last executing test programs:

1m23.926910953s ago: executing program 4 (id=128):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
quotactl$Q_GETFMT(0xffffffff80000402, &(0x7f0000000680)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1m23.724117836s ago: executing program 4 (id=129):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVid:\xc4e', 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
read$watch_queue(r3, 0x0, 0x0)

1m22.820306684s ago: executing program 4 (id=143):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0f40000004000000080000000800000000000000c580eec0e6197f3e8ea5f392f29dcfd5878de09df8946d7109279d788914554d5f66be7d81b465801de2d517f346d44257cf7d0b507e5844d1f4815660d461633f1c777a359d2cc24ba6dc0efa5c008d942046c7eb14627001cb675c57ee263764f2eef206729ff642e7a245a34e7ff16d6a98b4a9be2be0f5ada9318147e52f9ea77a36f35fbc1207a79c2085a1eafb21c10a2d0b6eeffff2ae2464f285c0b4337a32ef4a073a41a324a89a1d7f81b6589cf8b68972cc6409b6a5c321483e717daec3c9bd8c7cc9d0bcedd994a9d51db9211453dbc528db7a903c14a5dc2e4c9928d43c48b93d6a6a0c0d5980277c02ad075051d8d0b9c71642490172979c2caecf30c3d0b50054", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x4, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r1, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r2, &(0x7f0000002c00)={&(0x7f0000000040)={0xa, 0x4e1d, 0x5, @remote, 0x9}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000002280)='I', 0x1}], 0x1}, 0x200000c0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xe9, 0x0, 0x8, 0x1, 0x0, 0x5, 0x408, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_config_ext={0x3, 0x7}, 0x100008, 0x7, 0xff, 0x3, 0x0, 0x55, 0x9, 0x0, 0x9, 0x0, 0x8}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x9)
ioctl$BTRFS_IOC_QGROUP_CREATE(r5, 0x4010942a, &(0x7f00000002c0)={0x1, 0x8000000000000001})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7fff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@minixdf}, {}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@commit={'commit', 0x3d, 0x5}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@noblock_validity}, {@nomblk_io_submit}]}, 0x1, 0x566, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9GajdN4o8KgvUiiBYLeq9LMg0lm27JbkoTC20P9uJFiiBiQfwDvHss/gP+FQUtFClBD14is5lNt81ukqYbN3U+H5j2vZnZvPnum+/bNzu7bACFNZL9U4p4OSK+SSIOt20bjHzjyOp+yw+vTWVLEisrn/2ZRJKva+2f5P8fzCsvRcSvX0WcKK1vt764NFupVtP5vD7WmLs8Vl9cOnlxrjKTzqSXJiYnT781OfHuO2/3LNbXz/39/ad3Pzr99fHl736+f+R2EmfiUL6tPY5ncKO9MhIj+XMyFGee2HG8B43tJkm/D4BtGcjzfCiyMeBwDORZD/z/XY+IFaCgEvkPBdWaB7Su7Xt0HfzcePDB6gXQ+vgHV98biX3Na6MDy8ljV0bZ9e5wD9rP2vjljzu3syU2eR/ieg/aA2i5cTMiTg0Orh//knz8275TzTePN/ZkG0V7/YF+upvNf97oNP8prc1/osP852CH3N2OzfO/dL8HzXSVzf/e6zj/XRu6hgfy2gvNOd9QcuFiNT0VES9GxGgM7c3qG93POb18b6Xbtvb5X7Zk7bfmgvlx3B/c+/hjpiuNyrPE3O7BzYhXOs5/k7X+Tzr0f/Z8nNtiG8fSO69227Z5/Dtr5aeI1zr2/6M7WsnG9yfHmufDWOusWO+vW8d+69b+6If9jT/r/wMbxz+ctN+vrT99Gz/u+yfttm275/+e5PNmeU++7mql0Zgfj9iTfLJ+/cSjx7bqrf2z+EePbzz+dTr/90fEF1uM/9bRW1137ff5n8U//VT9//SFex9/+UO39rfW/282S6P5mq2Mf1s9wGd57gAAAAAAAGC3KUXEoUhK5bVyqVQur36+42gcKFVr9caJC7WFS9PR/K7scAyVWne6D7d9HmI8/zxsqz7xRH0yIo5ExLcD+5v18lStOt3v4AEAAAAAAAAAAAAAAAAAAGCXONjl+/+Z3wf6fXTAjvOT31Bcm+Z/L37pCdiVvP5Dccl/KC75D8Ul/6G45D8Ul/yH4pL/UFzyHwAAAAAAAAAAAAAAAAAAAAAAAAAAAHrq3Nmz2bKy/PDaVFafvrK4MFu7cnI6rc+W5xamylO1+cvlmVptppqWp2pzm/29aq12eXwiFq6ONdJ6Y6y+uHR+rrZwqXH+4lxlJj2fDv0nUQEAAAAAAAAAAAAAAAAAAMDzpb64NFupVtN5ha6F92NXHMZOBrhqWw8f3C1RKHQt7NtG5/Z5YAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACANv8GAAD//04mM/E=")
setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000000400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

1m21.695175037s ago: executing program 4 (id=149):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000580)='./file0\x00', 0x4, &(0x7f0000000980)=ANY=[], 0x1, 0x122d, &(0x7f0000003540)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x9, 0x0, 0x7ffc0005}]})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240)='devpts\x00', 0x1010401, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x14)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r5, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000380)='\b', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000003040)="c2", 0x1}], 0x1, &(0x7f00000003c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x8000}}], 0x18}}], 0x2, 0x4000000)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=r3, @ANYBLOB="cec23a582743a67c00"/18, @ANYRES32=r4, @ANYRES32=r1, @ANYBLOB="03000000030000000400"/28], 0x50)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r0)

1m21.247605066s ago: executing program 4 (id=162):
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xe, 0x101301)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x80, 0x0, 0x8000, 0x0, 0xcd, 0x9, &(0x7f0000000280)="0d9d16ffe600a6f41848f3b294581c186c6c885f26a981e448da398852986ae035025868795879ec46463087c2b67664f4f6a0da4092a4c0d8dfc489fdd71cea4117bf4d5780985b004270e22cda9bc9d86e21fdf54fac7f9af9f7ac4e9b6d80cfd0ca3fce942c15b37d2cc3037d80f2617c800be49176861fa09b78477fe5c8ba1a706fa740341f2f0e4d06184b148b93c895026413a5ee8d0ca8c37c34955cabf2eb53b27a24e7c1edd9f6412b84cb91e12d2473939851560a40c972fe2362014faf68cd153e6a984757e5ee"})

1m20.684819197s ago: executing program 4 (id=172):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
io_setup(0x8f0, &(0x7f0000002400)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000cc0)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000400)="f4fffeff0000", 0x6, 0x0, 0x0, 0x2}])

1m20.647081388s ago: executing program 32 (id=172):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
io_setup(0x8f0, &(0x7f0000002400)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000cc0)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000400)="f4fffeff0000", 0x6, 0x0, 0x0, 0x2}])

2.117846618s ago: executing program 1 (id=2634):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="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"], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32, @ANYBLOB="0c0002"], 0x24}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x1020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = open(0x0, 0x14927e, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r3, 0x0, 0x200000000000006}, 0x18)
r4 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000440)='spmi_cmd\x00', r3, 0x0, 0x80000001}, 0x18)
keyctl$KEYCTL_MOVE(0x4, r4, r4, 0x0, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000f4)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r7, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x74, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r8, 0x0, 0x2}, 0x18)
memfd_secret(0x0)

1.548959919s ago: executing program 1 (id=2647):
prctl$PR_SET_NAME(0xf, &(0x7f00000014c0)='w\xde\xa1\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd\xde\xad\xf5\x1eM\x11[\xb6\x98\xda\xd2y\xbd\xad\x87P\xd8\xb2\xe5\xd2\xe7\xf6\xa1\xc8\'\x1e\xbc\xf4\xa0\xe6\xcf*(\xfb_\x9fL\xa2\x86\f\xcd\x1b\xd1\xe7\x11\xe8\xe1-\x0f\x1b:\xff\x11~')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x94)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

1.51036968s ago: executing program 1 (id=2649):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x401c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r3, r0, 0x0, 0x578410eb)

1.264025865s ago: executing program 5 (id=2657):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVid:\xc4e', 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000180)=[{0x0, 0x47, 0x0, 0x0, @tick, {0x40, 0xff}, {0x0, 0x9}, @queue={0xee, {0x7, 0xc9a}}}, {0x0, 0x0, 0x0, 0x0, @time={0x367f, 0xfffffffd}, {}, {0x80}, @time=@time={0x9, 0x1}}], 0x38)
read$snapshot(r3, 0x0, 0xffffffbf)
read$watch_queue(r3, 0x0, 0x0)

899.659582ms ago: executing program 0 (id=2675):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000700)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="31832abd7000000000001900000018000180140002"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl1\x00', &(0x7f0000000080)={'erspan0\x00', 0x0, 0x8000, 0x80, 0x101, 0x9, {{0x18, 0x4, 0x1, 0x5, 0x60, 0x67, 0x0, 0xd, 0x2f, 0x0, @multicast1, @broadcast, {[@rr={0x7, 0x7, 0xdb, [@remote]}, @lsrr={0x83, 0x13, 0x5f, [@remote, @dev={0xac, 0x14, 0x14, 0x31}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}, @rr={0x7, 0x13, 0x3d, [@multicast1, @dev={0xac, 0x14, 0x14, 0x3a}, @rand_addr=0x64010101, @rand_addr=0x64010100]}, @generic={0x86, 0xb, "31333553174909c8d8"}, @ssrr={0x89, 0xf, 0xa1, [@loopback, @local, @loopback]}, @ra={0x94, 0x4, 0x1}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000280)={'syztnl0\x00', &(0x7f00000001c0)={'erspan0\x00', 0x0, 0x8000, 0x7800, 0x6, 0x0, {{0x1d, 0x4, 0x2, 0x8, 0x74, 0x64, 0x0, 0x9, 0x4, 0x0, @loopback, @multicast2, {[@ra={0x94, 0x4, 0x1}, @rr={0x7, 0x7, 0x96, [@loopback]}, @ssrr={0x89, 0x7, 0x4a, [@multicast1]}, @cipso={0x86, 0x4d, 0xffffffffffffffff, [{0x945aec3d7e821c87, 0x12, "fc61518be67c8f2a44d314a1a327cdc5"}, {0x0, 0xa, "9b0d757824d26635"}, {0x6, 0x8, "700236503b7c"}, {0x1, 0xd, "5e8492c1178afe61b2739e"}, {0x0, 0xb, "e4e50fd4e5e07f6ef9"}, {0x7, 0xb, "bc786dd0fc566912fc"}]}]}}}}})
r4 = socket(0x10, 0x2, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000f00000e00"}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r8=>0x0})
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r9, 0x0, 0xca, &(0x7f00000000c0)={0x0, 0x8, 0x5, 0x100, @vifc_lcl_ifindex=r8, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x6, 0x2010, r1, 0xf47d1000)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r8, {}, {}, {0xffff}}}, 0x24}}, 0x0)

845.993223ms ago: executing program 0 (id=2676):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x3, 0xd)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8042, &(0x7f0000000500), 0x1, 0x4f8, &(0x7f0000001900)="$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")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount$9p_tcp(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x10000, &(0x7f0000000300)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}], [{@audit}, {@dont_appraise}, {@hash}, {@fsuuid={'fsuuid', 0x3d, {[0x6a, 0x65, 0x35, 0x31, 0x66, 0x31, 0x65], 0x2d, [0x0, 0x39, 0x66, 0x30], 0x2d, [0x30, 0x64, 0x37, 0x65], 0x2d, [0x69, 0x31, 0x35, 0x32], 0x2d, [0x65, 0x61, 0x0, 0x31, 0x37, 0x32, 0x38, 0x63]}}}]}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x80800, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {}, {0x14, 0x19, {0xffff8000, 0x4, 0x0, 0x2}}}}, 0x30}}, 0x2c040090)

686.657856ms ago: executing program 0 (id=2681):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)

651.444037ms ago: executing program 0 (id=2683):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
socket(0x29, 0x80805, 0xffffffff)
r4 = socket$inet(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, 0x0, 0x0)
r5 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x1000000, {0x0, 0x0, 0x0, r6, {0x0, 0xb}}}, 0x24}}, 0x0)

625.714018ms ago: executing program 1 (id=2684):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext2\x00', &(0x7f0000000280)='./file0\x00', 0x10892, &(0x7f0000000300)={[{@grpid}]}, 0xfb, 0x273, &(0x7f0000000c80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
io_uring_enter(0xffffffffffffffff, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002d000b12d25a80648c2594f90124fc60100c020000040000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
syz_pidfd_open(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x4, 0x7ffc1ff8}]})

584.353818ms ago: executing program 1 (id=2686):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)='U', 0x1}], 0x1}, 0x3)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r6, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000014}, 0x4)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f00000002c0)={0x0, 0x300, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000000000000000005000600010000000800090001000000050002"], 0x44}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd}, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0)
tee(r11, r8, 0xffff, 0x2)
r12 = socket$tipc(0x1e, 0x2, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16=r12, @ANYRESHEX=r3], &(0x7f00000001c0)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r13, 0x0, 0xfffffffffffffffd}, 0x18)
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

475.603051ms ago: executing program 0 (id=2693):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="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"], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32, @ANYBLOB="0c0002"], 0x24}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x1020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = open(0x0, 0x14927e, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r3, 0x0, 0x200000000000006}, 0x18)
r4 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000440)='spmi_cmd\x00', r3, 0x0, 0x80000001}, 0x18)
keyctl$KEYCTL_MOVE(0x4, r4, r4, 0x0, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000f4)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x74, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x203, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000004, 0x4, @perf_config_ext={0x1, 0x6}, 0x2, 0x0, 0x2, 0x1, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$eJzs3c9rHFUcAPDvbJKmSauJIGg9BQQNlG5Mja2Ch4oHESwU9Gy7bLahZpMt2U1pQg4tIngRVDwIeunZH/Xm1R9X/S88SEvVtFjxIJHZH+222U03bXY3kM8HXva9mdm89903P97sDDsB7FkT6Z9MxKGI+DiJGKtPTyJiqJobjDhRW+72+lo+TUlsbLz9Z1Jd5tb6Wj6a3pM6UC88HRE/fRBxOLO53vLK6nyuWCws1ctTlYXzU+WV1SPnFnJzhbnC4rHpmZmjx186fmznYv3719WD1z954/lvT/z7/lNXP/o5iRNxsD6vOY6dMhET9c9kKP0I7/H6TlfWZ0m/G8BDSTfNgdpWHodiLAaquTZGetkyAKBbNgCAPSgxBgCAPabxPcCt9bV8I/X3G4neuvFaROyvxd+4vlmbM1i/Zre/eh109FZyz5WRJCLGd6D+iYj48vt3v05T1PvBtTSgFy5djogz4xOb9//JpnsWtuuFrWZuDFdfJu6bvNeOP9BPP6Tjn5dbjf8yd8Y/0WL8M9xi230YD97+M9d2oJq20vHfq033tt1uir9ufKBeeqw65htKzp4rFtJ92+MRMRlDw2l5urpo65Hb5M3/brarv3n899en732V1p++3l0ic21w+N73zOYquUeNu+HG5YhnBlvFn9zp/6TN+PdUh3W8+cqHX7Sbl8afxttIm+Pvro0rEc+17P+7fZlseX/iVHV1mGqsFC1899vno+3qb+7/NKX1N84FeiHt/9Gt4x9Pmu/XLG+/jl+ujP3Ybt6D42+9/u9L3qnm99WnXcxVKkvTEfuStzZPP3r3vY1yY/k0/slnW2//tWpbr//pOeGZDuMfvP7HNw8ff3el8c9uq/+3n7l6e36gXf2d9f9MNTdZn9LJ/q/TBj7KZwcAAAAAAAAAAAAAAAAAAAAAAAAAncpExMFIMtk7+Uwmm609w/vJGM0US+XK4bOl5cXZqD4rezyGMo2fuhxr+j3U6frv4TfKR+8rvxgRT0TEZ8Mj1XI2XyrO9jt4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKg70Ob5/6nfh/vdOgCga/b3uwEAQM85/gPA3rO94/9I19oBAPSO838A2Hs6Pv6f6W47AIDecf4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAl506eTJNG/+sr+XT8uyFleX50oUjs4XyfHZhOZ/Nl5bOZ+dKpbliIZsvLbT9R5dqL8VS6fxMLC5fnKoUypWp8srq6YXS8mLl9LmF3FzhdGGoZ5EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQOfKK6vzuWKxsCSzZWZkdzRj12QGY1c0Q6Zrmea9xEj/dlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9z/AQAA//+MoS4e")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x74, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r7, 0x0, 0x2}, 0x18)
memfd_secret(0x0)

447.726061ms ago: executing program 2 (id=2694):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000100000000900010073797a30000000000900030073797a3100"], 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r1, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)

440.916811ms ago: executing program 1 (id=2695):
r0 = openat(0xffffffffffffff9c, 0x0, 0x401c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r3, r0, 0x0, 0x578410eb)

415.660832ms ago: executing program 2 (id=2696):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03316844268cb89e14f0080047e0ffff00124000632f77fbac14fe16e000030a07080403fe80000020006558845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x24, 0x60000000}, 0x2c)

395.462652ms ago: executing program 2 (id=2697):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x3, 0xd)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8042, &(0x7f0000000500), 0x1, 0x4f8, &(0x7f0000001900)="$eJzs3E1oXNUeAPD/nXz26zXvvb6+176+Z2oVg8WkTavNQpCKggsFsYK6DElaatNGmhRsqTIFqUspuBeXbl24VTdFXAlu61KQQpFu2griyJ25dzIzmUmaSTJjmt8Pbuace2fuOeeee+6ce07mBrBlDad/kkr4VkTsjohC4xuGKy/3716denD36lQUS6VTvyblj91L45lsN7Eji4wUIgofJYsbasxfvnJucnZ25mIWH1s4/97Y/OUrz5wdzNZMTCS9bRaqSXppue7t/3DuwL5X3rnx2lR1z3lqteVYL8Mx3CwrZU+ud2Jdtqsm3Ha90XHp+Z9WV1+5/e+Onliu8oodzBmw0UqlUmmg9eZiqdG1JWuATSsGu50DoDvyL/r0/jdfmnUE+jem+9F1d05WboDSct/PlojHyivzcZC+hvvb9TQcEW8Xf/ssXWKDxiEAAGp9czLvCTb0/4YqMyO/X7r5Qvr6t2wOZSgi/h4R/4iIf0bEnoj4V0TsjYh/R8R/GvbfExGlZdIfbohX069OQhVur1NRm0r7f89nc1vpsjj3VQ0N9WSxXRF5h3nmSHZMRqJv4PTZ2Zmjy6Tx7Us/ftJqW23/L13SPOR9wSwft3sbBuimJxcm2yvtUneuRezvXSx/pf+b9EYk1ZmAJCL2RcT+Vex3qCZ89ukvDlQjffXvW7n8ZaWm82jrMM9U+jziqUr9F6Na/qibREzq5ifPT56ZOTNzYXxi4vixoyeeG392bDBmZ46MpWfBkaZpfP/D9ddbpb9i+b/6ufEjL5/4+lTWstYurf/tNed/5PO3i+UfSiKS6nzt/OrTuP7Txy3vado9//uTN8vh/L70/cmFhYtHI/qTV5euH1/8bB5PX6NYKf/Iocbzv5xu+RqXH4n/RkR6Ev8vIv4flTvENO8HI+LxiDi0TPm/e/GJd9sv/8ZKyz8d9eWv1Hxd/S/O17cKJNncYN2m/kgDPecO3nrQ4uLxcPV/vBwaydY0v/4ldZeIVjnNv+3SNX+s+egBAADA5lCIiJ01Y0k7o1AYHa2MAe2J7YXZufmFw6fnLl2YTrdFDEVfIR/pqowH9yX5+OdQTXy8IX4sGzf+tGdbOT46NTc73dWSAzvKbT4pjEa81VPT/lO/rM8QM/BX5vdasHUt1/7TTvzeGx3MDNBRD//9f/ODDc0I0HE17b/VL/yLbfzfF7AJPPT3f9LyeTbAI2PlB/0YM4TNr6Qtw5a2qvZ/2EMA4VHSG29Uw4Wu5gToNP1/2JJW/F3/mgKlgeabBmPpm2Nw+R32RHvZ2NYkra4E0p5VV1Lf1s6n8omelu+Jwup2OBD1a/rbrNPTazwaxYvzZ/Yunvz5s0XWeJxL2f/Kr3cNftmRdtos0PFLEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwIb4MwAA///GJdfC")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount$9p_tcp(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x10000, &(0x7f0000000300)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}], [{@audit}, {@dont_appraise}, {@hash}, {@fsuuid={'fsuuid', 0x3d, {[0x6a, 0x65, 0x35, 0x31, 0x66, 0x31, 0x65], 0x2d, [0x0, 0x39, 0x66, 0x30], 0x2d, [0x30, 0x64, 0x37, 0x65], 0x2d, [0x69, 0x31, 0x35, 0x32], 0x2d, [0x65, 0x61, 0x0, 0x31, 0x37, 0x32, 0x38, 0x63]}}}]}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x80800, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {}, {0x14, 0x19, {0xffff8000, 0x4, 0x0, 0x2}}}}, 0x30}}, 0x2c040090)

286.840135ms ago: executing program 2 (id=2698):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x20000}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000000005000000"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000000240)=""/61}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000001600), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_PORTS(r4, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r5, 0x1}, 0x1c}}, 0x0)
syz_clone(0x111, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, &(0x7f0000000040))
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x7542d000)
readv(r6, &(0x7f0000000380)=[{&(0x7f00000035c0)=""/52, 0x34}], 0x4e)

286.692304ms ago: executing program 5 (id=2699):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000000014000100e3ffffff000000", @ANYRES32=r3, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
r4 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r5 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}}}, 0x24}}, 0x0)

274.945955ms ago: executing program 3 (id=2700):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2000000009}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYRES32=r1], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000000)={0x6, 0x10, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007000000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000c500000095"], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x80, &(0x7f00000000c0)=""/128, 0x40f00}, 0x94)
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000340)={0x40, 0x1, 0x1575, 0x0, 0x0, 0xfffd})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRESDEC=r0, @ANYRES16=r2], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70300001c000000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='fsi_slave_init\x00', r5, 0x0, 0x2000000000}, 0x18)

206.318516ms ago: executing program 3 (id=2701):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000100000000900010073797a30000000000900030073797a3100000000"], 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r2, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)

205.758616ms ago: executing program 3 (id=2702):
prctl$PR_SET_NAME(0xf, &(0x7f00000014c0)='w\xde\xa1\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd\xde\xad\xf5\x1eM\x11[\xb6\x98\xda\xd2y\xbd\xad\x87P\xd8\xb2\xe5\xd2\xe7\xf6\xa1\xc8\'\x1e\xbc\xf4\xa0\xe6\xcf*(\xfb_\x9fL\xa2\x86\f\xcd\x1b\xd1\xe7\x11\xe8\xe1-\x0f\x1b:\xff\x11~')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800"/126], 0x98}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

188.056526ms ago: executing program 3 (id=2703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r2, 0x4b47, &(0x7f0000000280)={0x5, 0x2, 0x6})

173.028077ms ago: executing program 3 (id=2704):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
socket(0x29, 0x80805, 0xffffffff)
r4 = socket$inet(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r5 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r5, 0x0, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x1000000, {0x0, 0x0, 0x0, r6, {0x0, 0xb}}}, 0x24}}, 0x0)

162.684077ms ago: executing program 5 (id=2705):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000002"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="0000000000dcb15c7841811b07000000004e5200", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="1825e5904ee4af2f7b000000000000001801000020207025008063f888bf000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500", @ANYRES16=r0, @ANYRES32=r3], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kfree\x00', r7}, 0x18)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[], 0x60}, 0x1, 0x7}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16, @ANYBLOB="ff830500000700ffffff"], 0x4}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="500000001000e5212abd700004000000000000003a8c0488b24388661f0aa82d6638f69df52d93b4bcb960ccae5fce3646b6ffa1138e4daa2617a94e515e8a4625774ec1c51721087516d7546e4503b4554b9193719ba30b4ca4808dc5965d4860c5c3053fda9f5cd185c3239e9a915edd279b84aa150ffb6f60999feda0866afcf03500aba97869e6e9d1e6f761a51169c7f3f80367f655379eb72cde34d4bf383e60", @ANYRES32=0x0, @ANYBLOB="00000000195000001c0012800c0001006d6163766c616e000c0002800800030000000000140035006d6163766c616e300000000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x854}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000ea36cc34fa31472900080045030028000000000004907800000000e0000001000000000014907861020001f713eb73ce8615f720b9ef4b114d871c05f68455e79ca4dc83f2b23b90634fea40fe76adf78d98d8e553d3f462826e6041a88edcbb51ee5b518d7eb2802d9251d4fb4b749e08a87e3d26b17f884547e15371e347b8faac214e1d574649fe1acb323de14adeca02846a55aa895ed5e0"], 0x0)
write(0xffffffffffffffff, 0x0, 0x0)

122.680658ms ago: executing program 5 (id=2706):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00'}, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0x50, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

119.432798ms ago: executing program 3 (id=2707):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x20000}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000000240)=""/61}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000001600), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_PORTS(r4, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r5, 0x1}, 0x1c}}, 0x0)
syz_clone(0x111, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$BLKIOMIN(0xffffffffffffffff, 0x1278, &(0x7f0000000040))
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x7542d000)
readv(r6, &(0x7f0000000380)=[{&(0x7f00000035c0)=""/52, 0x34}], 0x4e)

104.106108ms ago: executing program 5 (id=2708):
close(0x3)

80.215948ms ago: executing program 5 (id=2709):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x3, 0xd)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8042, &(0x7f0000000500), 0x1, 0x4f8, &(0x7f0000001900)="$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")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount$9p_tcp(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x10000, &(0x7f0000000300)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}], [{@audit}, {@dont_appraise}, {@hash}, {@fsuuid={'fsuuid', 0x3d, {[0x6a, 0x65, 0x35, 0x31, 0x66, 0x31, 0x65], 0x2d, [0x0, 0x39, 0x66, 0x30], 0x2d, [0x30, 0x64, 0x37, 0x65], 0x2d, [0x69, 0x31, 0x35, 0x32], 0x2d, [0x65, 0x61, 0x0, 0x31, 0x37, 0x32, 0x38, 0x63]}}}]}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x80800, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r8, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000080)="0000501effd4", 0x0, 0x800004, 0x10030, 0x1, 0x0})
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {}, {0x14, 0x19, {0xffff8000, 0x4, 0x0, 0x2}}}}, 0x30}}, 0x2c040090)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0xa8, r9, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x5}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x80040}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))

79.121239ms ago: executing program 0 (id=2710):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext2\x00', &(0x7f0000000280)='./file0\x00', 0x10892, &(0x7f0000000300)={[{@grpid}]}, 0xfb, 0x273, &(0x7f0000000c80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
io_uring_enter(0xffffffffffffffff, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002d000b12d25a80648c2594f90124fc60100c020000040000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
syz_pidfd_open(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x4, 0x7ffc1ff8}]})

26.069669ms ago: executing program 2 (id=2711):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000100000000900010073797a30000000000900030073797a31000000"], 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r1, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)

0s ago: executing program 2 (id=2712):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

kernel console output (not intermixed with test programs):

istering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.730148][ T6676] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.811765][ T6699] smc: net device bond0 applied user defined pnetid SYZ0
[   80.819354][ T6699] smc: net device bond0 erased user defined pnetid SYZ0
[   80.839959][ T6676] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.860839][ T6701] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   80.897501][  T310] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.908824][  T310] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.920777][  T310] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.936604][  T310] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.961069][ T6709] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   81.003925][ T6713] loop5: detected capacity change from 0 to 512
[   81.011549][ T6713] EXT4-fs: dax option not supported
[   81.064745][ T6719] SELinux:  Context mN�/���YS�P�Qz�Z��,wml���ؿ�L�0}.F��)+�h�1е�eң�9[�J@��_&e��Zb����+F�)yd4�Ck�5�Q}<�h&���rF��B���DV�t��G�D��#D�y~�&u�U����j2t��S5�H�un��x���p�"
[   81.064745][ T6719] ��W?\�:���Av��IMl�ݗ5��2�d� is not valid (left unmapped).
[   81.116459][ T6721] loop1: detected capacity change from 0 to 1024
[   81.119724][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1195'.
[   81.123298][ T6721] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.142331][ T6719] SELinux:  Context ��vt��.N��&s%����Kh(�j�)]}zT/�5�|���P���
[   81.142331][ T6719] �N-��6�K%���&�(,?fl��Q_��"]N�pvPe|-�$����swq��CL�w�Y��)�Zqy��]@�T���As#ċ��<!tI#RŅ�����`u�^av�֗�^)�Lj�"E��E��n��$n�)j�|�% is not valid (left unmapped).
[   81.212131][ T6721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.231166][ T6719] SELinux:  Context @�?$:+tRUԽ�%Z��XF���%��~w߁����=�o:o�~@N�p�K��6aB����u����MRyf����B5��u�Թ�ٍ�f���@��|��X O�!ʠ is not valid (left unmapped).
[   81.241909][ T6721] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1194'.
[   81.250530][ T6719] SELinux:  Context S��^4K�]�c��c̙>$K3ջ��no�'��q���=���e�i��e�P�ح��b_ux��l�e%k��c�&��	�Lк\2����sʿ�������f�w�iw��э�NM�,��pj&vu�P����o���9�ԝ:=�� is not valid (left unmapped).
[   81.303360][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.461281][ T6746] loop1: detected capacity change from 0 to 512
[   81.582671][ T6746] lo speed is unknown, defaulting to 1000
[   81.589775][ T6746] lo speed is unknown, defaulting to 1000
[   81.604490][ T6757] IPv6: NLM_F_CREATE should be specified when creating new route
[   81.705356][ T6765] smc: net device bond0 applied user defined pnetid SYZ0
[   81.713458][ T6765] smc: net device bond0 erased user defined pnetid SYZ0
[   81.769157][ T6774] smc: net device bond0 applied user defined pnetid SYZ0
[   81.776813][ T6774] smc: net device bond0 erased user defined pnetid SYZ0
[   82.547130][ T6817] loop1: detected capacity change from 0 to 8192
[   82.589762][ T6819] loop3: detected capacity change from 0 to 1024
[   82.597054][ T6819] EXT4-fs: Ignoring removed nomblk_io_submit option
[   82.625550][ T6819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.670283][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.790156][ T6833] loop0: detected capacity change from 0 to 512
[   82.803954][ T6833] EXT4-fs: dax option not supported
[   83.039536][ T6874] smc: net device bond0 applied user defined pnetid SYZ0
[   83.055031][ T6874] smc: net device bond0 erased user defined pnetid SYZ0
[   83.108790][ T6882] loop1: detected capacity change from 0 to 1024
[   83.126303][ T6882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   83.139515][ T6882] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.152046][ T6882] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1247: Freeing blocks not in datazone - block = 0, count = 16
[   83.190530][ T6882] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   83.302280][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   83.371519][ T6900] smc: net device bond0 applied user defined pnetid SYZ0
[   83.378884][ T6900] smc: net device bond0 erased user defined pnetid SYZ0
[   83.701053][ T6925] loop2: detected capacity change from 0 to 512
[   83.707672][ T6925] EXT4-fs: dax option not supported
[   83.749742][ T6927] loop2: detected capacity change from 0 to 1024
[   83.752407][ T6929] smc: net device bond0 applied user defined pnetid SYZ0
[   83.765199][ T6927] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.793768][ T6929] smc: net device bond0 erased user defined pnetid SYZ0
[   83.813115][ T6927] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.877105][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.943091][ T6954] loop3: detected capacity change from 0 to 512
[   83.951623][ T6954] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.958712][ T6954] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.973551][ T6954] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   83.987870][ T6954] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   83.998602][ T6954] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[   84.007474][ T6967] FAULT_INJECTION: forcing a failure.
[   84.007474][ T6967] name failslab, interval 1, probability 0, space 0, times 0
[   84.011142][ T6954] EXT4-fs (loop3): 1 truncate cleaned up
[   84.020190][ T6967] CPU: 0 UID: 0 PID: 6967 Comm: syz.0.1277 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.020259][ T6967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.020274][ T6967] Call Trace:
[   84.020283][ T6967]  <TASK>
[   84.020291][ T6967]  __dump_stack+0x1d/0x30
[   84.020317][ T6967]  dump_stack_lvl+0xe8/0x140
[   84.020340][ T6967]  dump_stack+0x15/0x1b
[   84.020360][ T6967]  should_fail_ex+0x265/0x280
[   84.020412][ T6967]  should_failslab+0x8c/0xb0
[   84.020441][ T6967]  kmem_cache_alloc_node_noprof+0x57/0x320
[   84.020471][ T6967]  ? __alloc_skb+0x101/0x320
[   84.020556][ T6967]  __alloc_skb+0x101/0x320
[   84.020651][ T6967]  alloc_skb_with_frags+0x7d/0x470
[   84.020683][ T6967]  ? obj_cgroup_charge_account+0x122/0x1a0
[   84.020721][ T6967]  ? should_fail_ex+0x30/0x280
[   84.020790][ T6967]  sock_alloc_send_pskb+0x43a/0x4f0
[   84.020828][ T6967]  unix_stream_sendmsg+0x3f3/0xb90
[   84.020867][ T6967]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[   84.020895][ T6967]  __sock_sendmsg+0x145/0x180
[   84.020940][ T6967]  ____sys_sendmsg+0x31e/0x4e0
[   84.020971][ T6967]  ___sys_sendmsg+0x17b/0x1d0
[   84.021067][ T6967]  __x64_sys_sendmsg+0xd4/0x160
[   84.021104][ T6967]  x64_sys_call+0x191e/0x2ff0
[   84.021129][ T6967]  do_syscall_64+0xd2/0x200
[   84.021232][ T6967]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.021263][ T6967]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.021356][ T6967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.021383][ T6967] RIP: 0033:0x7f95cd01ebe9
[   84.021401][ T6967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.021423][ T6967] RSP: 002b:00007f95cba87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.021445][ T6967] RAX: ffffffffffffffda RBX: 00007f95cd255fa0 RCX: 00007f95cd01ebe9
[   84.021526][ T6967] RDX: 0000000000000000 RSI: 0000200000001580 RDI: 0000000000000006
[   84.021559][ T6967] RBP: 00007f95cba87090 R08: 0000000000000000 R09: 0000000000000000
[   84.021576][ T6967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.021592][ T6967] R13: 00007f95cd256038 R14: 00007f95cd255fa0 R15: 00007ffcbaf48228
[   84.021619][ T6967]  </TASK>
[   84.242807][ T6954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.264047][ T6954] No source specified
[   84.281039][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.411386][ T6992] loop5: detected capacity change from 0 to 8192
[   84.420789][   T29] kauditd_printk_skb: 191 callbacks suppressed
[   84.420802][   T29] audit: type=1326 audit(1756846833.034:7454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.452686][   T29] audit: type=1326 audit(1756846833.044:7455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.476185][   T29] audit: type=1326 audit(1756846833.044:7456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.499609][   T29] audit: type=1326 audit(1756846833.044:7457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.523145][   T29] audit: type=1326 audit(1756846833.044:7458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.547001][   T29] audit: type=1326 audit(1756846833.064:7459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.570541][   T29] audit: type=1326 audit(1756846833.064:7460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.593982][   T29] audit: type=1326 audit(1756846833.164:7461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.619934][   T29] audit: type=1326 audit(1756846833.164:7462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.643357][   T29] audit: type=1326 audit(1756846833.164:7463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6991 comm="syz.5.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   84.755933][ T7011] netdevsim netdevsim3: Direct firmware load for ./file0/file1 failed with error -2
[   84.813615][ T7017] 9pnet: Could not find request transport: 0xffffffffffffffff
[   84.927652][ T7034] __nla_validate_parse: 27 callbacks suppressed
[   84.927667][ T7034] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1302'.
[   84.959220][ T7034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1302'.
[   84.985007][ T7035] loop0: detected capacity change from 0 to 1024
[   84.995925][ T7041] loop3: detected capacity change from 0 to 512
[   85.002470][ T7041] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.007066][ T7035] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.018437][ T7041] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.050345][ T7041] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   85.063185][ T7041] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   85.077263][ T7041] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[   85.085682][ T7054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1308'.
[   85.085993][ T7041] EXT4-fs (loop3): 1 truncate cleaned up
[   85.105928][ T7041] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.114351][ T7035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.120501][ T7041] No source specified
[   85.135241][ T7054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1308'.
[   85.157524][ T7035] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1299'.
[   85.193091][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.211364][ T7067] FAULT_INJECTION: forcing a failure.
[   85.211364][ T7067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.211386][ T7067] CPU: 1 UID: 0 PID: 7067 Comm: syz.2.1311 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.211408][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.211420][ T7067] Call Trace:
[   85.211425][ T7067]  <TASK>
[   85.211431][ T7067]  __dump_stack+0x1d/0x30
[   85.211511][ T7067]  dump_stack_lvl+0xe8/0x140
[   85.211535][ T7067]  dump_stack+0x15/0x1b
[   85.211554][ T7067]  should_fail_ex+0x265/0x280
[   85.211576][ T7067]  should_fail+0xb/0x20
[   85.211591][ T7067]  should_fail_usercopy+0x1a/0x20
[   85.211611][ T7067]  _copy_to_iter+0x251/0xe70
[   85.211663][ T7067]  ? get_gate_vma+0x71/0x90
[   85.211699][ T7067]  ? proc_get_vma+0x36a/0x390
[   85.211723][ T7067]  ? mmput+0x47/0x50
[   85.211755][ T7067]  seq_read_iter+0x76a/0x940
[   85.211817][ T7067]  seq_read+0x270/0x2b0
[   85.211903][ T7067]  ? __pfx_seq_read+0x10/0x10
[   85.211935][ T7067]  vfs_readv+0x3fb/0x690
[   85.211967][ T7067]  ? __pfx_seq_read+0x10/0x10
[   85.212047][ T7067]  __x64_sys_preadv+0xfd/0x1c0
[   85.212072][ T7067]  x64_sys_call+0x282a/0x2ff0
[   85.212166][ T7067]  do_syscall_64+0xd2/0x200
[   85.212190][ T7067]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.212210][ T7067]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.212293][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.212355][ T7067] RIP: 0033:0x7f15c136ebe9
[   85.212371][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.212391][ T7067] RSP: 002b:00007f15bfdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   85.212410][ T7067] RAX: ffffffffffffffda RBX: 00007f15c15a5fa0 RCX: 00007f15c136ebe9
[   85.212422][ T7067] RDX: 0000000000000002 RSI: 0000200000000200 RDI: 0000000000000003
[   85.212435][ T7067] RBP: 00007f15bfdd7090 R08: 0000000004000000 R09: 0000000000000000
[   85.212585][ T7067] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[   85.212595][ T7067] R13: 00007f15c15a6038 R14: 00007f15c15a5fa0 R15: 00007fffd077d6b8
[   85.212616][ T7067]  </TASK>
[   85.243756][ T7071] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   85.445159][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.474667][ T7077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1316'.
[   85.515496][ T7077] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1316'.
[   85.540631][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'.
[   85.560036][ T7083] loop2: detected capacity change from 0 to 512
[   85.586476][ T7083] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.596172][ T7098] netlink: 'syz.0.1320': attribute type 4 has an invalid length.
[   85.600152][ T7083] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.607142][ T7098] netlink: 'syz.0.1320': attribute type 4 has an invalid length.
[   85.638510][ T7083] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   85.656062][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'.
[   85.658667][ T7103] ip6gre1: entered allmulticast mode
[   85.671458][ T7083] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   85.684688][ T7083] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[   85.703392][ T7083] EXT4-fs (loop2): 1 truncate cleaned up
[   85.722162][ T7083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.767721][ T7083] No source specified
[   85.782831][ T7116] loop5: detected capacity change from 0 to 2048
[   85.790604][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.815756][ T7110] loop0: detected capacity change from 0 to 512
[   85.823723][ T7110] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   85.859023][ T7116] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.890039][ T7110] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.906420][ T7116] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   85.922395][ T7116] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28
[   85.934859][ T7116] EXT4-fs (loop5): This should not happen!! Data will be lost
[   85.934859][ T7116] 
[   85.944496][ T7116] EXT4-fs (loop5): Total free blocks count 0
[   85.950477][ T7116] EXT4-fs (loop5): Free/Dirty block details
[   85.956390][ T7116] EXT4-fs (loop5): free_blocks=2415919504
[   85.962196][ T7116] EXT4-fs (loop5): dirty_blocks=32
[   85.967323][ T7116] EXT4-fs (loop5): Block reservation details
[   85.973303][ T7116] EXT4-fs (loop5): i_reserved_data_blocks=2
[   86.010284][ T7110] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.045226][ T7138] FAULT_INJECTION: forcing a failure.
[   86.045226][ T7138] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.058508][ T7138] CPU: 0 UID: 0 PID: 7138 Comm: syz.2.1336 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   86.058535][ T7138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.058548][ T7138] Call Trace:
[   86.058553][ T7138]  <TASK>
[   86.058559][ T7138]  __dump_stack+0x1d/0x30
[   86.058645][ T7138]  dump_stack_lvl+0xe8/0x140
[   86.058729][ T7138]  dump_stack+0x15/0x1b
[   86.058743][ T7138]  should_fail_ex+0x265/0x280
[   86.058760][ T7138]  should_fail+0xb/0x20
[   86.058774][ T7138]  should_fail_usercopy+0x1a/0x20
[   86.058825][ T7138]  _copy_from_user+0x1c/0xb0
[   86.058856][ T7138]  ___sys_sendmsg+0xc1/0x1d0
[   86.058930][ T7138]  __x64_sys_sendmsg+0xd4/0x160
[   86.058955][ T7138]  x64_sys_call+0x191e/0x2ff0
[   86.058973][ T7138]  do_syscall_64+0xd2/0x200
[   86.059074][ T7138]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.059095][ T7138]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.059144][ T7138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.059187][ T7138] RIP: 0033:0x7f15c136ebe9
[   86.059199][ T7138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.059215][ T7138] RSP: 002b:00007f15bfdd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.059231][ T7138] RAX: ffffffffffffffda RBX: 00007f15c15a5fa0 RCX: 00007f15c136ebe9
[   86.059241][ T7138] RDX: 0000000000004000 RSI: 0000200000000080 RDI: 0000000000000007
[   86.059306][ T7138] RBP: 00007f15bfdd7090 R08: 0000000000000000 R09: 0000000000000000
[   86.059316][ T7138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.059362][ T7138] R13: 00007f15c15a6038 R14: 00007f15c15a5fa0 R15: 00007fffd077d6b8
[   86.059385][ T7138]  </TASK>
[   86.239476][   T37] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   86.351912][ T7144] loop3: detected capacity change from 0 to 512
[   86.365979][ T7144] EXT4-fs: Ignoring removed nomblk_io_submit option
[   86.372690][ T7144] EXT4-fs: Ignoring removed nomblk_io_submit option
[   86.379969][ T7144] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   86.391521][ T7144] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   86.414339][ T7144] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[   86.475465][ T7173] smc: net device bond0 applied user defined pnetid SYZ0
[   86.549128][ T7144] EXT4-fs (loop3): 1 truncate cleaned up
[   86.550395][ T7110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.554991][ T7178] smc: net device bond0 erased user defined pnetid SYZ0
[   86.573396][ T7144] No source specified
[   86.721865][ T7194] loop2: detected capacity change from 0 to 128
[   86.748250][ T7194] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   86.757460][ T4374] udevd[4374]: incorrect ext4 checksum on /dev/loop2
[   86.765775][ T7195] smc: net device bond0 applied user defined pnetid SYZ0
[   86.773044][ T7195] smc: net device bond0 erased user defined pnetid SYZ0
[   86.778028][ T4374] udevd[4374]: incorrect ext4 checksum on /dev/loop2
[   87.048227][ T7221] syzkaller0: entered promiscuous mode
[   87.053777][ T7221] syzkaller0: entered allmulticast mode
[   87.197239][ T7236] smc: net device bond0 applied user defined pnetid SYZ0
[   87.218266][ T7236] smc: net device bond0 erased user defined pnetid SYZ0
[   87.242925][ T7241] smc: net device bond0 applied user defined pnetid SYZ0
[   87.252180][ T7241] smc: net device bond0 erased user defined pnetid SYZ0
[   87.332878][ T7251] loop0: detected capacity change from 0 to 1024
[   87.339799][ T7251] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.472464][ T2994] udevd[2994]: worker [4374] terminated by signal 33 (Unknown signal 33)
[   87.519106][ T3484] printk: udevd: 8 output lines suppressed due to ratelimiting
[   87.676062][ T7288] loop3: detected capacity change from 0 to 1024
[   87.682923][ T7288] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.766098][ T7297] smc: net device bond0 applied user defined pnetid SYZ0
[   87.773409][ T7297] smc: net device bond0 erased user defined pnetid SYZ0
[   87.996427][ T7302] rdma_rxe: rxe_newlink: failed to add lo
[   88.305111][ T7322] netdevsim netdevsim3: Direct firmware load for ./file0/file1 failed with error -2
[   88.386075][ T7328] smc: net device bond0 applied user defined pnetid SYZ0
[   88.394931][ T7328] smc: net device bond0 erased user defined pnetid SYZ0
[   88.456647][ T7339] smc: net device bond0 applied user defined pnetid SYZ0
[   88.467049][ T7339] smc: net device bond0 erased user defined pnetid SYZ0
[   88.486173][ T7341] smc: net device bond0 applied user defined pnetid SYZ0
[   88.497489][ T7341] smc: net device bond0 erased user defined pnetid SYZ0
[   88.605572][ T7356] loop5: detected capacity change from 0 to 128
[   88.613638][ T7356] EXT4-fs (loop5): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   88.632719][ T7358] smc: net device bond0 applied user defined pnetid SYZ0
[   88.640454][ T7358] smc: net device bond0 erased user defined pnetid SYZ0
[   88.682189][ T7367] loop1: detected capacity change from 0 to 128
[   88.694932][ T7367] ext4 filesystem being mounted at /287/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   88.768891][ T7379] loop1: detected capacity change from 0 to 512
[   88.775458][ T7379] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.782191][ T7379] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.790579][ T7379] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   88.804725][ T7379] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   88.812768][ T7379] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[   88.821421][ T7379] EXT4-fs (loop1): 1 truncate cleaned up
[   88.825679][ T7387] loop0: detected capacity change from 0 to 128
[   88.828494][ T7379] No source specified
[   88.863335][ T7387] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   88.910699][ T7395] smc_pnet_add_eth: 2 callbacks suppressed
[   88.910713][ T7395] smc: net device bond0 applied user defined pnetid SYZ0
[   88.940978][ T7395] smc_pnet_remove_by_pnetid: 2 callbacks suppressed
[   88.941010][ T7395] smc: net device bond0 erased user defined pnetid SYZ0
[   89.040574][ T7405] smc: net device bond0 applied user defined pnetid SYZ0
[   89.052555][ T7405] smc: net device bond0 erased user defined pnetid SYZ0
[   89.083949][ T7407] syzkaller0: entered promiscuous mode
[   89.089428][ T7407] syzkaller0: entered allmulticast mode
[   89.133627][ T7411] loop5: detected capacity change from 0 to 512
[   89.140232][ T7411] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.160559][ T7411] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.168516][ T7411] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[   89.180957][ T7416] loop0: detected capacity change from 0 to 8192
[   89.189800][ T7411] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[   89.197831][ T7411] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[   89.206298][ T7411] EXT4-fs (loop5): 1 truncate cleaned up
[   89.213081][ T7411] No source specified
[   89.324123][ T7426] loop5: detected capacity change from 0 to 512
[   89.366235][ T7426] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.382661][ T7434] smc: net device bond0 applied user defined pnetid SYZ0
[   89.397334][ T7434] smc: net device bond0 erased user defined pnetid SYZ0
[   89.475011][   T29] kauditd_printk_skb: 3139 callbacks suppressed
[   89.475024][   T29] audit: type=1400 audit(1756846838.094:10603): avc:  denied  { setattr } for  pid=7425 comm="syz.5.1451" path="pipe:[6591]" dev="pipefs" ino=6591 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   89.491581][ T7444] loop3: detected capacity change from 0 to 1024
[   89.512540][ T7444] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.528308][   T29] audit: type=1326 audit(1756846838.144:10604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7415 comm="syz.0.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95cd01ebe9 code=0x7ffc0000
[   89.528336][   T29] audit: type=1326 audit(1756846838.144:10605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7415 comm="syz.0.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95cd01ebe9 code=0x7ffc0000
[   89.585959][ T7450] syzkaller0: entered promiscuous mode
[   89.595284][ T7450] syzkaller0: entered allmulticast mode
[   89.667738][   T29] audit: type=1326 audit(1756846838.284:10606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.694775][   T29] audit: type=1326 audit(1756846838.314:10607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.718288][   T29] audit: type=1326 audit(1756846838.314:10608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.741794][   T29] audit: type=1326 audit(1756846838.314:10609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.765312][   T29] audit: type=1326 audit(1756846838.314:10610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.788896][   T29] audit: type=1326 audit(1756846838.314:10611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.812502][   T29] audit: type=1326 audit(1756846838.314:10612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7457 comm="syz.3.1462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[   89.948713][ T7478] __nla_validate_parse: 22 callbacks suppressed
[   89.948729][ T7478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1471'.
[   90.017429][ T7485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1474'.
[   90.046994][ T7487] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   90.152430][ T7498] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1480'.
[   90.244217][ T7512] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   90.287055][ T7519] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1489'.
[   90.332527][ T7522] loop5: detected capacity change from 0 to 512
[   90.339380][ T7522] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.346703][ T7522] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.354400][ T7522] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[   90.364440][ T7522] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[   90.372463][ T7522] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[   90.382150][ T7522] EXT4-fs (loop5): 1 truncate cleaned up
[   90.389215][ T7522] No source specified
[   90.416020][ T7534] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1494'.
[   90.426007][ T7536] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1495'.
[   90.499018][ T7549] loop5: detected capacity change from 0 to 1024
[   90.506908][ T7549] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.568743][ T7563] loop1: detected capacity change from 0 to 512
[   90.595390][ T7563] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.604546][ T7563] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.616235][ T7563] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   90.628253][ T7576] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   90.637722][ T7563] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   90.646668][ T7563] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[   90.666003][ T7563] EXT4-fs (loop1): 1 truncate cleaned up
[   90.683038][ T7563] No source specified
[   90.736749][ T7593] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1519'.
[   90.756360][ T7593] team0 (unregistering): Port device team_slave_0 removed
[   90.788610][ T7605] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[   90.795220][ T7605] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   90.802742][ T7605] vhci_hcd vhci_hcd.0: Device attached
[   90.913347][ T7619] loop0: detected capacity change from 0 to 512
[   90.920426][ T7619] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.928455][ T7619] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.935830][ T7619] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   90.946068][ T7619] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   90.955673][ T7619] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   90.964104][ T7619] EXT4-fs (loop0): 1 truncate cleaned up
[   90.970762][ T7619] No source specified
[   91.041043][ T7636] loop1: detected capacity change from 0 to 1024
[   91.043654][ T5194] usb 11-1: new low-speed USB device number 2 using vhci_hcd
[   91.047760][ T7636] EXT4-fs: Ignoring removed bh option
[   91.060974][ T7636] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.072851][ T7636] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[   91.081090][ T7636] System zones: 0-1, 3-12
[   91.089588][ T7636] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.1534: lblock 1 mapped to illegal pblock 1 (length 1)
[   91.108483][ T7636] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1534: Failed to acquire dquot type 0
[   91.121341][ T7636] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1534: Freeing blocks not in datazone - block = 0, count = 4096
[   91.137784][ T7636] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1534: Invalid inode bitmap blk 0 in block_group 0
[   91.150506][ T7636] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   91.159428][ T7636] EXT4-fs (loop1): 1 orphan inode deleted
[   91.164611][   T37] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   91.183563][   T37] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[   91.199827][ T7635] EXT4-fs error (device loop1): ext4_lookup:1787: inode #16: comm syz.1.1534: iget: bad extra_isize 65535 (inode size 256)
[   91.338872][ T7666] loop1: detected capacity change from 0 to 512
[   91.347588][ T7607] vhci_hcd: connection reset by peer
[   91.353193][   T37] vhci_hcd: stop threads
[   91.357556][   T37] vhci_hcd: release socket
[   91.357767][ T7666] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.361974][   T37] vhci_hcd: disconnect device
[   91.374870][ T7666] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.383803][ T7666] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   91.402526][ T7666] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   91.418879][ T7666] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[   91.434078][ T7666] EXT4-fs (loop1): 1 truncate cleaned up
[   91.451008][ T7666] No source specified
[   91.602525][ T7699] loop1: detected capacity change from 0 to 1024
[   91.609431][ T7699] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.855832][ T7722] FAULT_INJECTION: forcing a failure.
[   91.855832][ T7722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.869217][ T7722] CPU: 0 UID: 0 PID: 7722 Comm: syz.1.1566 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   91.869242][ T7722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.869252][ T7722] Call Trace:
[   91.869256][ T7722]  <TASK>
[   91.869333][ T7722]  __dump_stack+0x1d/0x30
[   91.869355][ T7722]  dump_stack_lvl+0xe8/0x140
[   91.869376][ T7722]  dump_stack+0x15/0x1b
[   91.869394][ T7722]  should_fail_ex+0x265/0x280
[   91.869421][ T7722]  should_fail+0xb/0x20
[   91.869496][ T7722]  should_fail_usercopy+0x1a/0x20
[   91.869514][ T7722]  _copy_to_user+0x20/0xa0
[   91.869538][ T7722]  simple_read_from_buffer+0xb5/0x130
[   91.869561][ T7722]  proc_fail_nth_read+0x10e/0x150
[   91.869655][ T7722]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   91.869676][ T7722]  vfs_read+0x1a8/0x770
[   91.869697][ T7722]  ? __rcu_read_unlock+0x4f/0x70
[   91.869727][ T7722]  ? __fget_files+0x184/0x1c0
[   91.869781][ T7722]  ? memdup_user+0x7d/0xd0
[   91.869811][ T7722]  ksys_read+0xda/0x1a0
[   91.869831][ T7722]  __x64_sys_read+0x40/0x50
[   91.869920][ T7722]  x64_sys_call+0x27bc/0x2ff0
[   91.869951][ T7722]  do_syscall_64+0xd2/0x200
[   91.869998][ T7722]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   91.870023][ T7722]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   91.870086][ T7722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.870106][ T7722] RIP: 0033:0x7fb608ccd5fc
[   91.870118][ T7722] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   91.870210][ T7722] RSP: 002b:00007fb60772f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   91.870229][ T7722] RAX: ffffffffffffffda RBX: 00007fb608f05fa0 RCX: 00007fb608ccd5fc
[   91.870243][ T7722] RDX: 000000000000000f RSI: 00007fb60772f0a0 RDI: 0000000000000004
[   91.870256][ T7722] RBP: 00007fb60772f090 R08: 0000000000000000 R09: 0000000000000000
[   91.870269][ T7722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.870282][ T7722] R13: 00007fb608f06038 R14: 00007fb608f05fa0 R15: 00007ffc46e6a9b8
[   91.870302][ T7722]  </TASK>
[   92.746853][ T7781] loop2: detected capacity change from 0 to 8192
[   92.996333][ T7808] loop3: detected capacity change from 0 to 1024
[   93.003005][ T7808] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.213076][ T7842] loop5: detected capacity change from 0 to 1024
[   93.219914][ T7842] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.385861][ T7871] loop1: detected capacity change from 0 to 1024
[   93.392511][ T7871] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.415366][ T7876] FAULT_INJECTION: forcing a failure.
[   93.415366][ T7876] name failslab, interval 1, probability 0, space 0, times 0
[   93.428054][ T7876] CPU: 1 UID: 0 PID: 7876 Comm: syz.0.1628 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   93.428078][ T7876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.428098][ T7876] Call Trace:
[   93.428103][ T7876]  <TASK>
[   93.428110][ T7876]  __dump_stack+0x1d/0x30
[   93.428133][ T7876]  dump_stack_lvl+0xe8/0x140
[   93.428152][ T7876]  dump_stack+0x15/0x1b
[   93.428165][ T7876]  should_fail_ex+0x265/0x280
[   93.428181][ T7876]  should_failslab+0x8c/0xb0
[   93.428224][ T7876]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   93.428318][ T7876]  ? sidtab_sid2str_get+0xa0/0x130
[   93.428333][ T7876]  ? skb_put+0xa9/0xf0
[   93.428348][ T7876]  kmemdup_noprof+0x2b/0x70
[   93.428404][ T7876]  sidtab_sid2str_get+0xa0/0x130
[   93.428420][ T7876]  security_sid_to_context_core+0x1eb/0x2e0
[   93.428437][ T7876]  security_sid_to_context+0x27/0x40
[   93.428452][ T7876]  avc_audit_post_callback+0x9d/0x520
[   93.428471][ T7876]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   93.428525][ T7876]  common_lsm_audit+0x1bb/0x230
[   93.428629][ T7876]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   93.428651][ T7876]  slow_avc_audit+0x104/0x140
[   93.428750][ T7876]  avc_has_perm+0x13a/0x180
[   93.428771][ T7876]  selinux_socket_sendmsg+0x175/0x1b0
[   93.428798][ T7876]  security_socket_sendmsg+0x48/0x80
[   93.428833][ T7876]  __sock_sendmsg+0x30/0x180
[   93.428871][ T7876]  ____sys_sendmsg+0x31e/0x4e0
[   93.428915][ T7876]  ___sys_sendmsg+0x17b/0x1d0
[   93.428951][ T7876]  __x64_sys_sendmsg+0xd4/0x160
[   93.428972][ T7876]  x64_sys_call+0x191e/0x2ff0
[   93.428989][ T7876]  do_syscall_64+0xd2/0x200
[   93.429031][ T7876]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.429049][ T7876]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.429088][ T7876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.429105][ T7876] RIP: 0033:0x7f95cd01ebe9
[   93.429116][ T7876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.429129][ T7876] RSP: 002b:00007f95cba87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.429208][ T7876] RAX: ffffffffffffffda RBX: 00007f95cd255fa0 RCX: 00007f95cd01ebe9
[   93.429218][ T7876] RDX: 0000000000002000 RSI: 0000200000000180 RDI: 0000000000000005
[   93.429227][ T7876] RBP: 00007f95cba87090 R08: 0000000000000000 R09: 0000000000000000
[   93.429236][ T7876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.429245][ T7876] R13: 00007f95cd256038 R14: 00007f95cd255fa0 R15: 00007ffcbaf48228
[   93.429261][ T7876]  </TASK>
[   93.837804][ T7899] syzkaller0: entered promiscuous mode
[   93.843328][ T7899] syzkaller0: entered allmulticast mode
[   93.942364][ T7910] loop1: detected capacity change from 0 to 1024
[   93.963196][ T7910] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.181435][ T7947] loop5: detected capacity change from 0 to 512
[   94.190419][ T7947] EXT4-fs error (device loop5): ext4_xattr_inode_iget:442: comm syz.5.1651: error while reading EA inode 32 err=-116
[   94.224839][ T7947] EXT4-fs (loop5): Remounting filesystem read-only
[   94.231379][ T7947] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   94.244403][ T7947] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   94.254742][ T7947] EXT4-fs (loop5): 1 orphan inode deleted
[   94.370227][ T7966] lo speed is unknown, defaulting to 1000
[   94.379521][ T7966] lo speed is unknown, defaulting to 1000
[   94.441062][ T7987] FAULT_INJECTION: forcing a failure.
[   94.441062][ T7987] name failslab, interval 1, probability 0, space 0, times 0
[   94.453773][ T7987] CPU: 1 UID: 0 PID: 7987 Comm: syz.1.1671 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   94.453800][ T7987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.453841][ T7987] Call Trace:
[   94.453847][ T7987]  <TASK>
[   94.453855][ T7987]  __dump_stack+0x1d/0x30
[   94.453877][ T7987]  dump_stack_lvl+0xe8/0x140
[   94.453914][ T7987]  dump_stack+0x15/0x1b
[   94.453932][ T7987]  should_fail_ex+0x265/0x280
[   94.453956][ T7987]  should_failslab+0x8c/0xb0
[   94.453989][ T7987]  kmem_cache_alloc_noprof+0x50/0x310
[   94.454022][ T7987]  ? audit_log_start+0x365/0x6c0
[   94.454080][ T7987]  audit_log_start+0x365/0x6c0
[   94.454114][ T7987]  audit_seccomp+0x48/0x100
[   94.454137][ T7987]  ? __seccomp_filter+0x68c/0x10d0
[   94.454157][ T7987]  __seccomp_filter+0x69d/0x10d0
[   94.454178][ T7987]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   94.454229][ T7987]  ? vfs_write+0x7e8/0x960
[   94.454255][ T7987]  __secure_computing+0x82/0x150
[   94.454275][ T7987]  syscall_trace_enter+0xcf/0x1e0
[   94.454345][ T7987]  do_syscall_64+0xac/0x200
[   94.454371][ T7987]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.454392][ T7987]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.454417][ T7987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.454458][ T7987] RIP: 0033:0x7fb608ccebe9
[   94.454471][ T7987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.454488][ T7987] RSP: 002b:00007fb60772f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   94.454516][ T7987] RAX: ffffffffffffffda RBX: 00007fb608f05fa0 RCX: 00007fb608ccebe9
[   94.454632][ T7987] RDX: 000000000000ffe0 RSI: 0000200000000100 RDI: 0000000000000005
[   94.454643][ T7987] RBP: 00007fb60772f090 R08: 0000200000000140 R09: 000000000000001c
[   94.454654][ T7987] R10: 000000002000c851 R11: 0000000000000246 R12: 0000000000000001
[   94.454666][ T7987] R13: 00007fb608f06038 R14: 00007fb608f05fa0 R15: 00007ffc46e6a9b8
[   94.454684][ T7987]  </TASK>
[   94.759527][   T29] kauditd_printk_skb: 729 callbacks suppressed
[   94.759539][   T29] audit: type=1326 audit(1756846843.374:11333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.789313][   T29] audit: type=1326 audit(1756846843.374:11334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.822405][   T29] audit: type=1326 audit(1756846843.374:11335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.845937][   T29] audit: type=1326 audit(1756846843.374:11336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.869526][   T29] audit: type=1326 audit(1756846843.374:11337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.892892][   T29] audit: type=1326 audit(1756846843.374:11338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.916655][   T29] audit: type=1326 audit(1756846843.374:11339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.940147][   T29] audit: type=1326 audit(1756846843.374:11340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.963695][   T29] audit: type=1326 audit(1756846843.374:11341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   94.987260][   T29] audit: type=1326 audit(1756846843.374:11342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8005 comm="syz.2.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[   95.049543][ T8021] FAULT_INJECTION: forcing a failure.
[   95.049543][ T8021] name failslab, interval 1, probability 0, space 0, times 0
[   95.062440][ T8021] CPU: 0 UID: 0 PID: 8021 Comm: syz.5.1684 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.062547][ T8021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   95.062560][ T8021] Call Trace:
[   95.062566][ T8021]  <TASK>
[   95.062574][ T8021]  __dump_stack+0x1d/0x30
[   95.062596][ T8021]  dump_stack_lvl+0xe8/0x140
[   95.062617][ T8021]  dump_stack+0x15/0x1b
[   95.062687][ T8021]  should_fail_ex+0x265/0x280
[   95.062709][ T8021]  should_failslab+0x8c/0xb0
[   95.062733][ T8021]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   95.062786][ T8021]  ? __d_alloc+0x3d/0x340
[   95.062818][ T8021]  __d_alloc+0x3d/0x340
[   95.062879][ T8021]  d_alloc_parallel+0x53/0xc60
[   95.062919][ T8021]  ? __rcu_read_unlock+0x4f/0x70
[   95.062942][ T8021]  ? __d_lookup+0x316/0x340
[   95.063033][ T8021]  ? default_pointer+0xf2/0x5e0
[   95.063142][ T8021]  __lookup_slow+0x8c/0x250
[   95.063178][ T8021]  lookup_noperm+0xc9/0x180
[   95.063207][ T8021]  simple_start_creating+0x97/0x120
[   95.063266][ T8021]  start_creating+0xe9/0x160
[   95.063293][ T8021]  __debugfs_create_file+0x6b/0x330
[   95.063322][ T8021]  debugfs_create_file_full+0x3f/0x60
[   95.063421][ T8021]  ? __pfx_macvtap_setup+0x10/0x10
[   95.063442][ T8021]  ref_tracker_dir_debugfs+0x100/0x1e0
[   95.063482][ T8021]  alloc_netdev_mqs+0x1a2/0xa30
[   95.063510][ T8021]  rtnl_create_link+0x239/0x710
[   95.063567][ T8021]  rtnl_newlink_create+0x14c/0x620
[   95.063594][ T8021]  ? security_capable+0x83/0x90
[   95.063615][ T8021]  ? netlink_ns_capable+0x86/0xa0
[   95.063642][ T8021]  rtnl_newlink+0xf29/0x12d0
[   95.063725][ T8021]  ? __memcg_slab_free_hook+0x135/0x230
[   95.063819][ T8021]  ? __rcu_read_unlock+0x4f/0x70
[   95.063852][ T8021]  ? avc_has_perm_noaudit+0x1b1/0x200
[   95.063880][ T8021]  ? cred_has_capability+0x210/0x280
[   95.063905][ T8021]  ? selinux_capable+0x31/0x40
[   95.063933][ T8021]  ? security_capable+0x83/0x90
[   95.063958][ T8021]  ? ns_capable+0x7d/0xb0
[   95.064034][ T8021]  ? __pfx_rtnl_newlink+0x10/0x10
[   95.064064][ T8021]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   95.064092][ T8021]  netlink_rcv_skb+0x123/0x220
[   95.064109][ T8021]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   95.064256][ T8021]  rtnetlink_rcv+0x1c/0x30
[   95.064284][ T8021]  netlink_unicast+0x5bd/0x690
[   95.064377][ T8021]  netlink_sendmsg+0x58b/0x6b0
[   95.064397][ T8021]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.064418][ T8021]  __sock_sendmsg+0x145/0x180
[   95.064455][ T8021]  ____sys_sendmsg+0x31e/0x4e0
[   95.064482][ T8021]  ___sys_sendmsg+0x17b/0x1d0
[   95.064524][ T8021]  __x64_sys_sendmsg+0xd4/0x160
[   95.064620][ T8021]  x64_sys_call+0x191e/0x2ff0
[   95.064639][ T8021]  do_syscall_64+0xd2/0x200
[   95.064728][ T8021]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   95.064751][ T8021]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   95.064776][ T8021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.064862][ T8021] RIP: 0033:0x7f0e4bbbebe9
[   95.064875][ T8021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.064895][ T8021] RSP: 002b:00007f0e4a61f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.064915][ T8021] RAX: ffffffffffffffda RBX: 00007f0e4bdf5fa0 RCX: 00007f0e4bbbebe9
[   95.064927][ T8021] RDX: 0000000000004054 RSI: 00002000000002c0 RDI: 0000000000000003
[   95.065007][ T8021] RBP: 00007f0e4a61f090 R08: 0000000000000000 R09: 0000000000000000
[   95.065017][ T8021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.065028][ T8021] R13: 00007f0e4bdf6038 R14: 00007f0e4bdf5fa0 R15: 00007fffd6b07938
[   95.065048][ T8021]  </TASK>
[   95.431864][ T8025] __nla_validate_parse: 34 callbacks suppressed
[   95.431881][ T8025] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1685'.
[   95.449569][ T8025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1685'.
[   95.475237][ T8032] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1688'.
[   95.497737][ T8032] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1688'.
[   95.548524][ T8036] lo speed is unknown, defaulting to 1000
[   95.556322][ T8036] lo speed is unknown, defaulting to 1000
[   95.569546][ T8043] FAULT_INJECTION: forcing a failure.
[   95.569546][ T8043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.582609][ T8043] CPU: 0 UID: 0 PID: 8043 Comm: syz.1.1690 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.582672][ T8043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   95.582708][ T8043] Call Trace:
[   95.582763][ T8043]  <TASK>
[   95.582769][ T8043]  __dump_stack+0x1d/0x30
[   95.582788][ T8043]  dump_stack_lvl+0xe8/0x140
[   95.582804][ T8043]  dump_stack+0x15/0x1b
[   95.582850][ T8043]  should_fail_ex+0x265/0x280
[   95.582868][ T8043]  should_fail+0xb/0x20
[   95.582883][ T8043]  should_fail_usercopy+0x1a/0x20
[   95.582934][ T8043]  _copy_from_iter+0xd2/0xe80
[   95.582955][ T8043]  ? __build_skb_around+0x1a0/0x200
[   95.582987][ T8043]  ? __alloc_skb+0x223/0x320
[   95.583049][ T8043]  netlink_sendmsg+0x471/0x6b0
[   95.583072][ T8043]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.583093][ T8043]  __sock_sendmsg+0x145/0x180
[   95.583118][ T8043]  ____sys_sendmsg+0x31e/0x4e0
[   95.583208][ T8043]  ___sys_sendmsg+0x17b/0x1d0
[   95.583242][ T8043]  __x64_sys_sendmsg+0xd4/0x160
[   95.583267][ T8043]  x64_sys_call+0x191e/0x2ff0
[   95.583285][ T8043]  do_syscall_64+0xd2/0x200
[   95.583380][ T8043]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   95.583401][ T8043]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   95.583482][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.583503][ T8043] RIP: 0033:0x7fb608ccebe9
[   95.583566][ T8043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.583612][ T8043] RSP: 002b:00007fb60770e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.583628][ T8043] RAX: ffffffffffffffda RBX: 00007fb608f06090 RCX: 00007fb608ccebe9
[   95.583699][ T8043] RDX: 0000000000004080 RSI: 00002000000000c0 RDI: 000000000000000a
[   95.583710][ T8043] RBP: 00007fb60770e090 R08: 0000000000000000 R09: 0000000000000000
[   95.583720][ T8043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.583731][ T8043] R13: 00007fb608f06128 R14: 00007fb608f06090 R15: 00007ffc46e6a9b8
[   95.583749][ T8043]  </TASK>
[   95.790750][ T8042] loop5: detected capacity change from 0 to 1024
[   95.804783][ T8042] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.885431][ T8042] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1693'.
[   95.966766][ T8070] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1700'.
[   95.977975][ T8070] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1700'.
[   96.086451][ T8088] lo speed is unknown, defaulting to 1000
[   96.093930][ T5194] usb 11-1: enqueue for inactive port 0
[   96.098944][ T8088] lo speed is unknown, defaulting to 1000
[   96.099693][ T5194] usb 11-1: enqueue for inactive port 0
[   96.111039][ T8088] lo speed is unknown, defaulting to 1000
[   96.148161][ T8088] infiniband syz2: set active
[   96.152920][ T8088] infiniband syz2: added lo
[   96.157508][ T3411] lo speed is unknown, defaulting to 1000
[   96.171923][ T8099] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[   96.180713][ T5194] vhci_hcd: vhci_device speed not set
[   96.188765][ T8088] RDS/IB: syz2: added
[   96.192790][ T8088] smc: adding ib device syz2 with port count 1
[   96.199319][ T8088] smc:    ib device syz2 port 1 has pnetid 
[   96.215006][ T3411] lo speed is unknown, defaulting to 1000
[   96.220854][ T8088] lo speed is unknown, defaulting to 1000
[   96.228518][ T8103] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1716'.
[   96.241032][ T8103] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1716'.
[   96.255798][ T8088] lo speed is unknown, defaulting to 1000
[   96.302559][ T8088] lo speed is unknown, defaulting to 1000
[   96.360360][ T8088] lo speed is unknown, defaulting to 1000
[   96.399259][ T8088] lo speed is unknown, defaulting to 1000
[   96.507610][ T8124] loop5: detected capacity change from 0 to 1024
[   96.516589][ T8124] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.982999][ T8153] loop5: detected capacity change from 0 to 32768
[   97.024044][ T8153]  loop5: p1 p3 < >
[   97.081908][ T8153] bond1: entered promiscuous mode
[   97.087002][ T8153] bond1: entered allmulticast mode
[   97.119736][ T8153] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.228232][ T8153] bond1 (unregistering): Released all slaves
[   97.475641][ T8195] hub 9-0:1.0: USB hub found
[   97.480804][ T8195] hub 9-0:1.0: 8 ports detected
[   97.596964][ T8223] loop5: detected capacity change from 0 to 512
[   97.611548][ T8223] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.652264][ T8223] EXT4-fs mount: 44 callbacks suppressed
[   97.652278][ T8223] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.686120][ T8223] ext4 filesystem being mounted at /341/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.707852][ T8235] FAULT_INJECTION: forcing a failure.
[   97.707852][ T8235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.720971][ T8235] CPU: 0 UID: 0 PID: 8235 Comm: syz.0.1769 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.720997][ T8235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   97.721082][ T8235] Call Trace:
[   97.721087][ T8235]  <TASK>
[   97.721093][ T8235]  __dump_stack+0x1d/0x30
[   97.721110][ T8235]  dump_stack_lvl+0xe8/0x140
[   97.721131][ T8235]  dump_stack+0x15/0x1b
[   97.721155][ T8235]  should_fail_ex+0x265/0x280
[   97.721178][ T8235]  ? 0xffffffff81000000
[   97.721192][ T8235]  ? 0xffffffff81000000
[   97.721204][ T8235]  should_fail+0xb/0x20
[   97.721218][ T8235]  should_fail_usercopy+0x1a/0x20
[   97.721242][ T8235]  _copy_from_user+0x1c/0xb0
[   97.721318][ T8235]  ? 0xffffffff81000000
[   97.721348][ T8235]  get_timespec64+0x4c/0x100
[   97.721370][ T8235]  ? 0xffffffff81000000
[   97.721380][ T8235]  __x64_sys_io_getevents+0x94/0x190
[   97.721403][ T8235]  x64_sys_call+0x1a5e/0x2ff0
[   97.721425][ T8235]  do_syscall_64+0xd2/0x200
[   97.721502][ T8235]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   97.721530][ T8235]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   97.721560][ T8235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.721584][ T8235] RIP: 0033:0x7f95cd01ebe9
[   97.721599][ T8235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.721663][ T8235] RSP: 002b:00007f95cba87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d0
[   97.721683][ T8235] RAX: ffffffffffffffda RBX: 00007f95cd255fa0 RCX: 00007f95cd01ebe9
[   97.721707][ T8235] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   97.721792][ T8235] RBP: 00007f95cba87090 R08: ffffffff81000000 R09: 0000000000000000
[   97.721802][ T8235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.721886][ T8235] R13: 00007f95cd256038 R14: 00007f95cd255fa0 R15: 00007ffcbaf48228
[   97.721901][ T8235]  ? 0xffffffff81000000
[   97.721915][ T8235]  </TASK>
[   97.783162][ T8223] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   97.990772][ T3943] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.178940][ T8265] syzkaller0: entered promiscuous mode
[   98.184478][ T8265] syzkaller0: entered allmulticast mode
[   98.190383][ T8271] loop0: detected capacity change from 0 to 1024
[   98.197787][ T8271] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.215900][ T8271] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.260493][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.404209][ T8304] loop5: detected capacity change from 0 to 1024
[   98.411274][ T8304] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.426673][ T8304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.462993][ T3943] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.516397][ T8312] loop3: detected capacity change from 0 to 1024
[   98.523439][ T8312] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.544030][ T8312] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.1800: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   98.571532][ T8312] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1800: couldn't read orphan inode 11 (err -117)
[   98.614556][ T8312] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.645723][ T8324] loop5: detected capacity change from 0 to 764
[   98.657995][ T8324] Symlink component flag not implemented
[   98.663660][ T8324] Symlink component flag not implemented
[   98.670954][ T8312] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1800: bg 0: block 10: padding at end of block bitmap is not set
[   98.699699][ T8324] Symlink component flag not implemented (128)
[   98.705892][ T8324] Symlink component flag not implemented (122)
[   98.713243][ T8312] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1800: Failed to acquire dquot type 0
[   98.765626][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.517796][ T8380] syzkaller0: entered promiscuous mode
[   99.523294][ T8380] syzkaller0: entered allmulticast mode
[   99.657468][ T8398] FAULT_INJECTION: forcing a failure.
[   99.657468][ T8398] name failslab, interval 1, probability 0, space 0, times 0
[   99.670143][ T8398] CPU: 1 UID: 0 PID: 8398 Comm: syz.0.1838 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   99.670168][ T8398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.670194][ T8398] Call Trace:
[   99.670198][ T8398]  <TASK>
[   99.670203][ T8398]  __dump_stack+0x1d/0x30
[   99.670219][ T8398]  dump_stack_lvl+0xe8/0x140
[   99.670233][ T8398]  dump_stack+0x15/0x1b
[   99.670245][ T8398]  should_fail_ex+0x265/0x280
[   99.670262][ T8398]  should_failslab+0x8c/0xb0
[   99.670295][ T8398]  kmem_cache_alloc_noprof+0x50/0x310
[   99.670317][ T8398]  ? skb_clone+0x151/0x1f0
[   99.670336][ T8398]  skb_clone+0x151/0x1f0
[   99.670414][ T8398]  __netlink_deliver_tap+0x2c9/0x500
[   99.670493][ T8398]  netlink_unicast+0x66b/0x690
[   99.670509][ T8398]  netlink_sendmsg+0x58b/0x6b0
[   99.670528][ T8398]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.670546][ T8398]  __sock_sendmsg+0x145/0x180
[   99.670646][ T8398]  ____sys_sendmsg+0x31e/0x4e0
[   99.670667][ T8398]  ___sys_sendmsg+0x17b/0x1d0
[   99.670696][ T8398]  __x64_sys_sendmsg+0xd4/0x160
[   99.670724][ T8398]  x64_sys_call+0x191e/0x2ff0
[   99.670776][ T8398]  do_syscall_64+0xd2/0x200
[   99.670831][ T8398]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   99.670849][ T8398]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.670952][ T8398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.670968][ T8398] RIP: 0033:0x7f95cd01ebe9
[   99.670979][ T8398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.670992][ T8398] RSP: 002b:00007f95cba87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.671086][ T8398] RAX: ffffffffffffffda RBX: 00007f95cd255fa0 RCX: 00007f95cd01ebe9
[   99.671100][ T8398] RDX: 0000000000000004 RSI: 0000200000000240 RDI: 0000000000000005
[   99.671114][ T8398] RBP: 00007f95cba87090 R08: 0000000000000000 R09: 0000000000000000
[   99.671135][ T8398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.671144][ T8398] R13: 00007f95cd256038 R14: 00007f95cd255fa0 R15: 00007ffcbaf48228
[   99.671166][ T8398]  </TASK>
[   99.879870][   T29] kauditd_printk_skb: 1507 callbacks suppressed
[   99.879891][   T29] audit: type=1326 audit(1756846848.494:12848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[   99.948656][   T29] audit: type=1326 audit(1756846848.494:12849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[   99.972176][   T29] audit: type=1326 audit(1756846848.494:12850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[   99.995631][   T29] audit: type=1326 audit(1756846848.514:12851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  100.019133][   T29] audit: type=1326 audit(1756846848.514:12852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  100.042510][   T29] audit: type=1326 audit(1756846848.514:12853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  100.065839][   T29] audit: type=1326 audit(1756846848.524:12854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  100.089446][   T29] audit: type=1326 audit(1756846848.524:12855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  100.112931][   T29] audit: type=1326 audit(1756846848.524:12856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  100.116512][ T8400] loop1: detected capacity change from 0 to 1024
[  100.136348][   T29] audit: type=1326 audit(1756846848.534:12857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8383 comm="syz.5.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  100.148859][ T8400] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.189655][ T8400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.241884][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.247570][ T8414] syzkaller0: entered promiscuous mode
[  100.256387][ T8414] syzkaller0: entered allmulticast mode
[  100.306519][ T8430] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  100.435437][ T8454] loop1: detected capacity change from 0 to 128
[  100.442365][ T8457] __nla_validate_parse: 46 callbacks suppressed
[  100.442376][ T8457] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1862'.
[  100.448790][ T8448] loop2: detected capacity change from 0 to 1024
[  100.458631][ T8454] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  100.464635][ T8448] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.486741][ T8454] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  100.508997][ T8448] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.521319][  T310] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  100.538184][ T8458] netlink: 120 bytes leftover after parsing attributes in process `syz.5.1865'.
[  100.547285][ T8458] netlink: 120 bytes leftover after parsing attributes in process `syz.5.1865'.
[  100.627745][ T8476] syzkaller0: entered promiscuous mode
[  100.633325][ T8476] syzkaller0: entered allmulticast mode
[  100.663054][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.730925][ T8483] netlink: 12 bytes leftover after parsing attributes in process `wޡ�'.
[  100.739800][ T8483] netlink: 12 bytes leftover after parsing attributes in process `wޡ�'.
[  100.781197][ T8487] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  100.814518][ T8491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1877'.
[  100.831257][ T8495] loop5: detected capacity change from 0 to 512
[  100.838223][ T8491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1877'.
[  100.901724][ T8497] 9pnet_fd: Insufficient options for proto=fd
[  100.909407][ T8497] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1879'.
[  100.958714][ T8500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1880'.
[  101.111491][ T8519] loop3: detected capacity change from 0 to 1024
[  101.118289][ T8519] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.136404][ T8519] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.186574][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.449809][ T8539] sit0: entered promiscuous mode
[  101.460071][ T8539] netlink: 'syz.1.1896': attribute type 1 has an invalid length.
[  102.185918][ T8596] syzkaller0: entered promiscuous mode
[  102.191533][ T8596] syzkaller0: entered allmulticast mode
[  102.446464][ T8620] syzkaller0: entered promiscuous mode
[  102.452004][ T8620] syzkaller0: entered allmulticast mode
[  102.667512][ T8640] tmpfs: Too few inodes for current use
[  102.706338][ T8642] syzkaller0: entered promiscuous mode
[  102.711929][ T8642] syzkaller0: entered allmulticast mode
[  102.906182][ T8662] loop3: detected capacity change from 0 to 1024
[  102.912879][ T8662] EXT4-fs: Ignoring removed nomblk_io_submit option
[  102.937153][ T8662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.957827][ T8640] loop5: detected capacity change from 0 to 2048
[  103.001840][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.203252][ T8702] loop0: detected capacity change from 0 to 1024
[  103.212735][ T8702] EXT4-fs: Ignoring removed nomblk_io_submit option
[  103.227166][ T8702] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.294680][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.583161][ T8742] loop0: detected capacity change from 0 to 512
[  103.588483][ T8738] syzkaller0: entered promiscuous mode
[  103.595046][ T8738] syzkaller0: entered allmulticast mode
[  103.886355][ T8773] syzkaller0: entered promiscuous mode
[  103.892065][ T8773] syzkaller0: entered allmulticast mode
[  104.140112][ T8790] loop0: detected capacity change from 0 to 1024
[  104.147237][ T8790] ext3: Unknown parameter 'dont_appraise'
[  104.172710][ T8792] FAULT_INJECTION: forcing a failure.
[  104.172710][ T8792] name failslab, interval 1, probability 0, space 0, times 0
[  104.185649][ T8792] CPU: 0 UID: 0 PID: 8792 Comm: syz.0.2007 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  104.185719][ T8792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  104.185730][ T8792] Call Trace:
[  104.185735][ T8792]  <TASK>
[  104.185741][ T8792]  __dump_stack+0x1d/0x30
[  104.185758][ T8792]  dump_stack_lvl+0xe8/0x140
[  104.185824][ T8792]  dump_stack+0x15/0x1b
[  104.185838][ T8792]  should_fail_ex+0x265/0x280
[  104.185856][ T8792]  should_failslab+0x8c/0xb0
[  104.185917][ T8792]  kmem_cache_alloc_noprof+0x50/0x310
[  104.185941][ T8792]  ? skb_clone+0x151/0x1f0
[  104.185962][ T8792]  skb_clone+0x151/0x1f0
[  104.185982][ T8792]  __netlink_deliver_tap+0x2c9/0x500
[  104.186005][ T8792]  netlink_unicast+0x66b/0x690
[  104.186101][ T8792]  netlink_sendmsg+0x58b/0x6b0
[  104.186158][ T8792]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.186178][ T8792]  __sock_sendmsg+0x145/0x180
[  104.186204][ T8792]  ____sys_sendmsg+0x31e/0x4e0
[  104.186268][ T8792]  ___sys_sendmsg+0x17b/0x1d0
[  104.186301][ T8792]  __x64_sys_sendmsg+0xd4/0x160
[  104.186327][ T8792]  x64_sys_call+0x191e/0x2ff0
[  104.186345][ T8792]  do_syscall_64+0xd2/0x200
[  104.186448][ T8792]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  104.186468][ T8792]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  104.186490][ T8792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.186508][ T8792] RIP: 0033:0x7f95cd01ebe9
[  104.186520][ T8792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.186589][ T8792] RSP: 002b:00007f95cba87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.186680][ T8792] RAX: ffffffffffffffda RBX: 00007f95cd255fa0 RCX: 00007f95cd01ebe9
[  104.186691][ T8792] RDX: 0000000020004440 RSI: 0000200000000400 RDI: 0000000000000005
[  104.186702][ T8792] RBP: 00007f95cba87090 R08: 0000000000000000 R09: 0000000000000000
[  104.186712][ T8792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  104.186722][ T8792] R13: 00007f95cd256038 R14: 00007f95cd255fa0 R15: 00007ffcbaf48228
[  104.186859][ T8792]  </TASK>
[  104.412123][ T8796] loop0: detected capacity change from 0 to 512
[  104.424227][ T8796] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2009: invalid block
[  104.438855][ T8796] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2009: invalid indirect mapped block 4294967295 (level 1)
[  104.452974][ T8796] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2009: invalid indirect mapped block 4294967295 (level 1)
[  104.475759][ T8796] EXT4-fs (loop0): 2 truncates cleaned up
[  104.487216][ T8796] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.517031][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.544174][ T8808] syzkaller0: entered promiscuous mode
[  104.549853][ T8808] syzkaller0: entered allmulticast mode
[  104.675103][ T8819] syzkaller0: entered allmulticast mode
[  104.683199][ T8827] syzkaller0: entered promiscuous mode
[  104.693408][ T8819] syzkaller0 (unregistering): left allmulticast mode
[  104.700327][ T8819] syzkaller0 (unregistering): left promiscuous mode
[  104.730254][ T8831] loop2: detected capacity change from 0 to 1024
[  104.737089][ T8831] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  104.752341][ T8831] loop2: detected capacity change from 0 to 1024
[  104.759004][ T8831] EXT4-fs: Ignoring removed orlov option
[  104.783125][ T8831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.897605][ T8856] FAULT_INJECTION: forcing a failure.
[  104.897605][ T8856] name failslab, interval 1, probability 0, space 0, times 0
[  104.910382][ T8856] CPU: 0 UID: 0 PID: 8856 Comm: syz.2.2022 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  104.910449][ T8856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  104.910462][ T8856] Call Trace:
[  104.910469][ T8856]  <TASK>
[  104.910530][ T8856]  __dump_stack+0x1d/0x30
[  104.910548][ T8856]  dump_stack_lvl+0xe8/0x140
[  104.910564][ T8856]  dump_stack+0x15/0x1b
[  104.910577][ T8856]  should_fail_ex+0x265/0x280
[  104.910599][ T8856]  should_failslab+0x8c/0xb0
[  104.910624][ T8856]  __kmalloc_noprof+0xa5/0x3e0
[  104.910718][ T8856]  ? copy_splice_read+0xc2/0x660
[  104.910740][ T8856]  copy_splice_read+0xc2/0x660
[  104.910766][ T8856]  ? __pfx_ext4_file_splice_read+0x10/0x10
[  104.910798][ T8856]  splice_direct_to_actor+0x290/0x680
[  104.910870][ T8856]  ? __pfx_direct_splice_actor+0x10/0x10
[  104.910897][ T8856]  do_splice_direct+0xda/0x150
[  104.910994][ T8856]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  104.911024][ T8856]  do_sendfile+0x380/0x650
[  104.911054][ T8856]  __x64_sys_sendfile64+0x105/0x150
[  104.911092][ T8856]  x64_sys_call+0x2bb0/0x2ff0
[  104.911113][ T8856]  do_syscall_64+0xd2/0x200
[  104.911292][ T8856]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  104.911319][ T8856]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  104.911342][ T8856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.911359][ T8856] RIP: 0033:0x7f15c136ebe9
[  104.911413][ T8856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.911440][ T8856] RSP: 002b:00007f15bfdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  104.911459][ T8856] RAX: ffffffffffffffda RBX: 00007f15c15a6090 RCX: 00007f15c136ebe9
[  104.911473][ T8856] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  104.911483][ T8856] RBP: 00007f15bfdb6090 R08: 0000000000000000 R09: 0000000000000000
[  104.911492][ T8856] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  104.911502][ T8856] R13: 00007f15c15a6128 R14: 00007f15c15a6090 R15: 00007fffd077d6b8
[  104.911522][ T8856]  </TASK>
[  104.912088][ T8853] syzkaller0: entered promiscuous mode
[  105.120819][ T8853] syzkaller0: entered allmulticast mode
[  105.212009][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.228745][   T29] kauditd_printk_skb: 1615 callbacks suppressed
[  105.228759][   T29] audit: type=1326 audit(1756846853.844:14473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.262944][   T29] audit: type=1326 audit(1756846853.874:14474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.286521][   T29] audit: type=1326 audit(1756846853.874:14475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.310582][   T29] audit: type=1326 audit(1756846853.874:14476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.334075][   T29] audit: type=1326 audit(1756846853.874:14477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.357803][   T29] audit: type=1326 audit(1756846853.874:14478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.381280][   T29] audit: type=1326 audit(1756846853.874:14479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.404771][   T29] audit: type=1326 audit(1756846853.874:14480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.428367][   T29] audit: type=1326 audit(1756846853.874:14481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.451850][   T29] audit: type=1326 audit(1756846853.874:14482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.2.2035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15c136ebe9 code=0x7ffc0000
[  105.489029][ T8867] loop3: detected capacity change from 0 to 1024
[  105.499213][ T8867] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  105.531259][ T8880] __nla_validate_parse: 55 callbacks suppressed
[  105.531325][ T8880] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2039'.
[  105.551799][ T8880] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2039'.
[  105.567081][ T8880] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2039'.
[  105.680257][ T8886] loop0: detected capacity change from 0 to 1024
[  105.688212][ T8886] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  105.703345][ T8886] loop0: detected capacity change from 0 to 1024
[  105.710869][ T8886] EXT4-fs: Ignoring removed orlov option
[  105.718171][ T8886] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.891758][ T8897] loop3: detected capacity change from 0 to 512
[  105.899739][ T8897] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.912991][ T8897] EXT4-fs (loop3): orphan cleanup on readonly fs
[  105.920375][ T8897] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2043: bg 0: block 248: padding at end of block bitmap is not set
[  105.936876][ T8897] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2043: Failed to acquire dquot type 1
[  105.948611][ T8897] EXT4-fs (loop3): 1 truncate cleaned up
[  105.955227][ T8897] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.968961][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.042823][ T8908] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  106.086373][ T8912] syzkaller0: entered promiscuous mode
[  106.091856][ T8912] syzkaller0: entered allmulticast mode
[  106.240110][ T8923] loop1: detected capacity change from 0 to 512
[  106.248114][ T8923] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.2054: invalid block
[  106.261466][ T8923] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2054: invalid indirect mapped block 4294967295 (level 1)
[  106.276916][ T8923] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2054: invalid indirect mapped block 4294967295 (level 1)
[  106.291088][ T8923] EXT4-fs (loop1): 2 truncates cleaned up
[  106.298529][ T8923] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.333636][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.357005][ T8927] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2056'.
[  106.371775][ T8927] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2056'.
[  106.396906][ T8929] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2055'.
[  106.430864][ T8929] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2055'.
[  106.542694][ T8938] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  106.610829][ T8951] loop5: detected capacity change from 0 to 512
[  106.619225][ T8951] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2067: invalid block
[  106.633754][ T8951] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2067: invalid indirect mapped block 4294967295 (level 1)
[  106.648632][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.652172][ T8951] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2067: invalid indirect mapped block 4294967295 (level 1)
[  106.674111][ T8951] EXT4-fs (loop5): 2 truncates cleaned up
[  106.680577][ T8951] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.682696][ T8955] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2068'.
[  106.718454][ T3943] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.211678][ T8986] syzkaller0: entered allmulticast mode
[  107.219579][ T8986] syzkaller0: entered promiscuous mode
[  107.228797][ T8986] syzkaller0 (unregistering): left allmulticast mode
[  107.235559][ T8986] syzkaller0 (unregistering): left promiscuous mode
[  108.278426][ T9057] loop0: detected capacity change from 0 to 512
[  108.286678][ T9055] syzkaller0: entered promiscuous mode
[  108.292255][ T9055] syzkaller0: entered allmulticast mode
[  108.302031][ T9057] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2114: invalid block
[  108.315059][ T9057] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2114: invalid indirect mapped block 4294967295 (level 1)
[  108.329136][ T9057] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2114: invalid indirect mapped block 4294967295 (level 1)
[  108.344729][ T9057] EXT4-fs (loop0): 2 truncates cleaned up
[  108.350865][ T9057] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.383429][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.405557][ T9069] loop0: detected capacity change from 0 to 512
[  108.413169][ T9069] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2119: invalid block
[  108.425434][ T9069] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2119: invalid indirect mapped block 4294967295 (level 1)
[  108.457597][ T9069] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2119: invalid indirect mapped block 4294967295 (level 1)
[  108.479035][ T9069] EXT4-fs (loop0): 2 truncates cleaned up
[  108.486869][ T9069] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.509182][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.123341][ T9173] loop2: detected capacity change from 0 to 512
[  109.131670][ T9173] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2167: invalid block
[  109.143925][ T9173] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2167: invalid indirect mapped block 4294967295 (level 1)
[  109.158226][ T9173] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2167: invalid indirect mapped block 4294967295 (level 1)
[  109.172505][ T9173] EXT4-fs (loop2): 2 truncates cleaned up
[  109.178728][ T9173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.201573][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.361443][ T9186] syzkaller0: entered promiscuous mode
[  109.367036][ T9186] syzkaller0: entered allmulticast mode
[  109.411429][ T9200] loop0: detected capacity change from 0 to 512
[  109.418034][ T9196] syzkaller0: entered allmulticast mode
[  109.420759][ T9200] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2179: invalid block
[  109.424295][ T9196] syzkaller0: entered promiscuous mode
[  109.438176][ T9200] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2179: invalid indirect mapped block 4294967295 (level 1)
[  109.456390][ T9200] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2179: invalid indirect mapped block 4294967295 (level 1)
[  109.471054][ T9196] syzkaller0 (unregistering): left allmulticast mode
[  109.471487][ T9200] EXT4-fs (loop0): 2 truncates cleaned up
[  109.477833][ T9196] syzkaller0 (unregistering): left promiscuous mode
[  109.485074][ T9200] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.516776][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.579367][ T9213] loop3: detected capacity change from 0 to 512
[  109.595637][ T9213] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.2185: invalid block
[  109.609420][ T9213] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2185: invalid indirect mapped block 4294967295 (level 1)
[  109.631356][ T9213] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2185: invalid indirect mapped block 4294967295 (level 1)
[  109.646670][ T9213] EXT4-fs (loop3): 2 truncates cleaned up
[  109.652748][ T9213] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.680226][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.800728][ T9243] syzkaller0: entered allmulticast mode
[  109.804203][ T9245] loop0: detected capacity change from 0 to 512
[  109.807744][ T9243] syzkaller0: entered promiscuous mode
[  109.814957][ T9245] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2199: invalid block
[  109.830781][ T9243] syzkaller0 (unregistering): left allmulticast mode
[  109.837573][ T9243] syzkaller0 (unregistering): left promiscuous mode
[  109.839498][ T9245] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2199: invalid indirect mapped block 4294967295 (level 1)
[  109.889848][ T9245] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2199: invalid indirect mapped block 4294967295 (level 1)
[  109.934778][ T9245] EXT4-fs (loop0): 2 truncates cleaned up
[  109.947258][ T9245] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.980177][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.021729][ T9269] smc: net device bond0 applied user defined pnetid SYZ0
[  110.031471][ T9269] smc: net device bond0 erased user defined pnetid SYZ0
[  110.086749][ T9277] smc: net device bond0 applied user defined pnetid SYZ0
[  110.103989][ T9277] smc: net device bond0 erased user defined pnetid SYZ0
[  110.136597][ T9283] smc: net device bond0 applied user defined pnetid SYZ0
[  110.147414][ T9283] smc: net device bond0 erased user defined pnetid SYZ0
[  110.186896][ T9291] loop2: detected capacity change from 0 to 128
[  110.200444][ T9291] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  110.220703][ T9287] loop0: detected capacity change from 0 to 8192
[  110.233540][   T29] kauditd_printk_skb: 1359 callbacks suppressed
[  110.233554][   T29] audit: type=1326 audit(1756846858.844:15840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15c130adb9 code=0x7ffc0000
[  110.263358][   T29] audit: type=1326 audit(1756846858.844:15841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15c1365ba7 code=0x7ffc0000
[  110.286934][   T29] audit: type=1326 audit(1756846858.844:15842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15c130adb9 code=0x7ffc0000
[  110.310325][   T29] audit: type=1326 audit(1756846858.844:15843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15c1365ba7 code=0x7ffc0000
[  110.333924][   T29] audit: type=1326 audit(1756846858.844:15844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15c130adb9 code=0x7ffc0000
[  110.357388][   T29] audit: type=1326 audit(1756846858.844:15845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15c1365ba7 code=0x7ffc0000
[  110.380765][   T29] audit: type=1326 audit(1756846858.844:15846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15c130adb9 code=0x7ffc0000
[  110.404170][   T29] audit: type=1326 audit(1756846858.844:15847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15c1365ba7 code=0x7ffc0000
[  110.427744][   T29] audit: type=1326 audit(1756846858.844:15848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15c130adb9 code=0x7ffc0000
[  110.451357][   T29] audit: type=1326 audit(1756846858.844:15849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9290 comm="syz.2.2219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15c1365ba7 code=0x7ffc0000
[  110.579323][ T9304] __nla_validate_parse: 42 callbacks suppressed
[  110.579339][ T9304] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2223'.
[  110.628302][ T3304] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  110.639496][ T3304] CPU: 1 UID: 0 PID: 3304 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  110.639525][ T3304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.639553][ T3304] Call Trace:
[  110.639559][ T3304]  <TASK>
[  110.639564][ T3304]  __dump_stack+0x1d/0x30
[  110.639587][ T3304]  dump_stack_lvl+0xe8/0x140
[  110.639615][ T3304]  dump_stack+0x15/0x1b
[  110.639632][ T3304]  dump_header+0x81/0x220
[  110.639698][ T3304]  oom_kill_process+0x342/0x400
[  110.639776][ T3304]  out_of_memory+0x979/0xb80
[  110.639805][ T3304]  try_charge_memcg+0x5e6/0x9e0
[  110.639832][ T3304]  charge_memcg+0x51/0xc0
[  110.639926][ T3304]  __mem_cgroup_charge+0x28/0xb0
[  110.639946][ T3304]  filemap_add_folio+0x4e/0x1b0
[  110.639978][ T3304]  __filemap_get_folio+0x31e/0x6b0
[  110.640083][ T3304]  filemap_fault+0x41f/0xb40
[  110.640110][ T3304]  __do_fault+0xb9/0x200
[  110.640137][ T3304]  handle_mm_fault+0xf78/0x2c20
[  110.640165][ T3304]  do_user_addr_fault+0x636/0x1090
[  110.640274][ T3304]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  110.640304][ T3304]  exc_page_fault+0x62/0xa0
[  110.640325][ T3304]  asm_exc_page_fault+0x26/0x30
[  110.640408][ T3304] RIP: 0033:0x7fb608ba5bf4
[  110.640421][ T3304] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 a8 fb e8 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d b9 fa e8 00 48 01 d1
[  110.640436][ T3304] RSP: 002b:00007ffc46e6ad40 EFLAGS: 00010202
[  110.640449][ T3304] RAX: 0000001b32f24000 RBX: 0000000000000412 RCX: 000000000001adb0
[  110.640459][ T3304] RDX: 000000000915f740 RSI: 00007ffc46e6add0 RDI: 0000000000000001
[  110.640469][ T3304] RBP: 00007ffc46e6ad7c R08: 0000000022a8db02 R09: 7fffffffffffffff
[  110.640528][ T3304] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  110.640538][ T3304] R13: 00000000000927c0 R14: 000000000001adb2 R15: 00007ffc46e6add0
[  110.640555][ T3304]  </TASK>
[  110.640560][ T3304] memory: usage 307200kB, limit 307200kB, failcnt 1142
[  110.832009][ T3304] memory+swap: usage 229140kB, limit 9007199254740988kB, failcnt 0
[  110.839912][ T3304] kmem: usage 219828kB, limit 9007199254740988kB, failcnt 0
[  110.847261][ T3304] Memory cgroup stats for /syz1:
[  110.853844][ T3304] cache 126976
[  110.862169][ T3304] rss 49152
[  110.865306][ T3304] shmem 0
[  110.868237][ T3304] mapped_file 0
[  110.871693][ T3304] dirty 0
[  110.874652][ T3304] writeback 0
[  110.877965][ T3304] workingset_refault_anon 21
[  110.882576][ T3304] workingset_refault_file 31
[  110.887182][ T3304] swap 2551808
[  110.890545][ T3304] swapcached 86016
[  110.894359][ T3304] pgpgin 95999
[  110.897728][ T3304] pgpgout 95946
[  110.901238][ T3304] pgfault 104083
[  110.904798][ T3304] pgmajfault 15
[  110.908244][ T3304] inactive_anon 36864
[  110.912236][ T3304] active_anon 49152
[  110.916103][ T3304] inactive_file 4096
[  110.920017][ T3304] active_file 126976
[  110.923988][ T3304] unevictable 0
[  110.927482][ T3304] hierarchical_memory_limit 314572800
[  110.932859][ T3304] hierarchical_memsw_limit 9223372036854771712
[  110.939026][ T3304] total_cache 126976
[  110.942922][ T3304] total_rss 49152
[  110.946573][ T3304] total_shmem 0
[  110.950045][ T3304] total_mapped_file 0
[  110.954052][ T3304] total_dirty 0
[  110.957503][ T3304] total_writeback 0
[  110.961375][ T3304] total_workingset_refault_anon 21
[  110.966512][ T3304] total_workingset_refault_file 31
[  110.971625][ T3304] total_swap 2551808
[  110.975658][ T3304] total_swapcached 86016
[  110.979896][ T3304] total_pgpgin 95999
[  110.983799][ T3304] total_pgpgout 95946
[  110.987862][ T3304] total_pgfault 104083
[  110.991919][ T3304] total_pgmajfault 15
[  110.995945][ T3304] total_inactive_anon 36864
[  111.000450][ T3304] total_active_anon 49152
[  111.004818][ T3304] total_inactive_file 4096
[  111.009345][ T3304] total_active_file 126976
[  111.013834][ T3304] total_unevictable 0
[  111.017814][ T3304] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2209,pid=9266,uid=0
[  111.032474][ T3304] Memory cgroup out of memory: Killed process 9266 (syz.1.2209) total-vm:93696kB, anon-rss:1012kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  111.254175][ T9318] smc: net device bond0 applied user defined pnetid SYZ0
[  111.271613][ T9318] smc: net device bond0 erased user defined pnetid SYZ0
[  111.386405][ T9324] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2231'.
[  111.417578][ T9336] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2236'.
[  111.439587][ T9338] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  111.446953][ T9340] smc: net device bond0 applied user defined pnetid SYZ0
[  111.464820][ T9342] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  111.469336][ T9340] smc: net device bond0 erased user defined pnetid SYZ0
[  111.482078][ T9344] smc: net device bond0 applied user defined pnetid SYZ0
[  111.490691][ T9344] smc: net device bond0 erased user defined pnetid SYZ0
[  111.584944][ T9359] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2247'.
[  111.636005][ T9367] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2250'.
[  111.712040][ T9373] loop0: detected capacity change from 0 to 8192
[  111.764904][ T9375] loop3: detected capacity change from 0 to 128
[  111.833986][ T9375] EXT4-fs (loop3): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  111.934954][ T9378] smc: net device bond0 applied user defined pnetid SYZ0
[  111.937899][ T9380] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  111.942268][ T9378] smc: net device bond0 erased user defined pnetid SYZ0
[  111.996330][ T9382] smc: net device bond0 applied user defined pnetid SYZ0
[  112.014839][ T9382] smc: net device bond0 erased user defined pnetid SYZ0
[  112.062935][ T9385] smc: net device bond0 applied user defined pnetid SYZ0
[  112.098695][ T9345] syz.5.2241 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  112.104980][ T9385] smc: net device bond0 erased user defined pnetid SYZ0
[  112.109794][ T9345] CPU: 0 UID: 0 PID: 9345 Comm: syz.5.2241 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.109864][ T9345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.109883][ T9345] Call Trace:
[  112.109892][ T9345]  <TASK>
[  112.109901][ T9345]  __dump_stack+0x1d/0x30
[  112.109930][ T9345]  dump_stack_lvl+0xe8/0x140
[  112.109959][ T9345]  dump_stack+0x15/0x1b
[  112.109981][ T9345]  dump_header+0x81/0x220
[  112.110083][ T9345]  oom_kill_process+0x342/0x400
[  112.110131][ T9345]  out_of_memory+0x979/0xb80
[  112.110226][ T9345]  try_charge_memcg+0x5e6/0x9e0
[  112.110269][ T9345]  charge_memcg+0x51/0xc0
[  112.110364][ T9345]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  112.110397][ T9345]  __read_swap_cache_async+0x1df/0x350
[  112.110458][ T9345]  swap_cluster_readahead+0x277/0x3e0
[  112.110571][ T9345]  swapin_readahead+0xde/0x6f0
[  112.110614][ T9345]  ? __filemap_get_folio+0x4f7/0x6b0
[  112.110673][ T9345]  ? swap_cache_get_folio+0x77/0x200
[  112.110753][ T9345]  do_swap_page+0x301/0x2430
[  112.110784][ T9345]  ? css_rstat_updated+0xb7/0x240
[  112.110835][ T9345]  ? __pfx_default_wake_function+0x10/0x10
[  112.110876][ T9345]  handle_mm_fault+0x9a5/0x2c20
[  112.110915][ T9345]  do_user_addr_fault+0x636/0x1090
[  112.111021][ T9345]  ? fpregs_restore_userregs+0xad/0x1d0
[  112.111055][ T9345]  ? switch_fpu_return+0xe/0x20
[  112.111146][ T9345]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  112.111183][ T9345]  exc_page_fault+0x62/0xa0
[  112.111210][ T9345]  asm_exc_page_fault+0x26/0x30
[  112.111314][ T9345] RIP: 0033:0x7f0e4ba9560c
[  112.111332][ T9345] Code: 66 0f 1f 44 00 00 69 3d a6 00 e9 00 e8 03 00 00 48 8d 1d a7 09 36 00 e8 42 95 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  112.111353][ T9345] RSP: 002b:00007fffd6b07aa0 EFLAGS: 00010202
[  112.111372][ T9345] RAX: 0000000000000000 RBX: 00007f0e4bdf5fa0 RCX: 0000000000000000
[  112.111385][ T9345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555565832808
[  112.111399][ T9345] RBP: 00007f0e4bdf7da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  112.111414][ T9345] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000001b6ab
[  112.111432][ T9345] R13: 00007fffd6b07b90 R14: ffffffffffffffff R15: 00007fffd6b07bb0
[  112.111457][ T9345]  </TASK>
[  112.111464][ T9345] memory: usage 307200kB, limit 307200kB, failcnt 569
[  112.285087][ T9393] 9pnet_fd: Insufficient options for proto=fd
[  112.287286][ T9345] memory+swap: usage 283692kB, limit 9007199254740988kB, failcnt 0
[  112.323406][ T9394] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2262'.
[  112.325430][ T9345] kmem: usage 258852kB, limit 9007199254740988kB, failcnt 0
[  112.373483][ T9345] Memory cgroup stats for /syz5:
[  112.374281][ T9345] cache 0
[  112.382291][ T9345] rss 4096
[  112.385357][ T9345] shmem 0
[  112.388285][ T9345] mapped_file 0
[  112.391742][ T9345] dirty 0
[  112.394792][ T9345] writeback 8192
[  112.398329][ T9345] workingset_refault_anon 36
[  112.402977][ T9345] workingset_refault_file 0
[  112.407491][ T9345] swap 1753088
[  112.410859][ T9345] swapcached 24576
[  112.414580][ T9345] pgpgin 61332
[  112.417976][ T9345] pgpgout 61326
[  112.421435][ T9345] pgfault 81700
[  112.424917][ T9345] pgmajfault 20
[  112.428389][ T9345] inactive_anon 20480
[  112.432427][ T9345] active_anon 4096
[  112.436165][ T9345] inactive_file 0
[  112.439832][ T9345] active_file 0
[  112.443413][ T9345] unevictable 0
[  112.447026][ T9345] hierarchical_memory_limit 314572800
[  112.452445][ T9345] hierarchical_memsw_limit 9223372036854771712
[  112.458754][ T9345] total_cache 0
[  112.462276][ T9345] total_rss 4096
[  112.465945][ T9345] total_shmem 0
[  112.469396][ T9345] total_mapped_file 0
[  112.473565][ T9345] total_dirty 0
[  112.477123][ T9345] total_writeback 8192
[  112.481254][ T9345] total_workingset_refault_anon 36
[  112.486391][ T9345] total_workingset_refault_file 0
[  112.491409][ T9345] total_swap 1753088
[  112.495317][ T9345] total_swapcached 24576
[  112.499564][ T9345] total_pgpgin 61332
[  112.503484][ T9345] total_pgpgout 61326
[  112.507458][ T9345] total_pgfault 81700
[  112.511490][ T9345] total_pgmajfault 20
[  112.515559][ T9345] total_inactive_anon 20480
[  112.520060][ T9345] total_active_anon 4096
[  112.524339][ T9345] total_inactive_file 0
[  112.528561][ T9345] total_active_file 0
[  112.532575][ T9345] total_unevictable 0
[  112.536586][ T9345] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2241,pid=9345,uid=0
[  112.551260][ T9345] Memory cgroup out of memory: Killed process 9345 (syz.5.2241) total-vm:93696kB, anon-rss:1012kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  112.597589][ T9406] smc: net device bond0 applied user defined pnetid SYZ0
[  112.604927][ T9406] smc: net device bond0 erased user defined pnetid SYZ0
[  112.628127][ T9408] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  112.749270][ T9421] 9pnet_fd: Insufficient options for proto=fd
[  112.778781][ T9425] loop0: detected capacity change from 0 to 128
[  112.786110][ T9425] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  112.898681][ T9431] loop0: detected capacity change from 0 to 8192
[  112.948343][ T9445] 9pnet_fd: Insufficient options for proto=fd
[  113.590413][ T9505] syzkaller0: entered promiscuous mode
[  113.595964][ T9505] syzkaller0: entered allmulticast mode
[  113.839149][ T9532] syzkaller0: entered promiscuous mode
[  113.844746][ T9532] syzkaller0: entered allmulticast mode
[  114.016226][ T9561] 9pnet_fd: Insufficient options for proto=fd
[  114.052654][ T9565] syzkaller0: entered promiscuous mode
[  114.058187][ T9565] syzkaller0: entered allmulticast mode
[  114.255327][ T9593] syzkaller0: entered promiscuous mode
[  114.260904][ T9593] syzkaller0: entered allmulticast mode
[  114.329668][ T9604] syzkaller0: entered allmulticast mode
[  114.340807][ T9604] syzkaller0: entered promiscuous mode
[  114.349465][ T9604] syzkaller0 (unregistering): left allmulticast mode
[  114.356218][ T9604] syzkaller0 (unregistering): left promiscuous mode
[  114.532170][ T9634] syzkaller0: entered promiscuous mode
[  114.537752][ T9634] syzkaller0: entered allmulticast mode
[  114.680426][ T9651] loop0: detected capacity change from 0 to 8192
[  114.759372][ T9666] loop2: detected capacity change from 0 to 128
[  114.778688][ T9666] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  115.024423][ T9695] 9pnet_fd: Insufficient options for proto=fd
[  115.042060][ T9699] syzkaller0: entered allmulticast mode
[  115.047947][ T9699] syzkaller0: entered promiscuous mode
[  115.059609][ T9699] syzkaller0 (unregistering): left allmulticast mode
[  115.066435][ T9699] syzkaller0 (unregistering): left promiscuous mode
[  115.104407][ T9707] smc_pnet_add_eth: 13 callbacks suppressed
[  115.104420][ T9707] smc: net device bond0 applied user defined pnetid SYZ0
[  115.119979][ T9707] smc_pnet_remove_by_pnetid: 13 callbacks suppressed
[  115.120009][ T9707] smc: net device bond0 erased user defined pnetid SYZ0
[  115.200347][ T9722] hub 9-0:1.0: USB hub found
[  115.209322][ T9722] hub 9-0:1.0: 8 ports detected
[  115.230260][ T9730] 9pnet_fd: Insufficient options for proto=fd
[  115.245914][   T29] kauditd_printk_skb: 11234 callbacks suppressed
[  115.245928][   T29] audit: type=1326 audit(1756846863.864:27084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  115.283109][   T29] audit: type=1326 audit(1756846863.894:27085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  115.295711][ T9736] smc: net device bond0 applied user defined pnetid SYZ0
[  115.306680][   T29] audit: type=1326 audit(1756846863.894:27086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  115.316503][ T9736] smc: net device bond0 erased user defined pnetid SYZ0
[  115.337182][   T29] audit: type=1326 audit(1756846863.894:27087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  115.367548][   T29] audit: type=1326 audit(1756846863.894:27088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  115.394488][   T29] audit: type=1326 audit(1756846863.934:27089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  115.417949][   T29] audit: type=1326 audit(1756846863.934:27090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  115.441878][   T29] audit: type=1326 audit(1756846863.934:27091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  115.465173][   T29] audit: type=1326 audit(1756846863.934:27092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e4bbb5ba7 code=0x7ffc0000
[  115.488610][   T29] audit: type=1326 audit(1756846863.934:27093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9627 comm="syz.5.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e4bb5adb9 code=0x7ffc0000
[  115.522969][ T9745] loop2: detected capacity change from 0 to 128
[  115.523348][ T9741] syzkaller0: entered promiscuous mode
[  115.534786][ T9741] syzkaller0: entered allmulticast mode
[  115.546711][ T9745] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  115.683561][ T9758] 9pnet_fd: Insufficient options for proto=fd
[  115.722211][ T9763] __nla_validate_parse: 29 callbacks suppressed
[  115.722224][ T9763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2424'.
[  115.830989][ T9768] loop5: detected capacity change from 0 to 8192
[  115.843307][ T9778] smc: net device bond0 applied user defined pnetid SYZ0
[  115.865862][ T9778] smc: net device bond0 erased user defined pnetid SYZ0
[  115.916228][ T9786] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2440'.
[  115.946781][ T9786] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2440'.
[  115.971900][ T9789] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2441'.
[  116.136779][ T9800] loop2: detected capacity change from 0 to 1024
[  116.165578][ T9800] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.180358][ T9800] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.2445: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  116.229698][ T9800] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2445: couldn't read orphan inode 11 (err -117)
[  116.258367][ T9800] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.286576][ T9800] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2445: bg 0: block 10: padding at end of block bitmap is not set
[  116.307875][ T9800] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2445: Failed to acquire dquot type 0
[  116.343179][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.357081][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2453'.
[  116.374060][ T9818] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2452'.
[  116.374529][ T9816] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2453'.
[  116.400742][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2453'.
[  116.427172][ T9822] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2456'.
[  116.453503][ T9822] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2456'.
[  116.531088][ T9829] loop0: detected capacity change from 0 to 128
[  116.531413][ T9830] smc: net device bond0 applied user defined pnetid SYZ0
[  116.543390][ T9829] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  116.545665][ T9830] smc: net device bond0 erased user defined pnetid SYZ0
[  116.710953][ T9853] smc: net device bond0 applied user defined pnetid SYZ0
[  116.714773][ T9851] hub 9-0:1.0: USB hub found
[  116.718963][ T9853] smc: net device bond0 erased user defined pnetid SYZ0
[  116.722763][ T9851] hub 9-0:1.0: 8 ports detected
[  116.850299][ T9860] smc: net device bond0 applied user defined pnetid SYZ0
[  116.857577][ T9860] smc: net device bond0 erased user defined pnetid SYZ0
[  116.880200][ T9862] loop5: detected capacity change from 0 to 128
[  116.888857][ T9862] EXT4-fs (loop5): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  116.973074][ T9874] 9pnet_fd: Insufficient options for proto=fd
[  117.035836][ T9884] smc: net device bond0 applied user defined pnetid SYZ0
[  117.043592][ T9884] smc: net device bond0 erased user defined pnetid SYZ0
[  117.052867][ T9888] loop1: detected capacity change from 0 to 128
[  117.060987][ T9888] EXT4-fs (loop1): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  117.094567][ T9892] loop1: detected capacity change from 0 to 1024
[  117.102895][ T9892] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  117.117070][ T9892] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.2489: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  117.135907][ T9892] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2489: couldn't read orphan inode 11 (err -117)
[  117.148270][ T9892] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.163305][ T9892] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2489: bg 0: block 10: padding at end of block bitmap is not set
[  117.178560][ T9892] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2489: Failed to acquire dquot type 0
[  117.201047][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.222440][ T9900] 9pnet_fd: Insufficient options for proto=fd
[  117.328271][ T9915] syzkaller0: entered promiscuous mode
[  117.333821][ T9915] syzkaller0: entered allmulticast mode
[  117.411794][ T9933] smc: net device bond0 applied user defined pnetid SYZ0
[  117.421659][ T9933] smc: net device bond0 erased user defined pnetid SYZ0
[  117.535386][ T9956] smc: net device bond0 applied user defined pnetid SYZ0
[  117.542623][ T9956] smc: net device bond0 erased user defined pnetid SYZ0
[  117.596536][ T9970] loop2: detected capacity change from 0 to 128
[  117.603823][ T9970] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  117.938778][ T9997] syzkaller0: entered promiscuous mode
[  117.944295][ T9997] syzkaller0: entered allmulticast mode
[  118.238890][T10003] loop0: detected capacity change from 0 to 128
[  118.245731][T10003] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  118.449949][T10016] syzkaller0: entered promiscuous mode
[  118.455533][T10016] syzkaller0: entered allmulticast mode
[  118.468132][T10018] smc: net device bond0 applied user defined pnetid SYZ0
[  118.476653][T10018] smc: net device bond0 erased user defined pnetid SYZ0
[  118.701975][T10056] 9pnet: Could not find request transport: fd0x0000000000000005
[  118.818245][T10075] loop3: detected capacity change from 0 to 128
[  118.825792][T10075] EXT4-fs (loop3): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  118.939206][T10081] syzkaller0: entered promiscuous mode
[  118.944701][T10081] syzkaller0: entered allmulticast mode
[  119.049557][T10088] 9pnet: Could not find request transport: fd0x0000000000000005
[  119.405948][T10109] loop1: detected capacity change from 0 to 8192
[  119.647104][T10120] loop2: detected capacity change from 0 to 128
[  119.659303][T10120] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  119.769357][T10133] syzkaller0: entered promiscuous mode
[  119.774900][T10133] syzkaller0: entered allmulticast mode
[  119.859836][T10139] 9pnet_fd: Insufficient options for proto=fd
[  119.935942][T10150] loop3: detected capacity change from 0 to 128
[  119.948259][T10150] EXT4-fs (loop3): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  119.959423][T10143] loop2: detected capacity change from 0 to 8192
[  120.136463][T10162] smc_pnet_add_eth: 4 callbacks suppressed
[  120.136477][T10162] smc: net device bond0 applied user defined pnetid SYZ0
[  120.158622][T10164] smc_pnet_remove_by_pnetid: 4 callbacks suppressed
[  120.158636][T10164] smc: net device bond0 erased user defined pnetid SYZ0
[  120.196082][T10170] 9pnet_fd: Insufficient options for proto=fd
[  120.245751][T10168] syzkaller0: entered promiscuous mode
[  120.251249][T10168] syzkaller0: entered allmulticast mode
[  120.258073][T10172] smc: net device bond0 applied user defined pnetid SYZ0
[  120.266319][T10172] smc: net device bond0 erased user defined pnetid SYZ0
[  120.294387][T10182] loop5: detected capacity change from 0 to 128
[  120.301643][T10182] EXT4-fs (loop5): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  120.304181][T10181] tmpfs: Too few inodes for current use
[  120.319928][   T29] kauditd_printk_skb: 2316 callbacks suppressed
[  120.319941][   T29] audit: type=1326 audit(1756846868.934:29406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.5.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  120.404079][   T29] audit: type=1326 audit(1756846868.994:29407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10180 comm="syz.5.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e4bbbebe9 code=0x7ffc0000
[  120.404158][T10190] smc: net device bond0 applied user defined pnetid SYZ0
[  120.404254][T10190] smc: net device bond0 erased user defined pnetid SYZ0
[  120.486384][T10196] 9pnet_fd: Insufficient options for proto=fd
[  120.500701][T10181] loop1: detected capacity change from 0 to 2048
[  120.545560][T10205] smc: net device bond0 applied user defined pnetid SYZ0
[  120.552753][T10205] smc: net device bond0 erased user defined pnetid SYZ0
[  120.657527][T10208] loop1: detected capacity change from 0 to 8192
[  120.673195][   T29] audit: type=1326 audit(1756846869.284:29408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.682755][T10213] syzkaller0: entered promiscuous mode
[  120.696985][   T29] audit: type=1326 audit(1756846869.284:29409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.702278][T10213] syzkaller0: entered allmulticast mode
[  120.725931][   T29] audit: type=1326 audit(1756846869.284:29410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.755047][   T29] audit: type=1326 audit(1756846869.284:29411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.778694][   T29] audit: type=1326 audit(1756846869.284:29412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.802293][   T29] audit: type=1326 audit(1756846869.284:29413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.825999][   T29] audit: type=1326 audit(1756846869.284:29414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.849657][   T29] audit: type=1326 audit(1756846869.284:29415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.3.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88459bebe9 code=0x7ffc0000
[  120.902432][T10221] syzkaller0: entered promiscuous mode
[  120.908133][T10221] syzkaller0: entered allmulticast mode
[  120.938527][T10225] 9pnet_fd: Insufficient options for proto=fd
[  121.032826][T10234] smc: net device bond0 applied user defined pnetid SYZ0
[  121.042862][T10234] smc: net device bond0 erased user defined pnetid SYZ0
[  121.053202][T10236] __nla_validate_parse: 52 callbacks suppressed
[  121.053213][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2645'.
[  121.084283][T10236] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2645'.
[  121.105497][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2645'.
[  121.155106][T10244] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  121.180001][T10242] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2648'.
[  121.204755][T10250] loop0: detected capacity change from 0 to 128
[  121.211865][T10250] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  121.227143][T10252] smc: net device bond0 applied user defined pnetid SYZ0
[  121.243787][T10252] smc: net device bond0 erased user defined pnetid SYZ0
[  121.300405][T10260] loop0: detected capacity change from 0 to 512
[  121.310654][T10260] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2654: invalid block
[  121.325489][T10260] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2654: invalid indirect mapped block 4294967295 (level 1)
[  121.344844][T10260] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2654: invalid indirect mapped block 4294967295 (level 1)
[  121.366048][T10265] smc: net device bond0 applied user defined pnetid SYZ0
[  121.375251][T10265] smc: net device bond0 erased user defined pnetid SYZ0
[  121.375324][T10260] EXT4-fs (loop0): 2 truncates cleaned up
[  121.398283][T10260] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.429837][T10269] smc: net device bond0 applied user defined pnetid SYZ0
[  121.437083][T10269] smc: net device bond0 erased user defined pnetid SYZ0
[  121.438240][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.461337][T10271] smc: net device bond0 applied user defined pnetid SYZ0
[  121.469158][T10271] smc: net device bond0 erased user defined pnetid SYZ0
[  121.484017][T10273] syzkaller0: entered allmulticast mode
[  121.489699][T10273] syzkaller0: entered promiscuous mode
[  121.497027][T10273] syzkaller0 (unregistering): left allmulticast mode
[  121.503766][T10273] syzkaller0 (unregistering): left promiscuous mode
[  121.564817][T10275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2660'.
[  121.613117][T10289] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2664'.
[  121.638792][T10291] netlink: 4 bytes leftover after parsing attributes in process `wޡ�'.
[  121.649529][T10293] netlink: 12 bytes leftover after parsing attributes in process `wޡ�'.
[  121.662963][T10293] netlink: 12 bytes leftover after parsing attributes in process `wޡ�'.
[  121.685560][T10297] syzkaller0: entered promiscuous mode
[  121.691066][T10297] syzkaller0: entered allmulticast mode
[  121.699195][T10299] smc: net device bond0 applied user defined pnetid SYZ0
[  121.706472][T10299] smc: net device bond0 erased user defined pnetid SYZ0
[  121.741234][T10301] loop2: detected capacity change from 0 to 8192
[  121.848202][T10312] loop0: detected capacity change from 0 to 512
[  121.863998][T10312] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2676: invalid block
[  121.891735][T10312] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2676: invalid indirect mapped block 4294967295 (level 1)
[  121.920969][T10312] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2676: invalid indirect mapped block 4294967295 (level 1)
[  121.936657][T10312] EXT4-fs (loop0): 2 truncates cleaned up
[  121.963296][T10312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.997414][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.064252][T10329] loop1: detected capacity change from 0 to 128
[  122.073879][T10329] EXT4-fs (loop1): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  122.224227][T10346] syzkaller0: entered allmulticast mode
[  122.237012][T10346] syzkaller0: entered promiscuous mode
[  122.251029][T10346] syzkaller0 (unregistering): left allmulticast mode
[  122.257806][T10346] syzkaller0 (unregistering): left promiscuous mode
[  122.298328][T10356] loop2: detected capacity change from 0 to 512
[  122.305644][T10348] loop0: detected capacity change from 0 to 8192
[  122.318363][T10356] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2697: invalid block
[  122.331050][T10356] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2697: invalid indirect mapped block 4294967295 (level 1)
[  122.345437][T10356] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2697: invalid indirect mapped block 4294967295 (level 1)
[  122.360955][T10356] EXT4-fs (loop2): 2 truncates cleaned up
[  122.367146][T10356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.398017][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.601801][T10387] loop5: detected capacity change from 0 to 512
[  122.615898][T10387] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2709: invalid block
[  122.627940][T10387] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2709: invalid indirect mapped block 4294967295 (level 1)
[  122.643428][T10387] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2709: invalid indirect mapped block 4294967295 (level 1)
[  122.657926][T10390] loop0: detected capacity change from 0 to 128
[  122.664675][T10387] EXT4-fs (loop5): 2 truncates cleaned up
[  122.670732][T10387] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.677537][T10390] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  122.693526][T10390] ==================================================================
[  122.701602][T10390] BUG: KCSAN: data-race in find_get_block_common / has_bh_in_lru
[  122.709332][T10390] 
[  122.711650][T10390] read-write to 0xffff888237c26f50 of 8 bytes by task 10387 on cpu 0:
[  122.719818][T10390]  find_get_block_common+0x4f0/0x960
[  122.725105][T10390]  bdev_getblk+0x83/0x3b0
[  122.729430][T10390]  __ext4_sb_bread_gfp+0x44/0x170
[  122.734464][T10390]  ext4_sb_bread+0x5e/0x70
[  122.738880][T10390]  ext4_update_superblocks_fn+0x521/0xaa0
[  122.744598][T10390]  ext4_update_overhead+0x135/0x160
[  122.749796][T10390]  ext4_fill_super+0x2e05/0x35d0
[  122.754735][T10390]  get_tree_bdev_flags+0x291/0x300
[  122.759846][T10390]  get_tree_bdev+0x1f/0x30
[  122.764255][T10390]  ext4_get_tree+0x1c/0x30
[  122.768673][T10390]  vfs_get_tree+0x54/0x1d0
[  122.773085][T10390]  do_new_mount+0x207/0x5e0
[  122.777584][T10390]  path_mount+0x4a4/0xb20
[  122.781919][T10390]  __se_sys_mount+0x28f/0x2e0
[  122.786592][T10390]  __x64_sys_mount+0x67/0x80
[  122.791177][T10390]  x64_sys_call+0x2b4d/0x2ff0
[  122.795849][T10390]  do_syscall_64+0xd2/0x200
[  122.800354][T10390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.806237][T10390] 
[  122.808547][T10390] read to 0xffff888237c26f50 of 8 bytes by task 10390 on cpu 1:
[  122.816162][T10390]  has_bh_in_lru+0x35/0x1f0
[  122.820658][T10390]  smp_call_function_many_cond+0x2a9/0xc60
[  122.826454][T10390]  on_each_cpu_cond_mask+0x3c/0x80
[  122.831558][T10390]  invalidate_bh_lrus+0x2a/0x30
[  122.836415][T10390]  invalidate_bdev+0x42/0x70
[  122.840999][T10390]  ext4_fill_super+0x2b5d/0x35d0
[  122.845971][T10390]  get_tree_bdev_flags+0x291/0x300
[  122.851090][T10390]  get_tree_bdev+0x1f/0x30
[  122.855507][T10390]  ext4_get_tree+0x1c/0x30
[  122.859926][T10390]  vfs_get_tree+0x54/0x1d0
[  122.864335][T10390]  do_new_mount+0x207/0x5e0
[  122.868831][T10390]  path_mount+0x4a4/0xb20
[  122.873150][T10390]  __se_sys_mount+0x28f/0x2e0
[  122.877819][T10390]  __x64_sys_mount+0x67/0x80
[  122.882401][T10390]  x64_sys_call+0x2b4d/0x2ff0
[  122.887068][T10390]  do_syscall_64+0xd2/0x200
[  122.891569][T10390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.897454][T10390] 
[  122.899769][T10390] value changed: 0xffff888123886820 -> 0xffff888119654a90
[  122.906860][T10390] 
[  122.909172][T10390] Reported by Kernel Concurrency Sanitizer on:
[  122.915312][T10390] CPU: 1 UID: 0 PID: 10390 Comm: syz.0.2710 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.925107][T10390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.935163][T10390] ==================================================================
[  122.969740][ T3943] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.