last executing test programs:

3.042462564s ago: executing program 1 (id=3462):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x2301)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$USBDEVFS_REAPURB(r0, 0x4008550c, &(0x7f0000000180))
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)

2.127451569s ago: executing program 1 (id=3471):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)

2.039500596s ago: executing program 1 (id=3473):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028014000380"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x0) (fail_nth: 1)

1.799622645s ago: executing program 1 (id=3478):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f00000002c0)={r1})
io_setup(0x490, &(0x7f0000000000)=<r2=>0x0)
r3 = io_uring_setup(0x6001, &(0x7f00000003c0)={0x0, 0x823a, 0x800, 0x2, 0x249})
close_range(r3, r3, 0x0)
io_pgetevents(r2, 0x1, 0x1, &(0x7f0000000180)=[{}], 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r4}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000"], 0x48)
close(r6)
r7 = eventfd2(0x3ff, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(0x0, 0x5)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = msgget$private(0x0, 0x4ba)
msgsnd(r10, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000004bac5221"], 0x5e, 0x0)
io_submit(r2, 0x1, &(0x7f00000001c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x7, r3, 0x0, 0x0, 0x2, 0x0, 0x1, r7}])
r11 = eventfd(0x7)
io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000000)="1a2e55fbee8edf481e3d7526bc4d8647e69952975f4870", 0x17, 0x6, 0x0, 0x1, r11}, &(0x7f0000000180))
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)

1.625524669s ago: executing program 4 (id=3482):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x100c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c245d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8336d69d9e70de142973e7e1f53987b2d"], 0x10, 0x7f4, &(0x7f0000000e40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

1.511420658s ago: executing program 4 (id=3485):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f00000002c0)={r1})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000300)=@hci, 0x80, &(0x7f0000000100), 0x10, 0x0, 0x0, 0x200000}, 0x40001f00)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000180)=[{}], 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r2}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000"], 0x48)
close(r4)
r5 = eventfd2(0x3ff, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(0x0, 0x5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r8 = msgget$private(0x0, 0x4ba)
msgsnd(r8, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000004bac5221"], 0x5e, 0x0)
io_submit(0x0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, 0x1, r5}])
r9 = eventfd(0x7)
io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000000)="1a2e55fbee8edf481e3d7526bc4d8647e69952975f4870", 0x17, 0x6, 0x0, 0x1, r9}, &(0x7f0000000180))
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)

984.25826ms ago: executing program 3 (id=3498):
r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/psched\x00')
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000001280)={'gre0\x00', &(0x7f0000001200)={'erspan0\x00', <r2=>0x0, 0x8000, 0x40, 0x5, 0x400, {{0xd, 0x4, 0x2, 0x3a, 0x34, 0x65, 0x0, 0x1, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}, @broadcast, {[@rr={0x7, 0x1f, 0xe3, [@loopback, @local, @empty, @multicast1, @remote, @private=0xa010100, @multicast1]}, @end]}}}}})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001300)={0x0, <r3=>0x0}, 0x8)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000015c0)={0x11, 0x25, &(0x7f0000001340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xc565}, {}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xbc7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0xe}, @map_idx={0x18, 0x7}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001480)='GPL\x00', 0x400, 0x42, &(0x7f00000014c0)=""/66, 0x41100, 0x35, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001540)={0x5, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001580)=[0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x94)
r5 = open(&(0x7f0000001680)='./file0\x00', 0x248100, 0x11b)
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001700)=@generic={&(0x7f00000016c0)='./file0\x00', 0x0, 0x18}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x9, 0x27, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcda8}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x478}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @map_idx, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb0a1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000001c0)='GPL\x00', 0xd, 0x1000, &(0x7f0000000200)=""/4096, 0x41000, 0x1, '\x00', r2, @fallback=0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000012c0)={0x1, 0x7, 0x8, 0xb04}, 0x10, r3, r4, 0x1, &(0x7f0000001740)=[r5, r6], &(0x7f0000001780)=[{0x0, 0x1, 0x9, 0x3}], 0x10, 0xeca}, 0x94)
r7 = syz_clone(0x0, &(0x7f0000001880)="fca39a26130eaad32a7a54796d021a3ab80690478207df69f2aed38c0799813016557eee680ad93f845bddac0cbc773b3afede8db763535686dade15762ae9f65e295ceeb460f2ee2a00fccd135c7b61de59ee0dc113d406194fb9f5ce1ae2141da171d949d776975ff301e8c33561f57997c47a156d98c21ceab1f3a15e3d19f55c15efa0faaad31f32a5069ae77ab277e28ecb0565509b24db4b8ea79e0d4b47b33060f0d87e53eef70490d8d841cceeaa848930a122d8ef3c00516d65895826cfd0c7bb645998293a9535b634369cb62715a13d7a8eaf7945169a5f177a730b089caf1f9b48", 0xe7, &(0x7f0000001980), &(0x7f00000019c0), &(0x7f0000001a00)="59926f07dee11dee4af952ab3b77d5ed12e72a2d2ecff6c4615d8e83bb7db45e44531ed767afb68ae88c8b34ef6cb4ee6572850880313c21304dfa4cff040c335d7c1808688c316a4c9bf85880c22bed22d9f6a5017e6db458801715c2b2818a0653b9ced5aa63114b47fc95dba8727881da7873cfe9c0621286264ec7272a3cddf954bcd9d8467632a2a263b985bd38183289b31077041d58abe85d0529e1bfe870a740e0563bb217cf787480f493d9eb91c897564a17756d21663f84813cd28660ce8c1341842a47ad170a0d12ff27b312c530")
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001b40), r5)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001b80)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(r0, &(0x7f0000001c40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x24, r8, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_WIPHY_FREQ={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000804}, 0x804)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000001c80)={'\x00', 0x8000, 0x2, 0xc, 0x8000, 0x1, r7})
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000001d00)={0x0, 0x5, 0x3ff, 0x0, 0x9}, 0x14)
lsetxattr$trusted_overlay_upper(&(0x7f0000001d40)='./file0\x00', &(0x7f0000001d80), &(0x7f0000001dc0)={0x0, 0xfb, 0xff, 0x4, 0x12, "3fc7001527281d60ce84c0ca8ce77ae7", "0efa6154733053bf230565acbc0214cd273dba2a50ad7f96c55bba0a94ec593957770de46bb94f706dbea8769c9cc69adda4a3e31cb0232553f33fe66a785aca18e306be19b21dee8ebc1885d83a2f32ac02727ce5526240e891455b3834c4447dd41a5ab0a0b1c99b3603fac50877a75a8bd05e2986a82f5287ebd2bb74ec9e6e7697a5438cc4d71ce44c05fabea26528fab803ab2a0a93c31f875200a49661b5816190643def1d09ce10afee6793f643c2134a796461e9ea8453a4eb3570421fa35d3c98c2c421ba6e45aca3a03bb0cd4e91370e9e9a4be6f54381aedac291b1a6695faf90f0a7ba7a"}, 0xff, 0x2)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000001f00)={0xd, 0x30, '\x00', 0x0, &(0x7f0000001ec0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
r11 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000001f40), 0x210801, 0x0)
write$rfkill(r11, &(0x7f0000001f80)={0x4, 0x9, 0x3, 0x1, 0x1}, 0x8)
r12 = accept4$inet6(r1, &(0x7f0000001fc0), &(0x7f0000002000)=0x1c, 0x800)
close_range(r10, r12, 0x0)
sendmsg$IPSET_CMD_HEADER(r5, &(0x7f0000002100)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000020c0)={&(0x7f0000002080)={0x1c, 0xc, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x81)
sendmsg$nl_route(r5, &(0x7f0000002240)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002200)={&(0x7f0000002180)=@bridge_getlink={0x68, 0x12, 0x400, 0x70bd2a, 0x25dfdbff, {0x7, 0x0, 0x0, r2, 0x8, 0x22068}, [@IFLA_PHYS_PORT_ID={0x1c, 0x22, "1cf06f5c2d0bfa3257e91c469cb6bd25ed04111f7078de84"}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x400}, @IFLA_WEIGHT={0x8, 0xf, 0x7fff}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x7ae7f}, @IFLA_IFNAME={0x14, 0x3, 'batadv_slave_0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x44000}, 0x40000)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), r5)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000002300)={'wlan1\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000002440)={&(0x7f0000002280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002400)={&(0x7f0000002340)={0x98, r13, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r14}, @void}}, [@NL80211_ATTR_MAC_ADDRS={0x34, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8}]}, 0x98}, 0x1, 0x0, 0x0, 0x81c7213e471cdf62}, 0x8000)
socket$can_bcm(0x1d, 0x2, 0x2)
fchdir(r0)
socket$kcm(0x29, 0x2, 0x0)

935.443024ms ago: executing program 3 (id=3499):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x100c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c245d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8336d69d9e70de142973e7e1f53987b2d"], 0x10, 0x7f4, &(0x7f0000000e40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

935.101824ms ago: executing program 0 (id=3500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x100c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c245d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8336d69d9e70de142973e7e1f53987b2d"], 0x10, 0x7f4, &(0x7f0000000e40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

894.917647ms ago: executing program 0 (id=3501):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x200012, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x3, 0x27c, &(0x7f0000000940)="$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")
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xb, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x51857000)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)

879.825718ms ago: executing program 3 (id=3502):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000100)=0x286d, 0x4)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x80000, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

848.416281ms ago: executing program 1 (id=3503):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x50)
unshare(0x2040400)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000001c0)='./file0\x00', 0x800000, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x1, 0x373, &(0x7f00000006c0)="$eJzs3U9rXFUUAPDTsfmr6WQhgop4qRvdDEn8Ag3SghhQYkeqC+HVTHTINBPmDZEpot259XMUl+4E8QtkoXt37rJx2UXpk8yfJpOOKSVOHtXfD8I9yT0nc+883uNuHufw1g93drbz2nbWjcq1FJWIqDyIWO5HA5eGY6Ufz8ZJ9+Kd6q0/3vj4088+WN/YuL6Z0o31m++upZSuvPnL19/8ePXX7ouf/HTl57k4WP788K+1Pw9eOXj18NHNr5p5auZpt91NWbrdbnez261G2mrmO7WUPmo1sryRmrt5ozM2v91q7+31Ura7tbS412nkecp2e2mn0Uvddup2ein7MmvuplqtlpYWg6ep39/czNYH8fwZedcuakFMQaeznh3dw3NPzNTvl7IgAKBU5z3/z/6r5/+ZcP6/SCfP//xXHZ3/Z4f37zjnfwAAAAAAAAAAAAAAeB48KIpqURTV0ViMXhIe/l7y8piyJ67/qZ+y18d0nXhxbz6i9f1+fb8+GAfz69vRjFY0YiWq8fDosTAyiG+8v3F9JfUtx9Kd7/r1V3+LqL8wXr8a1VieXL86qE+P6+NonInFk/VrUY2XJ9evTayfjbffOlFfi2r8/kW0oxVb/cfbcf23qym99+HGqfq5fh4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/w+1NPJ6DPre79cjFmJ/2L+/dpywPN4ff1D/uL/+SlTj4eT+/CsT+/Nfjtcul7t3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABjJe3d3slar0bmoYNTzv/+X2VHwz1WXBun3Tk0txHjy3NP+zzmDyjNVLQw3OWHqUVEU01rq/MVeyvMEMxFxRk4x/ALP/1kvRcQZOXMRMf0tV8r/wp85KONpBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOU6bvpd9koAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoU967u5O1Wo3OFIOy9wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPA8+TsAAP//S+oM3w==")
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='./file1\x00', 0x12000014e)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x8200, 0x1aa)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x40047211, &(0x7f00000000c0))
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
sendmmsg$inet(r2, &(0x7f0000000900)=[{{&(0x7f0000000080)={0x2, 0x4, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000ac0)="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", 0x517}], 0x1}}], 0x2, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100)=0x4)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000140)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x5, '\x00', r5, 0xffffffffffffffff, 0x3, 0x5, 0x4}, 0x50)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r6, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r6, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
syz_emit_ethernet(0x1a0, &(0x7f0000000c40)=ANY=[@ANYBLOB="0180c200000e0180c200000208004d0501920067000000069078ac1414aaac1414aa94040500441cbb016401010000000000ac1414aa00000003e0000001000080014e"], 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r8 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SET(r8, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x3c, 0x3e9, 0x400, 0x70bd2d, 0x25dfdbfc, {0x2, 0x0, 0x2, r7, 0xffffffff, 0x5, 0x2, 0x5, 0x0, 0x8001, 0x3}, ["", "", "", "", ""]}, 0x3c}, 0x1, 0x0, 0x0, 0x10000080}, 0x8080)
pipe(&(0x7f0000000200)={<r9=>0xffffffffffffffff})
vmsplice(r9, &(0x7f0000000080)=[{&(0x7f0000000500)="7c15b6bce0568bdbef75e4667376c6507c51094765fcc21aa8810d5a760327a50bc67e6f84d202", 0x27}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
clock_adjtime(0x0, &(0x7f00000002c0)={0x8003, 0xf423f, 0x0, 0x0, 0x9, 0x2c43, 0xa00, 0xb000001, 0x0, 0x300, 0x0, 0x8, 0x4, 0x100000001, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0xfffffffffffffffc, 0x7f, 0x0, 0xffffffffffffffff})

823.540443ms ago: executing program 3 (id=3504):
syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001c80)=@newtaction={0x64, 0x30, 0x871a15abc695fb3d, 0x0, 0x80000, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0xfffff800, 0x40, 0x1, 0x3, 0x80000000}, 0x3}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000044}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143041, 0x1c2)
pwritev2(r1, &(0x7f0000000080)=[{&(0x7f0000000e40)="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", 0xfc}], 0x1, 0x105405, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r2}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRESOCT=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
r6 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r6, &(0x7f0000000040), 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r8}, 0x18)
getegid()
listen(r6, 0x0)
r9 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r9, &(0x7f0000000080), 0x10)
sendmmsg(r9, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="f054000cb76e89560710aa15d39a57a552ff73024d54361770a73e810d0c6249eff9d0f4c103a05a4ab80e1ff8d7b33272f283e64e42c3e751d96cc45d6550372e83f90f1ed238f5d4ecb656c6c605a92daadff9a2ce45f550eda7903cd8269826c77c15ffd5cd1d42ad75dfb258225ac21eec82749db4bd56566ab9c1a2b13fb811ceb9943115f41859a26a6f38e61a06a7ae945cb92808e9be9e4bd4cf6dcdf8ee0949e47e6562e521e2fbad10298b20d2f92c535bf74b8a624ca542be0513de6034c169d9cd5827c2056cad2f536729707d7f82dd", 0xd6}, {&(0x7f0000000180)="5fd2c65b133f107bab839d2032c9ab17154da4c58a627eceb440aba41b3496203646a9b307", 0x25}, {&(0x7f0000000400)="0bf9fc8389e6f65a8efede36fed226b907499716dfa96a0e394180ebc196db1c8a588ac119329d201c0c64d230b654b9bf0408ce1c8cec3f0b724d94b8c4770730afe4765d8bf84493", 0x49}, {&(0x7f0000000480)="90ee94de9f90a5deebe67185a9329f51ae1657b828e84e99ad1f469afcfc470460073e952e4caddedf9cd42b174c2e7ebf28ee8065d4611c2743812361f9c776e1f06b61e081ad35dfcff3b79dfc67af5ba7686e7303016ec75738dd94a7e86af4273991a4f8d8063f031fab3afde2889a3904e5943ce0afc65ecc373d0caccf31b942feb6bc8e51a67a4767ec16c0ba3f699843f43e841e2100abc3f2a4d3cf2a8f16f2bd0d0de5ce3c7e3ecff06c6fcb8036c8a3c247af2ca49668f9e699456ce04c684c8a78dabb17ef", 0xcb}], 0x4}}], 0x1, 0x24008094)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r10, 0xffffffffffffffff, 0x0)

719.634251ms ago: executing program 0 (id=3505):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5c, 0x0, 0xffffffffffffffff, 0xffffffffffffff7f}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03316844268cb89e14f0080047e0ffff00124000632f77fbac14fe16e000030a07080403fe80000020006558845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x24, 0x60000000}, 0x2c)

699.664853ms ago: executing program 0 (id=3506):
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300a8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x10800d, 0x1, 0x0, 0x0, 0x0, 0xfffff800, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5}, 0x0, 0x0, r0, 0x0)
r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x1}, 0x1205, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x40000000000000, r0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x5)
r2 = syz_io_uring_setup(0x1725, 0x0, &(0x7f0000000300), 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRES32=r3, @ANYRES16=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYRES8=r2], 0x30}}, 0x4000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES64=r3], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

682.209104ms ago: executing program 0 (id=3507):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
unlinkat(0xffffffffffffffff, 0x0, 0x200)

665.724175ms ago: executing program 0 (id=3508):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
msgget(0x1, 0x2b0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x400, &(0x7f0000000340)=ANY=[@ANYRESHEX, @ANYRES64])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x18, 0x30, 0x4, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='illinois\x00', 0x9)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2004d808}, 0x20030004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$sock_ifreq(r6, 0x8943, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
shutdown(0xffffffffffffffff, 0x1)
fspick(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x1)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073017a31000000000800410072786500140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
socket$inet6(0xa, 0x5, 0x6)

650.556937ms ago: executing program 4 (id=3509):
r0 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000003a80)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @multicast1}}}], 0x20}, 0x4008804)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x4008}, 0x18)
sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f00000002c0)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000000180)=[{&(0x7f0000002800)="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", 0x306}, {&(0x7f0000002b40)="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", 0x2ae}], 0x2}, 0x8400)
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, &(0x7f0000000000)=[{&(0x7f00000000c0)="9d", 0x1}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/4096, 0x1000}], 0x1}, 0x40010040)

588.910392ms ago: executing program 4 (id=3510):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r2, 0x0, 0xa}, 0x18)
umount2(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r3 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$selinux_access(r7, &(0x7f0000000380)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6770675f6167656e745f657865635f743a733030303030303030303030303030303030303030330096d46188d16916c7999063729f2547c82293f3fefba19be0819851d977ace2f361457f7e"], 0x46)
fallocate(r3, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, r3, 0x0, 0x0, 0x0, 0xfffffffffdffffff})
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x9e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)

488.86967ms ago: executing program 4 (id=3511):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
creat(0x0, 0x48)
syz_io_uring_submit(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0xfff7, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
ioctl$USBDEVFS_REAPURB(r3, 0x4008550c, &(0x7f0000000380))
request_key(0x0, 0x0, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVid:\xc4e', 0x0)
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SCRUB_CANCEL(r4, 0x941c, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0xf07d, 0x400, 0x40000, 0x105}, &(0x7f0000000400)=<r8=>0x0, &(0x7f0000000240))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r7, 0x8aa, 0x0, 0x0, 0x0, 0x0)

368.00416ms ago: executing program 2 (id=3512):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x0, 0x40000000, 0x0, 0x3}, 0x8})

315.209304ms ago: executing program 4 (id=3513):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000300)=@hci, 0x80, &(0x7f0000000100), 0x10, 0x0, 0x0, 0x200000}, 0x40001f00)
io_setup(0x490, &(0x7f0000000000)=<r2=>0x0)
r3 = io_uring_setup(0x6001, &(0x7f00000003c0)={0x0, 0x823a, 0x800, 0x2, 0x249})
close_range(r3, r3, 0x0)
io_pgetevents(r2, 0x1, 0x1, &(0x7f0000000180)=[{}], 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r4}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000"], 0x48)
close(r6)
r7 = eventfd2(0x3ff, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(0x0, 0x5)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = msgget$private(0x0, 0x4ba)
msgsnd(r10, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000004bac5221"], 0x5e, 0x0)
io_submit(r2, 0x1, &(0x7f00000001c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x7, r3, 0x0, 0x0, 0x2, 0x0, 0x1, r7}])
r11 = eventfd(0x7)
io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000000)="1a2e55fbee8edf481e3d7526bc4d8647e69952975f4870", 0x17, 0x6, 0x0, 0x1, r11}, &(0x7f0000000180))
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)

268.103098ms ago: executing program 2 (id=3514):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x100c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c245d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8336d69d9e70de142973e7e1f53987b2d"], 0x10, 0x7f4, &(0x7f0000000e40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

239.79617ms ago: executing program 3 (id=3515):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x200012, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x3, 0x27c, &(0x7f0000000940)="$eJzs2r1rJGUcB/Df5k5uk5DbiG/cgfighdoMl9QWd0gEMaCoEU5Bbs5sdM24GzJLYEVMKm39E6zF0k6QK23S+BdY2EialFeII/sWNyFwR5LLafh8it0f88x3nnlZht8Mu/fad1+sr5XZWt6NqVotpm7GTtyvxXxMxdhOvPry7V+ff+/2h2/dWl6uj5YuppSuvvDLR1/9+OK97uwHP139+Urszn+8t7/4x+6zu9f2/n7/s1aZWmVqd7opT3c7nW5+t2im1Va5nqX0TtHMy2Zqtcvm5qHxtaKzsdFLeXt1bmZjs1mWKW/30nqzl7qd1N3spfzTvNVOWZaluZngNFZ+uF9VsV89cSeqqpr+Pmbvxdzv0Yjak6n21M3aM3dqz+3Uru1XVeNodPrx7DFn68TXnwthdFNfejelekTx7dbK1srwuz9aj1tr0YoimnEjpuOv6P9MRob1G28uL91IA/PxTbE9ym9vrVwabP8gvxCNmD8+vzDMp3H+SkT0P2cm84vRiKePzy8eyQ/nr8crL03ks2jEb59EJ4pYjX42tkenYOnrhZRef3v5SP76YD0AgIsmSwf6/Vu/aTvUv2XZ5PjsoDMbjg/zE/1h4wH94ZH+6nJcv/x4j52Isvflel4Uzc3+A96gOFhy+mI8ySm3U0XESeL954gTTDo9eVoephi/CjnLU3e4mDp0zR7JFIr/ezF+MXtGG4z4/Phbxp+zj+xuxHn796I/cNX6uewQAAAAAAAAAAAAD+U8/p943LyXzv9QAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/6h/AgAA//86R7ai")
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xb, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x51857000)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)

211.545253ms ago: executing program 2 (id=3516):
r0 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x143a82, 0x8)
socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000e40)={'team0\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x1a00010, &(0x7f0000000540)=ANY=[], 0x2, 0x564, &(0x7f00000010c0)="$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")
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@o_path={&(0x7f0000000100)='./file0/file0\x00', 0x0, 0x18, r4}, 0x18)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="1b00000000000000000000000600000000000000", @ANYRES32=0x1, @ANYBLOB="02000000000000ffffffffffffff7f0000000000fdadda2372a862113aa7cf54d66442175112457a3802af9cd1d9af21e7fc673fb07ea7df1ae70f030004a8f2bad9c69b5c8ae8d989962fb6671c0f131a4261f9b94acca6fbe780ec84c0be4297e2cde7738be5fabb334dbf25b2f5bd54138b55c1fe6b9e7ba5f796bb6bdce8f49b6750cc57c375a48511e3764a3ca38f0b095d898f05680b8b0f39751097693794e49e6f99b302e7e27163c29e58f19ee98f0e473a40142e76488126c745a283dd93d3432789a25494c13e02ac", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000010000000200"/28], 0x50)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r5, 0xffffffffffffffff, 0x6, 0x0, @void}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000680)={<r7=>0x0}, &(0x7f00000006c0)=0xc)
r8 = getpid()
syz_pidfd_open(r8, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r11 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r10, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r11}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
r12 = gettid()
ioctl$sock_FIOGETOWN(r6, 0x8903, &(0x7f0000000700)=<r13=>0x0)
syz_clone3(&(0x7f0000000780)={0x0, &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540), {0x1000019}, &(0x7f0000000580)=""/133, 0x85, &(0x7f0000001640)=""/4096, &(0x7f0000000740)=[r7, 0x0, r7, r12, 0x0, r13], 0x6}, 0x58)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)
r14 = dup(r3)
sendfile(r14, r0, 0x0, 0x8000fffffffc)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r14, 0x84, 0x76, &(0x7f0000001000)={0x0, 0x1000}, &(0x7f0000001040)=0x8)

130.488679ms ago: executing program 2 (id=3517):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5c, 0x0, 0xffffffffffffffff, 0xffffffffffffff7f}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

94.506322ms ago: executing program 2 (id=3518):
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300a8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x10800d, 0x1, 0x0, 0x0, 0x0, 0xfffff800, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5}, 0x0, 0x0, r0, 0x0)
r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x1}, 0x1205, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x40000000000000, r0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x5)
r2 = syz_io_uring_setup(0x1725, 0x0, &(0x7f0000000300), 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRES32=r3, @ANYRES16=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYRES8=r2], 0x30}}, 0x4000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES64=r3], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

76.234204ms ago: executing program 2 (id=3519):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="180057908460b5df08a600000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
syz_usb_disconnect(0xffffffffffffffff)

34.653337ms ago: executing program 3 (id=3520):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f00000002c0)={r1})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000300)=@hci, 0x80, &(0x7f0000000100), 0x10, 0x0, 0x0, 0x200000}, 0x40001f00)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000180)=[{}], 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r2}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000"], 0x48)
close(r4)
r5 = eventfd2(0x3ff, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(0x0, 0x5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r8 = msgget$private(0x0, 0x4ba)
msgsnd(r8, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000004bac5221"], 0x5e, 0x0)
io_submit(0x0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, 0x1, r5}])
r9 = eventfd(0x7)
io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000000)="1a2e55fbee8edf481e3d7526bc4d8647e69952975f4870", 0x17, 0x6, 0x0, 0x1, r9}, &(0x7f0000000180))
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)

0s ago: executing program 1 (id=3521):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) (async)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) (async)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x18)
lsm_get_self_attr(0x68, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a0300000000000000000002000000090002"], 0x34}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
clock_gettime(0x0, &(0x7f0000000000)) (async)
clock_gettime(0x0, &(0x7f0000000000))
chown(0x0, 0x0, 0x0)
pipe2(&(0x7f0000001cc0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@access_uid}]}})

kernel console output (not intermixed with test programs):

ck 1 mapped to illegal pblock 1 (length 1)
[  200.348051][T14764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.359094][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 0
[  200.361161][T14802] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3103: bg 0: block 361: padding at end of block bitmap is not set
[  200.424113][T14764] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 16: comm syz.3.3101: lblock 0 mapped to illegal pblock 16 (length 1)
[  200.439879][T14802] EXT4-fs (loop4): Remounting filesystem read-only
[  200.472274][T14802] EXT4-fs (loop4): 1 truncate cleaned up
[  200.480986][T14802] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  200.548756][T14824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14824 comm=syz.4.3103
[  200.663783][ T4926] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.673833][ T4926] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.683308][ T4926] bond0 (unregistering): Released all slaves
[  200.693165][T14564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.704017][T14564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.713316][T14811] smc: net device bond0 applied user defined pnetid SYZ1
[  200.720907][T14814] smc: net device bond0 erased user defined pnetid SYZ1
[  200.732349][T14813] bridge: RTM_NEWNEIGH with invalid ether address
[  200.754802][T14564] team0: Port device team_slave_0 added
[  200.761970][T14564] team0: Port device team_slave_1 added
[  200.806439][T14564] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.813524][T14564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.839514][T14564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.855576][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.874111][   T52] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  200.888893][ T4926] hsr_slave_0: left promiscuous mode
[  200.889233][   T52] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  200.906468][ T4926] hsr_slave_1: left promiscuous mode
[  200.906857][ T4926] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  200.906875][ T4926] batman_adv: batadv0: Removing interface: batadv_slave_0
[  200.906894][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  200.907066][T13923] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  200.907200][T13923] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  200.907278][T13923] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  200.907788][ T4926] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  200.907804][ T4926] batman_adv: batadv0: Removing interface: batadv_slave_1
[  200.919220][ T4926] veth1_macvtap: left promiscuous mode
[  200.919249][ T4926] veth0_macvtap: left promiscuous mode
[  200.919314][ T4926] veth1_vlan: left promiscuous mode
[  200.919351][ T4926] veth0_vlan: left promiscuous mode
[  200.923248][T14887] loop4: detected capacity change from 0 to 1024
[  200.923841][T14887] EXT4-fs: Ignoring removed nobh option
[  200.962532][T14887] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.009316][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.014592][T14898] loop3: detected capacity change from 0 to 1024
[  201.047499][T14898] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.156997][T14564] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.164123][T14564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.190267][T14564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.213526][T14898] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm ,&#^%: lblock 1 mapped to illegal pblock 1 (length 15)
[  201.227934][T14898] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  201.240570][T14898] EXT4-fs (loop3): This should not happen!! Data will be lost
[  201.240570][T14898] 
[  201.259017][T14898] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  201.278609][T14564] hsr_slave_0: entered promiscuous mode
[  201.284866][T14564] hsr_slave_1: entered promiscuous mode
[  201.290733][T14564] debugfs: 'hsr0' already exists in 'hsr'
[  201.296494][T14564] Cannot create hsr debugfs directory
[  201.304799][T14895] lo speed is unknown, defaulting to 1000
[  201.352072][T14895] lo speed is unknown, defaulting to 1000
[  201.458508][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.520273][T15037] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  201.647119][T15056] loop3: detected capacity change from 0 to 1024
[  201.663095][T15056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.683089][T15051] rdma_rxe: rxe_newlink: failed to add lo
[  201.697198][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.747496][T14564] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  201.771336][T14564] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  201.776261][T15081] loop3: detected capacity change from 0 to 1024
[  201.786857][T15081] EXT4-fs: Ignoring removed nobh option
[  201.812002][T14564] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  201.825165][T14564] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  201.826008][T15081] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.913264][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.008382][T14564] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.023786][T14564] 8021q: adding VLAN 0 to HW filter on device team0
[  202.035333][ T4926] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.042715][ T4926] bridge0: port 1(bridge_slave_0) entered forwarding state
[  202.069265][ T4926] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.076416][ T4926] bridge0: port 2(bridge_slave_1) entered forwarding state
[  202.102458][T14564] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  202.170785][T15110] loop4: detected capacity change from 0 to 512
[  202.181428][T15110] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  202.194576][T15110] EXT4-fs (loop4): orphan cleanup on readonly fs
[  202.202130][T15110] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.3127: Block bitmap for bg 0 marked uninitialized
[  202.213424][T14564] 8021q: adding VLAN 0 to HW filter on device batadv0
[  202.223706][T15110] EXT4-fs (loop4): Remounting filesystem read-only
[  202.232631][T15110] EXT4-fs (loop4): 1 orphan inode deleted
[  202.238946][T15110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  202.263124][T15110] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3127'.
[  202.304993][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.345099][T14564] veth0_vlan: entered promiscuous mode
[  202.363262][T14564] veth1_vlan: entered promiscuous mode
[  202.386885][T14564] veth0_macvtap: entered promiscuous mode
[  202.395514][T14564] veth1_macvtap: entered promiscuous mode
[  202.408022][T14564] batman_adv: batadv0: Interface activated: batadv_slave_0
[  202.420735][T14564] batman_adv: batadv0: Interface activated: batadv_slave_1
[  202.439408][   T52] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  202.455072][   T52] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.477111][   T52] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  202.509833][   T52] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  202.654714][   T29] kauditd_printk_skb: 844 callbacks suppressed
[  202.654777][   T29] audit: type=1326 audit(202.715:29810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6e8cf55ba7 code=0x7ffc0000
[  202.684126][   T29] audit: type=1326 audit(202.715:29811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6e8cefadb9 code=0x7ffc0000
[  202.759960][T15149] siw: device registration error -23
[  202.967460][T15151] loop2: detected capacity change from 0 to 1024
[  203.025271][T15151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.046229][T15156] loop3: detected capacity change from 0 to 128
[  203.095802][T15151] EXT4-fs (loop2): shut down requested (0)
[  203.285867][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.441320][   T29] audit: type=1326 audit(202.715:29812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f6e8cf5ebe9 code=0x7ffc0000
[  203.464230][   T29] audit: type=1326 audit(202.725:29813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6e8cf55ba7 code=0x7ffc0000
[  203.487336][   T29] audit: type=1326 audit(202.725:29814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6e8cefadb9 code=0x7ffc0000
[  203.510326][   T29] audit: type=1326 audit(202.725:29815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f6e8cf5ebe9 code=0x7ffc0000
[  203.533305][   T29] audit: type=1326 audit(202.735:29816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6e8cf55ba7 code=0x7ffc0000
[  203.556289][   T29] audit: type=1326 audit(202.735:29817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6e8cefadb9 code=0x7ffc0000
[  203.579504][   T29] audit: type=1326 audit(202.735:29818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f6e8cf5ebe9 code=0x7ffc0000
[  203.582955][T15163] FAULT_INJECTION: forcing a failure.
[  203.582955][T15163] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.602693][   T29] audit: type=1326 audit(202.745:29819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15131 comm="syz.4.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6e8cf55ba7 code=0x7ffc0000
[  203.615566][T15163] CPU: 0 UID: 0 PID: 15163 Comm: syz.1.3140 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  203.615641][T15163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  203.615657][T15163] Call Trace:
[  203.615663][T15163]  <TASK>
[  203.615671][T15163]  __dump_stack+0x1d/0x30
[  203.615695][T15163]  dump_stack_lvl+0xe8/0x140
[  203.615767][T15163]  dump_stack+0x15/0x1b
[  203.615792][T15163]  should_fail_ex+0x265/0x280
[  203.615824][T15163]  should_fail+0xb/0x20
[  203.615848][T15163]  should_fail_usercopy+0x1a/0x20
[  203.615886][T15163]  _copy_from_user+0x1c/0xb0
[  203.615948][T15163]  kstrtouint_from_user+0x69/0xf0
[  203.615981][T15163]  ? 0xffffffff81000000
[  203.616003][T15163]  ? selinux_file_permission+0x1e4/0x320
[  203.616025][T15163]  proc_fail_nth_write+0x50/0x160
[  203.616131][T15163]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  203.616168][T15163]  vfs_write+0x269/0x960
[  203.616263][T15163]  ? vfs_read+0x4e6/0x770
[  203.616290][T15163]  ? __rcu_read_unlock+0x4f/0x70
[  203.616321][T15163]  ? __fget_files+0x184/0x1c0
[  203.616353][T15163]  ? __rcu_read_unlock+0x4f/0x70
[  203.616386][T15163]  ksys_write+0xda/0x1a0
[  203.616466][T15163]  __x64_sys_write+0x40/0x50
[  203.616498][T15163]  x64_sys_call+0x27fe/0x2ff0
[  203.616527][T15163]  do_syscall_64+0xd2/0x200
[  203.616565][T15163]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  203.616645][T15163]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  203.616757][T15163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.616788][T15163] RIP: 0033:0x7f7a8a7dd69f
[  203.616808][T15163] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  203.616834][T15163] RSP: 002b:00007f7a89247030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  203.616934][T15163] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7a8a7dd69f
[  203.616952][T15163] RDX: 0000000000000001 RSI: 00007f7a892470a0 RDI: 0000000000000004
[  203.616968][T15163] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  203.616993][T15163] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  203.617011][T15163] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  203.617037][T15163]  </TASK>
[  203.661364][T10946] Process accounting resumed
[  203.765933][T15168] smc: net device bond0 applied user defined pnetid SYZ1
[  203.823846][T15178] bridge: RTM_NEWNEIGH with invalid ether address
[  203.934466][T15178] smc: net device bond0 erased user defined pnetid SYZ1
[  204.169068][T15207] siw: device registration error -23
[  204.313693][T15210] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3156'.
[  204.693410][T15206] lo speed is unknown, defaulting to 1000
[  204.736587][T15206] lo speed is unknown, defaulting to 1000
[  204.764976][T15242] netlink: 'syz.2.3164': attribute type 1 has an invalid length.
[  204.805645][T15242] 8021q: adding VLAN 0 to HW filter on device bond1
[  204.923779][T15242] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3164'.
[  205.001039][T15316] loop3: detected capacity change from 0 to 512
[  205.008650][T15316] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  205.020435][T15316] EXT4-fs (loop3): orphan cleanup on readonly fs
[  205.027902][T15248] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3164'.
[  205.032912][T15316] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.3166: Block bitmap for bg 0 marked uninitialized
[  205.080619][T15316] EXT4-fs (loop3): Remounting filesystem read-only
[  205.087368][T15316] EXT4-fs (loop3): 1 orphan inode deleted
[  205.096793][T15319] loop1: detected capacity change from 0 to 8192
[  205.106886][T15316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  205.126366][T15316] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3166'.
[  205.147828][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.159506][T15319]  loop1: p1 p2 p3 p4
[  205.163650][T15319] loop1: p1 start 51379968 is beyond EOD, truncated
[  205.170554][T15319] loop1: p2 start 4293394690 is beyond EOD, truncated
[  205.177421][T15319] loop1: p3 size 100663552 extends beyond EOD, truncated
[  205.179315][T15327] loop3: detected capacity change from 0 to 1024
[  205.192436][T15319] loop1: p4 size 50331648 extends beyond EOD, truncated
[  205.206167][T15327] EXT4-fs: inline encryption not supported
[  205.212167][T15327] EXT4-fs: Ignoring removed i_version option
[  205.221477][   T12] bond0 (unregistering): Released all slaves
[  205.232006][T15327] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  205.234945][   T12] bond1 (unregistering): Released all slaves
[  205.249813][T15327] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.3168: lblock 2 mapped to illegal pblock 2 (length 1)
[  205.265751][T15327] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.3168: lblock 0 mapped to illegal pblock 48 (length 1)
[  205.297965][T15327] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.3168: Failed to acquire dquot type 0
[  205.299906][T15248] bond1 (unregistering): Released all slaves
[  205.311211][T15327] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  205.327550][T15327] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.3168: mark_inode_dirty error
[  205.339728][T15327] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  205.340625][T15334] smc: net device bond0 applied user defined pnetid SYZ1
[  205.350238][   T12] tipc: Left network mode
[  205.361504][T15327] EXT4-fs (loop3): 1 orphan inode deleted
[  205.365216][T15410] bridge: RTM_NEWNEIGH with invalid ether address
[  205.374967][T15327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.390441][ T4926] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  205.394232][T15334] smc: net device bond0 erased user defined pnetid SYZ1
[  205.407943][T15206] chnl_net:caif_netlink_parms(): no params data found
[  205.429953][T15327] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 16: comm syz.3.3168: lblock 0 mapped to illegal pblock 16 (length 1)
[  205.444922][ T4926] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  205.478201][   T12] hsr_slave_0: left promiscuous mode
[  205.483953][   T12] hsr_slave_1: left promiscuous mode
[  205.523676][T15474] loop2: detected capacity change from 0 to 1024
[  205.532956][T15474] EXT4-fs: inline encryption not supported
[  205.538821][T15474] EXT4-fs: Ignoring removed i_version option
[  205.548267][T15474] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  205.566337][T15474] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3172: lblock 2 mapped to illegal pblock 2 (length 1)
[  205.574287][   T52] smc: removing ib device s
z1
[  205.582196][T15474] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.3172: lblock 0 mapped to illegal pblock 48 (length 1)
[  205.601869][T15474] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3172: Failed to acquire dquot type 0
[  205.615168][T15474] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  205.626322][T15474] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.3172: mark_inode_dirty error
[  205.640950][T15474] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  205.653154][T15206] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.654277][T15474] EXT4-fs (loop2): 1 orphan inode deleted
[  205.660412][T15206] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.667725][T15474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.688129][ T4926] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  205.699005][T15206] bridge_slave_0: entered allmulticast mode
[  205.704537][ T4926] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  205.721705][T15206] bridge_slave_0: entered promiscuous mode
[  205.724238][T15474] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.3172: lblock 0 mapped to illegal pblock 16 (length 1)
[  205.740027][T15206] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.748791][T15206] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.758321][T15206] bridge_slave_1: entered allmulticast mode
[  205.766105][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.768890][T15206] bridge_slave_1: entered promiscuous mode
[  205.781523][  T580] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  205.798576][  T580] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 0
[  205.811728][T12488] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  205.826623][T12488] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  205.838719][T12488] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  205.859312][T15206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  205.870270][T15206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  205.896328][T15206] team0: Port device team_slave_0 added
[  205.905830][T15206] team0: Port device team_slave_1 added
[  205.931774][T15206] batman_adv: batadv0: Adding interface: batadv_slave_0
[  205.938900][T15206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.964918][T15206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  205.980161][T15206] batman_adv: batadv0: Adding interface: batadv_slave_1
[  205.987206][T15206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  206.013231][T15206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.030697][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.042776][   T52] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  206.059048][   T52] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  206.073374][T13923] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  206.086448][T13923] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  206.098400][T13923] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  206.109804][T15206] hsr_slave_0: entered promiscuous mode
[  206.116164][T15206] hsr_slave_1: entered promiscuous mode
[  206.122481][T15206] debugfs: 'hsr0' already exists in 'hsr'
[  206.128263][T15206] Cannot create hsr debugfs directory
[  206.281251][T15685] siw: device registration error -23
[  206.415889][T15206] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  206.424804][T15206] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  206.434012][T15206] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  206.443011][T15206] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  206.481130][T15718] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3177'.
[  206.490328][T15206] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.504664][T15206] 8021q: adding VLAN 0 to HW filter on device team0
[  206.516905][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.524055][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.546974][T15206] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  206.557420][T15206] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  206.575787][ T4926] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.582934][ T4926] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.653967][T15206] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.688396][T15724] lo speed is unknown, defaulting to 1000
[  206.695081][T15724] lo speed is unknown, defaulting to 1000
[  206.701046][T15724] lo speed is unknown, defaulting to 1000
[  206.737213][T15724] infiniband s
z1: set active
[  206.742044][T15724] infiniband s
z1: added lo
[  206.747373][T10945] lo speed is unknown, defaulting to 1000
[  206.761349][T15724] RDS/IB: s
z1: added
[  206.765451][T15724] smc: adding ib device s
z1 with port count 1
[  206.771700][T15724] smc:    ib device s
z1 port 1 has pnetid 
[  206.778004][T15724] lo speed is unknown, defaulting to 1000
[  206.813995][T15724] lo speed is unknown, defaulting to 1000
[  206.852258][T15724] lo speed is unknown, defaulting to 1000
[  206.857425][T15206] veth0_vlan: entered promiscuous mode
[  206.867869][T15206] veth1_vlan: entered promiscuous mode
[  206.886748][T15206] veth0_macvtap: entered promiscuous mode
[  206.894184][T15724] lo speed is unknown, defaulting to 1000
[  206.912185][T15206] veth1_macvtap: entered promiscuous mode
[  206.932493][T10946] lo speed is unknown, defaulting to 1000
[  206.939817][T15206] batman_adv: batadv0: Interface activated: batadv_slave_0
[  206.947106][T15724] lo speed is unknown, defaulting to 1000
[  206.956012][T15206] batman_adv: batadv0: Interface activated: batadv_slave_1
[  206.982401][T15724] lo speed is unknown, defaulting to 1000
[  207.037749][  T580] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  207.049426][T15753] loop2: detected capacity change from 0 to 128
[  207.059712][  T580] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  207.073400][  T580] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  207.085412][  T580] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  207.167091][T15763] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3183'.
[  207.176321][T15763] netlink: 108 bytes leftover after parsing attributes in process `syz.3.3183'.
[  207.187523][T15763] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3183'.
[  207.198841][T15763] netlink: 108 bytes leftover after parsing attributes in process `syz.3.3183'.
[  207.207892][T15763] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3183'.
[  207.271969][T10933] Process accounting resumed
[  207.415390][T15784] loop2: detected capacity change from 0 to 1024
[  207.431422][T15787] loop4: detected capacity change from 0 to 512
[  207.440366][T15787] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  207.461586][T15784] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.482842][T15787] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  207.511064][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.532715][T15791] siw: device registration error -23
[  207.540007][T10945] hid_parser_main: 6 callbacks suppressed
[  207.540028][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[  207.553736][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[  207.562424][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.570181][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.577866][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.585646][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.593687][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.601409][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.609176][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.616920][T10945] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[  207.625101][T10945] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  207.667614][T15809] loop2: detected capacity change from 0 to 1024
[  207.674682][T15809] EXT4-fs: inline encryption not supported
[  207.680570][T15809] EXT4-fs: Ignoring removed i_version option
[  207.683545][   T29] kauditd_printk_skb: 468 callbacks suppressed
[  207.683565][   T29] audit: type=1400 audit(207.747:30280): avc:  denied  { lock } for  pid=15810 comm="syz.0.3200" path=2F7365637265746D656D202864656C6574656429 dev="secretmem" ino=37035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  207.701516][T15809] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  207.724560][   T29] audit: type=1400 audit(207.757:30281): avc:  denied  { getattr } for  pid=15810 comm="syz.0.3200" name="secretmem" dev="secretmem" ino=37035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  207.728925][T10933] hid-generic 0000:3000000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  207.754244][T15809] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3199: lblock 2 mapped to illegal pblock 2 (length 1)
[  207.775773][T15809] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  207.785012][T15809] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.3199: lblock 0 mapped to illegal pblock 48 (length 1)
[  207.801545][T15809] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  207.810509][T15809] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3199: Failed to acquire dquot type 0
[  207.822067][T15809] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  207.833228][T15809] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.3199: mark_inode_dirty error
[  207.846407][T15809] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  207.856772][T15809] EXT4-fs (loop2): 1 orphan inode deleted
[  207.864227][T15809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.880367][ T4926] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  207.896363][ T4926] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  207.904894][ T4926] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  207.924581][T15809] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.3199: lblock 0 mapped to illegal pblock 16 (length 1)
[  207.967460][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.977036][   T37] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  207.992479][   T37] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  208.001434][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  208.014921][T12488] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  208.029593][T12488] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  208.039479][T12488] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  208.234133][T15845] loop2: detected capacity change from 0 to 764
[  208.243336][T15845] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  208.255676][T15841] rdma_rxe: rxe_newlink: failed to add lo
[  208.296506][T15845] Symlink component flag not implemented
[  208.313592][T15845] Symlink component flag not implemented (7)
[  208.365589][T15864] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=15864 comm=syz.3.3214
[  208.378264][T15864] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=15864 comm=syz.3.3214
[  208.402365][T15859] loop4: detected capacity change from 0 to 164
[  208.410678][T15859] iso9660: Unknown parameter '�/ㅾ�H���)C2����kS�c3�c)wqB�'
[  208.458721][T15859] team0 (unregistering): Port device team_slave_0 removed
[  208.475474][T15859] team0 (unregistering): Port device team_slave_1 removed
[  208.483749][   T29] audit: type=1326 audit(208.548:30282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15889 comm="syz.2.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe596e0ebe9 code=0x7ffc0000
[  208.484847][T15890] loop2: detected capacity change from 0 to 512
[  208.506877][   T29] audit: type=1326 audit(208.548:30283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15889 comm="syz.2.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe596e0ebe9 code=0x7ffc0000
[  208.506924][   T29] audit: type=1326 audit(208.548:30284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15889 comm="syz.2.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe596e0ebe9 code=0x7ffc0000
[  208.524757][T15890] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  208.536164][   T29] audit: type=1326 audit(208.548:30285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15889 comm="syz.2.3220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe596e0ebe9 code=0x7ffc0000
[  208.594073][T15890] EXT4-fs (loop2): orphan cleanup on readonly fs
[  208.602463][T15890] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.3220: Block bitmap for bg 0 marked uninitialized
[  208.616089][T15890] EXT4-fs (loop2): Remounting filesystem read-only
[  208.634948][T15890] EXT4-fs (loop2): 1 orphan inode deleted
[  208.642516][T15890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  208.675279][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.700310][T15933] loop2: detected capacity change from 0 to 512
[  208.707829][T15933] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  208.723650][T15933] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF
[  209.220463][T15961] loop3: detected capacity change from 0 to 1024
[  209.237422][T15961] EXT4-fs: inline encryption not supported
[  209.243390][T15961] EXT4-fs: Ignoring removed i_version option
[  209.250594][T15961] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  209.268284][T15961] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.3233: lblock 2 mapped to illegal pblock 2 (length 1)
[  209.290242][T15961] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.3233: lblock 0 mapped to illegal pblock 48 (length 1)
[  209.322579][T15961] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.3233: Failed to acquire dquot type 0
[  209.363054][T15961] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  209.417104][T15961] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.3233: mark_inode_dirty error
[  209.483328][T15961] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  209.495051][T15961] EXT4-fs (loop3): 1 orphan inode deleted
[  209.501473][T15961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.516809][   T37] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  209.520934][T15961] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 16: comm syz.3.3233: lblock 0 mapped to illegal pblock 16 (length 1)
[  209.559421][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  209.593406][T13923] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.606720][T15978] loop2: detected capacity change from 0 to 512
[  209.613138][   T37] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  209.613698][T15978] EXT4-fs: Ignoring removed mblk_io_submit option
[  209.633919][T15978] EXT4-fs: Ignoring removed nomblk_io_submit option
[  209.641999][T15978] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  209.650502][T15978] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  209.660198][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  209.672134][T13923] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  209.686770][T13923] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  209.687722][T15978] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.3239: Allocating blocks 41-42 which overlap fs metadata
[  209.697295][T13923] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  209.711462][T15978] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.3239: Allocating blocks 41-42 which overlap fs metadata
[  209.736853][T15978] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3239: Failed to acquire dquot type 1
[  209.750171][T15978] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  209.765011][T15978] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3239: corrupted inode contents
[  209.777707][T15978] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #12: comm syz.2.3239: mark_inode_dirty error
[  209.791304][T15978] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3239: corrupted inode contents
[  209.803973][T15978] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.3239: mark_inode_dirty error
[  209.816253][T15978] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3239: corrupted inode contents
[  209.829664][T15978] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  209.830258][T15989] __nla_validate_parse: 2 callbacks suppressed
[  209.830276][T15989] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3240'.
[  209.838486][T15978] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3239: corrupted inode contents
[  209.869521][T15978] EXT4-fs error (device loop2): ext4_truncate:4666: inode #12: comm syz.2.3239: mark_inode_dirty error
[  209.882560][T15978] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  209.892002][T15978] EXT4-fs (loop2): 1 truncate cleaned up
[  209.899375][T15978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.967380][T15999] FAULT_INJECTION: forcing a failure.
[  209.967380][T15999] name failslab, interval 1, probability 0, space 0, times 0
[  209.980204][T15999] CPU: 1 UID: 0 PID: 15999 Comm: syz.3.3243 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  209.980237][T15999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  209.980271][T15999] Call Trace:
[  209.980279][T15999]  <TASK>
[  209.980305][T15999]  __dump_stack+0x1d/0x30
[  209.980331][T15999]  dump_stack_lvl+0xe8/0x140
[  209.980355][T15999]  dump_stack+0x15/0x1b
[  209.980376][T15999]  should_fail_ex+0x265/0x280
[  209.980403][T15999]  should_failslab+0x8c/0xb0
[  209.980461][T15999]  kmem_cache_alloc_node_noprof+0x57/0x320
[  209.980494][T15999]  ? __alloc_skb+0x101/0x320
[  209.980519][T15999]  __alloc_skb+0x101/0x320
[  209.980550][T15999]  ? audit_log_start+0x365/0x6c0
[  209.980643][T15999]  audit_log_start+0x380/0x6c0
[  209.980683][T15999]  audit_seccomp+0x48/0x100
[  209.980715][T15999]  ? __seccomp_filter+0x68c/0x10d0
[  209.980751][T15999]  __seccomp_filter+0x69d/0x10d0
[  209.980779][T15999]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  209.980810][T15999]  ? vfs_write+0x7e8/0x960
[  209.980915][T15999]  __secure_computing+0x82/0x150
[  209.980937][T15999]  syscall_trace_enter+0xcf/0x1e0
[  209.980961][T15999]  do_syscall_64+0xac/0x200
[  209.981000][T15999]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  209.981030][T15999]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  209.981059][T15999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.981079][T15999] RIP: 0033:0x7fcbc8cdebe9
[  209.981093][T15999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.981113][T15999] RSP: 002b:00007fcbc7747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[  209.981185][T15999] RAX: ffffffffffffffda RBX: 00007fcbc8f15fa0 RCX: 00007fcbc8cdebe9
[  209.981209][T15999] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009
[  209.981224][T15999] RBP: 00007fcbc7747090 R08: 0000000000000000 R09: 0000000000000000
[  209.981239][T15999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.981253][T15999] R13: 00007fcbc8f16038 R14: 00007fcbc8f15fa0 R15: 00007fff7defd208
[  209.981323][T15999]  </TASK>
[  210.263312][T15978] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3239: Failed to acquire dquot type 1
[  210.305849][T16003] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3245'.
[  210.314892][T16003] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3245'.
[  210.477577][T16007] rdma_rxe: rxe_newlink: failed to add lo
[  210.492597][T16015] loop2: detected capacity change from 0 to 1024
[  210.513856][T16015] EXT4-fs: inline encryption not supported
[  210.519891][T16015] EXT4-fs: Ignoring removed i_version option
[  210.539654][T16015] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  210.578990][T16022] loop1: detected capacity change from 0 to 1024
[  210.587139][T16022] EXT4-fs: inline encryption not supported
[  210.593000][T16022] EXT4-fs: Ignoring removed i_version option
[  210.605651][T16015] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3248: lblock 2 mapped to illegal pblock 2 (length 1)
[  210.657576][T16022] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  210.670857][T16015] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.3248: lblock 0 mapped to illegal pblock 48 (length 1)
[  210.702390][T16022] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.3250: lblock 2 mapped to illegal pblock 2 (length 1)
[  210.717882][T16015] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3248: Failed to acquire dquot type 0
[  210.743441][T16022] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.3250: lblock 0 mapped to illegal pblock 48 (length 1)
[  210.744653][T16028] lo speed is unknown, defaulting to 1000
[  210.776599][T16015] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  210.796683][T16028] lo speed is unknown, defaulting to 1000
[  210.824330][T16022] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.3250: Failed to acquire dquot type 0
[  210.837264][T16015] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.3248: mark_inode_dirty error
[  210.839648][T16040] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3253'.
[  210.859262][T16015] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  210.871738][T16022] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  210.875751][T16034] lo speed is unknown, defaulting to 1000
[  210.887235][T16015] EXT4-fs (loop2): 1 orphan inode deleted
[  210.895895][T16022] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.3250: mark_inode_dirty error
[  210.900657][T16040] bridge_slave_1: left allmulticast mode
[  210.912840][T16040] bridge_slave_1: left promiscuous mode
[  210.916437][   T52] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  210.918698][T16040] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.941644][T16015] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.3248: lblock 0 mapped to illegal pblock 16 (length 1)
[  210.957234][T16022] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  210.972364][T16022] EXT4-fs (loop1): 1 orphan inode deleted
[  210.978472][   T52] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  210.991209][T16040] bridge_slave_0: left allmulticast mode
[  210.997031][T16040] bridge_slave_0: left promiscuous mode
[  211.002773][T16040] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.012272][   T52] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  211.030982][T16022] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 16: comm syz.1.3250: lblock 0 mapped to illegal pblock 16 (length 1)
[  211.031653][   T52] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  211.068946][   T12] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  211.083664][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  211.108360][T14564] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  211.121378][T14564] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  211.131950][T14564] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  211.150921][T16034] lo speed is unknown, defaulting to 1000
[  211.332778][   T37] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  211.351694][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  211.363290][T16092] loop4: detected capacity change from 0 to 1024
[  211.364136][T12488] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  211.383638][T16092] EXT4-fs: Ignoring removed bh option
[  211.384733][T12488] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  211.398767][T16092] EXT4-fs: inline encryption not supported
[  211.405380][T16095] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  211.412793][T16095] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  211.416681][T16092] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  211.432300][T12488] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  211.438250][T16097] loop3: detected capacity change from 0 to 1024
[  211.450789][T16097] EXT4-fs: inline encryption not supported
[  211.456768][T16097] EXT4-fs: Ignoring removed i_version option
[  211.464238][T16092] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  211.474134][T16097] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  211.485700][T16092] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.3259: lblock 2 mapped to illegal pblock 2 (length 1)
[  211.502989][T16092] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.3259: lblock 0 mapped to illegal pblock 48 (length 1)
[  211.520250][T16092] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.3259: Failed to acquire dquot type 0
[  211.520839][T16097] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.3260: lblock 2 mapped to illegal pblock 2 (length 1)
[  211.547277][T16097] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.3260: lblock 0 mapped to illegal pblock 48 (length 1)
[  211.562566][T16097] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.3260: Failed to acquire dquot type 0
[  211.575687][T16097] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  211.586497][T16097] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.3260: mark_inode_dirty error
[  211.599532][T16092] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  211.646982][T16092] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.3259: mark_inode_dirty error
[  211.651756][T16097] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  211.659014][T16092] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  211.678899][T16097] EXT4-fs (loop3): 1 orphan inode deleted
[  211.711955][T16092] EXT4-fs (loop4): 1 orphan inode deleted
[  211.721418][T16097] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 16: comm syz.3.3260: lblock 0 mapped to illegal pblock 16 (length 1)
[  211.735692][   T12] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  211.751371][T16110] rdma_rxe: rxe_newlink: failed to add lo
[  211.759515][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  211.772653][   T12] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  211.787980][   T12] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  211.861639][T16117] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3259'.
[  211.872204][T16117] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3259'.
[  211.882730][T16117] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  212.069224][T16121] loop1: detected capacity change from 0 to 256
[  212.292205][ T3436] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  212.308730][ T3436] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 0
[  212.322321][T16138] loop4: detected capacity change from 0 to 256
[  212.325386][T13923] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  212.343049][T13923] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  212.347426][T16138] FAULT_INJECTION: forcing a failure.
[  212.347426][T16138] name failslab, interval 1, probability 0, space 0, times 0
[  212.365189][T16138] CPU: 0 UID: 0 PID: 16138 Comm: syz.4.3270 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  212.365269][T16138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  212.365282][T16138] Call Trace:
[  212.365288][T16138]  <TASK>
[  212.365295][T16138]  __dump_stack+0x1d/0x30
[  212.365318][T16138]  dump_stack_lvl+0xe8/0x140
[  212.365338][T16138]  dump_stack+0x15/0x1b
[  212.365394][T16138]  should_fail_ex+0x265/0x280
[  212.365415][T16138]  should_failslab+0x8c/0xb0
[  212.365441][T16138]  kmem_cache_alloc_node_noprof+0x57/0x320
[  212.365471][T16138]  ? __alloc_skb+0x101/0x320
[  212.365497][T16138]  __alloc_skb+0x101/0x320
[  212.365529][T16138]  ? audit_log_start+0x365/0x6c0
[  212.365563][T16138]  audit_log_start+0x380/0x6c0
[  212.365617][T16138]  audit_seccomp+0x48/0x100
[  212.365643][T16138]  ? __seccomp_filter+0x68c/0x10d0
[  212.365674][T16138]  __seccomp_filter+0x69d/0x10d0
[  212.365697][T16138]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  212.365789][T16138]  ? vfs_write+0x7e8/0x960
[  212.365810][T16138]  ? __rcu_read_unlock+0x4f/0x70
[  212.365831][T16138]  ? __fget_files+0x184/0x1c0
[  212.365859][T16138]  __secure_computing+0x82/0x150
[  212.365950][T16138]  syscall_trace_enter+0xcf/0x1e0
[  212.365975][T16138]  do_syscall_64+0xac/0x200
[  212.366009][T16138]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  212.366034][T16138]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  212.366062][T16138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.366126][T16138] RIP: 0033:0x7fea6261ebe9
[  212.366142][T16138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.366160][T16138] RSP: 002b:00007fea6107f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  212.366179][T16138] RAX: ffffffffffffffda RBX: 00007fea62855fa0 RCX: 00007fea6261ebe9
[  212.366192][T16138] RDX: 0000200000000240 RSI: 0000000000000002 RDI: 00007fea63394000
[  212.366205][T16138] RBP: 00007fea6107f090 R08: 0000000000000000 R09: 0000000000000000
[  212.366217][T16138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.366247][T16138] R13: 00007fea62856038 R14: 00007fea62855fa0 R15: 00007ffd37c76418
[  212.366268][T16138]  </TASK>
[  212.608201][T13923] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  212.634372][T16137] syzkaller1: entered promiscuous mode
[  212.640012][T16137] syzkaller1: entered allmulticast mode
[  212.689773][   T29] kauditd_printk_skb: 437 callbacks suppressed
[  212.689787][   T29] audit: type=1400 audit(212.750:30694): avc:  denied  { create } for  pid=16146 comm="syz.2.3273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  212.746839][T16156] loop2: detected capacity change from 0 to 512
[  212.829111][T16169] loop1: detected capacity change from 0 to 764
[  212.867443][T16169] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  212.878933][T16156] Quota error (device loop2): v2_read_file_info: Free block number 1 out of range (1, 6).
[  212.890131][T16169] Symlink component flag not implemented
[  212.902087][T16169] Symlink component flag not implemented (7)
[  212.910138][T16156] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  212.910885][T10973] Process accounting resumed
[  212.930205][T16156] EXT4-fs (loop2): mount failed
[  212.930695][   T29] audit: type=1326 audit(212.960:30695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  212.935442][T16175] loop4: detected capacity change from 0 to 764
[  212.958157][   T29] audit: type=1326 audit(212.960:30696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  212.987569][   T29] audit: type=1326 audit(212.960:30697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.010988][   T29] audit: type=1326 audit(212.960:30698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.034065][T16175] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  213.033998][   T29] audit: type=1326 audit(212.960:30699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.065088][   T29] audit: type=1326 audit(212.970:30700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.088135][T16175] Symlink component flag not implemented
[  213.088106][   T29] audit: type=1326 audit(212.970:30701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.088213][   T29] audit: type=1326 audit(212.970:30702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16143 comm="syz.0.3272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  213.094004][T16175] Symlink component flag not implemented (7)
[  213.345295][T16196] loop4: detected capacity change from 0 to 512
[  213.353226][T16196] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  213.374765][T16196] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  213.404536][T16195] rdma_rxe: rxe_newlink: failed to add lo
[  213.516660][T16205] FAULT_INJECTION: forcing a failure.
[  213.516660][T16205] name failslab, interval 1, probability 0, space 0, times 0
[  213.529375][T16205] CPU: 0 UID: 0 PID: 16205 Comm: syz.1.3286 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  213.529474][T16205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  213.529489][T16205] Call Trace:
[  213.529498][T16205]  <TASK>
[  213.529507][T16205]  __dump_stack+0x1d/0x30
[  213.529534][T16205]  dump_stack_lvl+0xe8/0x140
[  213.529558][T16205]  dump_stack+0x15/0x1b
[  213.529639][T16205]  should_fail_ex+0x265/0x280
[  213.529662][T16205]  should_failslab+0x8c/0xb0
[  213.529693][T16205]  kmem_cache_alloc_noprof+0x50/0x310
[  213.529736][T16205]  ? security_inode_alloc+0x37/0x100
[  213.529838][T16205]  security_inode_alloc+0x37/0x100
[  213.529864][T16205]  inode_init_always_gfp+0x4b7/0x500
[  213.529918][T16205]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  213.529952][T16205]  alloc_inode+0x58/0x170
[  213.529979][T16205]  new_inode+0x1d/0xe0
[  213.530076][T16205]  shmem_get_inode+0x244/0x750
[  213.530099][T16205]  __shmem_file_setup+0x158/0x210
[  213.530136][T16205]  shmem_kernel_file_setup+0x3e/0x50
[  213.530179][T16205]  newseg+0x2ce/0x670
[  213.530279][T16205]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  213.530338][T16205]  ? dev_map_hash_lookup_elem+0xb5/0xd0
[  213.530375][T16205]  ipcget+0x3af/0x4f0
[  213.530519][T16205]  __x64_sys_shmget+0xa5/0xd0
[  213.530554][T16205]  x64_sys_call+0x2cef/0x2ff0
[  213.530632][T16205]  do_syscall_64+0xd2/0x200
[  213.530739][T16205]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  213.530769][T16205]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  213.530835][T16205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.530856][T16205] RIP: 0033:0x7f7a8a7debe9
[  213.530872][T16205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.530960][T16205] RSP: 002b:00007f7a89247038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  213.530978][T16205] RAX: ffffffffffffffda RBX: 00007f7a8aa15fa0 RCX: 00007f7a8a7debe9
[  213.530990][T16205] RDX: 0000000000000200 RSI: 0000000000003000 RDI: 00000000798dd817
[  213.531002][T16205] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  213.531079][T16205] R10: 0000200000ffd000 R11: 0000000000000246 R12: 0000000000000001
[  213.531094][T16205] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  213.531114][T16205]  </TASK>
[  213.811380][T16213] loop1: detected capacity change from 0 to 1024
[  213.818740][T16213] EXT4-fs: Ignoring removed nobh option
[  213.840752][T16218] loop3: detected capacity change from 0 to 764
[  213.850539][T16218] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  213.861960][T16218] Symlink component flag not implemented
[  213.867911][T16218] Symlink component flag not implemented (7)
[  213.890461][T16226] loop1: detected capacity change from 0 to 1024
[  213.897829][T16226] EXT4-fs: Ignoring removed nobh option
[  213.907503][T16231] loop3: detected capacity change from 0 to 1024
[  213.919126][T16231] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  213.952091][T16240] loop1: detected capacity change from 0 to 1024
[  214.053189][T16262] loop3: detected capacity change from 0 to 512
[  214.061312][T16264] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3300'.
[  214.061519][T16262] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  214.070672][T16264] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3300'.
[  214.089369][T16264] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3300'.
[  214.098446][T16264] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3300'.
[  214.146460][T16262] EXT4-fs (loop3): orphan cleanup on readonly fs
[  214.153324][T16262] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.3299: Block bitmap for bg 0 marked uninitialized
[  214.174349][T16275] loop2: detected capacity change from 0 to 1024
[  214.182945][T16275] EXT4-fs: inline encryption not supported
[  214.185288][T16262] EXT4-fs (loop3): Remounting filesystem read-only
[  214.188965][T16275] EXT4-fs: Ignoring removed i_version option
[  214.202472][T16275] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  214.204910][T16262] EXT4-fs (loop3): 1 orphan inode deleted
[  214.234236][T16275] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3304: lblock 2 mapped to illegal pblock 2 (length 1)
[  214.248735][T16281] FAULT_INJECTION: forcing a failure.
[  214.248735][T16281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.256811][T16275] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.3304: lblock 0 mapped to illegal pblock 48 (length 1)
[  214.261856][T16281] CPU: 0 UID: 0 PID: 16281 Comm: syz.4.3305 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  214.261910][T16281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.261924][T16281] Call Trace:
[  214.261933][T16281]  <TASK>
[  214.261943][T16281]  __dump_stack+0x1d/0x30
[  214.261975][T16281]  dump_stack_lvl+0xe8/0x140
[  214.262066][T16281]  dump_stack+0x15/0x1b
[  214.262090][T16281]  should_fail_ex+0x265/0x280
[  214.262189][T16281]  should_fail+0xb/0x20
[  214.262286][T16281]  should_fail_usercopy+0x1a/0x20
[  214.262318][T16281]  _copy_from_user+0x1c/0xb0
[  214.262358][T16281]  kstrtouint_from_user+0x69/0xf0
[  214.262391][T16281]  ? 0xffffffff81000000
[  214.262409][T16281]  ? selinux_file_permission+0x1e4/0x320
[  214.262456][T16281]  proc_fail_nth_write+0x50/0x160
[  214.262530][T16281]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  214.262567][T16281]  vfs_write+0x269/0x960
[  214.262596][T16281]  ? vfs_read+0x4e6/0x770
[  214.262625][T16281]  ? __sys_setsockopt+0x18e/0x200
[  214.262655][T16281]  ? kfree+0x27b/0x320
[  214.262765][T16281]  ? sock_common_setsockopt+0x66/0x80
[  214.262858][T16281]  ksys_write+0xda/0x1a0
[  214.262912][T16281]  __x64_sys_write+0x40/0x50
[  214.262942][T16281]  x64_sys_call+0x27fe/0x2ff0
[  214.262973][T16281]  do_syscall_64+0xd2/0x200
[  214.263012][T16281]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  214.263072][T16281]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  214.263109][T16281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.263139][T16281] RIP: 0033:0x7fea6261d69f
[  214.263160][T16281] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  214.263195][T16281] RSP: 002b:00007fea6107f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  214.263220][T16281] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fea6261d69f
[  214.263237][T16281] RDX: 0000000000000001 RSI: 00007fea6107f0a0 RDI: 0000000000000006
[  214.263286][T16281] RBP: 00007fea6107f090 R08: 0000000000000000 R09: 0000000000000000
[  214.263304][T16281] R10: 00002000000002c0 R11: 0000000000000293 R12: 0000000000000001
[  214.263391][T16281] R13: 00007fea62856038 R14: 00007fea62855fa0 R15: 00007ffd37c76418
[  214.263417][T16281]  </TASK>
[  214.272348][T16283] loop1: detected capacity change from 0 to 1024
[  214.278295][T16275] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3304: Failed to acquire dquot type 0
[  214.518678][T16275] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  214.528686][T16275] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.3304: mark_inode_dirty error
[  214.540287][T16275] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  214.552213][T16275] EXT4-fs (loop2): 1 orphan inode deleted
[  214.565744][  T580] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  214.567882][T16275] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.3304: lblock 0 mapped to illegal pblock 16 (length 1)
[  214.609925][  T580] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 0
[  214.644721][T16294] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  214.650810][T16310] $H�: renamed from bond0 (while UP)
[  214.652102][T16294] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  214.664136][T16311] loop1: detected capacity change from 0 to 512
[  214.672436][   T37] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  214.674317][T16310] $H�: entered promiscuous mode
[  214.688128][T16311] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  214.691622][T16310] bond_slave_0: entered promiscuous mode
[  214.704244][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  214.709353][T16310] bond_slave_1: entered promiscuous mode
[  214.734950][T16311] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  214.741476][T12488] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  214.757172][T12488] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  214.766826][T12488] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  214.807572][T16322] loop2: detected capacity change from 0 to 512
[  214.815748][T16322] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  214.823883][T16322] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  214.832579][T16322] EXT4-fs (loop2): 1 truncate cleaned up
[  214.844078][T16322] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 4: comm syz.2.3318: lblock 0 mapped to illegal pblock 4 (length 1)
[  214.858611][T16322] EXT4-fs (loop2): Remounting filesystem read-only
[  215.191999][T16334] loop4: detected capacity change from 0 to 512
[  215.199540][T16334] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  215.210085][T16334] EXT4-fs (loop4): orphan cleanup on readonly fs
[  215.216827][T16334] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.3320: Block bitmap for bg 0 marked uninitialized
[  215.230562][T16334] EXT4-fs (loop4): Remounting filesystem read-only
[  215.237243][T16334] EXT4-fs (loop4): 1 orphan inode deleted
[  215.247412][T16334] __nla_validate_parse: 7 callbacks suppressed
[  215.247493][T16334] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3320'.
[  215.471072][T16342] siw: device registration error -23
[  215.567105][T16346] program syz.2.3322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  215.903434][T16352] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[  215.903434][T16352]    program syz.0.3323 not setting count and/or reply_len properly
[  215.986393][T16361] FAULT_INJECTION: forcing a failure.
[  215.986393][T16361] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.999630][T16361] CPU: 1 UID: 0 PID: 16361 Comm: syz.0.3329 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  215.999663][T16361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  215.999680][T16361] Call Trace:
[  215.999688][T16361]  <TASK>
[  215.999698][T16361]  __dump_stack+0x1d/0x30
[  215.999725][T16361]  dump_stack_lvl+0xe8/0x140
[  215.999755][T16361]  dump_stack+0x15/0x1b
[  215.999773][T16361]  should_fail_ex+0x265/0x280
[  215.999801][T16361]  should_fail+0xb/0x20
[  215.999882][T16361]  should_fail_usercopy+0x1a/0x20
[  215.999911][T16361]  _copy_to_user+0x20/0xa0
[  215.999942][T16361]  simple_read_from_buffer+0xb5/0x130
[  215.999973][T16361]  proc_fail_nth_read+0x10e/0x150
[  216.000073][T16361]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  216.000140][T16361]  vfs_read+0x1a8/0x770
[  216.000159][T16361]  ? __rcu_read_unlock+0x4f/0x70
[  216.000182][T16361]  ? __fget_files+0x184/0x1c0
[  216.000260][T16361]  ksys_read+0xda/0x1a0
[  216.000283][T16361]  __x64_sys_read+0x40/0x50
[  216.000342][T16361]  x64_sys_call+0x27bc/0x2ff0
[  216.000363][T16361]  do_syscall_64+0xd2/0x200
[  216.000391][T16361]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  216.000415][T16361]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  216.000474][T16361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.000560][T16361] RIP: 0033:0x7f303d08d5fc
[  216.000578][T16361] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  216.000600][T16361] RSP: 002b:00007f303baf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  216.000622][T16361] RAX: ffffffffffffffda RBX: 00007f303d2c5fa0 RCX: 00007f303d08d5fc
[  216.000635][T16361] RDX: 000000000000000f RSI: 00007f303baf70a0 RDI: 0000000000000004
[  216.000646][T16361] RBP: 00007f303baf7090 R08: 0000000000000000 R09: 0000000000000000
[  216.000682][T16361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.000697][T16361] R13: 00007f303d2c6038 R14: 00007f303d2c5fa0 R15: 00007ffef8c542a8
[  216.000718][T16361]  </TASK>
[  216.275760][T16367] smc: net device bond0 applied user defined pnetid SYZ1
[  216.316496][T16367] bridge: RTM_NEWNEIGH with invalid ether address
[  216.339857][T16367] smc: net device bond0 erased user defined pnetid SYZ1
[  216.378328][T16370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3330'.
[  216.387461][T16370] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3330'.
[  216.402402][T16370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3330'.
[  216.412187][T16370] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3330'.
[  216.421434][T16370] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3330'.
[  216.434790][T16369] netlink: 'syz.4.3332': attribute type 1 has an invalid length.
[  216.477703][T16369] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3332'.
[  216.537877][T16383] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  216.631486][T16394] loop4: detected capacity change from 0 to 512
[  216.639519][T16394] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  216.653635][T16394] EXT4-fs (loop4): orphan cleanup on readonly fs
[  216.660423][T16394] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.3340: Block bitmap for bg 0 marked uninitialized
[  216.675824][T16394] EXT4-fs (loop4): Remounting filesystem read-only
[  216.682552][T16394] EXT4-fs (loop4): 1 orphan inode deleted
[  216.695851][T16394] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3340'.
[  216.746428][T16397] rdma_rxe: rxe_newlink: failed to add lo
[  216.763259][T16406] smc: net device bond0 applied user defined pnetid SYZ1
[  216.773269][T16406] bridge: RTM_NEWNEIGH with invalid ether address
[  216.784753][T16406] smc: net device bond0 erased user defined pnetid SYZ1
[  216.818188][T16413] FAULT_INJECTION: forcing a failure.
[  216.818188][T16413] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.831534][T16413] CPU: 1 UID: 0 PID: 16413 Comm: syz.1.3345 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  216.831568][T16413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  216.831582][T16413] Call Trace:
[  216.831598][T16413]  <TASK>
[  216.831605][T16413]  __dump_stack+0x1d/0x30
[  216.831628][T16413]  dump_stack_lvl+0xe8/0x140
[  216.831649][T16413]  dump_stack+0x15/0x1b
[  216.831666][T16413]  should_fail_ex+0x265/0x280
[  216.831692][T16413]  should_fail+0xb/0x20
[  216.831752][T16413]  should_fail_usercopy+0x1a/0x20
[  216.831781][T16413]  _copy_from_user+0x1c/0xb0
[  216.831825][T16413]  __sys_bpf+0x178/0x7b0
[  216.831868][T16413]  __x64_sys_bpf+0x41/0x50
[  216.831893][T16413]  x64_sys_call+0x2aea/0x2ff0
[  216.831964][T16413]  do_syscall_64+0xd2/0x200
[  216.831999][T16413]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  216.832024][T16413]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  216.832070][T16413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.832094][T16413] RIP: 0033:0x7f7a8a7debe9
[  216.832113][T16413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.832136][T16413] RSP: 002b:00007f7a89247038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  216.832160][T16413] RAX: ffffffffffffffda RBX: 00007f7a8aa15fa0 RCX: 00007f7a8a7debe9
[  216.832209][T16413] RDX: 0000000000000050 RSI: 0000200000000440 RDI: 0000000000000000
[  216.832225][T16413] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  216.832284][T16413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.832299][T16413] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  216.832322][T16413]  </TASK>
[  217.022296][T16416] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  217.073339][T16422] loop3: detected capacity change from 0 to 1024
[  217.086737][T16422] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  217.139131][T16429] loop3: detected capacity change from 0 to 1024
[  217.158770][T16429] EXT4-fs: inline encryption not supported
[  217.164798][T16429] EXT4-fs: Ignoring removed i_version option
[  217.186073][T16434] loop1: detected capacity change from 0 to 512
[  217.194518][T16429] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  217.195155][T16434] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  217.218390][T16429] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.3350: lblock 2 mapped to illegal pblock 2 (length 1)
[  217.238052][T16434] EXT4-fs (loop1): orphan cleanup on readonly fs
[  217.244870][T16429] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.3350: lblock 0 mapped to illegal pblock 48 (length 1)
[  217.260956][T16434] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.3352: Block bitmap for bg 0 marked uninitialized
[  217.275544][T16429] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.3350: Failed to acquire dquot type 0
[  217.287073][T16434] EXT4-fs (loop1): Remounting filesystem read-only
[  217.294989][T16434] EXT4-fs (loop1): 1 orphan inode deleted
[  217.306256][T16429] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  217.318460][T16434] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3352'.
[  217.360147][T16429] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.3350: mark_inode_dirty error
[  217.378621][T16429] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  217.389820][T16429] EXT4-fs (loop3): 1 orphan inode deleted
[  217.398665][T16440] FAULT_INJECTION: forcing a failure.
[  217.398665][T16440] name failslab, interval 1, probability 0, space 0, times 0
[  217.411530][T16440] CPU: 1 UID: 0 PID: 16440 Comm: syz.0.3354 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  217.411562][T16440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  217.411575][T16440] Call Trace:
[  217.411631][T16440]  <TASK>
[  217.411640][T16440]  __dump_stack+0x1d/0x30
[  217.411664][T16440]  dump_stack_lvl+0xe8/0x140
[  217.411689][T16440]  dump_stack+0x15/0x1b
[  217.411707][T16440]  should_fail_ex+0x265/0x280
[  217.411810][T16440]  should_failslab+0x8c/0xb0
[  217.411848][T16440]  kmem_cache_alloc_noprof+0x50/0x310
[  217.411906][T16440]  ? ioctx_alloc+0xf5/0x4e0
[  217.411938][T16440]  ? __fget_files+0x184/0x1c0
[  217.412039][T16440]  ioctx_alloc+0xf5/0x4e0
[  217.412067][T16440]  ? fput+0x8f/0xc0
[  217.412104][T16440]  __se_sys_io_setup+0x6b/0x1b0
[  217.412205][T16440]  __x64_sys_io_setup+0x31/0x40
[  217.412234][T16440]  x64_sys_call+0x2eff/0x2ff0
[  217.412255][T16440]  do_syscall_64+0xd2/0x200
[  217.412282][T16440]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  217.412377][T16440]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  217.412412][T16440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.412432][T16440] RIP: 0033:0x7f303d08ebe9
[  217.412500][T16440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.412523][T16440] RSP: 002b:00007f303baf7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  217.412625][T16440] RAX: ffffffffffffffda RBX: 00007f303d2c5fa0 RCX: 00007f303d08ebe9
[  217.412638][T16440] RDX: 0000000000000000 RSI: 0000200000000680 RDI: 0000000000002004
[  217.412651][T16440] RBP: 00007f303baf7090 R08: 0000000000000000 R09: 0000000000000000
[  217.412666][T16440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.412682][T16440] R13: 00007f303d2c6038 R14: 00007f303d2c5fa0 R15: 00007ffef8c542a8
[  217.412706][T16440]  </TASK>
[  217.416823][T16444] loop1: detected capacity change from 0 to 1024
[  217.522424][T16429] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 16: comm syz.3.3350: lblock 0 mapped to illegal pblock 16 (length 1)
[  217.622977][   T52] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  217.639082][T16444] EXT4-fs: Ignoring removed nobh option
[  217.657175][   T52] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  217.745984][   T29] kauditd_printk_skb: 370 callbacks suppressed
[  217.746002][   T29] audit: type=1326 audit(217.752:31066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.775576][   T29] audit: type=1326 audit(217.752:31067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.798726][   T29] audit: type=1326 audit(217.752:31068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.821859][   T29] audit: type=1326 audit(217.762:31069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.845003][   T29] audit: type=1326 audit(217.762:31070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.856242][   T52] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  217.868380][   T29] audit: type=1326 audit(217.762:31071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.868416][   T29] audit: type=1326 audit(217.762:31072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.928657][   T29] audit: type=1326 audit(217.762:31073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.942879][   T52] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  217.951733][   T29] audit: type=1326 audit(217.762:31074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16441 comm="syz.1.3353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8a7debe9 code=0x7ffc0000
[  217.960207][   T52] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  217.999446][T13923] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  218.016963][T16458] smc: net device bond0 applied user defined pnetid SYZ1
[  218.044182][T16458] smc: net device bond0 erased user defined pnetid SYZ1
[  218.090036][T13923] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  218.119883][T13923] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  218.136812][T16454] FAULT_INJECTION: forcing a failure.
[  218.136812][T16454] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  218.150139][T16454] CPU: 1 UID: 0 PID: 16454 Comm: syz.2.3357 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  218.150211][T16454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  218.150227][T16454] Call Trace:
[  218.150235][T16454]  <TASK>
[  218.150244][T16454]  __dump_stack+0x1d/0x30
[  218.150306][T16454]  dump_stack_lvl+0xe8/0x140
[  218.150330][T16454]  dump_stack+0x15/0x1b
[  218.150341][T16467] loop1: detected capacity change from 0 to 128
[  218.150351][T16454]  should_fail_ex+0x265/0x280
[  218.150378][T16454]  should_fail_alloc_page+0xf2/0x100
[  218.150479][T16454]  __alloc_frozen_pages_noprof+0xff/0x360
[  218.150542][T16454]  alloc_pages_mpol+0xb3/0x250
[  218.150590][T16454]  alloc_migration_target_by_mpol+0x11b/0x280
[  218.150706][T16454]  migrate_pages_batch+0x309/0x1ae0
[  218.150823][T16454]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  218.150859][T16454]  ? __walk_page_range+0x324/0x340
[  218.150962][T16454]  migrate_pages+0xf5f/0x1770
[  218.151003][T16454]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  218.151053][T16454]  __se_sys_mbind+0x975/0xac0
[  218.151103][T16454]  __x64_sys_mbind+0x78/0x90
[  218.151166][T16454]  x64_sys_call+0x2932/0x2ff0
[  218.151195][T16454]  do_syscall_64+0xd2/0x200
[  218.151236][T16454]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  218.151275][T16454]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  218.151311][T16454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.151342][T16454] RIP: 0033:0x7fe596e0ebe9
[  218.151362][T16454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.151455][T16454] RSP: 002b:00007fe595877038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  218.151479][T16454] RAX: ffffffffffffffda RBX: 00007fe597045fa0 RCX: 00007fe596e0ebe9
[  218.151504][T16454] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  218.151522][T16454] RBP: 00007fe595877090 R08: 0600000000000000 R09: 0000000000000002
[  218.151540][T16454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.151557][T16454] R13: 00007fe597046038 R14: 00007fe597045fa0 R15: 00007ffe8c33f138
[  218.151646][T16454]  </TASK>
[  218.356697][T16479] netlink: 68 bytes leftover after parsing attributes in process `syz.3.3360'.
[  218.376347][T16474] loop4: detected capacity change from 0 to 512
[  218.385838][T16474] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  218.397556][T16474] EXT4-fs (loop4): orphan cleanup on readonly fs
[  218.405817][T16479] loop3: detected capacity change from 0 to 1024
[  218.413715][T16475] loop2: detected capacity change from 0 to 512
[  218.421279][T16475] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  218.433920][T16474] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.3365: Block bitmap for bg 0 marked uninitialized
[  218.449707][T16474] EXT4-fs (loop4): Remounting filesystem read-only
[  218.462552][T16474] EXT4-fs (loop4): 1 orphan inode deleted
[  218.465112][T16479] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  218.489858][T16475] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF
[  218.546037][T16495] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  218.578075][T16495] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  218.588287][T16491] loop4: detected capacity change from 0 to 164
[  218.603884][T16495] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  218.604305][T16491] iso9660: Unknown parameter '�/ㅾ�H���)C2����kS�c3�c)wqB�'
[  218.633733][T10945] Process accounting resumed
[  218.634485][T16495] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  218.715238][T16514] loop1: detected capacity change from 0 to 1024
[  218.722029][T16514] EXT4-fs: inline encryption not supported
[  218.727986][T16514] EXT4-fs: Ignoring removed i_version option
[  218.734778][T16514] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  218.747674][T16514] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.3370: lblock 2 mapped to illegal pblock 2 (length 1)
[  218.762022][T16514] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.3370: lblock 0 mapped to illegal pblock 48 (length 1)
[  218.786239][T16514] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.3370: Failed to acquire dquot type 0
[  218.820682][T16514] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  218.874050][T16525] smc: net device bond0 applied user defined pnetid SYZ1
[  218.881851][T16525] bridge: RTM_NEWNEIGH with invalid ether address
[  218.892920][T16514] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.3370: mark_inode_dirty error
[  218.905519][T16514] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  218.916571][T16514] EXT4-fs (loop1): 1 orphan inode deleted
[  218.926361][T16514] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 16: comm syz.1.3370: lblock 0 mapped to illegal pblock 16 (length 1)
[  218.940888][ T3436] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  218.957213][ T3436] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:7: Failed to release dquot type 0
[  218.981685][   T52] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.015552][   T52] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  219.040309][T14564] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  219.064645][T14564] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  219.084853][T14564] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  219.389581][T16542] syz_tun: entered allmulticast mode
[  219.401785][T16542] pimreg: entered allmulticast mode
[  219.409441][T16535] syz_tun: left allmulticast mode
[  219.436506][T16554] loop2: detected capacity change from 0 to 128
[  219.449166][T16557] loop1: detected capacity change from 0 to 764
[  219.456924][T16557] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  219.472800][T16557] Symlink component flag not implemented
[  219.478579][T16557] Symlink component flag not implemented (7)
[  219.603824][ T3385] Process accounting resumed
[  219.680437][T16564] s
z1: rxe_newlink: already configured on lo
[  219.748858][T16574] loop2: detected capacity change from 0 to 1024
[  219.780017][T16576] loop1: detected capacity change from 0 to 512
[  219.798951][T16576] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  219.810559][T16576] EXT4-fs (loop1): orphan cleanup on readonly fs
[  219.818948][T16576] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.3388: Block bitmap for bg 0 marked uninitialized
[  219.819579][T16582] loop2: detected capacity change from 0 to 512
[  219.837379][T16576] EXT4-fs (loop1): Remounting filesystem read-only
[  219.846217][T16576] EXT4-fs (loop1): 1 orphan inode deleted
[  219.852164][T16585] loop4: detected capacity change from 0 to 512
[  219.856996][T16582] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  219.859712][T16585] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  219.884424][T16582] EXT4-fs (loop2): orphan cleanup on readonly fs
[  219.889429][T16585] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  219.901582][T16582] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.3389: Block bitmap for bg 0 marked uninitialized
[  219.915405][T16582] EXT4-fs (loop2): Remounting filesystem read-only
[  219.922492][T16582] EXT4-fs (loop2): 1 orphan inode deleted
[  219.964340][T16598] FAULT_INJECTION: forcing a failure.
[  219.964340][T16598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.977641][T16598] CPU: 1 UID: 0 PID: 16598 Comm: syz.2.3392 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  219.977710][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  219.977726][T16598] Call Trace:
[  219.977734][T16598]  <TASK>
[  219.977743][T16598]  __dump_stack+0x1d/0x30
[  219.977768][T16598]  dump_stack_lvl+0xe8/0x140
[  219.977787][T16598]  dump_stack+0x15/0x1b
[  219.977803][T16598]  should_fail_ex+0x265/0x280
[  219.977896][T16598]  should_fail+0xb/0x20
[  219.977917][T16598]  should_fail_usercopy+0x1a/0x20
[  219.977944][T16598]  _copy_from_user+0x1c/0xb0
[  219.978030][T16598]  ___sys_sendmsg+0xc1/0x1d0
[  219.978077][T16598]  __x64_sys_sendmsg+0xd4/0x160
[  219.978158][T16598]  x64_sys_call+0x191e/0x2ff0
[  219.978183][T16598]  do_syscall_64+0xd2/0x200
[  219.978218][T16598]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  219.978249][T16598]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  219.978359][T16598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.978386][T16598] RIP: 0033:0x7fe596e0ebe9
[  219.978404][T16598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.978482][T16598] RSP: 002b:00007fe595877038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.978558][T16598] RAX: ffffffffffffffda RBX: 00007fe597045fa0 RCX: 00007fe596e0ebe9
[  219.978570][T16598] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[  219.978586][T16598] RBP: 00007fe595877090 R08: 0000000000000000 R09: 0000000000000000
[  219.978602][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.978616][T16598] R13: 00007fe597046038 R14: 00007fe597045fa0 R15: 00007ffe8c33f138
[  219.978635][T16598]  </TASK>
[  220.204053][T16606] loop3: detected capacity change from 0 to 1024
[  220.211968][T16606] EXT4-fs: Ignoring removed orlov option
[  220.217708][T16606] EXT4-fs: Ignoring removed nomblk_io_submit option
[  220.304766][T16616] loop2: detected capacity change from 0 to 764
[  220.313610][T16616] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  220.322786][T16616] Symlink component flag not implemented
[  220.328527][T16616] Symlink component flag not implemented (7)
[  220.351651][T16621] loop2: detected capacity change from 0 to 128
[  220.477098][T16638] bridge: RTM_NEWNEIGH with invalid ether address
[  220.514318][T16641] FAULT_INJECTION: forcing a failure.
[  220.514318][T16641] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.527587][T16641] CPU: 0 UID: 0 PID: 16641 Comm: syz.0.3405 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  220.527620][T16641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  220.527636][T16641] Call Trace:
[  220.527645][T16641]  <TASK>
[  220.527655][T16641]  __dump_stack+0x1d/0x30
[  220.527681][T16641]  dump_stack_lvl+0xe8/0x140
[  220.527746][T16641]  dump_stack+0x15/0x1b
[  220.527767][T16641]  should_fail_ex+0x265/0x280
[  220.527793][T16641]  should_fail+0xb/0x20
[  220.527814][T16641]  should_fail_usercopy+0x1a/0x20
[  220.527842][T16641]  _copy_to_user+0x20/0xa0
[  220.527914][T16641]  simple_read_from_buffer+0xb5/0x130
[  220.527942][T16641]  proc_fail_nth_read+0x10e/0x150
[  220.528029][T16641]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  220.528062][T16641]  vfs_read+0x1a8/0x770
[  220.528089][T16641]  ? __rcu_read_unlock+0x4f/0x70
[  220.528193][T16641]  ? __fget_files+0x184/0x1c0
[  220.528224][T16641]  ksys_read+0xda/0x1a0
[  220.528318][T16641]  __x64_sys_read+0x40/0x50
[  220.528343][T16641]  x64_sys_call+0x27bc/0x2ff0
[  220.528369][T16641]  do_syscall_64+0xd2/0x200
[  220.528482][T16641]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  220.528514][T16641]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  220.528561][T16641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.528599][T16641] RIP: 0033:0x7f303d08d5fc
[  220.528688][T16641] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  220.528706][T16641] RSP: 002b:00007f303baf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  220.528728][T16641] RAX: ffffffffffffffda RBX: 00007f303d2c5fa0 RCX: 00007f303d08d5fc
[  220.528816][T16641] RDX: 000000000000000f RSI: 00007f303baf70a0 RDI: 0000000000000003
[  220.528832][T16641] RBP: 00007f303baf7090 R08: 0000000000000000 R09: 0000000000000000
[  220.528848][T16641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.528863][T16641] R13: 00007f303d2c6038 R14: 00007f303d2c5fa0 R15: 00007ffef8c542a8
[  220.528883][T16641]  </TASK>
[  220.529103][   T36] Process accounting resumed
[  220.626575][T16649] loop3: detected capacity change from 0 to 764
[  220.742597][T16649] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  220.758467][T16649] Symlink component flag not implemented
[  220.766026][T16660] veth1_to_bond: entered allmulticast mode
[  220.772330][T16660] veth1_to_bond: left allmulticast mode
[  220.780436][T16649] Symlink component flag not implemented (7)
[  220.844356][T16669] FAULT_INJECTION: forcing a failure.
[  220.844356][T16669] name failslab, interval 1, probability 0, space 0, times 0
[  220.857090][T16669] CPU: 0 UID: 0 PID: 16669 Comm: syz.1.3412 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  220.857118][T16669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  220.857187][T16669] Call Trace:
[  220.857196][T16669]  <TASK>
[  220.857204][T16669]  __dump_stack+0x1d/0x30
[  220.857273][T16669]  dump_stack_lvl+0xe8/0x140
[  220.857295][T16669]  dump_stack+0x15/0x1b
[  220.857408][T16669]  should_fail_ex+0x265/0x280
[  220.857439][T16669]  should_failslab+0x8c/0xb0
[  220.857463][T16669]  __kvmalloc_node_noprof+0x123/0x4e0
[  220.857493][T16669]  ? __se_sys_setgroups+0xd0/0x300
[  220.857522][T16669]  __se_sys_setgroups+0xd0/0x300
[  220.857614][T16669]  __x64_sys_setgroups+0x31/0x40
[  220.857646][T16669]  x64_sys_call+0x2e5a/0x2ff0
[  220.857673][T16669]  do_syscall_64+0xd2/0x200
[  220.857711][T16669]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  220.857814][T16669]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  220.857864][T16669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.857891][T16669] RIP: 0033:0x7f7a8a7debe9
[  220.857910][T16669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.857933][T16669] RSP: 002b:00007f7a89247038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  220.857954][T16669] RAX: ffffffffffffffda RBX: 00007f7a8aa15fa0 RCX: 00007f7a8a7debe9
[  220.857966][T16669] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  220.857977][T16669] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  220.858045][T16669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.858061][T16669] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  220.858079][T16669]  </TASK>
[  221.081802][T16679] loop1: detected capacity change from 0 to 512
[  221.084190][T16677] __nla_validate_parse: 4 callbacks suppressed
[  221.084209][T16677] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3413'.
[  221.089595][T16679] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.116465][T16670] rdma_rxe: rxe_newlink: failed to add lo
[  221.122829][T16679] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  221.135025][T16677] netlink: 'syz.4.3413': attribute type 10 has an invalid length.
[  221.177433][T16688] FAULT_INJECTION: forcing a failure.
[  221.177433][T16688] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  221.190679][T16688] CPU: 1 UID: 0 PID: 16688 Comm: syz.0.3419 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  221.190726][T16688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  221.190802][T16688] Call Trace:
[  221.190810][T16688]  <TASK>
[  221.190818][T16688]  __dump_stack+0x1d/0x30
[  221.190845][T16688]  dump_stack_lvl+0xe8/0x140
[  221.190869][T16688]  dump_stack+0x15/0x1b
[  221.190889][T16688]  should_fail_ex+0x265/0x280
[  221.190971][T16688]  should_fail+0xb/0x20
[  221.190991][T16688]  should_fail_usercopy+0x1a/0x20
[  221.191017][T16688]  _copy_to_user+0x20/0xa0
[  221.191050][T16688]  simple_read_from_buffer+0xb5/0x130
[  221.191082][T16688]  proc_fail_nth_read+0x10e/0x150
[  221.191156][T16688]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  221.191190][T16688]  vfs_read+0x1a8/0x770
[  221.191217][T16688]  ? __rcu_read_unlock+0x4f/0x70
[  221.191279][T16688]  ? __fget_files+0x184/0x1c0
[  221.191374][T16688]  ? __rcu_read_unlock+0x4f/0x70
[  221.191402][T16688]  ksys_read+0xda/0x1a0
[  221.191427][T16688]  __x64_sys_read+0x40/0x50
[  221.191448][T16688]  x64_sys_call+0x27bc/0x2ff0
[  221.191485][T16688]  do_syscall_64+0xd2/0x200
[  221.191597][T16688]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  221.191625][T16688]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  221.191656][T16688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.191676][T16688] RIP: 0033:0x7f303d08d5fc
[  221.191767][T16688] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  221.191787][T16688] RSP: 002b:00007f303baf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  221.191807][T16688] RAX: ffffffffffffffda RBX: 00007f303d2c5fa0 RCX: 00007f303d08d5fc
[  221.191823][T16688] RDX: 000000000000000f RSI: 00007f303baf70a0 RDI: 0000000000000003
[  221.191837][T16688] RBP: 00007f303baf7090 R08: 0000000000000000 R09: 0000000000000000
[  221.191853][T16688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.191893][T16688] R13: 00007f303d2c6038 R14: 00007f303d2c5fa0 R15: 00007ffef8c542a8
[  221.191991][T16688]  </TASK>
[  221.413503][T16691] loop4: detected capacity change from 0 to 512
[  221.421132][T16691] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.439395][T16691] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  221.652379][T16704] tipc: Started in network mode
[  221.657308][T16704] tipc: Node identity f6a3714d3574, cluster identity 4711
[  221.664486][T16704] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  221.672991][T16703] tipc: Disabling bearer <eth:syzkaller0>
[  221.905970][T16715] loop2: detected capacity change from 0 to 512
[  221.914683][T16715] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  221.925626][T16715] EXT4-fs (loop2): orphan cleanup on readonly fs
[  221.933405][T16715] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.3428: Block bitmap for bg 0 marked uninitialized
[  221.947290][T16715] EXT4-fs (loop2): Remounting filesystem read-only
[  221.966515][T16715] EXT4-fs (loop2): 1 orphan inode deleted
[  221.973420][T16715] EXT4-fs mount: 45 callbacks suppressed
[  221.973506][T16715] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  222.007460][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.016756][T16723] loop1: detected capacity change from 0 to 1024
[  222.033651][T16723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.048018][T16723] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3430'.
[  222.056213][T16730] loop2: detected capacity change from 0 to 1024
[  222.077040][T14564] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.122299][T16744] loop2: detected capacity change from 0 to 164
[  222.129101][T16744] iso9660: Unknown parameter '�/ㅾ�H���)C2����kS�c3�c)wqB�'
[  222.147491][T16744] team0 (unregistering): Port device team_slave_0 removed
[  222.157848][T16744] team0 (unregistering): Port device team_slave_1 removed
[  222.198427][T16788] loop1: detected capacity change from 0 to 1024
[  222.206963][T16788] EXT4-fs: Ignoring removed nobh option
[  222.224399][T16788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.246367][T16793] loop2: detected capacity change from 0 to 512
[  222.253505][T16793] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  222.269730][T14564] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.274348][T16793] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF
[  222.327090][T16804] loop1: detected capacity change from 0 to 512
[  222.347661][T16804] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  222.358511][T16804] EXT4-fs (loop1): orphan cleanup on readonly fs
[  222.366524][T16804] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.3442: Block bitmap for bg 0 marked uninitialized
[  222.380165][T16804] EXT4-fs (loop1): Remounting filesystem read-only
[  222.388002][T16804] EXT4-fs (loop1): 1 orphan inode deleted
[  222.394457][T16804] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  222.428441][T14564] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.539705][T16815] FAULT_INJECTION: forcing a failure.
[  222.539705][T16815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  222.552865][T16815] CPU: 0 UID: 0 PID: 16815 Comm: syz.0.3444 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  222.552892][T16815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  222.552961][T16815] Call Trace:
[  222.552969][T16815]  <TASK>
[  222.553035][T16815]  __dump_stack+0x1d/0x30
[  222.553062][T16815]  dump_stack_lvl+0xe8/0x140
[  222.553112][T16815]  dump_stack+0x15/0x1b
[  222.553197][T16815]  should_fail_ex+0x265/0x280
[  222.553219][T16815]  should_fail+0xb/0x20
[  222.553281][T16815]  should_fail_usercopy+0x1a/0x20
[  222.553308][T16815]  _copy_to_user+0x20/0xa0
[  222.553345][T16815]  simple_read_from_buffer+0xb5/0x130
[  222.553374][T16815]  proc_fail_nth_read+0x10e/0x150
[  222.553423][T16815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  222.553553][T16815]  vfs_read+0x1a8/0x770
[  222.553573][T16815]  ? __rcu_read_unlock+0x4f/0x70
[  222.553599][T16815]  ? __fget_files+0x184/0x1c0
[  222.553633][T16815]  ksys_read+0xda/0x1a0
[  222.553662][T16815]  __x64_sys_read+0x40/0x50
[  222.553719][T16815]  x64_sys_call+0x27bc/0x2ff0
[  222.553740][T16815]  do_syscall_64+0xd2/0x200
[  222.553770][T16815]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  222.553867][T16815]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  222.553892][T16815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.553919][T16815] RIP: 0033:0x7f303d08d5fc
[  222.553953][T16815] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  222.553975][T16815] RSP: 002b:00007f303baf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  222.553998][T16815] RAX: ffffffffffffffda RBX: 00007f303d2c5fa0 RCX: 00007f303d08d5fc
[  222.554013][T16815] RDX: 000000000000000f RSI: 00007f303baf70a0 RDI: 0000000000000003
[  222.554025][T16815] RBP: 00007f303baf7090 R08: 0000000000000000 R09: 0000000000000000
[  222.554075][T16815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  222.554086][T16815] R13: 00007f303d2c6038 R14: 00007f303d2c5fa0 R15: 00007ffef8c542a8
[  222.554110][T16815]  </TASK>
[  222.760466][T16817] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  222.767783][T16817] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  222.833858][T16824] netlink: 'syz.0.3447': attribute type 1 has an invalid length.
[  222.859899][T16824] 8021q: adding VLAN 0 to HW filter on device bond1
[  222.879612][T16824] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3447'.
[  223.028820][   T29] kauditd_printk_skb: 705 callbacks suppressed
[  223.028837][   T29] audit: type=1326 audit(223.095:31776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.059914][   T29] audit: type=1326 audit(223.095:31777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.083282][   T29] audit: type=1326 audit(223.095:31778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.106274][   T29] audit: type=1326 audit(223.105:31779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.129438][   T29] audit: type=1326 audit(223.105:31780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.152671][   T29] audit: type=1326 audit(223.105:31781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.175901][   T29] audit: type=1326 audit(223.105:31782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.198918][   T29] audit: type=1326 audit(223.105:31783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.222183][   T29] audit: type=1326 audit(223.105:31784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.245414][   T29] audit: type=1326 audit(223.105:31785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16863 comm="syz.0.3449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f303d08ebe9 code=0x7ffc0000
[  223.276268][T16870] team0 (unregistering): Port device team_slave_0 removed
[  223.302242][T16870] team0 (unregistering): Port device team_slave_1 removed
[  223.335717][T16911] loop4: detected capacity change from 0 to 764
[  223.344950][T16911] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  223.354252][T16911] Symlink component flag not implemented
[  223.360083][T16911] Symlink component flag not implemented (7)
[  223.362395][T16920] FAULT_INJECTION: forcing a failure.
[  223.362395][T16920] name failslab, interval 1, probability 0, space 0, times 0
[  223.378812][T16920] CPU: 1 UID: 0 PID: 16920 Comm: syz.1.3453 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  223.378844][T16920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  223.378886][T16920] Call Trace:
[  223.378894][T16920]  <TASK>
[  223.378903][T16920]  __dump_stack+0x1d/0x30
[  223.378927][T16920]  dump_stack_lvl+0xe8/0x140
[  223.378945][T16920]  dump_stack+0x15/0x1b
[  223.378968][T16920]  should_fail_ex+0x265/0x280
[  223.379071][T16920]  should_failslab+0x8c/0xb0
[  223.379097][T16920]  kmem_cache_alloc_node_noprof+0x57/0x320
[  223.379144][T16920]  ? __alloc_skb+0x101/0x320
[  223.379168][T16920]  __alloc_skb+0x101/0x320
[  223.379189][T16920]  ? kthread_insert_work+0x104/0x1f0
[  223.379237][T16920]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  223.379287][T16920]  nfc_genl_device_removed+0x39/0x1d0
[  223.379322][T16920]  nfc_unregister_device+0x1b/0x130
[  223.379362][T16920]  nci_unregister_device+0x146/0x160
[  223.379396][T16920]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  223.379425][T16920]  virtual_ncidev_close+0x2a/0x50
[  223.379477][T16920]  __fput+0x298/0x650
[  223.379518][T16920]  ____fput+0x1c/0x30
[  223.379615][T16920]  task_work_run+0x131/0x1a0
[  223.379639][T16920]  exit_to_user_mode_loop+0xe4/0x100
[  223.379675][T16920]  do_syscall_64+0x1d6/0x200
[  223.379707][T16920]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  223.379732][T16920]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  223.379837][T16920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.379864][T16920] RIP: 0033:0x7f7a8a7debe9
[  223.379938][T16920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.379991][T16920] RSP: 002b:00007f7a89247038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  223.380016][T16920] RAX: 0000000000000000 RBX: 00007f7a8aa15fa0 RCX: 00007f7a8a7debe9
[  223.380032][T16920] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  223.380047][T16920] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  223.380062][T16920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.380075][T16920] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  223.380094][T16920]  </TASK>
[  223.683729][T16940] loop1: detected capacity change from 0 to 2048
[  223.731479][T16938] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3457'.
[  223.740578][T16938] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  223.747981][T16938] batman_adv: batadv0: Removing interface: batadv_slave_0
[  223.755841][T16938] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  223.763337][T16938] batman_adv: batadv0: Removing interface: batadv_slave_1
[  223.823075][T16946] siw: device registration error -23
[  224.028384][T16954] loop1: detected capacity change from 0 to 1024
[  224.037854][T16954] EXT4-fs: inline encryption not supported
[  224.043775][T16954] EXT4-fs: Ignoring removed i_version option
[  224.053936][T16954] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  224.067389][T16954] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.3460: lblock 2 mapped to illegal pblock 2 (length 1)
[  224.083045][T16954] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.3460: lblock 0 mapped to illegal pblock 48 (length 1)
[  224.098181][T16954] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.3460: Failed to acquire dquot type 0
[  224.111142][T16954] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  224.121284][T16954] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.3460: mark_inode_dirty error
[  224.134225][T16954] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  224.144646][T16954] EXT4-fs (loop1): 1 orphan inode deleted
[  224.151834][T16954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.164088][   T12] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  224.178600][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  224.200123][T14564] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.209369][   T37] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  224.223767][   T37] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  224.235901][T14564] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  224.249393][T14564] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  224.259078][T14564] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  224.279039][T16961] loop1: detected capacity change from 0 to 128
[  224.378150][ T3385] Process accounting resumed
[  224.739259][T16981] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  224.746747][T16981] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  225.039122][T16983] siw: device registration error -23
[  225.353255][T16993] loop2: detected capacity change from 0 to 512
[  225.360654][T16993] EXT4-fs: Ignoring removed mblk_io_submit option
[  225.367233][T16993] EXT4-fs: Ignoring removed nomblk_io_submit option
[  225.375433][T16993] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  225.383914][T16993] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  225.401866][T16993] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.3472: Allocating blocks 41-42 which overlap fs metadata
[  225.455115][T16993] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3472: Failed to acquire dquot type 1
[  225.469078][T16993] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  225.499213][T16993] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3472: corrupted inode contents
[  225.513364][T17001] FAULT_INJECTION: forcing a failure.
[  225.513364][T17001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.526532][T17001] CPU: 0 UID: 0 PID: 17001 Comm: syz.1.3473 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  225.526567][T17001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  225.526583][T17001] Call Trace:
[  225.526666][T17001]  <TASK>
[  225.526675][T17001]  __dump_stack+0x1d/0x30
[  225.526700][T17001]  dump_stack_lvl+0xe8/0x140
[  225.526724][T17001]  dump_stack+0x15/0x1b
[  225.526744][T17001]  should_fail_ex+0x265/0x280
[  225.526770][T17001]  should_fail+0xb/0x20
[  225.526792][T17001]  should_fail_usercopy+0x1a/0x20
[  225.526878][T17001]  _copy_from_user+0x1c/0xb0
[  225.526913][T17001]  ___sys_sendmsg+0xc1/0x1d0
[  225.526999][T17001]  __x64_sys_sendmsg+0xd4/0x160
[  225.527076][T17001]  x64_sys_call+0x191e/0x2ff0
[  225.527103][T17001]  do_syscall_64+0xd2/0x200
[  225.527208][T17001]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  225.527300][T17001]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  225.527336][T17001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.527419][T17001] RIP: 0033:0x7f7a8a7debe9
[  225.527437][T17001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.527459][T17001] RSP: 002b:00007f7a89247038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.527477][T17001] RAX: ffffffffffffffda RBX: 00007f7a8aa15fa0 RCX: 00007f7a8a7debe9
[  225.527489][T17001] RDX: 0000000000000000 RSI: 0000200000001540 RDI: 0000000000000006
[  225.527501][T17001] RBP: 00007f7a89247090 R08: 0000000000000000 R09: 0000000000000000
[  225.527542][T17001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.527554][T17001] R13: 00007f7a8aa16038 R14: 00007f7a8aa15fa0 R15: 00007ffe1e3a4988
[  225.527577][T17001]  </TASK>
[  225.527733][T16993] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #12: comm syz.2.3472: mark_inode_dirty error
[  225.705319][T17011] loop3: detected capacity change from 0 to 1024
[  225.714153][T16993] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3472: corrupted inode contents
[  225.730624][T16993] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.3472: mark_inode_dirty error
[  225.731535][T17011] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  225.743014][T16993] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3472: corrupted inode contents
[  225.776127][T17011] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3479'.
[  225.786099][T16993] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  225.795920][T17019] ALSA: seq fatal error: cannot create timer (-22)
[  225.796266][T16993] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.3472: corrupted inode contents
[  225.815203][T16993] EXT4-fs error (device loop2): ext4_truncate:4666: inode #12: comm syz.2.3472: mark_inode_dirty error
[  225.827706][T16993] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  225.846318][T16993] EXT4-fs (loop2): 1 truncate cleaned up
[  225.852201][T17028] loop4: detected capacity change from 0 to 764
[  225.852624][T16993] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.891739][T17028] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  225.912298][T17028] Symlink component flag not implemented
[  225.918027][T17028] Symlink component flag not implemented (7)
[  225.941986][T17037] netlink: 4 bytes leftover after parsing attributes in process `'.
[  226.004055][T17044] loop3: detected capacity change from 0 to 1024
[  226.014160][T17044] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  226.037668][T17050] loop3: detected capacity change from 0 to 128
[  226.099111][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.112848][ T4926] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 1
[  226.168794][   T36] Process accounting resumed
[  226.257982][T17067] loop2: detected capacity change from 0 to 1024
[  226.265861][T17067] EXT4-fs: inline encryption not supported
[  226.271882][T17067] EXT4-fs: Ignoring removed i_version option
[  226.278644][T17067] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  226.298291][T17067] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3492: lblock 2 mapped to illegal pblock 2 (length 1)
[  226.315402][T17067] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.3492: lblock 0 mapped to illegal pblock 48 (length 1)
[  226.353386][T17067] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.3492: Failed to acquire dquot type 0
[  226.367416][T17067] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  226.379274][T17077] netlink: 14 bytes leftover after parsing attributes in process `syz.3.3496'.
[  226.403347][T17067] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.3492: mark_inode_dirty error
[  226.426434][T17067] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  226.438675][T17067] EXT4-fs (loop2): 1 orphan inode deleted
[  226.444964][T17067] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.465945][ T4926] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  226.486016][ T4926] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  226.504462][T17067] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.3492: lblock 0 mapped to illegal pblock 16 (length 1)
[  226.540768][T17088] loop3: detected capacity change from 0 to 764
[  226.548420][T17088] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  226.558174][T17088] Symlink component flag not implemented
[  226.564021][T17088] Symlink component flag not implemented (7)
[  226.632394][T17100] loop1: detected capacity change from 0 to 512
[  226.646063][T17100] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  226.671891][T17100] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  226.701391][T10946] Process accounting resumed
[  226.849971][T17117] loop4: detected capacity change from 0 to 512
[  226.871252][T17117] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.961972][T17123] s
z1: rxe_newlink: already configured on lo
[  226.979491][T15206] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.099415][T12488] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.109449][ T4926] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  227.125418][ T4926] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0
[  227.137631][T12488] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  227.152137][T12488] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  227.162921][T12488] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  227.182798][T17138] ALSA: seq fatal error: cannot create timer (-22)
[  227.206633][T17140] loop2: detected capacity change from 0 to 764
[  227.214168][T17140] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  227.224021][T17140] Symlink component flag not implemented
[  227.230171][T17140] Symlink component flag not implemented (7)
[  227.247193][T17144] loop3: detected capacity change from 0 to 128
[  227.305256][T17149] loop2: detected capacity change from 0 to 164
[  227.312112][T17149] iso9660: Unknown parameter '�/ㅾ�H���)C2����kS�c3�c)wqB�'
[  227.380464][T10946] Process accounting resumed
[  227.529239][T17171] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3521'.
[  227.538997][T17170] ==================================================================
[  227.547184][T17170] BUG: KCSAN: data-race in shmem_fallocate / shmem_fault
[  227.554223][T17170] 
[  227.556595][T17170] write to 0xffff88811a03cb90 of 8 bytes by task 17171 on cpu 1:
[  227.564416][T17170]  shmem_fallocate+0x221/0x840
[  227.569193][T17170]  vfs_fallocate+0x3b6/0x400
[  227.573796][T17170]  madvise_vma_behavior+0x192d/0x1cf0
[  227.579184][T17170]  madvise_do_behavior+0x5b7/0x970
[  227.584321][T17170]  do_madvise+0x10e/0x190
[  227.588672][T17170]  __x64_sys_madvise+0x64/0x80
[  227.593468][T17170]  x64_sys_call+0x1f1a/0x2ff0
[  227.598184][T17170]  do_syscall_64+0xd2/0x200
[  227.602709][T17170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.608689][T17170] 
[  227.611020][T17170] read to 0xffff88811a03cb90 of 8 bytes by task 17170 on cpu 0:
[  227.618658][T17170]  shmem_fault+0x90/0x250
[  227.622996][T17170]  __do_fault+0xb9/0x200
[  227.627252][T17170]  handle_mm_fault+0xf78/0x2c20
[  227.632117][T17170]  __get_user_pages+0x102e/0x1fa0
[  227.637153][T17170]  __mm_populate+0x243/0x3a0
[  227.641761][T17170]  vm_mmap_pgoff+0x232/0x2e0
[  227.646378][T17170]  ksys_mmap_pgoff+0xc2/0x310
[  227.651074][T17170]  x64_sys_call+0x14a3/0x2ff0
[  227.655762][T17170]  do_syscall_64+0xd2/0x200
[  227.660288][T17170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.666193][T17170] 
[  227.668526][T17170] value changed: 0x0000000000000000 -> 0xffffc9001144fb58
[  227.675636][T17170] 
[  227.677963][T17170] Reported by Kernel Concurrency Sanitizer on:
[  227.684129][T17170] CPU: 0 UID: 0 PID: 17170 Comm: syz.1.3521 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  227.693942][T17170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  227.704034][T17170] ==================================================================