] EXT4-fs: Ignoring removed nobh option
[   56.660692][ T5077] EXT4-fs: Ignoring removed bh option
[   56.675437][ T5077] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.554: Allocating blocks 385-513 which overlap fs metadata
[   56.695188][ T5077] EXT4-fs (loop2): pa ffff888106e84930: logic 16, phys. 129, len 24
[   56.703429][ T5077] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   56.740807][ T5088] msdos: Unknown parameter 'ÿ'
[   56.766331][ T5091] loop0: detected capacity change from 0 to 1024
[   56.773689][ T5091] EXT4-fs: Ignoring removed nomblk_io_submit option
[   56.781039][ T5091] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   56.784512][ T5093] __nla_validate_parse: 10 callbacks suppressed
[   56.784528][ T5093] netlink: 20 bytes leftover after parsing attributes in process `syz.5.559'.
[   56.988633][ T5106] loop1: detected capacity change from 0 to 1024
[   56.995634][ T5106] EXT4-fs: Ignoring removed nobh option
[   57.001197][ T5106] EXT4-fs: Ignoring removed bh option
[   57.016285][ T5106] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.562: Allocating blocks 385-513 which overlap fs metadata
[   57.032853][ T5106] EXT4-fs (loop1): pa ffff888106e84930: logic 16, phys. 129, len 24
[   57.040891][ T5106] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   57.056378][ T5110] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.564'.
[   57.066588][ T5110] netlink: 4 bytes leftover after parsing attributes in process `syz.5.564'.
[   57.108561][ T5118] loop5: detected capacity change from 0 to 512
[   57.171269][ T5124] netlink: 20 bytes leftover after parsing attributes in process `syz.5.570'.
[   57.196320][ T5125] loop1: detected capacity change from 0 to 2048
[   57.196483][ T5127] loop5: detected capacity change from 0 to 1024
[   57.209458][ T5127] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.216337][ T5127] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   57.245315][ T5125]  loop1: p2 p3 p7
[   57.367013][ T5145] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.578'.
[   57.376954][ T5145] netlink: 4 bytes leftover after parsing attributes in process `syz.1.578'.
[   57.398652][ T5147] loop1: detected capacity change from 0 to 512
[   57.405419][ T5147] EXT4-fs: Ignoring removed mblk_io_submit option
[   57.412594][ T5147] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   57.423385][ T5147] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c018, mo2=0002]
[   57.431435][ T5147] System zones: 1-12
[   57.435790][ T5147] EXT4-fs (loop1): 1 truncate cleaned up
[   57.530787][ T5154] FAULT_INJECTION: forcing a failure.
[   57.530787][ T5154] name failslab, interval 1, probability 0, space 0, times 0
[   57.543547][ T5154] CPU: 0 UID: 0 PID: 5154 Comm: syz.1.582 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.543571][ T5154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.543658][ T5154] Call Trace:
[   57.543664][ T5154]  <TASK>
[   57.543672][ T5154]  __dump_stack+0x1d/0x30
[   57.543691][ T5154]  dump_stack_lvl+0xe8/0x140
[   57.543719][ T5154]  dump_stack+0x15/0x1b
[   57.543734][ T5154]  should_fail_ex+0x265/0x280
[   57.543753][ T5154]  ? __se_sys_memfd_create+0x1cc/0x590
[   57.543770][ T5154]  should_failslab+0x8c/0xb0
[   57.543790][ T5154]  __kmalloc_cache_noprof+0x4c/0x320
[   57.543927][ T5154]  ? fput+0x8f/0xc0
[   57.543950][ T5154]  __se_sys_memfd_create+0x1cc/0x590
[   57.543973][ T5154]  __x64_sys_memfd_create+0x31/0x40
[   57.544044][ T5154]  x64_sys_call+0x2abe/0x2ff0
[   57.544062][ T5154]  do_syscall_64+0xd2/0x200
[   57.544086][ T5154]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.544115][ T5154]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.544177][ T5154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.544195][ T5154] RIP: 0033:0x7f26166febe9
[   57.544208][ T5154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.544225][ T5154] RSP: 002b:00007f261515ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   57.544324][ T5154] RAX: ffffffffffffffda RBX: 0000000000000446 RCX: 00007f26166febe9
[   57.544336][ T5154] RDX: 00007f261515eef0 RSI: 0000000000000000 RDI: 00007f26167827e8
[   57.544347][ T5154] RBP: 0000200000000d40 R08: 00007f261515ebb7 R09: 00007f261515ee40
[   57.544403][ T5154] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[   57.544410][ T5154] R13: 00007f261515eef0 R14: 00007f261515eeb0 R15: 0000200000000480
[   57.544420][ T5154]  </TASK>
[   57.756570][ T5158] loop1: detected capacity change from 0 to 128
[   57.815407][ T5168] loop0: detected capacity change from 0 to 128
[   57.828865][ T5171] loop1: detected capacity change from 0 to 1024
[   57.837770][ T5171] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.845665][ T5171] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   57.928726][ T5186] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.590'.
[   57.938716][ T5186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.590'.
[   57.953947][ T5182] vhci_hcd: invalid port number 96
[   57.959406][ T5182] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   57.991633][ T5191] loop1: detected capacity change from 0 to 128
[   58.139498][ T5202] loop1: detected capacity change from 0 to 1024
[   58.146463][ T5202] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.153746][ T5202] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.304461][ T5216] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.608'.
[   58.314449][ T5216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.608'.
[   58.366674][ T5218] vhci_hcd: invalid port number 96
[   58.371922][ T5218] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   58.406736][ T5222] vhci_hcd: invalid port number 96
[   58.411929][ T5222] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   58.433448][ T5224] loop1: detected capacity change from 0 to 1024
[   58.440090][ T5224] EXT4-fs: Ignoring removed orlov option
[   58.616311][ T5228] loop1: detected capacity change from 0 to 128
[   58.660619][ T5231] loop1: detected capacity change from 0 to 1024
[   58.667514][ T5231] EXT4-fs: Ignoring removed nobh option
[   58.673456][ T5231] EXT4-fs: Ignoring removed bh option
[   58.695867][ T5231] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.614: Allocating blocks 385-513 which overlap fs metadata
[   58.711654][ T5231] EXT4-fs (loop1): pa ffff888106e84a10: logic 16, phys. 129, len 24
[   58.719829][ T5231] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   58.817548][ T5244] loop1: detected capacity change from 0 to 1024
[   58.824386][ T5244] EXT4-fs: Ignoring removed orlov option
[   58.857660][ T5247] vhci_hcd: invalid port number 96
[   58.862857][ T5247] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   58.902133][ T5253] loop0: detected capacity change from 0 to 1024
[   58.908859][ T5253] EXT4-fs: Ignoring removed orlov option
[   58.928803][   T29] kauditd_printk_skb: 544 callbacks suppressed
[   58.928815][   T29] audit: type=1326 audit(58.904:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   58.969146][   T29] audit: type=1326 audit(58.944:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   58.991767][   T29] audit: type=1326 audit(58.944:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.014442][   T29] audit: type=1326 audit(58.944:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.022357][ T5262] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=5262 comm=syz.2.623
[   59.037584][   T29] audit: type=1326 audit(58.944:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.072725][   T29] audit: type=1326 audit(58.944:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.098192][ T5259] loop5: detected capacity change from 0 to 128
[   59.132359][   T29] audit: type=1326 audit(59.114:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.155055][   T29] audit: type=1326 audit(59.114:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.179406][   T29] audit: type=1326 audit(59.164:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.202547][   T29] audit: type=1326 audit(59.164:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5255 comm="syz.2.623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb97c6aebe9 code=0x7ffc0000
[   59.401431][ T5283] vhci_hcd: invalid port number 96
[   59.406624][ T5283] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   59.440422][ T5292] loop0: detected capacity change from 0 to 128
[   59.558785][ T5309] FAULT_INJECTION: forcing a failure.
[   59.558785][ T5309] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   59.572191][ T5309] CPU: 1 UID: 0 PID: 5309 Comm: syz.0.640 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.572278][ T5309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.572285][ T5309] Call Trace:
[   59.572290][ T5309]  <TASK>
[   59.572294][ T5309]  __dump_stack+0x1d/0x30
[   59.572307][ T5309]  dump_stack_lvl+0xe8/0x140
[   59.572318][ T5309]  dump_stack+0x15/0x1b
[   59.572326][ T5309]  should_fail_ex+0x265/0x280
[   59.572353][ T5309]  should_fail_alloc_page+0xf2/0x100
[   59.572428][ T5309]  __alloc_frozen_pages_noprof+0xff/0x360
[   59.572448][ T5309]  alloc_pages_mpol+0xb3/0x250
[   59.572468][ T5309]  alloc_pages_noprof+0x90/0x130
[   59.572542][ T5309]  get_free_pages_noprof+0xc/0x40
[   59.572552][ T5309]  do_proc_control+0x186/0x8b0
[   59.572563][ T5309]  ? should_fail_ex+0xdb/0x280
[   59.572583][ T5309]  proc_control_compat+0xae/0xe0
[   59.572600][ T5309]  usbdev_ioctl+0xee1/0x1710
[   59.572669][ T5309]  ? __pfx_usbdev_ioctl+0x10/0x10
[   59.572683][ T5309]  __se_sys_ioctl+0xcb/0x140
[   59.572693][ T5309]  __x64_sys_ioctl+0x43/0x50
[   59.572702][ T5309]  x64_sys_call+0x1816/0x2ff0
[   59.572718][ T5309]  do_syscall_64+0xd2/0x200
[   59.572833][ T5309]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.572933][ T5309]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.572976][ T5309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.572988][ T5309] RIP: 0033:0x7f85d7c4ebe9
[   59.572997][ T5309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.573049][ T5309] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.573060][ T5309] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   59.573067][ T5309] RDX: 0000200000000000 RSI: 00000000c0105500 RDI: 0000000000000003
[   59.573082][ T5309] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   59.573089][ T5309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.573095][ T5309] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   59.573105][ T5309]  </TASK>
[   59.800040][ T5314] loop1: detected capacity change from 0 to 1024
[   59.800299][ T5313] loop0: detected capacity change from 0 to 1024
[   59.807528][ T5314] EXT4-fs: Ignoring removed nobh option
[   59.813381][ T5313] EXT4-fs: Ignoring removed orlov option
[   59.818505][ T5314] EXT4-fs: Ignoring removed bh option
[   59.844424][ T5314] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.646: Allocating blocks 385-513 which overlap fs metadata
[   59.858936][ T5314] EXT4-fs (loop1): pa ffff888106e84a80: logic 16, phys. 129, len 24
[   59.867072][ T5314] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   59.926743][ T5320] vhci_hcd: invalid port number 96
[   59.931924][ T5320] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   59.967694][ T5332] loop0: detected capacity change from 0 to 128
[   60.028360][ T5336] FAULT_INJECTION: forcing a failure.
[   60.028360][ T5336] name failslab, interval 1, probability 0, space 0, times 0
[   60.041048][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.653 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.041072][ T5336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.041084][ T5336] Call Trace:
[   60.041091][ T5336]  <TASK>
[   60.041107][ T5336]  __dump_stack+0x1d/0x30
[   60.041127][ T5336]  dump_stack_lvl+0xe8/0x140
[   60.041146][ T5336]  dump_stack+0x15/0x1b
[   60.041228][ T5336]  should_fail_ex+0x265/0x280
[   60.041248][ T5336]  ? tcp_sendmsg_fastopen+0x172/0x520
[   60.041278][ T5336]  should_failslab+0x8c/0xb0
[   60.041299][ T5336]  __kmalloc_cache_noprof+0x4c/0x320
[   60.041350][ T5336]  tcp_sendmsg_fastopen+0x172/0x520
[   60.041380][ T5336]  tcp_sendmsg_locked+0x26e1/0x2c00
[   60.041406][ T5336]  ? mntput_no_expire+0x6f/0x460
[   60.041469][ T5336]  ? __rcu_read_unlock+0x4f/0x70
[   60.041487][ T5336]  ? avc_has_perm_noaudit+0x1b1/0x200
[   60.041512][ T5336]  ? avc_has_perm+0xf7/0x180
[   60.041585][ T5336]  ? _raw_spin_unlock_bh+0x36/0x40
[   60.041605][ T5336]  ? __pfx_tcp_sendmsg+0x10/0x10
[   60.041631][ T5336]  tcp_sendmsg+0x2f/0x50
[   60.041732][ T5336]  inet6_sendmsg+0x76/0xd0
[   60.041748][ T5336]  __sock_sendmsg+0x8b/0x180
[   60.041774][ T5336]  __sys_sendto+0x268/0x330
[   60.041802][ T5336]  __x64_sys_sendto+0x76/0x90
[   60.041854][ T5336]  x64_sys_call+0x2d05/0x2ff0
[   60.041871][ T5336]  do_syscall_64+0xd2/0x200
[   60.041937][ T5336]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.042008][ T5336]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.042031][ T5336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.042050][ T5336] RIP: 0033:0x7f85d7c4ebe9
[   60.042065][ T5336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.042081][ T5336] RSP: 002b:00007f85d66b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   60.042100][ T5336] RAX: ffffffffffffffda RBX: 00007f85d7e85fa0 RCX: 00007f85d7c4ebe9
[   60.042147][ T5336] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004
[   60.042157][ T5336] RBP: 00007f85d66b7090 R08: 0000000000000000 R09: 0000000000000000
[   60.042168][ T5336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.042252][ T5336] R13: 00007f85d7e86038 R14: 00007f85d7e85fa0 R15: 00007fffa771e308
[   60.042269][ T5336]  </TASK>
[   60.860803][ T5352] FAULT_INJECTION: forcing a failure.
[   60.860803][ T5352] name failslab, interval 1, probability 0, space 0, times 0
[   60.873622][ T5352] CPU: 0 UID: 0 PID: 5352 Comm: syz.1.669 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.873650][ T5352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.873662][ T5352] Call Trace:
[   60.873670][ T5352]  <TASK>
[   60.873676][ T5352]  __dump_stack+0x1d/0x30
[   60.873756][ T5352]  dump_stack_lvl+0xe8/0x140
[   60.873771][ T5352]  dump_stack+0x15/0x1b
[   60.873785][ T5352]  should_fail_ex+0x265/0x280
[   60.873842][ T5352]  should_failslab+0x8c/0xb0
[   60.873861][ T5352]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   60.873961][ T5352]  ? trace_probe_init+0x1a2/0x280
[   60.873977][ T5352]  ? should_failslab+0x8c/0xb0
[   60.874022][ T5352]  kstrdup+0x3e/0xd0
[   60.874041][ T5352]  trace_probe_init+0x1a2/0x280
[   60.874058][ T5352]  alloc_trace_uprobe+0x8b/0x1e0
[   60.874077][ T5352]  create_local_trace_uprobe+0xb5/0x2c0
[   60.874128][ T5352]  perf_uprobe_init+0xc0/0x150
[   60.874152][ T5352]  perf_uprobe_event_init+0xc4/0x140
[   60.874174][ T5352]  perf_try_init_event+0xd6/0x540
[   60.874228][ T5352]  ? perf_event_alloc+0xb1c/0x1740
[   60.874253][ T5352]  perf_event_alloc+0xb27/0x1740
[   60.874279][ T5352]  __se_sys_perf_event_open+0x4a5/0x11c0
[   60.874454][ T5352]  ? __rcu_read_unlock+0x4f/0x70
[   60.874469][ T5352]  __x64_sys_perf_event_open+0x67/0x80
[   60.874485][ T5352]  x64_sys_call+0x7bd/0x2ff0
[   60.874496][ T5352]  do_syscall_64+0xd2/0x200
[   60.874611][ T5352]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.874624][ T5352]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.874703][ T5352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.874715][ T5352] RIP: 0033:0x7f26166febe9
[   60.874724][ T5352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.874734][ T5352] RSP: 002b:00007f261515f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   60.874746][ T5352] RAX: ffffffffffffffda RBX: 00007f2616935fa0 RCX: 00007f26166febe9
[   60.874775][ T5352] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000180
[   60.874809][ T5352] RBP: 00007f261515f090 R08: 0000000000000000 R09: 0000000000000000
[   60.874816][ T5352] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   60.874824][ T5352] R13: 00007f2616936038 R14: 00007f2616935fa0 R15: 00007ffc6a2ebd48
[   60.874834][ T5352]  </TASK>
[   60.874890][ T5352] trace_uprobe: Failed to allocate trace_uprobe.(-12)
[   61.140009][ T5360] loop2: detected capacity change from 0 to 1024
[   61.149222][ T5360] EXT4-fs: Ignoring removed nobh option
[   61.154923][ T5360] EXT4-fs: Ignoring removed bh option
[   61.168903][ T5358] vhci_hcd: invalid port number 96
[   61.174150][ T5358] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   61.191700][ T5360] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.660: Allocating blocks 385-513 which overlap fs metadata
[   61.208746][ T5364] vhci_hcd: invalid port number 96
[   61.213995][ T5364] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   61.225505][ T5360] EXT4-fs (loop2): pa ffff888106e84a80: logic 16, phys. 129, len 24
[   61.233687][ T5360] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   61.372934][ T5385] loop0: detected capacity change from 0 to 128
[   61.380260][ T5385] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   61.393059][ T5385] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.417847][  T315] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.667070][ T5397] loop5: detected capacity change from 0 to 1024
[   61.674320][ T5397] EXT4-fs: Ignoring removed orlov option
[   61.802883][ T5399] ==================================================================
[   61.810968][ T5399] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[   61.820173][ T5399] 
[   61.822479][ T5399] write to 0xffff88811a07e460 of 4 bytes by task 5397 on cpu 0:
[   61.830084][ T5399]  writeback_single_inode+0x14a/0x3e0
[   61.835466][ T5399]  sync_inode_metadata+0x5b/0x90
[   61.840443][ T5399]  generic_buffers_fsync_noflush+0xd9/0x120
[   61.846602][ T5399]  ext4_sync_file+0x1ab/0x690
[   61.851310][ T5399]  vfs_fsync_range+0x10a/0x130
[   61.856074][ T5399]  ext4_buffered_write_iter+0x34f/0x3c0
[   61.861642][ T5399]  ext4_file_write_iter+0x383/0xf00
[   61.866857][ T5399]  iter_file_splice_write+0x666/0xa60
[   61.872232][ T5399]  direct_splice_actor+0x156/0x2a0
[   61.877342][ T5399]  splice_direct_to_actor+0x312/0x680
[   61.882702][ T5399]  do_splice_direct+0xda/0x150
[   61.887529][ T5399]  do_sendfile+0x380/0x650
[   61.891931][ T5399]  __x64_sys_sendfile64+0x105/0x150
[   61.897145][ T5399]  x64_sys_call+0x2bb0/0x2ff0
[   61.901898][ T5399]  do_syscall_64+0xd2/0x200
[   61.906424][ T5399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.912308][ T5399] 
[   61.914756][ T5399] read to 0xffff88811a07e460 of 4 bytes by task 5399 on cpu 1:
[   61.922273][ T5399]  generic_buffers_fsync_noflush+0x80/0x120
[   61.928152][ T5399]  ext4_sync_file+0x1ab/0x690
[   61.932903][ T5399]  vfs_fsync_range+0x10a/0x130
[   61.937744][ T5399]  ext4_buffered_write_iter+0x34f/0x3c0
[   61.943316][ T5399]  ext4_file_write_iter+0x383/0xf00
[   61.948603][ T5399]  iter_file_splice_write+0x666/0xa60
[   61.953973][ T5399]  direct_splice_actor+0x156/0x2a0
[   61.959086][ T5399]  splice_direct_to_actor+0x312/0x680
[   61.964461][ T5399]  do_splice_direct+0xda/0x150
[   61.969222][ T5399]  do_sendfile+0x380/0x650
[   61.973636][ T5399]  __x64_sys_sendfile64+0x105/0x150
[   61.978825][ T5399]  x64_sys_call+0x2bb0/0x2ff0
[   61.983614][ T5399]  do_syscall_64+0xd2/0x200
[   61.988122][ T5399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.994034][ T5399] 
[   61.996349][ T5399] value changed: 0x00000038 -> 0x00000002
[   62.002120][ T5399] 
[   62.004477][ T5399] Reported by Kernel Concurrency Sanitizer on:
[   62.010616][ T5399] CPU: 1 UID: 0 PID: 5399 Comm: syz.5.676 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.020241][ T5399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.030382][ T5399] ==================================================================