last executing test programs:

11.916749056s ago: executing program 2 (id=690):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000009c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x2000, 0xc, 0xc, 0x3, [@struct={0x0, 0x0, 0x0, 0x4, 0x0, 0x1a6}]}, {0x0, [0x2e]}}, 0x0, 0x27, 0x0, 0x1, 0x1}, 0x28)

11.801546438s ago: executing program 2 (id=693):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0x7fffffff}, 0x18)
sched_getaffinity(0x0, 0x8, &(0x7f0000000340))

11.800820728s ago: executing program 2 (id=695):
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1008010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x51a, &(0x7f0000000a00)="$eJzs3VFrY1kdAPD/vW26nZmuyarIuuC6uCudRSdpt+5uEdH1RZ8W1PV9rG1aSpOmNOk6LYt28RuIoOCTT74IfgBhmAc/gAwM6Iv4ICqK6Iw+COpcSXKz00mTtjBt02l+PziTc869uf9zbujJvTdn7g1gbL0UEW9FxEREvBoRxbw+zVPsd1N7vQf331tupySy7J2/J5Hkdb1ttbcxGRHX8rdNR8Q3vhrx7eRw3Obu3sZSrVbdzsuVVn2r0tzdu7FeX1qrrlU3Fxbm31h8c/H1xbks90T9LPUyP/vKF29/9jt/uPnX699tN+sLH4tC9PXjNHW7Xujsi572Pto+i2Aj0PvMC72KydG2BwCAo7WP8T8cEZ/qHP8XY2LQAdzEKFoGAAAAnJbsSzPx3yQiAwAAAC6tNCJmIknL+VyAmUjTqfzawEfjalprNFufWW3sbK60l0WUopCurteqc/lc4VIUknZ5Pp9j2yu/1ldeiIjnIuKHxSudcnm5UVsZ8bUPAAAAGBfX+s7//1VMO/nj+Y+eAAAA8FQpDS0AAAAAl8WAU/6pUbQDAAAAODv95/+3R9QOAAAA4Ex87e232ynrPf965d3dnY3GuzdWqs2Ncn1nubzc2N4qrzUaa5179tWP216t0dj6XGzu3Kq0qs1Wpbm7d7Pe2Nls3Vx/7BHYAAAAwDl67pN3fptExP7nr3RS5PcBBHjMn0bdAOA0TYy6AcDIuIs3jK/CqBsAjFxyzHKTdwAA4Ok3+/HDv//37v3n2gBcbub6AMD48fs/jK+CGYAw1tKI+FA3+8ywdYb+/v/rk0bJsoi7xYM1ri8CAMD5mumkJC3n5wEzkablcsSzEWkpCsnqeq06l58f/KZYeKZdnu+8Mzl2zjAAAAAAAAAAAAAAAAAAAAAAAAAA0JVlSWQAAADApRaR/iXp3M0/Yrb4ykz/9YGp5N/F+HNe+Mk7P7q11Gptz7fr/9F5ltdURLR+nNe/NvTxYQAAAMBpS/aHLuqep+ev8+faKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADGwIP77y330nnG/duXI6I0KP5kTHdep6MQEVf/mcTkgfclETFxCvH334+I5wfFT+JhlmWlvBX98dOIuHLG8UudXTM8/rVTiA/j7E57/Hlr0N9fGi91Xgf//U3m6UkNH//SPPLznXFu0Pj37KGt1QfGeOHeLypD478f8cLk4PGnN/4mQ+K/fGhr/8my7HCMb31zb29Y/OynEbMDv3+Sx2JVWvWtSnN378Z6fWmtulbdXFiYf2PxzcXXF+cqq+u1av7vwBg/+MQvHx7V/6sD4v/+d93x96j+vzJso33+d+/W/Y90s4VB8a+/PPD7dzqGxE/z775P5/n28tlefr+bP+jFn9998aj+rwzZ/8d9/tdP2P9Xv/79P55wVQDgHDR39zaWarXq9hGZ6ROs8zRmfjV9IZpxgszkgZrse91P7kI07Aky7aPVRzW9Xl2Ahh3IZOcWayIuSJc/yIx0WAIAAM7Ao4P+UbcEAAAAAAAAAAAAAAAAAAAAxtd53E6sP+b+aLoKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCk/wcAAP//FPHfqw==")
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x90)
syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000001a21428c6c08586dd61bcc1d7008c292a5b01000000000000000000000000000000000000000000000000000000000001"], 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)

11.129242264s ago: executing program 2 (id=708):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x18)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x10002, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0d}, 0x0, 0xffffffffffffffff, r2, 0x0)
vmsplice(r2, &(0x7f0000000600)=[{&(0x7f0000000480)}, {&(0x7f0000000500)="ec16c05a429066115028e5f984e916541ecf39639f86c009d10103b2c49ab1f61fa85f0eb3ed7cb478d7bb201e9f8b394069d3d435a0047e3222413e32ebff40510b54a95c30a9c489c7d1f5d766622120f066d4487db73027e8543c1744f329e3d039641032eace7d842157aef737391170319c28b20778dffed857b16405e0641937426f17789342de75b4d6b41c563cf88e0415ff44d37a737ac7671f0cafbeed8300964aa6e8d7061188d42971c8b1720c934bbe75e043b59d7d73080260e7a601ba278f866bbbeb168e6b698dc8ff3cddba599dc3", 0xd7}], 0x2, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x78)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000004)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYBLOB="14000000100001000000000000b890caa000000a80000000160a0103000000000000000002000000155a333bb9394d051c5a5103eafb6f0900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732a542fd433a4b9fe86965bf7c000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})
umount2(&(0x7f0000000000)='./file0\x00', 0xd)
r6 = syz_pidfd_open(0x0, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000080), 0xffffffffffffffff, 0x204003)
ioctl$SCSI_IOCTL_DOORLOCK(r7, 0x5380)
ptrace$setregs(0xd, 0x0, 0x6, &(0x7f0000000340)="a6f11fa9082b82e76acea02f8432103b770d767db7283a4167d3dc9722053ae42f77b8ffb5c4885c4ae2148d03ab6b19e826c309ddeb8739a1bcde09473f3ba20fd2ac9b4613125f06d026b58b53c334443023231c02a801f27fc31a05f74f34d319468124f4de22abb374df4c1376280926e29638e6611b4c8a7253127ee544851adb960d7b69468800f4a08f264753bbbf18c92a71ceb9528f98730b6d4d7dffb89846cd20dd1d32441256cc095d67dc70adcc1ef658dae08a36bfdff0ea4d0be375c022e6f22ae1c84f49eae3e0991f7dddcb1e4249ffb60435e95aa3e5ac1e0da6ff19d38c8d896f4f3e97d6bd5f06817f2c8d3a3acf")
ioctl$FS_IOC_GETVERSION(r6, 0xff0a, 0x0)

10.935619423s ago: executing program 2 (id=716):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000390428bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="800000002a4000003c0012800b000100697036746e6c00002c000280140003000000000000000000000000fbffffff011400020000000000000000000000ffff"], 0x5c}}, 0x48c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1200000008000000040000000200000000000000", @ANYRES32, @ANYBLOB="0000000300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_int(r5, 0x1, 0x22, 0x0, &(0x7f00000000c0)=0x2d)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r4}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r3}, 0x20)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x7, 0x0, 0x7fff0006}]})
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010004000000000004000500a9930000100000000000000020"], 0x24, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x511a01, 0x80)
close_range(r6, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x28, r8, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'vlan1\x00'}}]}]}, 0x28}}, 0x0)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x188, r8, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x4}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8c}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}]}, @TIPC_NLA_NODE={0x134, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xba, 0x3, "e9f61e4b56a199bb9a65ef979e4d213b1e0e58b42cbb84634b4d638ab25e424567e0bbd29b0216fe62d467cd8752fc735af69373fe345d0ccb0df69b6bbf52bd324b95ac4b0f58a9edbce5a3cbe2271098bf4eb2fefd6154d5cf1127a813ca96cbd20ac9fd4ad7ee5e9bdcccfe5cf0eea09a02abc6e59e03122a2b7211d110322de2ab07cccd4a18fa7f5c152cfd8497f5182903a96edaa2d735fbfebd4f0d601ac9b57e03b55e1df42f4f8432c584efd17ae266e6a4"}, @TIPC_NLA_NODE_ID={0xb, 0x3, "f70e2be0131406"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "ab5f5fb49cf70c5214f1081b5d0c5db1a915fc7772d1ef98010504d126b2df4b78196663"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xfffffffa}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xc}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x1c, r2, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x5}, {@val={0x8, 0x3, 0xa}, @void, @void}}}, 0x1c}}, 0x0)

10.844029612s ago: executing program 2 (id=717):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = openat$selinux_enforce(0xffffffffffffff9c, 0x0, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000000)={{0x3c, @loopback, 0x4e23, 0x2, 'sed\x00', 0x40, 0x4, 0x35}, {@remote, 0x4e23, 0x3, 0x7fffffff, 0x502, 0x55a}}, 0x44)
writev(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x1f, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x10000000, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0x8}, 0x18)
lsetxattr$security_selinux(0x0, 0x0, 0x0, 0x0, 0x0)
mq_open(&(0x7f0000000a00)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xeeux\x00\xbf@\xf4\x1c\xbce\xca\x97\xd5pkv\x88L\xe8$\xef\xfeI\xdaW1\xfcg\xa1\xdb$,0y$\xcd{zl.\xae\x805\xa8\xd6\x85\x15\xd2\x0e~\xcc\x90\x97\xe8h\v\x1a9X\a\xca{\x11#\x95m{U\xe5-\xabRw\xcafy\xe6\aNhX4Ll[\x14\x15<z\xb2\x03d\xad\x925\xbfP\x1b\xea\vt\xe9C\xe9\xb4R\x85*\xdc\xc4@\xee\xd2\xae\x06\x1a\xe1\xd2s\x01\xb8\xf3\xf2\rr\x01mq\xd2\xaf\xe2{\xe4\x1a\xd3Z\x01C\xfbW', 0x6e93ebbbcc0884f2, 0x1c4, &(0x7f0000000040)={0x0, 0x2, 0x4, 0x3})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r2 = socket$inet(0x2, 0x2, 0x1)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x44010)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @remote}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c00000000000000000a000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

2.412364992s ago: executing program 1 (id=849):
mknodat$null(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb8511d3799c7a606, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lchown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

2.3242267s ago: executing program 1 (id=850):
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0x1, 0x20727ff}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0d0000040000000640000005000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\b\x00'/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, 0x0, &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x4c, 0x24, 0xd0f, 0x203, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x2}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x2000000, 0x4, 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000540)='/sys/kernel/rcu_stall_count', 0x0, 0xb2)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5, 0x0, 0x1000}, 0x18)
unshare(0x200)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
r6 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r6, &(0x7f0000000200)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0xe}, {}, {0x8, 0x1}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_CT_MARK={0x8}, @TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x4}]}}]}, 0x44}}, 0x4000)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.262294937s ago: executing program 1 (id=852):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xd, 0x10020, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0xe, 0x2}, 0x110902, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xdb}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffe, r2, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r7, 0x0, 0x5}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x29c500a, 0x0, 0x4, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = dup(r9)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000001500), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[{@access_uid}, {@aname={'aname', 0x3d, '9p\x00'}}], [], 0x6b}})

2.148399718s ago: executing program 4 (id=853):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x18)
openat$vcsu(0xffffffffffffff9c, 0x0, 0x10002, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0d}, 0x0, 0xffffffffffffffff, r2, 0x0)
vmsplice(r2, &(0x7f0000000600)=[{&(0x7f0000000480)}, {&(0x7f0000000500)="ec16c05a429066115028e5f984e916541ecf39639f86c009d10103b2c49ab1f61fa85f0eb3ed7cb478d7bb201e9f8b394069d3d435a0047e3222413e32ebff40510b54a95c30a9c489c7d1f5d766622120f066d4487db73027e8543c1744f329e3d039641032eace7d842157aef737391170319c28b20778dffed857b16405e0641937426f17789342de75b4d6b41c563cf88e0415ff44d37a737ac7671f0cafbeed8300964aa6e8d7061188d42971c8b1720c934bbe75e043b59d7d73080260e7a601ba278f866bbbeb168e6b698dc8ff3cddba599dc3", 0xd7}], 0x2, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x78)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000004)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYBLOB="14000000100001000000000000b890caa000000a80000000160a0103000000000000000002000000155a333bb9394d051c5a5103eafb6f0900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732a542fd433a4b9fe86965bf7c000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})
umount2(&(0x7f0000000000)='./file0\x00', 0xd)
r6 = syz_pidfd_open(0x0, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000080), 0xffffffffffffffff, 0x204003)
ioctl$SCSI_IOCTL_DOORLOCK(r7, 0x5380)
ptrace$setregs(0xd, 0x0, 0x6, &(0x7f0000000340)="a6f11fa9082b82e76acea02f8432103b770d767db7283a4167d3dc9722053ae42f77b8ffb5c4885c4ae2148d03ab6b19e826c309ddeb8739a1bcde09473f3ba20fd2ac9b4613125f06d026b58b53c334443023231c02a801f27fc31a05f74f34d319468124f4de22abb374df4c1376280926e29638e6611b4c8a7253127ee544851adb960d7b69468800f4a08f264753bbbf18c92a71ceb9528f98730b6d4d7dffb89846cd20dd1d32441256cc095d67dc70adcc1ef658dae08a36bfdff0ea4d0be375c022e6f22ae1c84f49eae3e0991f7dddcb1e4249ffb60435e95aa3e5ac1e0da6ff19d38c8d896f4f3e97d6bd5f06817f2c8d3a3acf")
ioctl$FS_IOC_GETVERSION(r6, 0xff0a, 0x0)

2.063431696s ago: executing program 1 (id=854):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
cachestat(r0, 0x0, 0x0, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
writev(r1, &(0x7f00000000c0)=[{&(0x7f00000002c0)}], 0x1)

2.053125308s ago: executing program 4 (id=855):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000ac0)={{r0}, &(0x7f0000000300), &(0x7f0000000380)}, 0x20)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS2(r2, 0x402c542b, &(0x7f0000000240)={0x1000, 0x7, 0x5, 0xda, 0x2, "3616137f90fe3c7988dbe232eabb881acadc17", 0x9, 0x1})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x500)
setreuid(0x0, 0xee00)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000480)="390000fa461a668300111200cc0800000000000000001700000000e0da8879d21cd95c7a6ee4ca508ca9e48270faf047145bc79e0b9971bcbed2db88d73bc68c5055290baaa349c00017a792f4577c3074acbabb16712bb052f891702430fe2736cf174c478584851d7a62a5ed1a3ba4f2d114cd17761d7735a586c6b5545df6ab795d86d6967e0202cba51139066fb883218ca242a183c4381edf7eaf3cd1e6a0c31315305e1c", 0xa7}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r3])

2.013597521s ago: executing program 1 (id=856):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffff"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0x7fffffff}, 0x18)
sched_getaffinity(0x0, 0x8, &(0x7f0000000340))

2.013113922s ago: executing program 4 (id=857):
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/netlink\x00')
lseek(r0, 0xffffffffffffffff, 0x1)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xc2300, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @private0, 0x4}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r5, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
socket$netlink(0x10, 0x3, 0x8000000004)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000012c0)='scsi_dispatch_cmd_start\x00', r6}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.997904553s ago: executing program 1 (id=858):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xf5}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x40000) (async, rerun: 64)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@debug}]}, 0x1, 0x514, &(0x7f0000000300)="$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") (rerun: 64)

1.558737946s ago: executing program 0 (id=862):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xfd, 0x7fff0000}]})
timerfd_gettime(0xffffffffffffffff, 0x0) (fail_nth: 1)

1.555927037s ago: executing program 3 (id=863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x4, 0x7fff, 0xc}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000840)=ANY=[@ANYBLOB="1800524b3854bd7080ec0000000000000000000000000000180100002020642500000000002008007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsetxattr(r3, 0x0, 0x0, 0x0, 0x3)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_open_dev$usbfs(0x0, 0x205, 0x8401)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kfree\x00', r5}, 0x18)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000200)='signal_deliver\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
accept(0xffffffffffffffff, &(0x7f00000001c0)=@caif=@rfm, &(0x7f0000000800)=0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r7, 0x0, 0x200000000000006}, 0x18)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$tipc(r8, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)=[{&(0x7f0000000f00)="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", 0xd64}, {0x0, 0x4000}, {0x0}, {0x0}, {&(0x7f00000020c0), 0x500}], 0x5}, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000980)='./file1\x00', 0x42, 0xc2)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000180), 0x80000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x18)

1.359298386s ago: executing program 0 (id=864):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0, 0x0)
mknodat(r1, &(0x7f0000000040)='./file0\x00', 0x1000, 0x10008)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x2c6, &(0x7f0000000cc0)="$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")
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2208040, &(0x7f0000000600)={[], [{@euid_eq}, {@flag='dirsync'}, {@smackfshat={'smackfshat', 0x3d, '-@\\]\',#%-'}}, {@dont_appraise}, {@hash}]}, 0x1, 0x571, &(0x7f0000000780)="$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")
getpid()
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000000)={{}, {}, [], {0x4, 0x6}}, 0x24, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x4}, 0x18)
syz_emit_ethernet(0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60fca33f00007300fe800000000000000000000000000000fe8000aa00"/54], 0x0)
syz_mount_image$ext4(&(0x7f0000000480)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x180c081, &(0x7f0000000400)={[{@jqfmt_vfsv1}, {@data_ordered}]}, 0x28, 0x516, &(0x7f0000000740)="$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")
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000100)='.\x00', 0x10820, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

1.11611959s ago: executing program 3 (id=865):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x18)
openat$vcsu(0xffffffffffffff9c, 0x0, 0x10002, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0d}, 0x0, 0xffffffffffffffff, r2, 0x0)
vmsplice(r2, &(0x7f0000000600)=[{&(0x7f0000000480)}, {&(0x7f0000000500)="ec16c05a429066115028e5f984e916541ecf39639f86c009d10103b2c49ab1f61fa85f0eb3ed7cb478d7bb201e9f8b394069d3d435a0047e3222413e32ebff40510b54a95c30a9c489c7d1f5d766622120f066d4487db73027e8543c1744f329e3d039641032eace7d842157aef737391170319c28b20778dffed857b16405e0641937426f17789342de75b4d6b41c563cf88e0415ff44d37a737ac7671f0cafbeed8300964aa6e8d7061188d42971c8b1720c934bbe75e043b59d7d73080260e7a601ba278f866bbbeb168e6b698dc8ff3cddba599dc3", 0xd7}], 0x2, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x78)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000004)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYBLOB="14000000100001000000000000b890caa000000a80000000160a0103000000000000000002000000155a333bb9394d051c5a5103eafb6f0900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732a542fd433a4b9fe86965bf7c000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})
umount2(&(0x7f0000000000)='./file0\x00', 0xd)
r6 = syz_pidfd_open(0x0, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000080), 0xffffffffffffffff, 0x204003)
ioctl$SCSI_IOCTL_DOORLOCK(r7, 0x5380)
ptrace$setregs(0xd, 0x0, 0x6, &(0x7f0000000340)="a6f11fa9082b82e76acea02f8432103b770d767db7283a4167d3dc9722053ae42f77b8ffb5c4885c4ae2148d03ab6b19e826c309ddeb8739a1bcde09473f3ba20fd2ac9b4613125f06d026b58b53c334443023231c02a801f27fc31a05f74f34d319468124f4de22abb374df4c1376280926e29638e6611b4c8a7253127ee544851adb960d7b69468800f4a08f264753bbbf18c92a71ceb9528f98730b6d4d7dffb89846cd20dd1d32441256cc095d67dc70adcc1ef658dae08a36bfdff0ea4d0be375c022e6f22ae1c84f49eae3e0991f7dddcb1e4249ffb60435e95aa3e5ac1e0da6ff19d38c8d896f4f3e97d6bd5f06817f2c8d3a3acf")
ioctl$FS_IOC_GETVERSION(r6, 0xff0a, 0x0)

1.062265355s ago: executing program 4 (id=866):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xd, 0x10020, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0xe, 0x2}, 0x110902, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xdb}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffe, r2, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r7, 0x0, 0x5}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x29c500a, 0x0, 0x4, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = dup(r9)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000001500), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[{@access_uid}, {@aname={'aname', 0x3d, '9p\x00'}}], [], 0x6b}})

989.489152ms ago: executing program 0 (id=867):
mount$cgroup(0x0, &(0x7f00000010c0)='.\x00', &(0x7f0000001100), 0x40, &(0x7f0000001280)={[{@cpuset_v2_mode}, {@favordynmods}]}) (fail_nth: 6)

507.30609ms ago: executing program 0 (id=868):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="340000000d060104000000000000000000000009050001000700000005000500000000000d0003"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x8, &(0x7f0000000380)=0x10000, 0x4)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")
bind$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x300)

449.840575ms ago: executing program 3 (id=869):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
pipe2$9p(&(0x7f0000001900), 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000080), &(0x7f0000000280)=0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$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")
kexec_load(0x4, 0xa, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sysvipc/msg\x00', 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c0100001000130700000000fdfffffffe80000000000000000000000000001cfe8000000000000000000000000000bb4e210000000000000000800000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0a0101020001000000000000000000000000000033000000fe8000000000000000000000000000bbfeffffffffffffff0000000000000000000000000000000006000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b0000000000000000000000040000000a00000000000000000000004c001400"], 0x13c}}, 0x44000)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x13)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f2, &(0x7f0000000080))

409.525709ms ago: executing program 4 (id=870):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cpuacct.usage_all\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x5, &(0x7f0000000000)={0x0, 0x1, 0x7fffffffffffffff, 0x80000000})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000940)=ANY=[@ANYRESDEC=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0xa, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
r3 = socket(0x1a, 0x3, 0xffffffff)
connect$netlink(r3, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@empty, @in6}}, {{@in=@broadcast}, 0x0, @in=@initdev}}, &(0x7f0000000280)=0xe8)
lstat(&(0x7f0000000280)='./file2\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x1000000, &(0x7f0000000f40)=ANY=[], 0x5, 0x2cc, &(0x7f0000001500)="$eJzs3U9rY1UUAPDz0jR92kWKuFEEH+jCVZm6ddMqI4hdKRHUhRZnBiQJA1MITAVjV/MJXLr0K4gfwY0bv8GAW8HdDFi58v4lqaadjNOO2Pn9Nj3ce8+95+W1yaLkvM9fGQ9v3M7i+MH9yPMsOruxGw+z2IpOtL6JbgAAV8fDlOL3VIVZqq2Y2e1camEAwKWpP/8f64MfAPif+/DjT97f29+//kFR5PFS/95kkEXE+N5kUM/v3YovYxQ341r04yQizdTxu+/tX49uUdqK18fTyaDMHH/2c8QP35f5v0VU+TvRj63l+TtFbfYvh/LnYD2ejyL2bq23pfbjxeX5b7b58/OnMejFG68t1L8d/fjli7gdo7gRZe48/+udongnffvgq0/LY8r8rBODjWpdJaXIn/qdAQAAAAAAAAAAAAAAAAAAAADgKtsuiqxu31P17ymHqv45k8HaSTW/XbQW+/tM2/5AWbtR3R8oRdOiZ5riu7a/zrWiKFKzcJ7fjZe7HiwAAAAAAAAAAAAAAAAAAAAApcO79zcPRqObdw7vHg2fOGi7AbRf6/+3++wujLwaR8ODtbM33Fj9rMVuA2Wt5y6Objcu6GVZHhzPRp4r67nwIzZiNvJR1EF7Yy70rBferjc9Gh4UzVT7Ig8Pskedlbc37sfFqV7M1vyRao9ZWKp+JU7S6Xuaz0o9ndVbYecy91FreptLp/5MKa1W/Fu/1veoGcmqFhurXfJ6Eyy9wDLIo7mK+g+/nPrp7A3PfMtYe+I3HQAAAAAAAAAAAAAAAAAAYKn5l34jNv8+eXxuaucy6wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAp2n+/P82yCPi9Mg/gmmTfN6aJujFncP/+BIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4BvwVAAD//w0TVNE=")
r5 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x1db)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
io_setup(0xfb, &(0x7f0000000980)=<r6=>0x0)
io_cancel(r6, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x7, 0x9, r5, &(0x7f0000001800)="eb31527b5d751fe8047346935007f25ac97f551776aca18bb1ad92316281b75701fe7ad977a651d97dec93e345fa8d4136de86aa0a163f9ac17039fd28bf169e648c53f0e757eee3d927a469d0b6b7ceec2ca1ecbad5f765490058012e9aa8770eaea4b39f7d1ff937d7fedfe17a58bc8bbdcdfe90c37cacaaf60ad9b2b15a9518032b28376e01de40a23f9776d63a8ed1c9a27d2c6b10e60bbb810dc2ee8969d0a68f9fb71ece23d38720f128e8eb31e85215715ffd4f05ff8050e3f8acfdb085a4e23669ce2e552579eb576010f401336036e97c4f56cfca63b1b2c6a2c02324a1c39ac2460372623afa017a9f1be9f593f346b70d60524eec552ed226065d3d7bd1e06c9e0c07dfd6ded852b7b02e601cb35ffa61751990182542ba4ee79eda66e128cecd4a3f83d173dcc07bda770254bd0cabdf777d4448ed09639962840faf7eab72a7d052b7162ccb5ff27769419c5527cd12b7ead1a8d8800f3f940c3c16fea4c3a8463d62b5d0ca6d9e541800a2263c8995a98ee47d53124ddd54a6f861355fb7e32e070afa7548dd7cae6773fdde6b1cdcabe462daddf14105e6e0e4ae30e6e2db03d42aa682158db284604b3ace4fc77ca3d36d5682e531df9030d7b6acdc4db2cfed724a05bc15bd4c72b7c59bdb8fa6f1573669f1440da6c516210e78be408f2c221aac5b2d07a8cbd69681c3a599fd777767171b1745a8a2cc0bc2d15b5d85bb1debbe5e7de30ca25d54168b6ec6eb5faf3328c30bbd4fbd1049a0bebb24af3b9dda460d60893218cd9af53c267b57cf0292e33b34ee1a7caa67467da6f3ee3546cb87ed42edcf201f6be4464c468d70e2065b8c3b12e338639b9417b39cedfbbb5d183c298702995e8b912e75506433f8ebf4e7324c25f655167b7c9ee2da6e267a7761990ddb1f8b847e0b4076f67ef07844f89d08f31a12f3c7edc5c30bbf850c0743ada7f9d3d30d869aebbbd9414dd583a7b1b0352a930eefee6ecde776dbaa6c35645f8a9c1ceea4b43d9fc95f7ae37c24b76e70536475e3eed349918532f97601671a473597dfc38ca52a507538dd9bba1e1b91119c7c26217bc467214aff8809430030da8b1e21343058ac8bba9d3ba2572ae1bd2701374cf53cf54184281e7f231bb151f1707f893b0a7a7f06008bf9d3024a553d6e5d90ff6c7fc9313d8de5b6d40a04713d5b8c35b35440843221b6bf69f42d5e9a3cc4b2ea53954fb8e534def3c21198804ef3121412078bd3835af7776fa074c46dbafc429ba3b7ca5ed1a7ad269cf8aad487287e5958b36f6880c43270602e3a02297de746483606a40f588f7f5d5caf49eebbd87af5902de58753ec3c050fea0c2a5d930216a302a54d154f044d2a36352b770376755a58fd7e8341b430947d24046b20ced06a7558c501331cd7c762534e0aaff576e70cd667436d01281a4510a96e802d25a0de5fb147d0a0f15cd64b76e9f8683a8fa1826d3b239161b141cbfd81e3289afd05a3f8b715765374ed9d12dc9b2d4c78ee19628ccae1c873ffe93ec9cb379c99b25bb8007bce20ecbf320329fde4f7314958a52a5e77d610330eb6eabb6e712b42919e99cc0b51827526aa8b9e4902c8777cf0f12eb0d35b393f0a18c250afe1d1e1e4e3298f3c3b6a01943653119e369a0693bfc12ad0043f287a7a16b3a0243b5cab6e94538fcc12804f700b57284e9293e0223bc8e3f9f1c7fd8ba9d33553a86a0e0e55869b91a118817bc1c7fa0198ead7993a455a64a6b2d30e52729df0d2ba968c5f603fb41288647a629fbf48ae6df6cdf54e2fcb8f501912166f7a82ee50840f3c40d535a0dffb6547c17afb248510617dfb34004cc5b943d06e43e5fbd6e6cdc5bfad4f56f6089d4b42a37d7a295a662769dbc958db715c6d205f46eeef817dd40078a8378b8f681a406f7a356d79d4928d6a9d12e0adc7911e2ff6b9529ca55b3902f431683f0f9746290f67e4e8c87b893353b9c11be680e0ce2be7f7a00ca37fa244dbc37a15924256b06ccab4e62d7fcdab99fa0101b61d43dbc47fbc68c9c69b0d5fcb5d2dcf5638d345f11c1463c1b12a08d6333ac3a0a7e134c671d3e54d616348e4d9119eb05f09d60261857ef6fb5ffe5c15c416657ec460699185c0d73e05382dda5168ab250c58527ec8fcbf8f79b73c064cc0aad5c5edbec6854d52abde147d0bf18c0cffa86775a3714b4250bf42ca3c8f675e657da1719a6066ca266b36783cbdb946c99ce27a592782f6542a745b62296b1cad18d6402a8e83ff313d1da7e62151e3076c1d5633ee7ffc1abdb8e1f90f9640e14dd9e6b44a7583ea41e888c9a530ccadd078278ec037bdeb44bf2fea233731442eb25f9cfe3fcefe21f1cb9eb714cd58bc4549836bed6bf3a12e198c454c2fdc090c25cb30b54e6c8cdd9c24fee5ad4e8c346aaa1ae0a0d7cf1c15b5189c40827a64e48ae820b5432651b361d184c6681e5e24b8a084b8a89aa252fd9c624d9230ebbae68b15ba316561939368d6b59b18caf42953af90db7d2db3a8f10508cf606903c1131c8c8ba1fa07ad11a4e9f96758cde1024e314c9ca51109b5c4c25fa8137584f9f8e7d3f2d7c345fd566260fd68790bd5a5c02fcc1d09868f2f57369b567806b888c1ab67b3d8d5c4c82a645c86cc0e1fddb2cac08e36b9fd90cc66f6bca1656f2f5432ba9db44641d1113c05d3ea473146aa843606a2cb9a1473b1a9a65ef55380e40d413ac7cc3566dbafbf570dc6c4671b9756fd62270cd7741347acc7c7586b66132a2dbd82a786bcaa117686fa5dbe1feb7e6c8a64b61d14a308dfd10f0653e39408385c244d5fc550ea5f4dad06725308fce86c9ae2b252f24f16ff315b1f26fd845d1d6890deb8fefffb9fa1140be265ca606294498619916098865df2194b9e3b498ae177473ddc1451851824d4ceb794782d4171b14bcb2d2ecaa0c64faf9594817f23a76524cc36ab74fb02eff347d24eec885c63d427c166f9ffcbace4c567f9f85bee3a55648eeed5410378173b63a4b925966f9ef0521a4d525b728890de3e992745099075cd6c6013b1b27f137484d943aea0368fdd776e4aadfc6c15baaf435f85e0de0f93230086774ad40e819c9cf1385113f485ff829b49c39859b5fee38378f0dfe0319edfb647548624cc0b27cd19e8680983f82bd16fe1a961d30736309482cbe41c306d9147c33e275338227f5c7ea4f4034afb4becd47075f9c78723afaf0b0e3899996b1ec712c72b9eea62b4bfbac20a24c7d05662776e4367846179f7d5a6c6ca43a13e93f11abb50ffa27db7cab841f8dc6d38d917f50848d9ffc5381a6a2a52e66a247ff84a38e77e1b85f5f754b7f1920010bd2159a865e2555e11ffedf1b6904cae5c8862f21aa1e961f709b6cd92b0e85d9004b9356a51cbc9806806491ffb4fa08dbf2536f0474eec0869398843f0590b988572eb38c9d799110034f7578243f06e2b3933c435d28fdd167a650c29b90e38f63bc15a7261b962b66f7a510da278fc8d58e7ebb7e1144556d69cd2034fe59b8640c18051699e2a246ddd6d405c171966e06775d3d0440834748b7a25c1112bd180621b0457e5372e634c1010c0b2086cc7725cee94fb23c352bbff61f1d785db3df4e82092e9706acb38901e258f764df6dbcecc3a7f8e9add8597da49f52127f95217754c024308b5188fa5e2e08ce214dd75e3bcb1172a6a802a83428a4b7c7da7554f0ef93ef3f6505793a60bf323ecba0bf92bdb78a35f8678138266fafbc3ab7dfb18319fd41e0852abd4bc2b47993163abc27d144c963514c0c29f502254a6b513efb410d4a0e4fd3ef349ffe058c0d8c0253a6e38c29bf1564eefd43493322b20240de441a5693b4d2d32267459df7b7f09d058530889c8a46914008d6c978113fceaa4ba2442fce5b50165affbc49bc30009d5ba01e54bb8ed59842e208fabd559b12317c8978c009c0be539521dff0c3da9f82bb363ceab5a834b6121c556e06784db03f4f09ab6a8465da9a8481cb5397a517aedc463628e0638d721fd11fe60bd4a72b70df229210d34497b327597d2cba6370bff14da92b75001dcdb6598926cbc2663041a95a2099d12a71b92b804ceb400fe1b1728ea08836266543e6d7322b11e692ac91a51165715b614aa2079d0fc581516e5c0e3add4204fe10b6270fa977f76e91b7ee541979b5a3b25d199e4ac658b9176fd4fb06b5889bda22e1f37395b2a782b3e05aa773626aed414811c169b0e371923aabd37dfaac331464889385f9c28851745f6d325c35dded0000554dd43673356f14e87d79b338e725d110a0ab158678ea85c85bd62e5c57d6436c79d7dd4c1450fd40121fbac8f60c6a06068a6057070245611a3480d7c37f4addbb1a0c7f4ea9c44cd9d6a28998554649ebf575b04c079a76d183f97d1e24369f1befe3133b33a4cdeb5ab9737cc7d09f90a831b0fd48d9b23187438caf994b5300fe162650c6d27e5da078f3b24a175387f388f3a3db76056793d342079ec01bd8ea301041210733d5167ce8af722bcd8b170a4bcc8a07090e8fec5c5c714882502ffa06d5d0930be1543af8b34cad7d8a2b6e3251d0942d4581394b7ce0a97db99e1a38caea4ffa53ae2a3aaed4621f035a361e2eddfd604d0110d6ff3c35dd5cf94b0e848b6951927cc7971ce8411d9f4c240a627a0f02edf9873f3b4adcc49cca5a3aeb67d7d9019ef8d05e98a49786c06b821ee7836495b01762b99311ff368f16ea9da8524e37e3ac92079229868fff49dada9ec01f3c86205ec9a8e291f9fa5a314f21afed68da7ea6c2a936680b9568a32cfbf208631d2aaa374767535ad6d52c76a58d8fc45ddca18327d6fb925007c180e52cad08d222445759ef3f026439cf1c844f03877764f3381373674749c962a262045bcb884dd665cc2c9f4e4b0847f4f7ff1726cc4645d5733d1ae88061a360f67a6436530d56890027ed8d6bece0b0f258ca43aac51022af1bbb545c3abbdddc4fc145c4f8dc423be4279064b8822c69bb3f754b21c70dfee5bdc4cb8af2fcd894e317463f14a0ab331776585393ef5d70c49b79d3ba112ece7277345d1e1b360f5b3b7c7c4a28706a1e586a41fdcccacaf16f31e32bc74226a7e8f917786efd1584aa7db199a207e7676ab6727f49ef773d98efbf0784aab9934d1f80d31bc4e9fbb38736c68d1605a03fe8d18d042a4c14281de620b6a14d6dedcb2dec3ebc1697c45525a010de0592159ecf466b45320683bb5bca999da3cb34882485c6b70b108770e473177ea28f572a6cf4a6572fffa684fbba9e366bcd478ffc0580deaa309e7a48e5df20c64e08feb6c26a4374c814bf56cf90a053bfe1165f80bc3707b05e26fcccbee2bae4a5946c7becd51014e7c2bd984e6e097f3eaaa0850c3372b9cf51a77e48467145ddced250d38fe48637424ef2615e28bd42d48ab564837ac645c4c540aabaac7800916d17f85b30630955b72b2e8a8f6d688e8870cbba3b08027008e2680d2f839124079bf3c85ea8017214ce81e31586a39ec0d4e948e26537202efa42616f465d974a7c3af39dfb9abc67956f21bd8c70ab7af064979ed1c43f70afb3c89073fd04b5cb94810a5e7b70f72d424a6485815f69a9e52b646e8ca40a25637c3f9dc58eb963a7669463fb0627b72c4dd6ae24cfdd99f0986f930cd13f32f20599c6942cac72bb1e6e6e9e7b1bdc1db62c589e00b047b796f08d9a46f3be298fef66242ad57c04fb3a9f37c31a34d0225a023e6ef71edde120dbad25991", 0x1000, 0x80}, &(0x7f0000000a00))
writev(r5, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x3fe00}], 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000fc0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@block_validity}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@nodelalloc}, {@grpquota}, {@mblk_io_submit}, {@nodiscard}, {@bh}, {@dioread_nolock}], [{@subj_type={'subj_type', 0x3d, 'data_err=abort'}}, {@fsname={'fsname', 0x3d, '/@'}}, {@measure}, {@uid_gt={'uid>', r4}}, {@dont_appraise}]}, 0x1, 0x553, &(0x7f0000000a40)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")

341.182386ms ago: executing program 0 (id=871):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x24048011}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000120000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

221.800198ms ago: executing program 3 (id=872):
mknodat$null(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb8511d3799c7a606, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lchown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

162.909144ms ago: executing program 0 (id=873):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x80, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x6, 0x6}, 0xc3, 0x10000, 0xda, 0x5, 0xa, 0x20005, 0x2, 0x0, 0xfffffffe, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
perf_event_open(&(0x7f0000000d40)={0x1, 0x80, 0x0, 0x0, 0x8, 0x0, 0x0, 0x20000005d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa100, 0x7, 0x5, 0x0, 0x2b66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, r0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x2d, &(0x7f0000000080)=0xffffb1e0, 0x2a)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @broadcast, @multicast2}, &(0x7f0000000040)=0xc)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000940)={[{@barrier_val}, {@resuid}, {@block_validity}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0xf0b, 0x20000000, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xf}, {0xffff, 0xffff}, {0xd, 0xc}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x1, 0xfffe, 0x5, 0x3, 0x1, 0x7}}, {0x4}}]}, @qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20044081}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c80)={0x18, 0x11, &(0x7f00000009c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@map_idx={0x18, 0x1, 0x5, 0x0, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000140)='syzkaller\x00', 0x2, 0xcd, &(0x7f0000000a80)=""/205, 0x41100, 0x2d, '\x00', r7, 0x0, r1, 0x8, &(0x7f0000000b80)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000bc0)={0x1, 0xb, 0x0, 0x5}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000c00)=[{0x0, 0x5, 0xb, 0x2}, {0x2, 0x5, 0x6, 0xb}, {0x3, 0x4, 0x7, 0x1}, {0x2, 0x3, 0x8, 0x4}, {0x2, 0x4, 0x2, 0x9}, {0x5, 0x2, 0x4, 0x6}, {0x3, 0x5, 0xa, 0xb}, {0x2, 0x5, 0xd, 0x8}], 0x10, 0x7fff}, 0x94)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x80, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x6, 0x6}, 0xc3, 0x10000, 0xda, 0x5, 0xa, 0x20005, 0x2, 0x0, 0xfffffffe, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
creat(&(0x7f00000000c0)='./file0\x00', 0x48) (async)
perf_event_open(&(0x7f0000000d40)={0x1, 0x80, 0x0, 0x0, 0x8, 0x0, 0x0, 0x20000005d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa100, 0x7, 0x5, 0x0, 0x2b66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xffffffffffffffff, r0, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
setsockopt$inet_tcp_int(r3, 0x6, 0x2d, &(0x7f0000000080)=0xffffb1e0, 0x2a) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0) (async)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @broadcast, @multicast2}, &(0x7f0000000040)=0xc) (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000940)={[{@barrier_val}, {@resuid}, {@block_validity}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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") (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
socket(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'}) (async)
sendmsg$nl_route_sched(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0xf0b, 0x20000000, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xf}, {0xffff, 0xffff}, {0xd, 0xc}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x1, 0xfffe, 0x5, 0x3, 0x1, 0x7}}, {0x4}}]}, @qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20044081}, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c80)={0x18, 0x11, &(0x7f00000009c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@map_idx={0x18, 0x1, 0x5, 0x0, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000140)='syzkaller\x00', 0x2, 0xcd, &(0x7f0000000a80)=""/205, 0x41100, 0x2d, '\x00', r7, 0x0, r1, 0x8, &(0x7f0000000b80)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000bc0)={0x1, 0xb, 0x0, 0x5}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000c00)=[{0x0, 0x5, 0xb, 0x2}, {0x2, 0x5, 0x6, 0xb}, {0x3, 0x4, 0x7, 0x1}, {0x2, 0x3, 0x8, 0x4}, {0x2, 0x4, 0x2, 0x9}, {0x5, 0x2, 0x4, 0x6}, {0x3, 0x5, 0xa, 0xb}, {0x2, 0x5, 0xd, 0x8}], 0x10, 0x7fff}, 0x94) (async)

114.352159ms ago: executing program 4 (id=874):
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/netlink\x00')
lseek(r0, 0xffffffffffffffff, 0x1)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xc2300, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @private0, 0x4}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$eJzs3c9rHGUfAPDvbHb7+32bQilvX15eCj1Yqd00iT8qeKhH0WJBPdclmYaSTbdkN6WJBduDvXiRIohYEO969+ChePHoX1HQQpES9OBlZTazybbZJJt0Y2L384Fpn2dmNs8888z34Zl9dpgABtaJ7J9CxPGI+CyJONyxrRj5xhNL+y0+vjmRLUk0m+/9lkSSr2vvn+T/H8wz/4mIHz+JOF1YXW59fmG6Uq2ms3l+pDFzbaQ+v3DmykxlKp1Kr46Nj597ZXzs9dde7VtdX7z4x5fv3n/r3KcnF7/47uGRu0mcj0P5ts56PINbnZkTzWZ+Tkpx/qkdR/tQ2G6S7PQBsCVDeZyXIuJ46XCpHfXA8+/jiGgCAyrZZPzv1V/Ac6I9Dmjf2/fpPvgf49GbSzdAq+tfXPpuJPa17o0OLCZP3Bll97vDfSg/K+P7X+/dzZbo3/cQABu6dTsizhaLq/u/JO//tu5sD/s8XYb+D/4+97Pxz0vdxj+F5fFPdBn/HOwSu1uxcfwXHvahmDVl4783uo5/lyethofy3L9aY75ScvlKNc36tn9HxKko7c3y683nnFt80FxrW+f4L1uy8ttjwfw4Hhb3PvmZyUqj8ix17vTodsR/u45/k+X2T7q0f3Y+PuixjGPpvf+vtW3j+m+v5jcRL3Rt/5UZrWT9+cmR1vUw0r4qVvv9zrGf1yq/e/1/+mEbqtpV1v4H1q//cNI5X1vffBlf7/szXWvbVq//Pcn7rfSefN2NSqMxOxqxJ3ln9fqxlc+28+39s/qfOrl+/9ft+t8fER/2WP87R7/939brv72y+k9uqv03n3jw9kdfrVV+b+3/cit1Kl/TS//X6wE+y7kDAAAAAACA3aYQEYciKZRjX54uFMrlpd93HI0DhWqt3jh9uTZ3dTJaz8oOR6nQnuk+3PF7iNH897Dt/NhT+fGIOBIRnw/tb+XLE7Xq5E5XHgAAAAAAAAAAAAAAAAAAAHaJg8vP/8cTz/9nfhna6aMDtl1x6f3fwADa8JX//XjTE7ArbRj/wHNL/MPgEv8wuMQ/DKTWFJ/4h8El/mFwiX8YXOIfAAAAAAAAAAAAAAAAAAAAAAAAAAAA+urihQvZ0lx8fHMiy09en5+brl0/M5nWp8szcxPlidrstfJUrTZVTcsTtZmN/l61Vrs2OhZzN0Yaab0xUp9fuDRTm7vauHRlpjKVXkq9ZxwAAAAAAAAAAAAAAAAAAABWq88vTFeq1XS2D4lStZoWIqKXnSP6VOgAJrJ2u1Xs7TxvTyKJlTXF3XJaJPqa2OmeCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABW/BUAAP//2SsyHQ==")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r5, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
socket$netlink(0x10, 0x3, 0x8000000004)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000012c0)='scsi_dispatch_cmd_start\x00', r6}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c40)=@newtfilter={0xd4, 0x2c, 0xd27, 0x70bd25, 0x4, {0x0, 0x0, 0x0, r4, {0x4, 0x2}, {}, {0x1, 0xf}}, [@filter_kind_options=@f_u32={{0x8}, {0xa8, 0x2, [@TCA_U32_CLASSID={0x8, 0x1, {0x10, 0x9130c9d1e97f2c2b}}, @TCA_U32_SEL={0x94, 0x5, {0x3, 0x9, 0x8, 0x2, 0x1, 0x2, 0x9, 0x5, [{0x10000, 0x1ff, 0x500, 0x9ef}, {0x3, 0x5, 0xd1e, 0x2}, {0xd, 0x9, 0xffff, 0x1}, {0xfffffff8, 0x8, 0x2b0, 0x7}, {0x7ff, 0x7, 0x80, 0x1e87}, {0x7, 0x7, 0x9, 0x8a}, {0x4, 0x1, 0x513, 0x1}, {0x97, 0x7, 0x8001, 0x5}]}}, @TCA_U32_LINK={0x8, 0x3, 0x6}]}}]}, 0xd4}}, 0x20040074)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)

112.164859ms ago: executing program 3 (id=875):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000010000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{&(0x7f0000000040)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_retopts={{0x14, 0x29, 0x7, {[@ssrr={0x89, 0x3, 0x4}]}}}], 0x18}}], 0x1, 0x4880)

0s ago: executing program 3 (id=876):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0900000008000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
write$tun(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)
semget$private(0x0, 0x3, 0x20)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xd2}}, './file0\x00'})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00'})
r5 = socket(0x1e, 0x4, 0x0)
r6 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2, 0x8}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r7 = dup3(r6, r5, 0x0)
recvmmsg(r7, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)=""/34, 0x22}], 0x1}, 0x96d}], 0x1, 0x40, 0x0)

kernel console output (not intermixed with test programs):

 EXT4-fs (loop4): 1 truncate cleaned up
[   61.341580][ T4610] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, 
[   61.344223][ T4580] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.346812][ T4610] block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters
[   61.517297][ T4610] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   61.582488][ T4622] loop0: detected capacity change from 0 to 164
[   61.674368][ T4580] syz.4.344 (4580) used greatest stack depth: 9696 bytes left
[   61.696144][ T4636] loop2: detected capacity change from 0 to 128
[   61.729451][ T4638] loop1: detected capacity change from 0 to 256
[   61.748862][ T4638] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   61.757862][ T4638] FAT-fs (loop1): Filesystem has been set read-only
[   61.895447][ T4654] loop1: detected capacity change from 0 to 256
[   61.908582][ T4654] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   61.917654][ T4654] FAT-fs (loop1): Filesystem has been set read-only
[   61.971288][ T4660] loop2: detected capacity change from 0 to 1024
[   61.991405][ T4660] EXT4-fs (loop2): shut down requested (2)
[   62.006019][ T4660] FAULT_INJECTION: forcing a failure.
[   62.006019][ T4660] name failslab, interval 1, probability 0, space 0, times 0
[   62.019495][ T4660] CPU: 0 UID: 0 PID: 4660 Comm: syz.2.382 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   62.019612][ T4660] Tainted: [W]=WARN
[   62.019619][ T4660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   62.019636][ T4660] Call Trace:
[   62.019644][ T4660]  <TASK>
[   62.019654][ T4660]  __dump_stack+0x1d/0x30
[   62.019681][ T4660]  dump_stack_lvl+0xe8/0x140
[   62.019746][ T4660]  dump_stack+0x15/0x1b
[   62.019768][ T4660]  should_fail_ex+0x265/0x280
[   62.019812][ T4660]  ? inode_doinit_use_xattr+0x3c/0x2d0
[   62.019833][ T4660]  should_failslab+0x8c/0xb0
[   62.019870][ T4660]  __kmalloc_cache_noprof+0x4c/0x4a0
[   62.019907][ T4660]  inode_doinit_use_xattr+0x3c/0x2d0
[   62.019927][ T4660]  inode_doinit_with_dentry+0x596/0x7a0
[   62.019972][ T4660]  selinux_d_instantiate+0x27/0x40
[   62.020014][ T4660]  security_d_instantiate+0x7a/0xa0
[   62.020060][ T4660]  d_splice_alias_ops+0x53/0x280
[   62.020096][ T4660]  d_splice_alias+0x1f/0x30
[   62.020184][ T4660]  ext4_lookup+0x194/0x390
[   62.020220][ T4660]  __lookup_slow+0x190/0x250
[   62.020261][ T4660]  lookup_slow+0x3c/0x60
[   62.020331][ T4660]  walk_component+0x1ec/0x220
[   62.020369][ T4660]  path_lookupat+0xfe/0x2a0
[   62.020447][ T4660]  filename_lookup+0x2d7/0x340
[   62.020497][ T4660]  user_path_at+0x3e/0x130
[   62.020538][ T4660]  vfs_open_tree+0x19c/0x530
[   62.020634][ T4660]  __x64_sys_open_tree+0x45/0xc0
[   62.020661][ T4660]  x64_sys_call+0x2a8b/0x3000
[   62.020690][ T4660]  do_syscall_64+0xd2/0x200
[   62.020721][ T4660]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   62.020795][ T4660]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   62.020821][ T4660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.020850][ T4660] RIP: 0033:0x7fe7a6e9eec9
[   62.020871][ T4660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.020890][ T4660] RSP: 002b:00007fe7a58ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac
[   62.021126][ T4660] RAX: ffffffffffffffda RBX: 00007fe7a70f5fa0 RCX: 00007fe7a6e9eec9
[   62.021144][ T4660] RDX: 0000000000009001 RSI: 0000200000000e00 RDI: ffffffffffffff9c
[   62.021159][ T4660] RBP: 00007fe7a58ff090 R08: 0000000000000000 R09: 0000000000000000
[   62.021175][ T4660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.021189][ T4660] R13: 00007fe7a70f6038 R14: 00007fe7a70f5fa0 R15: 00007ffd96557008
[   62.021216][ T4660]  </TASK>
[   62.390537][ T4689] loop3: detected capacity change from 0 to 512
[   62.420845][ T4689] EXT4-fs (loop3): 1 orphan inode deleted
[   62.482023][ T4704] loop2: detected capacity change from 0 to 512
[   62.511565][ T4712] loop1: detected capacity change from 0 to 128
[   62.518587][ T4704] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   62.526835][ T4704] EXT4-fs (loop2): orphan cleanup on readonly fs
[   62.628305][ T4704] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   62.640687][ T4704] EXT4-fs (loop2): Remounting filesystem read-only
[   62.647704][ T4704] EXT4-fs (loop2): 1 truncate cleaned up
[   62.673003][ T4166] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   62.683770][ T4166] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   62.695441][ T4166] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   62.741746][    C0] hrtimer: interrupt took 27498 ns
[   62.800027][ T4719] Failed to initialize the IGMP autojoin socket (err -2)
[   62.829379][ T4725] __nla_validate_parse: 5 callbacks suppressed
[   62.829401][ T4725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.403'.
[   62.910921][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.920022][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.929216][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.938253][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.947494][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.978811][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.987979][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   62.996794][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   63.005659][ T4728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[   63.075683][ T4738] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.099654][ T4744] vlan2: entered allmulticast mode
[   63.104941][ T4744] bridge_slave_0: entered allmulticast mode
[   63.129275][ T4745] loop0: detected capacity change from 0 to 512
[   63.135967][ T4745] EXT4-fs: Ignoring removed nobh option
[   63.145022][ T4738] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.157630][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.408: corrupted inode contents
[   63.169817][ T4745] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #3: comm syz.0.408: mark_inode_dirty error
[   63.182321][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.408: corrupted inode contents
[   63.197402][ T4745] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.408: mark_inode_dirty error
[   63.217911][ T4745] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.408: Failed to acquire dquot type 0
[   63.236456][ T4738] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.256390][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.408: corrupted inode contents
[   63.268719][ T4745] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #16: comm syz.0.408: mark_inode_dirty error
[   63.288016][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.408: corrupted inode contents
[   63.300888][ T4745] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.408: mark_inode_dirty error
[   63.313262][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.408: corrupted inode contents
[   63.325884][ T4738] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.327062][ T4754] infiniband !yz!: set active
[   63.337782][ T4745] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[   63.340706][ T4754] infiniband !yz!: added team_slave_0
[   63.356182][ T4754] !yz!: rxe_create_qp: returned err = -2
[   63.362094][ T4754] infiniband !yz!: Couldn't create ib_mad QP1
[   63.368483][ T4754] infiniband !yz!: Couldn't open port 1
[   63.380189][ T4754] RDS/IB: !yz!: added
[   63.390867][ T4745] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.408: corrupted inode contents
[   63.431259][ T4745] EXT4-fs error (device loop0): ext4_truncate:4637: inode #16: comm syz.0.408: mark_inode_dirty error
[   63.452768][ T4745] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[   63.473489][ T4745] EXT4-fs (loop0): 1 truncate cleaned up
[   63.483574][ T4745] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.490406][ T4166] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.506105][ T4760] loop2: detected capacity change from 0 to 2048
[   63.523991][ T4166] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.541431][ T4760] EXT4-fs (loop2): bad block size 8192
[   63.551859][ T4762] loop3: detected capacity change from 0 to 512
[   63.558699][ T4166] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.566935][ T4166] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.604696][ T4745] syz.0.408 (4745) used greatest stack depth: 9680 bytes left
[   63.613760][ T4762] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   63.622382][ T4762] EXT4-fs (loop3): orphan cleanup on readonly fs
[   63.633257][ T4762] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   63.645390][ T4762] EXT4-fs (loop3): Remounting filesystem read-only
[   63.653069][ T4762] EXT4-fs (loop3): 1 truncate cleaned up
[   63.669460][   T42] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   63.671902][ T1682] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.680468][   T42] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   63.707899][   T42] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   63.728178][ T1682] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.739067][ T4771] loop0: detected capacity change from 0 to 128
[   63.747243][ T1682] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.756945][ T1682] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.842746][ T4771] bio_check_eod: 468 callbacks suppressed
[   63.842768][ T4771] syz.0.417: attempt to access beyond end of device
[   63.842768][ T4771] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   63.887464][ T4771] syz.0.417: attempt to access beyond end of device
[   63.887464][ T4771] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   63.893204][ T4776] loop1: detected capacity change from 0 to 1024
[   63.920633][ T4771] syz.0.417: attempt to access beyond end of device
[   63.920633][ T4771] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   63.927138][ T4776] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   63.945668][ T4776] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   63.975913][ T4771] syz.0.417: attempt to access beyond end of device
[   63.975913][ T4771] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   63.998309][ T4776] JBD2: no valid journal superblock found
[   64.004181][ T4776] EXT4-fs (loop1): Could not load journal inode
[   64.013920][ T4771] syz.0.417: attempt to access beyond end of device
[   64.013920][ T4771] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   64.085817][ T4780] 0ªî{X¹¦: renamed from gretap0 (while UP)
[   64.094306][ T4780] 0ªî{X¹¦: entered allmulticast mode
[   64.100738][ T4780] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[   64.118614][ T4771] syz.0.417: attempt to access beyond end of device
[   64.118614][ T4771] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   64.133099][ T4771] syz.0.417: attempt to access beyond end of device
[   64.133099][ T4771] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   64.157698][ T4771] syz.0.417: attempt to access beyond end of device
[   64.157698][ T4771] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   64.171689][ T4771] syz.0.417: attempt to access beyond end of device
[   64.171689][ T4771] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   64.186758][ T4771] syz.0.417: attempt to access beyond end of device
[   64.186758][ T4771] loop0: rw=2049, sector=297, nr_sectors = 9 limit=128
[   64.261777][ T4790] loop1: detected capacity change from 0 to 512
[   64.269473][ T4793] loop2: detected capacity change from 0 to 128
[   64.291289][ T4790] EXT4-fs (loop1): 1 orphan inode deleted
[   64.298656][ T4788] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   64.325988][ T4788] 9pnet_fd: Insufficient options for proto=fd
[   64.361312][ T4796] loop0: detected capacity change from 0 to 512
[   64.369304][ T4804] loop1: detected capacity change from 0 to 128
[   64.389794][ T4800] SELinux: failed to load policy
[   64.423603][ T4796] ext4: Unknown parameter 'permit_directio'
[   64.453051][ T4833] loop4: detected capacity change from 0 to 128
[   64.499638][ T4806] Failed to initialize the IGMP autojoin socket (err -2)
[   64.533541][ T4857] loop2: detected capacity change from 0 to 512
[   64.553071][ T4857] EXT4-fs (loop2): 1 orphan inode deleted
[   64.651662][ T4873] loop2: detected capacity change from 0 to 128
[   64.661308][ T4875] erspan1: entered allmulticast mode
[   64.692421][ T4878] netlink: 'syz.4.449': attribute type 21 has an invalid length.
[   64.765076][ T4891] FAULT_INJECTION: forcing a failure.
[   64.765076][ T4891] name failslab, interval 1, probability 0, space 0, times 0
[   64.778214][ T4891] CPU: 0 UID: 0 PID: 4891 Comm: syz.4.454 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   64.778269][ T4891] Tainted: [W]=WARN
[   64.778278][ T4891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   64.778293][ T4891] Call Trace:
[   64.778298][ T4891]  <TASK>
[   64.778306][ T4891]  __dump_stack+0x1d/0x30
[   64.778377][ T4891]  dump_stack_lvl+0xe8/0x140
[   64.778403][ T4891]  dump_stack+0x15/0x1b
[   64.778425][ T4891]  should_fail_ex+0x265/0x280
[   64.778468][ T4891]  ? tcf_action_init_1+0x11e/0x4a0
[   64.778532][ T4891]  should_failslab+0x8c/0xb0
[   64.778608][ T4891]  __kmalloc_cache_noprof+0x4c/0x4a0
[   64.778643][ T4891]  tcf_action_init_1+0x11e/0x4a0
[   64.778681][ T4891]  tcf_action_init+0x267/0x6d0
[   64.778821][ T4891]  tc_ctl_action+0x291/0x830
[   64.778880][ T4891]  ? __pfx_tc_ctl_action+0x10/0x10
[   64.778907][ T4891]  rtnetlink_rcv_msg+0x65a/0x6d0
[   64.779030][ T4891]  netlink_rcv_skb+0x123/0x220
[   64.779068][ T4891]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   64.779119][ T4891]  rtnetlink_rcv+0x1c/0x30
[   64.779152][ T4891]  netlink_unicast+0x5c0/0x690
[   64.779272][ T4891]  netlink_sendmsg+0x58b/0x6b0
[   64.779315][ T4891]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.779353][ T4891]  __sock_sendmsg+0x142/0x180
[   64.779380][ T4891]  ____sys_sendmsg+0x31e/0x4e0
[   64.779488][ T4891]  ___sys_sendmsg+0x17b/0x1d0
[   64.779550][ T4891]  __x64_sys_sendmsg+0xd4/0x160
[   64.779597][ T4891]  x64_sys_call+0x191e/0x3000
[   64.779684][ T4891]  do_syscall_64+0xd2/0x200
[   64.779707][ T4891]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   64.779737][ T4891]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   64.779760][ T4891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.779781][ T4891] RIP: 0033:0x7f0f9276eec9
[   64.779843][ T4891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.779867][ T4891] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.779930][ T4891] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   64.779942][ T4891] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000006
[   64.779955][ T4891] RBP: 00007f0f911cf090 R08: 0000000000000000 R09: 0000000000000000
[   64.779971][ T4891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.779987][ T4891] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   64.780024][ T4891]  </TASK>
[   65.115785][ T4897] tipc: Can't bind to reserved service type 2
[   65.148597][ T4900] FAULT_INJECTION: forcing a failure.
[   65.148597][ T4900] name failslab, interval 1, probability 0, space 0, times 0
[   65.161326][ T4900] CPU: 1 UID: 0 PID: 4900 Comm: syz.1.457 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   65.161366][ T4900] Tainted: [W]=WARN
[   65.161375][ T4900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   65.161416][ T4900] Call Trace:
[   65.161423][ T4900]  <TASK>
[   65.161511][ T4900]  __dump_stack+0x1d/0x30
[   65.161538][ T4900]  dump_stack_lvl+0xe8/0x140
[   65.161564][ T4900]  dump_stack+0x15/0x1b
[   65.161586][ T4900]  should_fail_ex+0x265/0x280
[   65.161682][ T4900]  should_failslab+0x8c/0xb0
[   65.161710][ T4900]  kmem_cache_alloc_noprof+0x50/0x480
[   65.161736][ T4900]  ? security_file_alloc+0x32/0x100
[   65.161763][ T4900]  security_file_alloc+0x32/0x100
[   65.161820][ T4900]  init_file+0x5c/0x1d0
[   65.161939][ T4900]  alloc_empty_file+0x8b/0x200
[   65.161978][ T4900]  alloc_file_pseudo+0xc6/0x160
[   65.162024][ T4900]  __shmem_file_setup+0x1de/0x210
[   65.162066][ T4900]  shmem_file_setup+0x3b/0x50
[   65.162185][ T4900]  __se_sys_memfd_create+0x2c3/0x590
[   65.162218][ T4900]  __x64_sys_memfd_create+0x31/0x40
[   65.162241][ T4900]  x64_sys_call+0x2ac2/0x3000
[   65.162263][ T4900]  do_syscall_64+0xd2/0x200
[   65.162288][ T4900]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   65.162406][ T4900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.162435][ T4900] RIP: 0033:0x7f7dc69eeec9
[   65.162451][ T4900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.162469][ T4900] RSP: 002b:00007f7dc544ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   65.162489][ T4900] RAX: ffffffffffffffda RBX: 0000000000000775 RCX: 00007f7dc69eeec9
[   65.162558][ T4900] RDX: 00007f7dc544eef0 RSI: 0000000000000000 RDI: 00007f7dc6a72960
[   65.162575][ T4900] RBP: 0000200000001180 R08: 00007f7dc544ebb7 R09: 00007f7dc544ee40
[   65.162591][ T4900] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000007c0
[   65.162606][ T4900] R13: 00007f7dc544eef0 R14: 00007f7dc544eeb0 R15: 0000200000000340
[   65.162628][ T4900]  </TASK>
[   65.449433][ T4915] loop2: detected capacity change from 0 to 256
[   65.491801][ T4915] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   65.500740][ T4915] FAT-fs (loop2): Filesystem has been set read-only
[   65.550883][ T4922] loop4: detected capacity change from 0 to 128
[   65.653280][ T4938] program syz.1.471 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.791461][   T29] kauditd_printk_skb: 494 callbacks suppressed
[   65.791477][   T29] audit: type=1400 audit(1760010708.337:4143): avc:  denied  { mount } for  pid=4951 comm="syz.4.478" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   65.874909][ T4957] program syz.1.480 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.884267][   T29] audit: type=1400 audit(1760010708.387:4144): avc:  denied  { unmount } for  pid=4951 comm="syz.4.478" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   65.906653][ T4959] veth0: entered promiscuous mode
[   65.930702][   T29] audit: type=1400 audit(1760010708.457:4145): avc:  denied  { setopt } for  pid=4958 comm="syz.4.481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   65.950253][ T4963] loop1: detected capacity change from 0 to 512
[   65.981028][ T4965] loop2: detected capacity change from 0 to 512
[   65.990993][ T4963] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.003673][ T4965] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   66.013420][ T4965] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.022381][ T4965] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   66.035201][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.048832][ T4965] EXT4-fs (loop2): Remounting filesystem read-only
[   66.056098][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.070170][ T4965] EXT4-fs (loop2): 1 truncate cleaned up
[   66.075957][ T4824] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.086676][ T4824] Quota error (device loop2): write_blk: dquota write failed
[   66.094299][ T4824] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries
[   66.104768][ T4824] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.115431][ T4824] Quota error (device loop2): write_blk: dquota write failed
[   66.122881][ T4824] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list
[   66.133234][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.134190][ T4824] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   66.146208][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.155862][ T4824] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   66.156355][ T4824] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   66.170619][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.202659][ T4963] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.483: iget: bad i_size value: 2533274857506816
[   66.378774][   T29] audit: type=1326 audit(1760010708.917:4146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4977 comm="syz.1.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dc69eeec9 code=0x7ffc0000
[   66.423802][ T4982] loop2: detected capacity change from 0 to 512
[   66.435053][ T4982] EXT4-fs (loop2): 1 orphan inode deleted
[   66.473280][ T4992] loop2: detected capacity change from 0 to 512
[   66.481136][ T4992] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   66.517999][ T4994] can0: slcan on ttyS3.
[   66.544774][ T4996] loop2: detected capacity change from 0 to 128
[   66.549930][ T4998] loop3: detected capacity change from 0 to 512
[   66.569686][ T4998] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   66.578595][ T4998] EXT4-fs (loop3): orphan cleanup on readonly fs
[   66.597501][ T4993] can0 (unregistered): slcan off ttyS3.
[   66.604730][ T4998] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   66.617170][ T4998] EXT4-fs (loop3): Remounting filesystem read-only
[   66.626238][ T4998] EXT4-fs (loop3): 1 truncate cleaned up
[   66.632882][ T4850] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.644867][ T4850] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   66.656156][ T4850] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   66.720736][ T5004] FAULT_INJECTION: forcing a failure.
[   66.720736][ T5004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.734195][ T5004] CPU: 0 UID: 0 PID: 5004 Comm: syz.2.498 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   66.734234][ T5004] Tainted: [W]=WARN
[   66.734295][ T5004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   66.734308][ T5004] Call Trace:
[   66.734315][ T5004]  <TASK>
[   66.734324][ T5004]  __dump_stack+0x1d/0x30
[   66.734345][ T5004]  dump_stack_lvl+0xe8/0x140
[   66.734369][ T5004]  dump_stack+0x15/0x1b
[   66.734447][ T5004]  should_fail_ex+0x265/0x280
[   66.734518][ T5004]  should_fail+0xb/0x20
[   66.734553][ T5004]  should_fail_usercopy+0x1a/0x20
[   66.734596][ T5004]  _copy_from_user+0x1c/0xb0
[   66.734621][ T5004]  __sys_bpf+0x183/0x7c0
[   66.734813][ T5004]  __x64_sys_bpf+0x41/0x50
[   66.734870][ T5004]  x64_sys_call+0x2aee/0x3000
[   66.734891][ T5004]  do_syscall_64+0xd2/0x200
[   66.734917][ T5004]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   66.734947][ T5004]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   66.735047][ T5004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.735084][ T5004] RIP: 0033:0x7fe7a6e9eec9
[   66.735101][ T5004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.735130][ T5004] RSP: 002b:00007fe7a58ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   66.735163][ T5004] RAX: ffffffffffffffda RBX: 00007fe7a70f5fa0 RCX: 00007fe7a6e9eec9
[   66.735175][ T5004] RDX: 0000000000000050 RSI: 0000200000000100 RDI: 0000000000000000
[   66.735187][ T5004] RBP: 00007fe7a58ff090 R08: 0000000000000000 R09: 0000000000000000
[   66.735200][ T5004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.735217][ T5004] R13: 00007fe7a70f6038 R14: 00007fe7a70f5fa0 R15: 00007ffd96557008
[   66.735309][ T5004]  </TASK>
[   66.952641][ T5010] loop0: detected capacity change from 0 to 512
[   66.998239][ T5010] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   67.014449][ T5010] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.098761][ T5010] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   67.137829][ T5010] EXT4-fs (loop0): Remounting filesystem read-only
[   67.169746][ T5010] EXT4-fs (loop0): 1 truncate cleaned up
[   67.175596][ T4850] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.187002][ T4850] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   67.206027][ T4850] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[   67.215836][ T5023] FAULT_INJECTION: forcing a failure.
[   67.215836][ T5023] name failslab, interval 1, probability 0, space 0, times 0
[   67.229290][ T5023] CPU: 1 UID: 0 PID: 5023 Comm: syz.1.506 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   67.229388][ T5023] Tainted: [W]=WARN
[   67.229397][ T5023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   67.229414][ T5023] Call Trace:
[   67.229422][ T5023]  <TASK>
[   67.229431][ T5023]  __dump_stack+0x1d/0x30
[   67.229455][ T5023]  dump_stack_lvl+0xe8/0x140
[   67.229480][ T5023]  dump_stack+0x15/0x1b
[   67.229502][ T5023]  should_fail_ex+0x265/0x280
[   67.229593][ T5023]  ? resv_map_alloc+0x32/0x190
[   67.229628][ T5023]  should_failslab+0x8c/0xb0
[   67.229654][ T5023]  __kmalloc_cache_noprof+0x4c/0x4a0
[   67.229682][ T5023]  ? vfs_write+0x7e8/0x960
[   67.229783][ T5023]  resv_map_alloc+0x32/0x190
[   67.229815][ T5023]  hugetlbfs_get_inode+0x67/0x370
[   67.229883][ T5023]  hugetlb_file_setup+0x192/0x3d0
[   67.229989][ T5023]  ksys_mmap_pgoff+0x157/0x310
[   67.230034][ T5023]  x64_sys_call+0x14a3/0x3000
[   67.230056][ T5023]  do_syscall_64+0xd2/0x200
[   67.230079][ T5023]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   67.230179][ T5023]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   67.230202][ T5023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.230347][ T5023] RIP: 0033:0x7f7dc69eeec9
[   67.230362][ T5023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.230380][ T5023] RSP: 002b:00007f7dc544f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   67.230403][ T5023] RAX: ffffffffffffffda RBX: 00007f7dc6c45fa0 RCX: 00007f7dc69eeec9
[   67.230425][ T5023] RDX: 0000000000000002 RSI: 0000000000ff5000 RDI: 0000200000000000
[   67.230441][ T5023] RBP: 00007f7dc544f090 R08: ffffffffffffffff R09: 0000000000000000
[   67.230453][ T5023] R10: 000000000004c831 R11: 0000000000000246 R12: 0000000000000001
[   67.230465][ T5023] R13: 00007f7dc6c46038 R14: 00007f7dc6c45fa0 R15: 00007ffc36b6ef48
[   67.230545][ T5023]  </TASK>
[   67.612945][ T5036] loop1: detected capacity change from 0 to 512
[   67.638178][ T5036] EXT4-fs: Ignoring removed oldalloc option
[   67.648418][ T5036] EXT4-fs (loop1): 1 truncate cleaned up
[   67.662285][ T5038] loop0: detected capacity change from 0 to 256
[   67.674460][ T5033] loop3: detected capacity change from 0 to 512
[   67.691274][ T5038] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   67.700131][ T5038] FAT-fs (loop0): Filesystem has been set read-only
[   67.714773][ T5033] EXT4-fs (loop3): 1 orphan inode deleted
[   67.767622][ T5047] program syz.3.513 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   67.840049][ T5053] loop1: detected capacity change from 0 to 512
[   67.849881][ T5053] EXT4-fs (loop1): 1 orphan inode deleted
[   67.865089][ T5057] Failed to initialize the IGMP autojoin socket (err -2)
[   67.900306][ T5051] loop3: detected capacity change from 0 to 8192
[   67.938098][ T5051]  loop3: p1 p2 p3 p4[EZD]
[   67.950222][ T5060] loop1: detected capacity change from 0 to 128
[   67.951295][ T5051] loop3: p1 size 16128 extends beyond EOD, truncated
[   67.984012][ T5051] loop3: p3 start 458783 is beyond EOD, truncated
[   67.990689][ T5051] loop3: p4 size 65536 extends beyond EOD, truncated
[   68.022257][ T5062] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.045538][ T5062] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.096581][ T5070] loop3: detected capacity change from 0 to 128
[   68.143634][ T5072] FAULT_INJECTION: forcing a failure.
[   68.143634][ T5072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.157117][ T5072] CPU: 0 UID: 0 PID: 5072 Comm: syz.3.524 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   68.157205][ T5072] Tainted: [W]=WARN
[   68.157214][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   68.157229][ T5072] Call Trace:
[   68.157236][ T5072]  <TASK>
[   68.157245][ T5072]  __dump_stack+0x1d/0x30
[   68.157277][ T5072]  dump_stack_lvl+0xe8/0x140
[   68.157302][ T5072]  dump_stack+0x15/0x1b
[   68.157327][ T5072]  should_fail_ex+0x265/0x280
[   68.157430][ T5072]  should_fail+0xb/0x20
[   68.157467][ T5072]  should_fail_usercopy+0x1a/0x20
[   68.157510][ T5074] loop0: detected capacity change from 0 to 2048
[   68.157533][ T5072]  _copy_from_iter+0xd2/0xe80
[   68.157560][ T5072]  ? mntput_no_expire+0x6f/0x440
[   68.157605][ T5072]  ? mntput+0x4b/0x80
[   68.157721][ T5072]  tun_get_user+0x14d/0x26e0
[   68.157760][ T5072]  ? path_openat+0x1bf8/0x2170
[   68.157788][ T5072]  ? _parse_integer_limit+0x170/0x190
[   68.157897][ T5072]  ? ref_tracker_alloc+0x1f2/0x2f0
[   68.157948][ T5072]  ? selinux_file_permission+0x1e4/0x320
[   68.158000][ T5072]  tun_chr_write_iter+0x15e/0x210
[   68.158196][ T5072]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   68.158240][ T5072]  vfs_write+0x52a/0x960
[   68.158281][ T5072]  ksys_write+0xda/0x1a0
[   68.158316][ T5072]  __x64_sys_write+0x40/0x50
[   68.158384][ T5072]  x64_sys_call+0x2802/0x3000
[   68.158414][ T5072]  do_syscall_64+0xd2/0x200
[   68.158447][ T5072]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   68.158486][ T5072]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   68.158515][ T5072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.158622][ T5072] RIP: 0033:0x7f04a5a3eec9
[   68.158651][ T5072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.158677][ T5072] RSP: 002b:00007f04a44a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   68.158705][ T5072] RAX: ffffffffffffffda RBX: 00007f04a5c95fa0 RCX: 00007f04a5a3eec9
[   68.158723][ T5072] RDX: 00000000000000dc RSI: 00002000000003c0 RDI: 0000000000000006
[   68.158841][ T5072] RBP: 00007f04a44a7090 R08: 0000000000000000 R09: 0000000000000000
[   68.158859][ T5072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.158876][ T5072] R13: 00007f04a5c96038 R14: 00007f04a5c95fa0 R15: 00007ffce76a0288
[   68.158903][ T5072]  </TASK>
[   68.394751][ T5074] msdos: Bad value for 'time_offset'
[   68.417538][ T5076] loop2: detected capacity change from 0 to 128
[   68.456825][ T5078] loop2: detected capacity change from 0 to 128
[   68.501573][ T5084] loop2: detected capacity change from 0 to 128
[   68.513597][ T5082] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[   68.513597][ T5082]    program syz.3.528 not setting count and/or reply_len properly
[   68.534432][ T5082] loop3: detected capacity change from 0 to 512
[   68.541742][ T5082] EXT4-fs: Ignoring removed orlov option
[   68.548080][ T5082] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   68.560430][ T5082] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.528: bad orphan inode 131083
[   68.605525][ T5093] netlink: 'GPL': attribute type 12 has an invalid length.
[   68.658914][ T5099] netlink: 'syz.3.535': attribute type 1 has an invalid length.
[   68.678411][ T5100] loop2: detected capacity change from 0 to 128
[   68.832924][ T5104] __nla_validate_parse: 17 callbacks suppressed
[   68.832944][ T5104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.537'.
[   68.892298][ T5110] loop2: detected capacity change from 0 to 256
[   68.903724][ T5110] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   68.912680][ T5110] FAT-fs (loop2): Filesystem has been set read-only
[   69.042098][ T5127] loop2: detected capacity change from 0 to 512
[   69.068554][ T5127] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   69.076823][ T5127] EXT4-fs (loop2): orphan cleanup on readonly fs
[   69.085005][ T5127] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   69.099248][ T5127] EXT4-fs (loop2): Remounting filesystem read-only
[   69.106473][ T5127] EXT4-fs (loop2): 1 truncate cleaned up
[   69.112549][ T4851] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   69.123121][ T4851] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   69.147727][ T4851] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   69.231908][ T5136] loop4: detected capacity change from 0 to 128
[   69.265614][ T5136] syz.4.547: attempt to access beyond end of device
[   69.265614][ T5136] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[   69.287902][ T5138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.549'.
[   69.297135][ T5138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.549'.
[   69.318105][ T5136] syz.4.547: attempt to access beyond end of device
[   69.318105][ T5136] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[   69.335045][ T5136] syz.4.547: attempt to access beyond end of device
[   69.335045][ T5136] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[   69.357316][ T5136] syz.4.547: attempt to access beyond end of device
[   69.357316][ T5136] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[   69.375988][ T5136] syz.4.547: attempt to access beyond end of device
[   69.375988][ T5136] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[   69.389792][ T5136] syz.4.547: attempt to access beyond end of device
[   69.389792][ T5136] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[   69.404118][ T5136] syz.4.547: attempt to access beyond end of device
[   69.404118][ T5136] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[   69.420326][ T5136] syz.4.547: attempt to access beyond end of device
[   69.420326][ T5136] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[   69.434359][ T5136] syz.4.547: attempt to access beyond end of device
[   69.434359][ T5136] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[   69.448207][ T5136] syz.4.547: attempt to access beyond end of device
[   69.448207][ T5136] loop4: rw=2049, sector=297, nr_sectors = 9 limit=128
[   69.567133][ T5151] FAULT_INJECTION: forcing a failure.
[   69.567133][ T5151] name failslab, interval 1, probability 0, space 0, times 0
[   69.580185][ T5151] CPU: 0 UID: 0 PID: 5151 Comm: syz.1.555 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.580265][ T5151] Tainted: [W]=WARN
[   69.580274][ T5151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   69.580288][ T5151] Call Trace:
[   69.580296][ T5151]  <TASK>
[   69.580305][ T5151]  __dump_stack+0x1d/0x30
[   69.580331][ T5151]  dump_stack_lvl+0xe8/0x140
[   69.580352][ T5151]  dump_stack+0x15/0x1b
[   69.580368][ T5151]  should_fail_ex+0x265/0x280
[   69.580459][ T5151]  ? audit_log_d_path+0x8d/0x150
[   69.580482][ T5151]  should_failslab+0x8c/0xb0
[   69.580517][ T5151]  __kmalloc_cache_noprof+0x4c/0x4a0
[   69.580613][ T5151]  audit_log_d_path+0x8d/0x150
[   69.580640][ T5151]  audit_log_d_path_exe+0x42/0x70
[   69.580717][ T5151]  audit_log_task+0x1e9/0x250
[   69.580754][ T5151]  ? kstrtouint+0x76/0xc0
[   69.580856][ T5151]  audit_seccomp+0x61/0x100
[   69.580968][ T5151]  ? __seccomp_filter+0x82d/0x1250
[   69.580997][ T5151]  __seccomp_filter+0x83e/0x1250
[   69.581032][ T5151]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   69.581063][ T5151]  ? vfs_write+0x7e8/0x960
[   69.581102][ T5151]  ? __rcu_read_unlock+0x4f/0x70
[   69.581133][ T5151]  ? __fget_files+0x184/0x1c0
[   69.581174][ T5151]  __secure_computing+0x82/0x150
[   69.581205][ T5151]  syscall_trace_enter+0xcf/0x1e0
[   69.581238][ T5151]  do_syscall_64+0xac/0x200
[   69.581327][ T5151]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   69.581361][ T5151]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   69.581389][ T5151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.581415][ T5151] RIP: 0033:0x7f7dc69eeec9
[   69.581470][ T5151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.581494][ T5151] RSP: 002b:00007f7dc544f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8
[   69.581607][ T5151] RAX: ffffffffffffffda RBX: 00007f7dc6c45fa0 RCX: 00007f7dc69eeec9
[   69.581624][ T5151] RDX: 0000000000000000 RSI: 0000000000000012 RDI: 000000000000013c
[   69.581639][ T5151] RBP: 00007f7dc544f090 R08: 0000000000000000 R09: 0000000000000000
[   69.581654][ T5151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.581669][ T5151] R13: 00007f7dc6c46038 R14: 00007f7dc6c45fa0 R15: 00007ffc36b6ef48
[   69.581693][ T5151]  </TASK>
[   69.834814][ T5150] netlink: 108 bytes leftover after parsing attributes in process `syz.2.554'.
[   69.855932][ T5157] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[   69.909424][ T5167] loop2: detected capacity change from 0 to 128
[   69.934769][ T5165] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[   69.934769][ T5165]    program syz.4.560 not setting count and/or reply_len properly
[   69.974972][ T5171] loop1: detected capacity change from 0 to 128
[   70.016132][ T5176] loop4: detected capacity change from 0 to 512
[   70.029743][ T5176] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   70.042797][ T5176] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.564: invalid indirect mapped block 2683928664 (level 1)
[   70.073553][ T5176] EXT4-fs (loop4): 1 truncate cleaned up
[   70.156457][ T5184] random: crng reseeded on system resumption
[   70.192539][ T5188] netlink: 108 bytes leftover after parsing attributes in process `syz.1.569'.
[   70.211291][ T5192] loop4: detected capacity change from 0 to 512
[   70.218541][ T5192] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   70.228359][ T5192] EXT4-fs (loop4): invalid journal inode
[   70.234367][ T5192] EXT4-fs (loop4): can't get journal size
[   70.253773][ T5192] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c198, mo2=0002]
[   70.262035][ T5195] loop1: detected capacity change from 0 to 128
[   70.267553][ T5192] System zones: 1-12, 13-13
[   70.278152][ T5192] EXT4-fs (loop4): 1 truncate cleaned up
[   70.564904][ T5205] loop1: detected capacity change from 0 to 512
[   70.590457][ T5205] EXT4-fs (loop1): 1 orphan inode deleted
[   70.640737][ T5222] netlink: 'syz.4.577': attribute type 39 has an invalid length.
[   70.651130][ T5223] netlink: 108 bytes leftover after parsing attributes in process `syz.1.581'.
[   70.661260][ T5225] loop3: detected capacity change from 0 to 128
[   70.846870][ T5243] loop4: detected capacity change from 0 to 1024
[   70.863465][ T5243] EXT4-fs (loop4): filesystem is read-only
[   70.872982][ T5243] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   70.883092][ T5243] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   70.893687][ T5243] EXT4-fs error (device loop4): ext4_get_journal_inode:5808: comm syz.4.589: inode #1: comm syz.4.589: iget: illegal inode #
[   70.908074][ T5243] EXT4-fs (loop4): no journal found
[   70.913333][ T5243] EXT4-fs (loop4): can't get journal size
[   70.920486][ T5243] EXT4-fs (loop4): failed to initialize system zone (-22)
[   70.927946][ T5243] EXT4-fs (loop4): mount failed
[   70.955310][   T29] kauditd_printk_skb: 657 callbacks suppressed
[   70.955328][   T29] audit: type=1400 audit(1760010713.497:4784): avc:  denied  { create } for  pid=5246 comm="syz.2.590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   71.008017][   T29] audit: type=1400 audit(1760010713.537:4785): avc:  denied  { execmem } for  pid=5246 comm="syz.2.590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   71.034179][   T29] audit: type=1400 audit(1760010713.577:4786): avc:  denied  { execute } for  pid=5251 comm="syz.2.593" name="file1" dev="tmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   71.056883][   T29] audit: type=1400 audit(1760010713.577:4787): avc:  denied  { execute_no_trans } for  pid=5251 comm="syz.2.593" path="/130/file1" dev="tmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   71.098092][   T29] audit: type=1400 audit(1760010713.577:4788): avc:  denied  { ioctl } for  pid=5251 comm="syz.2.593" path="socket:[10742]" dev="sockfs" ino=10742 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   71.124371][   T29] audit: type=1400 audit(1760010713.597:4789): avc:  denied  { read append } for  pid=5256 comm="syz.4.594" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   71.148846][   T29] audit: type=1400 audit(1760010713.597:4790): avc:  denied  { open } for  pid=5256 comm="syz.4.594" path="/dev/ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   71.173052][   T29] audit: type=1400 audit(1760010713.607:4791): avc:  denied  { unmount } for  pid=3312 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   71.193880][   T29] audit: type=1400 audit(1760010713.627:4792): avc:  denied  { read } for  pid=5251 comm="syz.2.593" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   71.267525][   T29] audit: type=1326 audit(1760010713.807:4793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5264 comm="syz.4.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f9276eec9 code=0x7ffc0000
[   71.302699][ T5265] netlink: 108 bytes leftover after parsing attributes in process `syz.4.596'.
[   71.324039][ T5270] 9pnet_fd: Insufficient options for proto=fd
[   71.837514][ T5305] 9pnet_fd: Insufficient options for proto=fd
[   71.957586][ T5308] netlink: 108 bytes leftover after parsing attributes in process `syz.1.611'.
[   72.211684][ T5323] loop1: detected capacity change from 0 to 128
[   72.248734][ T5325] loop3: detected capacity change from 0 to 512
[   72.258952][ T5325] EXT4-fs (loop3): 1 orphan inode deleted
[   72.265401][ T5325] EXT4-fs mount: 56 callbacks suppressed
[   72.265417][ T5325] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.352053][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.379284][ T5332] loop2: detected capacity change from 0 to 512
[   72.414372][ T5334] loop3: detected capacity change from 0 to 512
[   72.424005][ T5338] 9pnet_fd: Insufficient options for proto=fd
[   72.441379][ T5334] EXT4-fs (loop3): 1 orphan inode deleted
[   72.448323][ T5334] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.473582][ T5332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.487055][ T5332] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.487417][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.509355][ T5345] netlink: 108 bytes leftover after parsing attributes in process `syz.0.623'.
[   72.531721][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.577858][ T5350] loop3: detected capacity change from 0 to 256
[   72.599019][ T5350] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   72.608015][ T5350] FAT-fs (loop3): Filesystem has been set read-only
[   72.631277][ T5356] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.625'.
[   72.758807][ T5374] 9pnet_fd: Insufficient options for proto=fd
[   72.828627][ T5382] FAULT_INJECTION: forcing a failure.
[   72.828627][ T5382] name failslab, interval 1, probability 0, space 0, times 0
[   72.841849][ T5382] CPU: 0 UID: 0 PID: 5382 Comm: syz.1.637 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   72.841892][ T5382] Tainted: [W]=WARN
[   72.841901][ T5382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   72.841926][ T5382] Call Trace:
[   72.841933][ T5382]  <TASK>
[   72.841943][ T5382]  __dump_stack+0x1d/0x30
[   72.841970][ T5382]  dump_stack_lvl+0xe8/0x140
[   72.841991][ T5382]  dump_stack+0x15/0x1b
[   72.842007][ T5382]  should_fail_ex+0x265/0x280
[   72.842098][ T5382]  should_failslab+0x8c/0xb0
[   72.842203][ T5382]  kmem_cache_alloc_noprof+0x50/0x480
[   72.842237][ T5382]  ? audit_log_start+0x342/0x720
[   72.842375][ T5382]  audit_log_start+0x342/0x720
[   72.842397][ T5382]  audit_seccomp+0x48/0x100
[   72.842493][ T5382]  ? __seccomp_filter+0x82d/0x1250
[   72.842528][ T5382]  __seccomp_filter+0x83e/0x1250
[   72.842627][ T5382]  ? __list_add_valid_or_report+0x38/0xe0
[   72.842733][ T5382]  ? _raw_spin_unlock+0x26/0x50
[   72.842767][ T5382]  __secure_computing+0x82/0x150
[   72.842872][ T5382]  syscall_trace_enter+0xcf/0x1e0
[   72.842908][ T5382]  do_syscall_64+0xac/0x200
[   72.842938][ T5382]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   72.842973][ T5382]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   72.843067][ T5382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.843116][ T5382] RIP: 0033:0x7f7dc69ed8dc
[   72.843132][ T5382] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   72.843149][ T5382] RSP: 002b:00007f7dc544f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.843245][ T5382] RAX: ffffffffffffffda RBX: 00007f7dc6c45fa0 RCX: 00007f7dc69ed8dc
[   72.843259][ T5382] RDX: 000000000000000f RSI: 00007f7dc544f0a0 RDI: 0000000000000006
[   72.843274][ T5382] RBP: 00007f7dc544f090 R08: 0000000000000000 R09: 0000000000000000
[   72.843295][ T5382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.843311][ T5382] R13: 00007f7dc6c46038 R14: 00007f7dc6c45fa0 R15: 00007ffc36b6ef48
[   72.843336][ T5382]  </TASK>
[   73.153566][ T5380] random: crng reseeded on system resumption
[   73.200375][ T5396] loop3: detected capacity change from 0 to 128
[   73.370521][ T5412] FAULT_INJECTION: forcing a failure.
[   73.370521][ T5412] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.383761][ T5412] CPU: 1 UID: 0 PID: 5412 Comm: syz.1.647 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   73.383842][ T5412] Tainted: [W]=WARN
[   73.383849][ T5412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   73.383864][ T5412] Call Trace:
[   73.383872][ T5412]  <TASK>
[   73.383882][ T5412]  __dump_stack+0x1d/0x30
[   73.383908][ T5412]  dump_stack_lvl+0xe8/0x140
[   73.383931][ T5412]  dump_stack+0x15/0x1b
[   73.384013][ T5412]  should_fail_ex+0x265/0x280
[   73.384101][ T5412]  should_fail+0xb/0x20
[   73.384134][ T5412]  should_fail_usercopy+0x1a/0x20
[   73.384155][ T5412]  _copy_to_user+0x20/0xa0
[   73.384182][ T5412]  simple_read_from_buffer+0xb5/0x130
[   73.384264][ T5412]  proc_fail_nth_read+0x10e/0x150
[   73.384295][ T5412]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   73.384388][ T5412]  vfs_read+0x1a8/0x770
[   73.384410][ T5412]  ? __rcu_read_unlock+0x4f/0x70
[   73.384436][ T5412]  ? __fget_files+0x184/0x1c0
[   73.384465][ T5412]  ksys_read+0xda/0x1a0
[   73.384500][ T5412]  __x64_sys_read+0x40/0x50
[   73.384578][ T5412]  x64_sys_call+0x27c0/0x3000
[   73.384661][ T5412]  do_syscall_64+0xd2/0x200
[   73.384738][ T5412]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   73.384766][ T5412]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   73.384839][ T5412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.384862][ T5412] RIP: 0033:0x7f7dc69ed8dc
[   73.384999][ T5412] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   73.385017][ T5412] RSP: 002b:00007f7dc544f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   73.385037][ T5412] RAX: ffffffffffffffda RBX: 00007f7dc6c45fa0 RCX: 00007f7dc69ed8dc
[   73.385050][ T5412] RDX: 000000000000000f RSI: 00007f7dc544f0a0 RDI: 0000000000000007
[   73.385062][ T5412] RBP: 00007f7dc544f090 R08: 0000000000000000 R09: 0000000000000000
[   73.385075][ T5412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.385092][ T5412] R13: 00007f7dc6c46038 R14: 00007f7dc6c45fa0 R15: 00007ffc36b6ef48
[   73.385113][ T5412]  </TASK>
[   73.688108][ T5424] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   73.697298][ T5426] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   73.731825][ T5424] Failed to initialize the IGMP autojoin socket (err -2)
[   73.846515][ T5439] program syz.0.658 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   73.932949][ T5449] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   74.004805][ T3392] Process accounting resumed
[   74.121809][ T5458] loop3: detected capacity change from 0 to 1024
[   74.128804][ T5458] EXT4-fs: Ignoring removed orlov option
[   74.139954][ T5461] 9pnet_fd: Insufficient options for proto=fd
[   74.140231][ T5458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   74.207852][ T5458] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.527723][ T5461] 9pnet: Could not find request transport: 0xffffffffffffffff
[   74.559317][ T5458] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.665: Freeing blocks not in datazone - block = 0, count = 16
[   74.577175][ T5472] loop0: detected capacity change from 0 to 128
[   74.797509][ T5478] loop2: detected capacity change from 0 to 1024
[   74.853782][ T5478] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.884320][ T5478] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   74.913560][ T5478] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   74.926713][ T5478] EXT4-fs (loop2): This should not happen!! Data will be lost
[   74.926713][ T5478] 
[   74.936907][ T5478] EXT4-fs (loop2): Total free blocks count 0
[   74.943276][ T5478] EXT4-fs (loop2): Free/Dirty block details
[   74.949428][ T5478] EXT4-fs (loop2): free_blocks=20480
[   74.951266][ T5488] loop0: detected capacity change from 0 to 128
[   74.954750][ T5478] EXT4-fs (loop2): dirty_blocks=96
[   74.954769][ T5478] EXT4-fs (loop2): Block reservation details
[   74.972748][ T5478] EXT4-fs (loop2): i_reserved_data_blocks=6
[   75.008042][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   75.082797][ T5501] __nla_validate_parse: 1 callbacks suppressed
[   75.082817][ T5501] netlink: 108 bytes leftover after parsing attributes in process `syz.0.677'.
[   75.109711][ T5504] loop1: detected capacity change from 0 to 512
[   75.124424][ T5508] 8021q: VLANs not supported on gre0
[   75.146926][ T5504] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   75.147030][ T5504] EXT4-fs (loop1): orphan cleanup on readonly fs
[   75.152030][ T5504] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   75.183505][ T5513] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.204493][ T5504] EXT4-fs (loop1): Remounting filesystem read-only
[   75.212741][ T5504] EXT4-fs (loop1): 1 truncate cleaned up
[   75.218945][ T4824] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.229724][ T4824] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.242284][ T5518] netlink: 'syz.0.681': attribute type 10 has an invalid length.
[   75.250160][ T5517] netlink: 4 bytes leftover after parsing attributes in process `syz.4.683'.
[   75.264965][ T5518] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   75.274484][ T4824] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   75.285260][ T5518] team0: Failed to send options change via netlink (err -105)
[   75.292964][ T5518] team0: Port device dummy0 added
[   75.300226][ T5504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.318102][ T5517] IPv6: Can't replace route, no match found
[   75.329624][ T5519] netlink: 'syz.0.681': attribute type 10 has an invalid length.
[   75.331349][ T5513] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.352713][ T5519] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   75.365346][ T5519] team0: Failed to send options change via netlink (err -105)
[   75.373455][ T5519] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   75.383121][ T5519] team0: Port device dummy0 removed
[   75.407038][ T5519] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   75.417752][ T5513] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.458035][ T5528] loop4: detected capacity change from 0 to 256
[   75.467183][ T5518] netlink: 'syz.0.681': attribute type 1 has an invalid length.
[   75.475434][ T5518] netlink: 224 bytes leftover after parsing attributes in process `syz.0.681'.
[   75.488899][ T5528] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   75.497879][ T5528] FAT-fs (loop4): Filesystem has been set read-only
[   75.499645][ T5513] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.561496][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.568585][ T4823] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.582994][ T4823] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.595422][ T4823] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.627801][ T4823] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   75.640533][ T4824] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.650864][ T5533] loop1: detected capacity change from 0 to 512
[   75.670830][ T5533] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   75.693273][ T5533] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   75.718622][ T5533] EXT4-fs (loop1): 1 truncate cleaned up
[   75.737680][ T5533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.761532][ T5540] netlink: 108 bytes leftover after parsing attributes in process `syz.4.691'.
[   75.776904][ T5548] loop2: detected capacity change from 0 to 512
[   75.788511][ T5548] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   75.820185][ T5533] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   75.833200][ T5548] EXT4-fs (loop2): orphan cleanup on readonly fs
[   75.843911][ T5548] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   75.856129][ T5548] EXT4-fs (loop2): Remounting filesystem read-only
[   75.863073][ T5548] EXT4-fs (loop2): 1 truncate cleaned up
[   75.869079][ T4851] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.871938][ T5560] loop0: detected capacity change from 0 to 512
[   75.880266][ T4851] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.898603][ T4851] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   75.912847][ T5557] loop4: detected capacity change from 0 to 256
[   75.929791][ T5548] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.946573][ T5557] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[   75.955723][ T5557] FAT-fs (loop4): Filesystem has been set read-only
[   75.962931][ T5560] EXT4-fs: Ignoring removed orlov option
[   75.969312][ T5560] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   75.981894][ T5560] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[   75.986388][   T29] kauditd_printk_skb: 753 callbacks suppressed
[   75.986411][   T29] audit: type=1326 audit(1760010718.527:5533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f9276eec9 code=0x7ffc0000
[   76.019921][   T29] audit: type=1326 audit(1760010718.527:5534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f9276eec9 code=0x7ffc0000
[   76.111685][   T29] audit: type=1326 audit(1760010718.537:5535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0f9276eec9 code=0x7ffc0000
[   76.135258][   T29] audit: type=1326 audit(1760010718.537:5536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0f9276ef03 code=0x7ffc0000
[   76.158670][   T29] audit: type=1326 audit(1760010718.547:5537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0f9276d97f code=0x7ffc0000
[   76.181969][   T29] audit: type=1326 audit(1760010718.547:5538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0f9276ef57 code=0x7ffc0000
[   76.205622][   T29] audit: type=1326 audit(1760010718.567:5539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f9276d710 code=0x7ffc0000
[   76.229334][   T29] audit: type=1326 audit(1760010718.567:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0f9276db2a code=0x7ffc0000
[   76.252684][   T29] audit: type=1326 audit(1760010718.567:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f9276eec9 code=0x7ffc0000
[   76.276421][   T29] audit: type=1326 audit(1760010718.577:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5532 comm="syz.1.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7dc69eeec9 code=0x7ffc0000
[   76.303405][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.415760][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.445980][ T5590] loop0: detected capacity change from 0 to 512
[   76.456756][ T5590] EXT4-fs (loop0): 1 orphan inode deleted
[   76.463407][ T5590] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.495760][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.516767][ T5598] netlink: 108 bytes leftover after parsing attributes in process `syz.2.708'.
[   76.609734][ T5610] veth3: entered promiscuous mode
[   76.622749][ T5616] 9pnet_fd: Insufficient options for proto=fd
[   76.626552][ T5618] tipc: Enabling of bearer <eth:vlan1> rejected, failed to enable media
[   76.645509][ T5614] loop4: detected capacity change from 0 to 1024
[   76.653545][ T5611] erspan0: entered allmulticast mode
[   76.680627][ T5614] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   76.691741][ T5614] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   76.739925][ T5614] JBD2: no valid journal superblock found
[   76.742652][ T5620] loop3: detected capacity change from 0 to 512
[   76.745896][ T5614] EXT4-fs (loop4): Could not load journal inode
[   76.802015][ T5620] EXT4-fs (loop3): 1 orphan inode deleted
[   76.835100][ T5620] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.855209][ T5635] loop1: detected capacity change from 0 to 512
[   76.876309][ T5635] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.891564][ T5635] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.901529][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.916225][ T5639] netlink: 108 bytes leftover after parsing attributes in process `syz.0.726'.
[   76.968124][ T5643] loop3: detected capacity change from 0 to 764
[   76.983738][ T5647] loop1: detected capacity change from 0 to 512
[   76.992549][ T5647] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   76.996437][ T5649] loop0: detected capacity change from 0 to 128
[   77.010669][ T5647] EXT4-fs (loop1): 1 truncate cleaned up
[   77.011646][ T5643] isofs: isofs_export_get_parent(): child directory not normalized!
[   77.016796][ T5647] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.116655][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.166378][ T5664] FAULT_INJECTION: forcing a failure.
[   77.166378][ T5664] name failslab, interval 1, probability 0, space 0, times 0
[   77.179388][ T5664] CPU: 0 UID: 0 PID: 5664 Comm: syz.0.735 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   77.179476][ T5664] Tainted: [W]=WARN
[   77.179485][ T5664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   77.179513][ T5664] Call Trace:
[   77.179522][ T5664]  <TASK>
[   77.179533][ T5664]  __dump_stack+0x1d/0x30
[   77.179560][ T5664]  dump_stack_lvl+0xe8/0x140
[   77.179584][ T5664]  dump_stack+0x15/0x1b
[   77.179600][ T5664]  should_fail_ex+0x265/0x280
[   77.179752][ T5664]  should_failslab+0x8c/0xb0
[   77.179834][ T5664]  kmem_cache_alloc_noprof+0x50/0x480
[   77.179919][ T5664]  ? skb_clone+0x151/0x1f0
[   77.179976][ T5664]  skb_clone+0x151/0x1f0
[   77.180045][ T5664]  __netlink_deliver_tap+0x2c9/0x500
[   77.180089][ T5664]  netlink_unicast+0x66b/0x690
[   77.180119][ T5664]  netlink_sendmsg+0x58b/0x6b0
[   77.180236][ T5664]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.180276][ T5664]  __sock_sendmsg+0x142/0x180
[   77.180303][ T5664]  ____sys_sendmsg+0x31e/0x4e0
[   77.180383][ T5664]  ___sys_sendmsg+0x17b/0x1d0
[   77.180508][ T5664]  __x64_sys_sendmsg+0xd4/0x160
[   77.180553][ T5664]  x64_sys_call+0x191e/0x3000
[   77.180583][ T5664]  do_syscall_64+0xd2/0x200
[   77.180637][ T5664]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   77.180671][ T5664]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   77.180692][ T5664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.180723][ T5664] RIP: 0033:0x7f5d3b2feec9
[   77.180744][ T5664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.180769][ T5664] RSP: 002b:00007f5d39d5f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.180795][ T5664] RAX: ffffffffffffffda RBX: 00007f5d3b555fa0 RCX: 00007f5d3b2feec9
[   77.180812][ T5664] RDX: 0000000000000000 RSI: 00002000000037c0 RDI: 0000000000000006
[   77.180824][ T5664] RBP: 00007f5d39d5f090 R08: 0000000000000000 R09: 0000000000000000
[   77.180836][ T5664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.180848][ T5664] R13: 00007f5d3b556038 R14: 00007f5d3b555fa0 R15: 00007ffe5f9cc638
[   77.180935][ T5664]  </TASK>
[   77.476667][ T5670] syz!: rxe_newlink: already configured on team_slave_0
[   77.503145][ T5670] Failed to initialize the IGMP autojoin socket (err -2)
[   77.658024][ T5678] netlink: 88 bytes leftover after parsing attributes in process `syz.1.740'.
[   77.718986][ T5683] loop0: detected capacity change from 0 to 128
[   77.830861][ T5687] loop1: detected capacity change from 0 to 128
[   77.875506][ T5687] bio_check_eod: 20 callbacks suppressed
[   77.875526][ T5687] syz.1.742: attempt to access beyond end of device
[   77.875526][ T5687] loop1: rw=2049, sector=145, nr_sectors = 16 limit=128
[   77.897658][ T5687] syz.1.742: attempt to access beyond end of device
[   77.897658][ T5687] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   77.912181][ T5687] syz.1.742: attempt to access beyond end of device
[   77.912181][ T5687] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   77.914708][ T5692] bridge0: port 3(batadv1) entered blocking state
[   77.926011][ T5687] syz.1.742: attempt to access beyond end of device
[   77.926011][ T5687] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   77.932606][ T5692] bridge0: port 3(batadv1) entered disabled state
[   77.974596][ T5692] batadv1: entered allmulticast mode
[   77.980650][ T5692] batadv1: entered promiscuous mode
[   77.997408][ T5691] netlink: 'syz.0.745': attribute type 5 has an invalid length.
[   78.005291][ T5691] netlink: 20 bytes leftover after parsing attributes in process `syz.0.745'.
[   78.017469][ T5687] syz.1.742: attempt to access beyond end of device
[   78.017469][ T5687] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   78.049180][ T5687] syz.1.742: attempt to access beyond end of device
[   78.049180][ T5687] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   78.084199][ T5687] syz.1.742: attempt to access beyond end of device
[   78.084199][ T5687] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   78.117450][ T5687] syz.1.742: attempt to access beyond end of device
[   78.117450][ T5687] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   78.144715][ T5697] loop0: detected capacity change from 0 to 164
[   78.147461][ T5687] syz.1.742: attempt to access beyond end of device
[   78.147461][ T5687] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   78.165274][ T5697] rock: corrupted directory entry. extent=32, offset=0, size=65773
[   78.173370][ T5697] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   78.175098][ T5687] syz.1.742: attempt to access beyond end of device
[   78.175098][ T5687] loop1: rw=2049, sector=297, nr_sectors = 9 limit=128
[   78.287209][ T5705] FAULT_INJECTION: forcing a failure.
[   78.287209][ T5705] name failslab, interval 1, probability 0, space 0, times 0
[   78.300378][ T5705] CPU: 1 UID: 0 PID: 5705 Comm: syz.3.750 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   78.300453][ T5705] Tainted: [W]=WARN
[   78.300460][ T5705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   78.300473][ T5705] Call Trace:
[   78.300479][ T5705]  <TASK>
[   78.300487][ T5705]  __dump_stack+0x1d/0x30
[   78.300513][ T5705]  dump_stack_lvl+0xe8/0x140
[   78.300540][ T5705]  dump_stack+0x15/0x1b
[   78.300561][ T5705]  should_fail_ex+0x265/0x280
[   78.300624][ T5705]  should_failslab+0x8c/0xb0
[   78.300652][ T5705]  kmem_cache_alloc_noprof+0x50/0x480
[   78.300765][ T5705]  ? security_inode_alloc+0x37/0x100
[   78.300837][ T5705]  security_inode_alloc+0x37/0x100
[   78.300955][ T5705]  inode_init_always_gfp+0x4b7/0x500
[   78.301024][ T5705]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   78.301122][ T5705]  alloc_inode+0x58/0x170
[   78.301149][ T5705]  new_inode+0x1d/0xe0
[   78.301181][ T5705]  shmem_get_inode+0x244/0x750
[   78.301230][ T5705]  __shmem_file_setup+0x113/0x210
[   78.301264][ T5705]  shmem_file_setup+0x3b/0x50
[   78.301304][ T5705]  __se_sys_memfd_create+0x2c3/0x590
[   78.301374][ T5705]  __x64_sys_memfd_create+0x31/0x40
[   78.301469][ T5705]  x64_sys_call+0x2ac2/0x3000
[   78.301580][ T5705]  do_syscall_64+0xd2/0x200
[   78.301611][ T5705]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   78.301676][ T5705]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   78.301700][ T5705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.301806][ T5705] RIP: 0033:0x7f04a5a3eec9
[   78.301826][ T5705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.301851][ T5705] RSP: 002b:00007f04a44a6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   78.301877][ T5705] RAX: ffffffffffffffda RBX: 00000000000004d8 RCX: 00007f04a5a3eec9
[   78.301936][ T5705] RDX: 00007f04a44a6ef0 RSI: 0000000000000000 RDI: 00007f04a5ac2960
[   78.301948][ T5705] RBP: 0000200000000900 R08: 00007f04a44a6bb7 R09: 00007f04a44a6e40
[   78.301960][ T5705] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000280
[   78.301974][ T5705] R13: 00007f04a44a6ef0 R14: 00007f04a44a6eb0 R15: 0000200000000840
[   78.302001][ T5705]  </TASK>
[   78.525994][ T4850] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[   78.535620][ T4850] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[   78.607427][ T5712] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   78.614078][ T5712] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   78.621650][ T5712] vhci_hcd vhci_hcd.0: Device attached
[   78.631201][ T5712] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(5)
[   78.637809][ T5712] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   78.645527][ T5712] vhci_hcd vhci_hcd.0: Device attached
[   78.657946][ T5712] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(7)
[   78.664800][ T5712] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   78.672452][ T5712] vhci_hcd vhci_hcd.0: Device attached
[   78.683321][ T5712] vhci_hcd vhci_hcd.0: pdev(3) rhport(3) sockfd(9)
[   78.690004][ T5712] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   78.697767][ T5712] vhci_hcd vhci_hcd.0: Device attached
[   78.718503][ T5722] loop4: detected capacity change from 0 to 128
[   78.727694][ T5712] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(11)
[   78.734357][ T5712] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   78.742027][ T5712] vhci_hcd vhci_hcd.0: Device attached
[   78.758029][ T4824] Bluetooth: hci0: Frame reassembly failed (-84)
[   78.766942][ T5726] netlink: 12 bytes leftover after parsing attributes in process `syz.1.754'.
[   78.776184][ T5726] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.783849][ T5726] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.794272][ T5726] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.802483][ T5726] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.877449][ T3393] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   79.054037][ T5747] loop0: detected capacity change from 0 to 512
[   79.061400][ T5749] loop4: detected capacity change from 0 to 128
[   79.105804][ T5747] EXT4-fs (loop0): 1 orphan inode deleted
[   79.268842][ T5747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.316785][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.387704][ T5719] vhci_hcd: connection closed
[   79.388067][ T4823] vhci_hcd: stop threads
[   79.397192][ T4823] vhci_hcd: release socket
[   79.397398][ T5713] vhci_hcd: connection reset by peer
[   79.401845][ T4823] vhci_hcd: disconnect device
[   79.412000][ T5715] vhci_hcd: connection closed
[   79.412135][ T5717] vhci_hcd: connection closed
[   79.417143][ T5723] vhci_hcd: connection closed
[   79.433663][ T4823] vhci_hcd: stop threads
[   79.442953][ T4823] vhci_hcd: release socket
[   79.447421][ T4823] vhci_hcd: disconnect device
[   79.465356][ T5755] netlink: 108 bytes leftover after parsing attributes in process `syz.0.765'.
[   79.470507][ T4823] vhci_hcd: stop threads
[   79.479118][ T4823] vhci_hcd: release socket
[   79.483818][ T4823] vhci_hcd: disconnect device
[   79.497910][ T4823] vhci_hcd: stop threads
[   79.502504][ T4823] vhci_hcd: release socket
[   79.507090][ T4823] vhci_hcd: disconnect device
[   79.521117][ T4823] vhci_hcd: stop threads
[   79.526060][ T4823] vhci_hcd: release socket
[   79.530597][ T4823] vhci_hcd: disconnect device
[   79.588453][ T5761] loop4: detected capacity change from 0 to 128
[   79.681393][ T5766] loop4: detected capacity change from 0 to 512
[   79.725007][ T5766] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   79.754476][ T5766] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   79.771999][ T5772] loop0: detected capacity change from 0 to 512
[   79.780190][ T5766] EXT4-fs (loop4): 1 truncate cleaned up
[   79.791216][ T5772] EXT4-fs: inline encryption not supported
[   79.798202][ T5772] EXT4-fs: Ignoring removed nobh option
[   79.804368][ T5766] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.825900][ T5772] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 3: comm syz.0.772: lblock 0 mapped to illegal pblock 3 (length 1)
[   79.867491][ T5772] EXT4-fs warning (device loop0): dx_probe:791: inode #2: lblock 0: comm syz.0.772: error -117 reading directory block
[   79.881627][ T5766] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   79.890743][ T5772] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   79.908374][ T5772] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.950126][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.974226][ T5778] loop3: detected capacity change from 0 to 512
[   79.999623][ T5778] EXT4-fs (loop3): 1 orphan inode deleted
[   80.029959][ T5778] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.036301][ T5776] mmap: syz.1.773 (5776) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   80.110114][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.135822][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.151509][ T5785] netlink: 108 bytes leftover after parsing attributes in process `syz.4.777'.
[   80.241008][ T5796] loop0: detected capacity change from 0 to 512
[   80.269375][ T5796] FAT-fs (loop0): unable to read block(121038582) for building NFS inode
[   80.322563][ T5801] 9pnet: Could not find request transport: fd0x0000000000000003
[   80.340928][ T5806] loop1: detected capacity change from 0 to 128
[   80.385061][ T5810] loop3: detected capacity change from 0 to 2048
[   80.425285][ T5815] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   80.445226][ T5810] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.471462][ T5816] loop0: detected capacity change from 0 to 512
[   80.484502][ T5815] Failed to initialize the IGMP autojoin socket (err -2)
[   80.491776][ T5817] loop1: detected capacity change from 0 to 2048
[   80.509026][ T5816] EXT4-fs (loop0): 1 orphan inode deleted
[   80.518153][ T5816] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.602976][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.615179][ T5817]  loop1: unable to read partition table
[   80.622594][ T5817] loop1: partition table beyond EOD, truncated
[   80.629139][ T5817] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[   80.695079][ T5825] netlink: 108 bytes leftover after parsing attributes in process `syz.4.790'.
[   80.775409][ T5832] loop1: detected capacity change from 0 to 512
[   80.784502][ T3887] Bluetooth: hci0: command 0x1003 tx timeout
[   80.790754][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   80.807645][ T5835] FAULT_INJECTION: forcing a failure.
[   80.807645][ T5835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.820873][ T5835] CPU: 1 UID: 0 PID: 5835 Comm: syz.0.793 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   80.820978][ T5835] Tainted: [W]=WARN
[   80.820986][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   80.820999][ T5835] Call Trace:
[   80.821005][ T5835]  <TASK>
[   80.821014][ T5835]  __dump_stack+0x1d/0x30
[   80.821123][ T5835]  dump_stack_lvl+0xe8/0x140
[   80.821149][ T5835]  dump_stack+0x15/0x1b
[   80.821171][ T5835]  should_fail_ex+0x265/0x280
[   80.821222][ T5835]  should_fail+0xb/0x20
[   80.821267][ T5835]  should_fail_usercopy+0x1a/0x20
[   80.821288][ T5835]  strncpy_from_user+0x25/0x230
[   80.821449][ T5835]  ? kmem_cache_alloc_noprof+0x242/0x480
[   80.821553][ T5835]  ? getname_flags+0x80/0x3b0
[   80.821609][ T5835]  getname_flags+0xae/0x3b0
[   80.821644][ T5835]  do_sys_openat2+0x60/0x110
[   80.821729][ T5835]  __x64_sys_openat+0xf2/0x120
[   80.821852][ T5835]  x64_sys_call+0x2eab/0x3000
[   80.821952][ T5835]  do_syscall_64+0xd2/0x200
[   80.821985][ T5835]  ? exc_debug_user+0xb7/0xf0
[   80.822022][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.822091][ T5835] RIP: 0033:0x7f5d3b2fd710
[   80.822107][ T5835] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[   80.822129][ T5835] RSP: 002b:00007f5d39d5ef10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   80.822155][ T5835] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f5d3b2fd710
[   80.822168][ T5835] RDX: 0000000000000002 RSI: 00007f5d39d5efa0 RDI: 00000000ffffff9c
[   80.822184][ T5835] RBP: 00007f5d39d5efa0 R08: 0000000000000000 R09: 0000000000000000
[   80.822201][ T5835] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   80.822288][ T5835] R13: 00007f5d3b556038 R14: 00007f5d3b555fa0 R15: 00007ffe5f9cc638
[   80.822307][ T5835]  </TASK>
[   80.824143][ T5836] 9pnet: Could not find request transport: fd0x0000000000000003
[   80.888636][ T5832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.047508][ T5832] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.073643][ T5844] loop4: detected capacity change from 0 to 512
[   81.104203][   T29] kauditd_printk_skb: 553 callbacks suppressed
[   81.104220][   T29] audit: type=1326 audit(1760010723.647:6096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5d3b2feec9 code=0x0
[   81.134412][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.150103][ T5844] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   81.167004][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.176665][ T5844] EXT4-fs (loop4): orphan cleanup on readonly fs
[   81.196222][ T5844] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   81.216031][   T29] audit: type=1326 audit(1760010723.707:6097): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.240686][   T29] audit: type=1326 audit(1760010723.707:6098): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.265738][   T29] audit: type=1326 audit(1760010723.707:6099): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.293535][   T29] audit: type=1326 audit(1760010723.707:6100): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.318620][   T29] audit: type=1326 audit(1760010723.707:6101): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.330865][ T5844] EXT4-fs (loop4): Remounting filesystem read-only
[   81.344282][   T29] audit: type=1326 audit(1760010723.707:6102): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.377607][   T29] audit: type=1326 audit(1760010723.707:6103): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.384145][ T5844] EXT4-fs (loop4): 1 truncate cleaned up
[   81.404615][   T29] audit: type=1326 audit(1760010723.707:6104): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.438279][   T29] audit: type=1326 audit(1760010723.707:6105): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5848 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d3b2feec9 code=0x7ffc0000
[   81.467242][ T4850] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   81.479116][ T4850] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   81.512818][ T4850] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   81.524569][ T5844] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.609038][ T5864] netlink: 'syz.1.802': attribute type 6 has an invalid length.
[   81.622291][ T5864] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   81.637383][ T5864] loop1: detected capacity change from 0 to 512
[   81.645843][ T5864] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   81.658247][ T5864] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   81.667553][ T5864] EXT4-fs (loop1): failed to initialize system zone (-117)
[   81.675386][ T5864] EXT4-fs (loop1): mount failed
[   81.692850][ T5867] loop3: detected capacity change from 0 to 2048
[   81.795177][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.855673][ T5878] macvtap0: entered promiscuous mode
[   81.866113][ T5867]  loop3: unable to read partition table
[   81.872999][ T5878] macvtap0: left promiscuous mode
[   81.878659][ T5876] 9pnet: Could not find request transport: fd0x0000000000000003
[   81.889073][ T5867] loop3: partition table beyond EOD, truncated
[   81.895490][ T5867] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
[   82.050813][ T5896] loop0: detected capacity change from 0 to 1024
[   82.062873][ T5894] loop4: detected capacity change from 0 to 512
[   82.078910][ T5894] EXT4-fs (loop4): 1 orphan inode deleted
[   82.095961][ T5896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.117925][ T5894] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.153740][ T5904] netlink: 'syz.3.815': attribute type 12 has an invalid length.
[   82.163766][ T5896] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   82.178965][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.209264][ T5896] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   82.212766][ T5912] loop1: detected capacity change from 0 to 512
[   82.222215][ T5896] EXT4-fs (loop0): This should not happen!! Data will be lost
[   82.222215][ T5896] 
[   82.222238][ T5896] EXT4-fs (loop0): Total free blocks count 0
[   82.222279][ T5896] EXT4-fs (loop0): Free/Dirty block details
[   82.250829][ T5896] EXT4-fs (loop0): free_blocks=20480
[   82.256480][ T5896] EXT4-fs (loop0): dirty_blocks=96
[   82.261972][ T5896] EXT4-fs (loop0): Block reservation details
[   82.268274][ T5896] EXT4-fs (loop0): i_reserved_data_blocks=6
[   82.276815][ T5912] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   82.285513][ T5912] EXT4-fs (loop1): orphan cleanup on readonly fs
[   82.302486][ T5915] FAULT_INJECTION: forcing a failure.
[   82.302486][ T5915] name failslab, interval 1, probability 0, space 0, times 0
[   82.309257][ T5912] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   82.316389][ T5915] CPU: 0 UID: 0 PID: 5915 Comm: syz.4.816 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   82.316438][ T5915] Tainted: [W]=WARN
[   82.316447][ T5915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   82.316472][ T5915] Call Trace:
[   82.316479][ T5915]  <TASK>
[   82.316503][ T5915]  __dump_stack+0x1d/0x30
[   82.316526][ T5915]  dump_stack_lvl+0xe8/0x140
[   82.316551][ T5915]  dump_stack+0x15/0x1b
[   82.316592][ T5915]  should_fail_ex+0x265/0x280
[   82.316637][ T5915]  should_failslab+0x8c/0xb0
[   82.316687][ T5915]  __kmalloc_cache_node_noprof+0x54/0x4a0
[   82.316780][ T5915]  ? __get_vm_area_node+0x106/0x1d0
[   82.316882][ T5915]  __get_vm_area_node+0x106/0x1d0
[   82.316923][ T5915]  __vmalloc_node_range_noprof+0x28c/0xed0
[   82.316968][ T5915]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.317012][ T5915]  ? terminate_walk+0x27f/0x2a0
[   82.317106][ T5915]  ? path_openat+0x1bf8/0x2170
[   82.317142][ T5915]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.317186][ T5915]  __vmalloc_noprof+0x83/0xc0
[   82.317255][ T5915]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.317299][ T5915]  ? ppp_poll+0x151/0x170
[   82.317343][ T5915]  bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.317498][ T5915]  ? bpf_prog_alloc+0x2a/0x150
[   82.317600][ T5915]  ? ppp_poll+0x151/0x170
[   82.317709][ T5915]  bpf_prog_alloc+0x3c/0x150
[   82.317753][ T5915]  ? ppp_poll+0x151/0x170
[   82.317801][ T5915]  bpf_prog_create+0x73/0x130
[   82.317841][ T5915]  ? __pfx_ppp_ioctl+0x10/0x10
[   82.317928][ T5915]  ppp_get_filter+0x113/0x160
[   82.317976][ T5915]  ppp_ioctl+0xb93/0x11c0
[   82.318066][ T5915]  ? __fget_files+0x184/0x1c0
[   82.318197][ T5915]  ? __pfx_ppp_ioctl+0x10/0x10
[   82.318269][ T5915]  __se_sys_ioctl+0xcb/0x140
[   82.318326][ T5915]  __x64_sys_ioctl+0x43/0x50
[   82.318373][ T5915]  x64_sys_call+0x1816/0x3000
[   82.318408][ T5915]  do_syscall_64+0xd2/0x200
[   82.318442][ T5915]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   82.318482][ T5915]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   82.318572][ T5915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.318604][ T5915] RIP: 0033:0x7f0f9276eec9
[   82.318629][ T5915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.318656][ T5915] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   82.318763][ T5915] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   82.318789][ T5915] RDX: 0000200000000140 RSI: 0000000040107447 RDI: 0000000000000006
[   82.318807][ T5915] RBP: 00007f0f911cf090 R08: 0000000000000000 R09: 0000000000000000
[   82.318825][ T5915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.318843][ T5915] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   82.318871][ T5915]  </TASK>
[   82.318944][ T5915] syz.4.816: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null)
[   82.328805][ T5912] EXT4-fs (loop1): Remounting filesystem read-only
[   82.339836][ T5915] ,cpuset=
[   82.343875][ T5912] EXT4-fs (loop1): 1 truncate cleaned up
[   82.354067][ T5915] /,mems_allowed=0
[   82.641997][ T5915] CPU: 0 UID: 0 PID: 5915 Comm: syz.4.816 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   82.642079][ T5915] Tainted: [W]=WARN
[   82.642088][ T5915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   82.642106][ T5915] Call Trace:
[   82.642115][ T5915]  <TASK>
[   82.642126][ T5915]  __dump_stack+0x1d/0x30
[   82.642226][ T5915]  dump_stack_lvl+0xe8/0x140
[   82.642345][ T5915]  dump_stack+0x15/0x1b
[   82.642367][ T5915]  warn_alloc+0x12b/0x1a0
[   82.642509][ T5915]  __vmalloc_node_range_noprof+0x2b1/0xed0
[   82.642615][ T5915]  ? terminate_walk+0x27f/0x2a0
[   82.642653][ T5915]  ? path_openat+0x1bf8/0x2170
[   82.642686][ T5915]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.642846][ T5915]  __vmalloc_noprof+0x83/0xc0
[   82.642886][ T5915]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.642992][ T5915]  ? ppp_poll+0x151/0x170
[   82.643093][ T5915]  bpf_prog_alloc_no_stats+0x47/0x3b0
[   82.643136][ T5915]  ? bpf_prog_alloc+0x2a/0x150
[   82.643185][ T5915]  ? ppp_poll+0x151/0x170
[   82.643276][ T5915]  bpf_prog_alloc+0x3c/0x150
[   82.643311][ T5915]  ? ppp_poll+0x151/0x170
[   82.643348][ T5915]  bpf_prog_create+0x73/0x130
[   82.643545][ T5915]  ? __pfx_ppp_ioctl+0x10/0x10
[   82.643579][ T5915]  ppp_get_filter+0x113/0x160
[   82.643621][ T5915]  ppp_ioctl+0xb93/0x11c0
[   82.643802][ T5915]  ? __fget_files+0x184/0x1c0
[   82.643836][ T5915]  ? __pfx_ppp_ioctl+0x10/0x10
[   82.643875][ T5915]  __se_sys_ioctl+0xcb/0x140
[   82.643991][ T5915]  __x64_sys_ioctl+0x43/0x50
[   82.644027][ T5915]  x64_sys_call+0x1816/0x3000
[   82.644058][ T5915]  do_syscall_64+0xd2/0x200
[   82.644136][ T5915]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   82.644175][ T5915]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   82.644200][ T5915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.644260][ T5915] RIP: 0033:0x7f0f9276eec9
[   82.644281][ T5915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.644305][ T5915] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   82.644326][ T5915] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   82.644425][ T5915] RDX: 0000200000000140 RSI: 0000000040107447 RDI: 0000000000000006
[   82.644443][ T5915] RBP: 00007f0f911cf090 R08: 0000000000000000 R09: 0000000000000000
[   82.644460][ T5915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.644477][ T5915] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   82.644503][ T5915]  </TASK>
[   82.644544][ T5915] Mem-Info:
[   82.912187][ T5915] active_anon:20729 inactive_anon:0 isolated_anon:0
[   82.912187][ T5915]  active_file:19956 inactive_file:2334 isolated_file:0
[   82.912187][ T5915]  unevictable:0 dirty:431 writeback:0
[   82.912187][ T5915]  slab_reclaimable:3384 slab_unreclaimable:16401
[   82.912187][ T5915]  mapped:29473 shmem:16777 pagetables:998
[   82.912187][ T5915]  sec_pagetables:0 bounce:0
[   82.912187][ T5915]  kernel_misc_reclaimable:0
[   82.912187][ T5915]  free:1857113 free_pcp:16642 free_cma:0
[   82.957933][ T5915] Node 0 active_anon:82916kB inactive_anon:0kB active_file:79824kB inactive_file:9336kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:117892kB dirty:1724kB writeback:0kB shmem:67108kB kernel_stack:3904kB pagetables:3992kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   82.985803][ T5915] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   83.015980][ T5915] lowmem_reserve[]: 0 2883 7862 7862
[   83.021511][ T5915] Node 0 DMA32 free:2949160kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2952692kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[   83.053285][ T5915] lowmem_reserve[]: 0 0 4978 4978
[   83.058408][ T5915] Node 0 Normal free:4463932kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:82916kB inactive_anon:0kB active_file:79824kB inactive_file:9336kB unevictable:0kB writepending:1724kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:62900kB local_pcp:17072kB free_cma:0kB
[   83.091816][ T5915] lowmem_reserve[]: 0 0 0 0
[   83.096479][ T5915] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   83.109425][ T5915] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 6*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949160kB
[   83.126240][ T5915] Node 0 Normal: 19*4kB (UM) 17*8kB (UM) 18*16kB (UM) 2*32kB (U) 3*64kB (UME) 3*128kB (UE) 3*256kB (UM) 3*512kB (UE) 2*1024kB (UE) 5*2048kB (M) 1086*4096kB (M) = 4463988kB
[   83.144042][ T5915] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   83.153474][ T5915] 39009 total pagecache pages
[   83.158309][ T5915] 2 pages in swap cache
[   83.162692][ T5915] Free swap  = 124988kB
[   83.167033][ T5915] Total swap = 124996kB
[   83.171425][ T5915] 2097051 pages RAM
[   83.175403][ T5915] 0 pages HighMem/MovableOnly
[   83.180814][ T5915] 80478 pages reserved
[   83.185564][ T4823] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   83.196859][ T4823] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   83.227629][ T4823] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   83.239689][ T5912] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.270284][ T4823] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   83.345014][ T5923] FAULT_INJECTION: forcing a failure.
[   83.345014][ T5923] name failslab, interval 1, probability 0, space 0, times 0
[   83.358296][ T5923] CPU: 1 UID: 0 PID: 5923 Comm: syz.4.821 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   83.358340][ T5923] Tainted: [W]=WARN
[   83.358347][ T5923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   83.358467][ T5923] Call Trace:
[   83.358476][ T5923]  <TASK>
[   83.358486][ T5923]  __dump_stack+0x1d/0x30
[   83.358574][ T5923]  dump_stack_lvl+0xe8/0x140
[   83.358600][ T5923]  dump_stack+0x15/0x1b
[   83.358639][ T5923]  should_fail_ex+0x265/0x280
[   83.358674][ T5923]  ? __pfx_sock_alloc_inode+0x10/0x10
[   83.358700][ T5923]  should_failslab+0x8c/0xb0
[   83.358758][ T5923]  kmem_cache_alloc_lru_noprof+0x55/0x490
[   83.358839][ T5923]  ? sock_alloc_inode+0x34/0xa0
[   83.358864][ T5923]  ? __pfx_sock_alloc_inode+0x10/0x10
[   83.358885][ T5923]  sock_alloc_inode+0x34/0xa0
[   83.358908][ T5923]  alloc_inode+0x40/0x170
[   83.359006][ T5923]  __sock_create+0x122/0x5b0
[   83.359097][ T5923]  __sys_socketpair+0x1bc/0x430
[   83.359195][ T5923]  __x64_sys_socketpair+0x52/0x60
[   83.359226][ T5923]  x64_sys_call+0x2bf6/0x3000
[   83.359262][ T5923]  do_syscall_64+0xd2/0x200
[   83.359292][ T5923]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   83.359330][ T5923]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   83.359388][ T5923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.359421][ T5923] RIP: 0033:0x7f0f9276eec9
[   83.359441][ T5923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.359467][ T5923] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   83.359566][ T5923] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   83.359583][ T5923] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[   83.359600][ T5923] RBP: 00007f0f911cf090 R08: 0000000000000000 R09: 0000000000000000
[   83.359623][ T5923] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.359655][ T5923] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   83.359733][ T5923]  </TASK>
[   83.359743][ T5923] socket: no more sockets
[   83.361208][ T5926] 9pnet_fd: Insufficient options for proto=fd
[   83.605630][ T5932] loop4: detected capacity change from 0 to 1024
[   83.628344][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.659950][ T5932] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.675928][ T5941] loop0: detected capacity change from 0 to 128
[   83.682570][ T5932] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.701068][ T5941] bio_check_eod: 20 callbacks suppressed
[   83.701091][ T5941] syz.0.827: attempt to access beyond end of device
[   83.701091][ T5941] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[   83.722471][ T5932] FAULT_INJECTION: forcing a failure.
[   83.722471][ T5932] name failslab, interval 1, probability 0, space 0, times 0
[   83.735312][ T5932] CPU: 1 UID: 0 PID: 5932 Comm: syz.4.823 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   83.735488][ T5932] Tainted: [W]=WARN
[   83.735500][ T5932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   83.735517][ T5932] Call Trace:
[   83.735525][ T5932]  <TASK>
[   83.735540][ T5932]  __dump_stack+0x1d/0x30
[   83.735566][ T5932]  dump_stack_lvl+0xe8/0x140
[   83.735599][ T5932]  dump_stack+0x15/0x1b
[   83.735670][ T5932]  should_fail_ex+0x265/0x280
[   83.735717][ T5932]  ? __se_sys_mount+0xef/0x2e0
[   83.735744][ T5932]  should_failslab+0x8c/0xb0
[   83.735776][ T5932]  __kmalloc_cache_noprof+0x4c/0x4a0
[   83.735853][ T5932]  ? memdup_user+0x99/0xd0
[   83.735888][ T5932]  __se_sys_mount+0xef/0x2e0
[   83.735909][ T5932]  ? fput+0x8f/0xc0
[   83.735939][ T5932]  ? ksys_write+0x192/0x1a0
[   83.736029][ T5932]  __x64_sys_mount+0x67/0x80
[   83.736061][ T5932]  x64_sys_call+0x2b51/0x3000
[   83.736091][ T5932]  do_syscall_64+0xd2/0x200
[   83.736175][ T5932]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   83.736336][ T5932]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   83.736420][ T5932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.736446][ T5932] RIP: 0033:0x7f0f9276eec9
[   83.736539][ T5932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.736599][ T5932] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   83.736659][ T5932] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   83.736677][ T5932] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 0000000000000000
[   83.736694][ T5932] RBP: 00007f0f911cf090 R08: 0000200000000080 R09: 0000000000000000
[   83.736711][ T5932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.736728][ T5932] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   83.736754][ T5932]  </TASK>
[   83.867489][ T5941] syz.0.827: attempt to access beyond end of device
[   83.867489][ T5941] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   83.941348][ T3393] usb 7-1: enqueue for inactive port 0
[   83.946867][ T3393] usb 7-1: enqueue for inactive port 0
[   83.953133][ T5941] syz.0.827: attempt to access beyond end of device
[   83.953133][ T5941] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   83.967074][ T5941] syz.0.827: attempt to access beyond end of device
[   83.967074][ T5941] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   83.968349][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.981739][ T5941] syz.0.827: attempt to access beyond end of device
[   83.981739][ T5941] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   84.031194][ T3393] vhci_hcd: vhci_device speed not set
[   84.037089][ T5941] syz.0.827: attempt to access beyond end of device
[   84.037089][ T5941] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   84.048680][ T5946] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   84.048680][ T5946]    program syz.1.829 not setting count and/or reply_len properly
[   84.051212][ T5941] syz.0.827: attempt to access beyond end of device
[   84.051212][ T5941] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   84.082047][ T5941] syz.0.827: attempt to access beyond end of device
[   84.082047][ T5941] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   84.100771][ T5941] syz.0.827: attempt to access beyond end of device
[   84.100771][ T5941] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   84.102740][ T5946] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   84.121847][ T5946] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   84.142199][ T5941] syz.0.827: attempt to access beyond end of device
[   84.142199][ T5941] loop0: rw=2049, sector=297, nr_sectors = 9 limit=128
[   84.157615][ T5946] vhci_hcd: default hub control req: 230f v0004 i0000 l3
[   84.201498][ T5953] FAULT_INJECTION: forcing a failure.
[   84.201498][ T5953] name failslab, interval 1, probability 0, space 0, times 0
[   84.214289][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz.4.831 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   84.214323][ T5953] Tainted: [W]=WARN
[   84.214329][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   84.214343][ T5953] Call Trace:
[   84.214349][ T5953]  <TASK>
[   84.214358][ T5953]  __dump_stack+0x1d/0x30
[   84.214380][ T5953]  dump_stack_lvl+0xe8/0x140
[   84.214463][ T5953]  dump_stack+0x15/0x1b
[   84.214480][ T5953]  should_fail_ex+0x265/0x280
[   84.214516][ T5953]  should_failslab+0x8c/0xb0
[   84.214599][ T5953]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   84.214628][ T5953]  ? set_task_ioprio+0x174/0x270
[   84.214650][ T5953]  set_task_ioprio+0x174/0x270
[   84.214669][ T5953]  __se_sys_ioprio_set+0x465/0x5a0
[   84.214696][ T5953]  ? __secure_computing+0x82/0x150
[   84.214733][ T5953]  __x64_sys_ioprio_set+0x43/0x50
[   84.214760][ T5953]  x64_sys_call+0x2fbe/0x3000
[   84.214806][ T5953]  do_syscall_64+0xd2/0x200
[   84.214830][ T5953]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   84.214858][ T5953]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   84.214879][ T5953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.214908][ T5953] RIP: 0033:0x7f0f9276eec9
[   84.214923][ T5953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.214942][ T5953] RSP: 002b:00007f0f911cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[   84.214998][ T5953] RAX: ffffffffffffffda RBX: 00007f0f929c5fa0 RCX: 00007f0f9276eec9
[   84.215011][ T5953] RDX: 0000000000004007 RSI: 0000000000000000 RDI: 0000000000000002
[   84.215023][ T5953] RBP: 00007f0f911cf090 R08: 0000000000000000 R09: 0000000000000000
[   84.215038][ T5953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.215050][ T5953] R13: 00007f0f929c6038 R14: 00007f0f929c5fa0 R15: 00007fffbddbfbf8
[   84.215069][ T5953]  </TASK>
[   84.442275][ T5961] loop1: detected capacity change from 0 to 512
[   84.452171][ T5961] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   84.494659][ T5964] loop3: detected capacity change from 0 to 512
[   84.523768][ T5964] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   84.532692][ T5964] EXT4-fs (loop3): orphan cleanup on readonly fs
[   84.545546][ T5964] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm wÞ£ÿ: corrupted inode contents
[   84.548137][ T5968] 9pnet_fd: Insufficient options for proto=fd
[   84.557729][ T5964] EXT4-fs (loop3): Remounting filesystem read-only
[   84.571366][ T5964] EXT4-fs (loop3): 1 truncate cleaned up
[   84.577960][ T3313] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   84.587539][ T4823] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   84.599141][ T4823] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   84.618991][ T4823] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   84.648162][ T5964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   84.733828][ T5974] netlink: 108 bytes leftover after parsing attributes in process `syz.1.838'.
[   84.877114][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.938365][ T5991] Failed to initialize the IGMP autojoin socket (err -2)
[   85.028743][ T5996] loop3: detected capacity change from 0 to 1024
[   85.068818][ T5996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.094474][ T5996] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   85.141187][ T6004] 9pnet_fd: Insufficient options for proto=fd
[   85.154460][ T5996] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   85.167203][ T5996] EXT4-fs (loop3): This should not happen!! Data will be lost
[   85.167203][ T5996] 
[   85.177837][ T5996] EXT4-fs (loop3): Total free blocks count 0
[   85.184686][ T5996] EXT4-fs (loop3): Free/Dirty block details
[   85.191845][ T5996] EXT4-fs (loop3): free_blocks=20480
[   85.197857][ T5996] EXT4-fs (loop3): dirty_blocks=96
[   85.204490][ T5996] EXT4-fs (loop3): Block reservation details
[   85.211372][ T5996] EXT4-fs (loop3): i_reserved_data_blocks=6
[   85.269658][ T6011] loop4: detected capacity change from 0 to 512
[   85.281529][ T6011] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   85.303587][ T6011] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   85.319188][ T6011] EXT4-fs (loop4): 1 truncate cleaned up
[   85.325911][ T6011] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.363986][ T6011] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   85.395890][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.426518][ T6016] netlink: 108 bytes leftover after parsing attributes in process `syz.4.853'.
[   85.505146][ T6022] program syz.4.855 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   85.553309][ T6029] loop1: detected capacity change from 0 to 512
[   85.570294][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   85.578893][ T6029] System zones: 0-2, 18-18, 34-34
[   85.584431][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   85.598433][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   85.605259][ T6029] EXT4-fs (loop1): get orphan inode failed
[   85.612777][ T6029] EXT4-fs (loop1): mount failed
[   85.626713][ T6032] loop4: detected capacity change from 0 to 1024
[   85.638426][ T6029] loop1: detected capacity change from 0 to 512
[   85.639179][ T6032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.665004][ T6032] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   85.683728][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   85.693814][ T6032] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   85.707121][ T6032] EXT4-fs (loop4): This should not happen!! Data will be lost
[   85.707121][ T6032] 
[   85.716911][ T6032] EXT4-fs (loop4): Total free blocks count 0
[   85.723192][ T6032] EXT4-fs (loop4): Free/Dirty block details
[   85.729231][ T6032] EXT4-fs (loop4): free_blocks=20480
[   85.734561][ T6032] EXT4-fs (loop4): dirty_blocks=96
[   85.739735][ T6032] EXT4-fs (loop4): Block reservation details
[   85.745964][ T6032] EXT4-fs (loop4): i_reserved_data_blocks=6
[   85.753467][ T6029] System zones: 0-2, 18-18, 34-34
[   85.759133][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   85.772958][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   85.779628][ T6029] EXT4-fs (loop1): get orphan inode failed
[   85.785784][ T6029] EXT4-fs (loop1): mount failed
[   85.797929][ T6029] loop1: detected capacity change from 0 to 512
[   85.811693][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   85.820564][ T6029] System zones: 0-2, 18-18, 34-34
[   85.825920][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   85.839121][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   85.845816][ T6029] EXT4-fs (loop1): get orphan inode failed
[   85.862965][ T4824] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   85.877230][ T6029] EXT4-fs (loop1): mount failed
[   85.898871][ T6029] loop1: detected capacity change from 0 to 512
[   85.908552][ T6041] loop3: detected capacity change from 0 to 128
[   85.928078][ T6043] 9pnet_fd: Insufficient options for proto=fd
[   85.951953][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   85.965136][ T6029] System zones: 0-2, 18-18, 34-34
[   85.970647][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   85.988313][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   85.990058][ T6049] FAULT_INJECTION: forcing a failure.
[   85.990058][ T6049] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.995558][ T6029] EXT4-fs (loop1): get orphan inode failed
[   86.008700][ T6049] CPU: 0 UID: 0 PID: 6049 Comm: syz.0.862 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   86.008741][ T6049] Tainted: [W]=WARN
[   86.008764][ T6049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   86.008783][ T6049] Call Trace:
[   86.008793][ T6049]  <TASK>
[   86.008806][ T6049]  __dump_stack+0x1d/0x30
[   86.008837][ T6049]  dump_stack_lvl+0xe8/0x140
[   86.008863][ T6049]  dump_stack+0x15/0x1b
[   86.008888][ T6049]  should_fail_ex+0x265/0x280
[   86.008957][ T6049]  should_fail+0xb/0x20
[   86.008999][ T6049]  should_fail_usercopy+0x1a/0x20
[   86.009028][ T6049]  _copy_to_user+0x20/0xa0
[   86.009061][ T6049]  simple_read_from_buffer+0xb5/0x130
[   86.009088][ T6049]  proc_fail_nth_read+0x10e/0x150
[   86.009142][ T6049]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   86.009182][ T6049]  vfs_read+0x1a8/0x770
[   86.009262][ T6049]  ? __rcu_read_unlock+0x4f/0x70
[   86.009297][ T6049]  ? __fget_files+0x184/0x1c0
[   86.009335][ T6049]  ksys_read+0xda/0x1a0
[   86.009367][ T6049]  __x64_sys_read+0x40/0x50
[   86.009406][ T6049]  x64_sys_call+0x27c0/0x3000
[   86.009436][ T6049]  do_syscall_64+0xd2/0x200
[   86.009469][ T6049]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   86.009507][ T6049]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   86.009705][ T6049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.009735][ T6049] RIP: 0033:0x7f5d3b2fd8dc
[   86.009771][ T6049] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   86.009797][ T6049] RSP: 002b:00007f5d39d5f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   86.009824][ T6049] RAX: ffffffffffffffda RBX: 00007f5d3b555fa0 RCX: 00007f5d3b2fd8dc
[   86.009841][ T6049] RDX: 000000000000000f RSI: 00007f5d39d5f0a0 RDI: 0000000000000003
[   86.009858][ T6049] RBP: 00007f5d39d5f090 R08: 0000000000000000 R09: 0000000000000000
[   86.009928][ T6049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.009958][ T6049] R13: 00007f5d3b556038 R14: 00007f5d3b555fa0 R15: 00007ffe5f9cc638
[   86.009979][ T6049]  </TASK>
[   86.214948][   T29] kauditd_printk_skb: 388 callbacks suppressed
[   86.214971][   T29] audit: type=1400 audit(1760010728.757:6476): avc:  denied  { create } for  pid=6050 comm="syz.3.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   86.219107][ T6029] EXT4-fs (loop1): mount failed
[   86.234483][ T6053] loop0: detected capacity change from 0 to 512
[   86.269316][ T6052] loop3: detected capacity change from 0 to 128
[   86.276883][   T29] audit: type=1400 audit(1760010728.807:6477): avc:  denied  { bind } for  pid=6050 comm="syz.3.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   86.297311][   T29] audit: type=1400 audit(1760010728.807:6478): avc:  denied  { write } for  pid=6050 comm="syz.3.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   86.305633][ T6029] loop1: detected capacity change from 0 to 512
[   86.321018][ T6052] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   86.337292][ T6053] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.348516][ T6052] ext4 filesystem being mounted at /173/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   86.386555][ T6053] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   86.402850][ T6053] EXT4-fs (loop0): 1 truncate cleaned up
[   86.413002][ T6053] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.428897][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   86.429241][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   86.447536][ T6029] System zones: 0-2, 18-18, 34-34
[   86.453908][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   86.492036][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   86.492196][ T4824] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   86.499308][ T6029] EXT4-fs (loop1): get orphan inode failed
[   86.509613][ T6029] EXT4-fs (loop1): mount failed
[   86.521923][ T6053] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   86.554955][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.565348][ T6029] loop1: detected capacity change from 0 to 512
[   86.573358][   T29] audit: type=1326 audit(1760010729.117:6479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.599097][   T29] audit: type=1326 audit(1760010729.117:6480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.624326][   T29] audit: type=1326 audit(1760010729.117:6481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.650309][   T29] audit: type=1326 audit(1760010729.117:6482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.677670][   T29] audit: type=1326 audit(1760010729.117:6483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.703155][   T29] audit: type=1326 audit(1760010729.117:6484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.728338][   T29] audit: type=1326 audit(1760010729.117:6485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6058 comm="syz.3.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04a5a3eec9 code=0x7ffc0000
[   86.758024][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   86.766470][ T6029] System zones: 0-2, 18-18, 34-34
[   86.772736][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   86.790658][ T6059] netlink: 108 bytes leftover after parsing attributes in process `syz.3.865'.
[   86.790657][ T6066] FAULT_INJECTION: forcing a failure.
[   86.790657][ T6066] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.790695][ T6066] CPU: 1 UID: 0 PID: 6066 Comm: syz.0.867 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   86.790800][ T6066] Tainted: [W]=WARN
[   86.790865][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   86.790881][ T6066] Call Trace:
[   86.790889][ T6066]  <TASK>
[   86.790899][ T6066]  __dump_stack+0x1d/0x30
[   86.790941][ T6066]  dump_stack_lvl+0xe8/0x140
[   86.790969][ T6066]  dump_stack+0x15/0x1b
[   86.791077][ T6066]  should_fail_ex+0x265/0x280
[   86.791133][ T6066]  should_fail+0xb/0x20
[   86.791256][ T6066]  should_fail_usercopy+0x1a/0x20
[   86.791285][ T6066]  strncpy_from_user+0x25/0x230
[   86.791322][ T6066]  ? kmem_cache_alloc_noprof+0x242/0x480
[   86.791414][ T6066]  ? getname_flags+0x80/0x3b0
[   86.791514][ T6066]  getname_flags+0xae/0x3b0
[   86.791553][ T6066]  user_path_at+0x28/0x130
[   86.791599][ T6066]  __se_sys_mount+0x25b/0x2e0
[   86.791631][ T6066]  ? fput+0x8f/0xc0
[   86.791677][ T6066]  __x64_sys_mount+0x67/0x80
[   86.791710][ T6066]  x64_sys_call+0x2b51/0x3000
[   86.791740][ T6066]  do_syscall_64+0xd2/0x200
[   86.791772][ T6066]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   86.791865][ T6066]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   86.791894][ T6066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.791926][ T6066] RIP: 0033:0x7f5d3b2feec9
[   86.791944][ T6066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.791971][ T6066] RSP: 002b:00007f5d39d5f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   86.792044][ T6066] RAX: ffffffffffffffda RBX: 00007f5d3b555fa0 RCX: 00007f5d3b2feec9
[   86.792074][ T6066] RDX: 0000200000001100 RSI: 00002000000010c0 RDI: 0000000000000000
[   86.792112][ T6066] RBP: 00007f5d39d5f090 R08: 0000200000001280 R09: 0000000000000000
[   86.792128][ T6066] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[   86.792145][ T6066] R13: 00007f5d3b556038 R14: 00007f5d3b555fa0 R15: 00007ffe5f9cc638
[   86.792173][ T6066]  </TASK>
[   86.947772][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.035550][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.044092][ T6029] EXT4-fs (loop1): mount failed
[   87.061647][ T6029] loop1: detected capacity change from 0 to 512
[   87.067780][ T6073] loop0: detected capacity change from 0 to 512
[   87.086400][ T6073] EXT4-fs (loop0): 1 orphan inode deleted
[   87.098667][ T6073] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.140866][ T6076] loop3: detected capacity change from 0 to 2048
[   87.148533][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.156569][ T6029] System zones: 0-2, 18-18, 34-34
[   87.162516][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   87.176028][ T6080] loop4: detected capacity change from 0 to 256
[   87.182879][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.189639][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.196436][ T6029] EXT4-fs (loop1): mount failed
[   87.202517][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.241618][ T6029] loop1: detected capacity change from 0 to 512
[   87.254090][ T6082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.871'.
[   87.264350][ T6076]  loop3: unable to read partition table
[   87.271135][ T6076] loop3: partition table beyond EOD, truncated
[   87.277814][ T6076] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
[   87.291780][ T6082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.871'.
[   87.321051][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.330537][ T6029] System zones: 0-2, 18-18, 34-34
[   87.344110][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   87.364811][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.366158][ T6088] 9pnet_fd: Insufficient options for proto=fd
[   87.371761][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.384989][ T6029] EXT4-fs (loop1): mount failed
[   87.400672][ T6029] loop1: detected capacity change from 0 to 512
[   87.434811][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.443497][ T6029] System zones: 0-2, 18-18, 34-34
[   87.453041][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   87.487977][ T6086] loop0: detected capacity change from 0 to 2048
[   87.499130][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.506760][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.523107][ T6096] loop4: detected capacity change from 0 to 1024
[   87.526942][ T6029] EXT4-fs (loop1): mount failed
[   87.544800][ T6029] loop1: detected capacity change from 0 to 512
[   87.552316][ T6103] ==================================================================
[   87.560851][ T6103] BUG: KCSAN: data-race in mas_state_walk / mas_wr_store_entry
[   87.568441][ T6103] 
[   87.570973][ T6103] write to 0xffff88810426b810 of 8 bytes by task 6085 on cpu 0:
[   87.578632][ T6103]  mas_wr_store_entry+0x1192/0x26e0
[   87.583870][ T6103]  mas_store_prealloc+0x74d/0xa80
[   87.588926][ T6103]  commit_merge+0x6a5/0x730
[   87.594018][ T6103]  vma_expand+0x220/0x320
[   87.598525][ T6103]  vma_merge_new_range+0x296/0x310
[   87.604129][ T6103]  mmap_region+0xa50/0x1620
[   87.609045][ T6103]  do_mmap+0x9b3/0xbe0
[   87.613163][ T6103]  vm_mmap_pgoff+0x17a/0x2e0
[   87.617837][ T6103]  ksys_mmap_pgoff+0xc2/0x310
[   87.622778][ T6103]  x64_sys_call+0x14a3/0x3000
[   87.627812][ T6103]  do_syscall_64+0xd2/0x200
[   87.632498][ T6103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.638531][ T6103] 
[   87.640876][ T6103] read to 0xffff88810426b810 of 8 bytes by task 6103 on cpu 1:
[   87.649214][ T6103]  mas_state_walk+0x2f5/0x650
[   87.654150][ T6103]  mas_walk+0x60/0x150
[   87.658717][ T6103]  lock_vma_under_rcu+0x95/0x170
[   87.664155][ T6103]  do_user_addr_fault+0x233/0x1080
[   87.671074][ T6103]  exc_page_fault+0x62/0xa0
[   87.675804][ T6103]  asm_exc_page_fault+0x26/0x30
[   87.681001][ T6103] 
[   87.683993][ T6103] value changed: 0x00007f5d39cfcfff -> 0x00007f5d39cdbfff
[   87.691217][ T6103] 
[   87.693736][ T6103] Reported by Kernel Concurrency Sanitizer on:
[   87.700258][ T6103] CPU: 1 UID: 0 PID: 6103 Comm: syz.0.873 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   87.712129][ T6103] Tainted: [W]=WARN
[   87.715963][ T6103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   87.726567][ T6103] ==================================================================
[   87.747975][ T6096] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   87.766640][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.768717][ T6096] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   87.787389][ T6029] System zones: 0-2
[   87.791100][ T6096] EXT4-fs (loop4): This should not happen!! Data will be lost
[   87.791100][ T6096] 
[   87.791061][ T6029] , 18-18, 34-34
[   87.795668][ T6096] EXT4-fs (loop4): Total free blocks count 0
[   87.806680][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   87.811287][ T6096] EXT4-fs (loop4): Free/Dirty block details
[   87.839508][ T6096] EXT4-fs (loop4): free_blocks=20480
[   87.845997][ T6096] EXT4-fs (loop4): dirty_blocks=96
[   87.851298][ T6096] EXT4-fs (loop4): Block reservation details
[   87.857665][ T6096] EXT4-fs (loop4): i_reserved_data_blocks=6
[   87.864397][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.871815][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.877993][ T6029] EXT4-fs (loop1): mount failed
[   87.887440][ T6029] loop1: detected capacity change from 0 to 512
[   87.908293][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.916360][ T6029] System zones: 0-2, 18-18, 34-34
[   87.921766][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   87.937203][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   87.944106][ T6029] EXT4-fs (loop1): get orphan inode failed
[   87.950538][ T6029] EXT4-fs (loop1): mount failed
[   87.959858][ T6029] loop1: detected capacity change from 0 to 512
[   87.978536][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   87.986873][ T6029] System zones: 0-2, 18-18, 34-34
[   87.993262][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.006638][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.013667][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.020294][ T6029] EXT4-fs (loop1): mount failed
[   88.031796][ T6029] loop1: detected capacity change from 0 to 512
[   88.048293][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.057882][ T6029] System zones: 0-2, 18-18, 34-34
[   88.064448][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.079385][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.086766][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.093087][ T6029] EXT4-fs (loop1): mount failed
[   88.102750][ T6029] loop1: detected capacity change from 0 to 512
[   88.118308][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.127042][ T6029] System zones: 0-2, 18-18, 34-34
[   88.132679][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.147719][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.155422][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.162000][ T6029] EXT4-fs (loop1): mount failed
[   88.171879][ T6029] loop1: detected capacity change from 0 to 512
[   88.193925][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.202359][ T6029] System zones: 0-2, 18-18, 34-34
[   88.207622][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.221081][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.227670][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.233806][ T6029] EXT4-fs (loop1): mount failed
[   88.244093][ T6029] loop1: detected capacity change from 0 to 512
[   88.269130][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.278496][ T6029] System zones: 0-2, 18-18, 34-34
[   88.283887][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.298958][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.305657][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.311920][ T6029] EXT4-fs (loop1): mount failed
[   88.321291][ T6029] loop1: detected capacity change from 0 to 512
[   88.338870][ T4850] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   88.351610][ T4850] EXT4-fs (loop4): This should not happen!! Data will be lost
[   88.351610][ T4850] 
[   88.362112][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.370937][ T6029] System zones: 0-2, 18-18, 34-34
[   88.376536][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.396041][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.402685][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.409224][ T6029] EXT4-fs (loop1): mount failed
[   88.422609][ T6029] loop1: detected capacity change from 0 to 512
[   88.438453][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.447248][ T6029] System zones: 0-2, 18-18, 34-34
[   88.453185][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.466742][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.473348][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.479387][ T6029] EXT4-fs (loop1): mount failed
[   88.489196][ T6029] loop1: detected capacity change from 0 to 512
[   88.498822][ T6029] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[   88.507452][ T6029] System zones: 0-2, 18-18, 34-34
[   88.513009][ T6029] EXT4-fs error (device loop1): ext4_init_orphan_info:581: comm syz.1.858: inode #0: comm syz.1.858: iget: illegal inode #
[   88.527447][ T6029] EXT4-fs (loop1): Remounting filesystem read-only
[   88.534693][ T6029] EXT4-fs (loop1): get orphan inode failed
[   88.541151][ T6029] EXT4-fs (loop1): mount failed