last executing test programs:

1m29.628118411s ago: executing program 3 (id=683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x50, 0x2c, 0xd27, 0x70bd27, 0x2, {0x0, 0x0, 0x0, r5, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x20, 0x2, [@TCA_BASIC_EMATCHES={0x1c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_META={0xc, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}}}]}]}]}}]}, 0x50}}, 0x0)

1m29.5295826s ago: executing program 3 (id=686):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='f2fs_background_gc\x00', r1, 0x0, 0x9}, 0x18)
socket$kcm(0x10, 0xf, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x1e, 0x1, 0x0)
sendto$llc(r4, 0x0, 0x0, 0x20000000, &(0x7f0000000200)={0x1e, 0x307, 0x8, 0x7e, 0x4, 0xb4, @local}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2, 0x0, 0x5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r5}, 0x10)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r6, &(0x7f0000000180), 0x40010)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x2f08, 0x10, 0x10, &(0x7f00000006c0)="feffffff00000005", &(0x7f0000000700)=""/8, 0x447, 0x6000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="11001600", @ANYRES16, @ANYBLOB="010025bd7000fddbdf25010000000c00018008000100", @ANYRES32, @ANYBLOB], 0x20}}, 0x0)
r9 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x1e0, &(0x7f0000000040)={0x0, 0x1, 0x4})
mq_getsetattr(r9, &(0x7f0000000700)={0x800, 0x7, 0x1}, 0x0)
mq_timedreceive(r9, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
mq_timedreceive(r9, &(0x7f0000000080)=""/92, 0x5c, 0x0, 0x0)

1m29.46564892s ago: executing program 3 (id=687):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x100, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000003c0)={0x0, &(0x7f0000000100)})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='ext4_begin_ordered_truncate\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x5, 0x0, 0x0, 0x0})
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000012edfffebfa30000000000000703000028feffff620af0fff8ffffff61a4f0ff000000004d040000000000002d000000000000005520030001ed0a00250000001700"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r6, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000000)='rxrpc_call_reset\x00', r7, 0x0, 0x3}, 0x18)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000002000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$packet(0x11, 0x2, 0x300)
socket(0x2b, 0x80801, 0x1)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000a00)={'veth0\x00', <r10=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r8, r10, 0x25, 0x0, @val=@netfilter}, 0x40)

1m29.046276448s ago: executing program 3 (id=695):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r1, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r3, &(0x7f0000000800)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x1c, r1, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x1c}}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000004000000015a00000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff850000000400000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe2(&(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x880)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000340)={'syztnl2\x00', <r8=>0x0, 0x80, 0x10, 0xf1d, 0x24249741, {{0x18, 0x4, 0x2, 0x2e, 0x60, 0x68, 0x0, 0x6, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x3f}, @dev={0xac, 0x14, 0x14, 0x2a}, {[@timestamp_addr={0x44, 0x4c, 0x29, 0x1, 0xf, [{@private=0xa010100, 0x1}, {@loopback, 0x7f}, {@dev={0xac, 0x14, 0x14, 0x1c}, 0x8}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x5}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7262}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@private=0xa010102}, {@multicast1, 0x7}, {@dev={0xac, 0x14, 0x14, 0x38}, 0x100}]}]}}}}})
connect$packet(r7, &(0x7f0000000200)={0x11, 0x11, r8, 0x1, 0x9, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x9, 0x1d, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xd85, 0x0, 0x0, 0x0, 0x8}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x42c8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4b5f}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}]}, &(0x7f00000004c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x68, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0xa, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x3, 0x3, 0x5, 0x7}, 0x10, 0x0, 0x0, 0xa, 0x0, &(0x7f0000000600)=[{0x4, 0x2, 0xa, 0xb}, {0x3, 0x3, 0x4, 0x8}, {0x0, 0x4, 0x10}, {0x0, 0x4, 0x5, 0x5}, {0x3, 0x2, 0x6, 0x7}, {0x5, 0x3, 0xb, 0x4}, {0x4, 0x1, 0x6, 0x2}, {0x0, 0x5, 0x10, 0xb}, {0x5, 0x5, 0x7, 0x6}, {0x4, 0x2, 0xa, 0x4}], 0x10, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='dlm_bast\x00', r6}, 0x5e)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x0)

1m28.873645487s ago: executing program 3 (id=698):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000012c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4739}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@norecovery}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r4 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
write$UHID_INPUT(r3, &(0x7f0000000280)={0x8, {"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", 0x1000}}, 0x1006)
fallocate(r4, 0x0, 0x800, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0xc, r4, 0x0, 0x0, 0x4})
r5 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0), 0x8, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000001340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB="87827bccb98ee38101b6f8a33d249696a322fd36749b41bcd719e26041862c0ac695cc9f67c9f85167e288dc1430b8787bb3c1ae8e75"])
rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x2, 0x0, &(0x7f0000000140))
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{}, {0x0, 0x9}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$ARCH_SHSTK_STATUS(0x1e, r6, 0x0, 0x5005)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x867, 0x0, 0x0)

1m28.332095296s ago: executing program 3 (id=706):
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a0000000200"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200))
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)
socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x83803000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
stat(0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
shutdown(r5, 0x1)
splice(r5, 0x0, r4, 0x0, 0x406f413, 0x0)

1m13.225555165s ago: executing program 32 (id=706):
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a0000000200"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200))
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)
socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x83803000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
stat(0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
shutdown(r5, 0x1)
splice(r5, 0x0, r4, 0x0, 0x406f413, 0x0)

45.561025673s ago: executing program 2 (id=1469):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setreuid(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)

45.501894453s ago: executing program 2 (id=1473):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_getattr(0x0, &(0x7f0000000040)={0x38}, 0x38, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r3 = epoll_create1(0x0)
r4 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
close(r4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0800}]})
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
close_range(r7, 0xffffffffffffffff, 0x0)
accept4$unix(r2, &(0x7f0000000480)=@abs, &(0x7f0000000300)=0x6e, 0x80400)

44.409178739s ago: executing program 2 (id=1490):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r2, &(0x7f00000000c0)=[{0x0, 0x4f}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0)

44.389855849s ago: executing program 2 (id=1491):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1f, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4357c978887379648e34b8e43761f35", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='(.\'\x00', r2)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

43.521759335s ago: executing program 2 (id=1504):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c40), 0x5, 0x4a7, &(0x7f0000001140)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$9p_unix(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
mount$9p_rdma(0x0, &(0x7f00000006c0)='./file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
r1 = io_uring_setup(0x3329, &(0x7f0000000180)={0x0, 0x36de, 0x4, 0x2, 0x3e4, 0x0, r0})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000800000010000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r5=>0x0)
r6 = eventfd2(0x0, 0x0)
io_submit(r5, 0x1, &(0x7f00000006c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}])
io_getevents(r5, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0)
io_submit(r5, 0x1, &(0x7f00000009c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x4000, r4, 0x0, 0x0, 0x0, 0x0, 0x3, r6}])
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000300)={0x68, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0, 0x0, 0x23}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x68}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = io_uring_setup(0x3eae, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000004, 0x10, r1, 0x0)

43.162983504s ago: executing program 2 (id=1511):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x8, 0x0, 0x7ffc0002}]})
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='(.\'\x00', r2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r7, 0x2000009)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r8, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

27.931358133s ago: executing program 33 (id=1511):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x8, 0x0, 0x7ffc0002}]})
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='(.\'\x00', r2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r7, 0x2000009)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r8, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

1.839238748s ago: executing program 1 (id=2175):
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x40002000})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x80044940, &(0x7f0000001480))

1.602130707s ago: executing program 0 (id=2177):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000001c0)='%pi6   \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000040007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r1}, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x52400, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1e, 0x4, 0x6, 0xbaa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x56, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.452595736s ago: executing program 6 (id=2179):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0xffffff7f, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1.410866186s ago: executing program 1 (id=2181):
r0 = socket(0x2, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x800000, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
r2 = getpgid(0xffffffffffffffff)
ptrace$setregs(0xd, r2, 0x5, &(0x7f0000000540)="a062755c17e33927eccde3d3fd1d315ada28b8302e45c0ec416dd59d3f80493950318587954e8113c711c58a109575690fb900c8d30a95f5b88dc06592f7b3d88b116434b8ea72af606a92e4349bbdbb77df9ad5ca687445f068b19e46cb1e70aad5198e132d606657c36f5cafa3a7c98a388b2c51953baa4b1dce10daf351c043bd14ece7")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$eJzs3d9rZFcdAPDvnWSyyW62SdUHLbRWW8kW3ZmksW3woVYQfSqI9X2NySSETDIhM2k3oWj2LxBEVPBJX3wR/AMEWfDFRxEK+qxQUUS3CvqgvTIzd5I4uZPM1tlMdvL5wN17zrk/vufM5ty5Pw53Ariyno2I1yLi/TRNX4iImay8kE1x2J6a67334O2V5pREmr7x1ySSrKyzrySb38g2m4yIr3454hvJ6bj1/YPN5Wq1spvly42tnXJ9/+D2xtbyemW9sr24uPDy0itLLy3ND6SdNyPi1S/+8Xvf/smXXv3FZ976w50/3/pms1rT2fKT7XhI42ctbDe9eG2ya4PdDxjsMmq2p9jJTPW3zb1HWB8AAHprnuN/KCI+GREvxEyMnX06CwAAADyG0s9Px7+TiDTfRI9yAAAA4DFSaI2BTQqlbCzAdBQKpVJ7DO9H4nqhWqs3Pr1W29tebY+VnY1iYW2jWpnPxgrPRjFp5hda6eP8i135xYh4MiK+OzPVypdWatXVYd/8AAAAgCviRtf1/z9m2tf/AAAAwIiZHXYFAAAAgEfO9T8AAACMPtf/AAAAMNK+8vrrzSnt/P716pv7e5u1N2+vVuqbpa29ldJKbXentF6rrbfe2bd13v6qtdrOZ2N77265Uak3yvX9gztbtb3txp2NmLyQBgEAAACnPPnx+79LIuLwc1OtqWli2JUCLsT4USrJ5jm9//dPtOfvXlClgAsx1sc6717LL3eeAI+38e6CHn0dGD3FYVcAGLrknOU9B+/8Opt/YrD1AQAABm/uY/nP/wvnbnl4/irApaYTw9XV9fw/nRlWRYAL13r+3+9AHicLMFKKfY0ABEbZ//38/1xp+lAVAgAABm66NSWFUnZ7bzoKhVIp4mbrZwGKydpGtTIfEU9ExG9nitea+YXWlsm51wwAAAAAAAAAAAAAAAAAAAAAAAAAQFuaJpECAAAAIy2i8Kfkl+13+c/NPD/dfX9gIvlX6yeBJyLirR++8f27y43G7kKz/G9H5Y0fZOUvDuMOBgAAANCtc53emv9z2LUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNS89+Dtlc7Ux+pTg4r7ly9ExGxe/PGYbM0noxgR1/+exPiJ7ZKIGBtA/MN7EfHRvPhJs1pHIfPiD+JDOCd+zGafQl78GwOID1fZ/ebx57W8/leIZ1vz/P43HvE/+Q+q9/Evjo5/Yz36/80+Yzz1zs/KPePfi3hqPP/404mf9Ij/XJ/xv/61g4Ney9IfRcx1vn9aR7yTEY5T5cbWTrm+f3B7Y2t5vbJe2V5cXHh56ZWll5bmy2sb1Ur2b26M7zz98/fPav/13O+/JKtN7/Y/n7O/vO+k/7xz98GHO5nD0/FvPZcT/1c/ztY4Hb+QxflUlm4un+ukD9vpk5756W+eOav9q8ftLz7M//+tXjvtdqqjPN3vnw4A8AjU9w82l6vVyu7IJppX6ZegGhKXMPGtge4wTdO02adyFt2PiH72k8SAW1rIr89xoucRYNhHJgAAYNCOT/qHXRMAAAAAAAAAAAAAAAAAAAC4ui7iLWvdMY9fgZwM4hXaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8d8AAAD//42Q0/o=")
r3 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000f195"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
mount$9p_fd(0x0, &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
mount$9p_fd(0x0, 0x0, &(0x7f0000000400), 0x6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
r7 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000200)={0x73, @empty, 0x4e24, 0x3, 'lblcr\x00', 0x8, 0x1, 0x1a}, 0x2c)
close(r7)
execve(&(0x7f0000000180)='./file0\x00', &(0x7f0000000600)={[0xfffffffffffffffd]}, 0x0)
syz_mount_image$tmpfs(&(0x7f0000002300), &(0x7f0000000040)='./file0\x00', 0x21408, 0x0, 0x0, 0x0, &(0x7f0000006380))
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0)
dup(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0600000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="0000000002e5f5723ec94e22d48c8b2deab2c24d084d9b961393c483df84472a4a05c70be27e1b017946ffd5821f1cb4e31b1b08ab26461d07083df66d5beb2ef7cbfc3d881dbb984f94e635e8f1188a208e4ec0f0c7194ee500b3a89484fd49a1be33fbe399da8f182833a76f93155aadbc7ee5f7458585718bb20926137854685a7d345e9c8c36aded7255642f6aa7aa68d2399287c1b8ff2aec493d6b076e55de78798e209688f26f5f246706ed001c42", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r8}, 0x10)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
socket(0x10, 0x803, 0x0)

1.409742386s ago: executing program 6 (id=2182):
socket$kcm(0x10, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_NAME(0xf, &(0x7f0000000340)='GPL\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18080000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000dc0)=ANY=[@ANYRES8=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_delete(0x0)
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

1.351079456s ago: executing program 0 (id=2183):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0xffffff7f, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) (fail_nth: 3)

1.350580166s ago: executing program 5 (id=2184):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1f, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4357c978887379648e34b8e43761f35", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x8, 0x0, 0x7ffc0002}]})
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='(.\'\x00', r2)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

1.043080454s ago: executing program 6 (id=2185):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000000c0)='sys_enter\x00', r1, 0x0, 0x1}, 0x18)
acct(0xfffffffffffffffe)

1.010941494s ago: executing program 4 (id=2186):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x44000)
r2 = io_uring_setup(0x2658, &(0x7f00000003c0)={0x0, 0x9670, 0x1, 0x2, 0x335})
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000740)={&(0x7f0000001000)}, 0x1)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000000))

1.010628514s ago: executing program 0 (id=2187):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000000))

904.321744ms ago: executing program 4 (id=2188):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000000)) (fail_nth: 1)

904.115364ms ago: executing program 6 (id=2189):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)

855.279694ms ago: executing program 0 (id=2190):
r0 = creat(0x0, 0xa1)
mount(&(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000180)='./bus/file0\x00', 0x2041c3, &(0x7f00000006c0)=ANY=[@ANYRES32=r0, @ANYRESDEC=r1, @ANYRESDEC, @ANYRES16, @ANYRES8, @ANYRES32, @ANYBLOB="7f89788aa6aeed4380045dfd981401487441e95942697f07d43f26c6939fd0c05d1c0191c8c886c8eec946698d86462be47c85def89e902882cfb71d2443ad37af11b83006d68399a270b1fa8b7288fc31a93d8b4314e5"], 0x3, 0x1207, &(0x7f0000002dc0)="$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")
r2 = open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0)
pwritev2(r2, &(0x7f0000000300)=[{&(0x7f0000000400)="ac81d94d3f8da75c8cda93ea58dcd08e1261b66f620ffcf64d5f1c0a4e7c308070efbb73ca29ceed94bd80728295f7092b8d06653b7fcd5ef93762bcafa8d1429d555958f11b7f80c15cb30f96a600af035e4f4d5a27c76c80f08207e2fb9ac3d77f07b6dbad322e1b56e8c2c47c2194cc9ddf3dde59ccfd34552745b9eee6d9c511b0bfa266461bffd71cbb8b886c4a1c369240f75c3dc2ca18d2b8ec83a1cc6f51038bf8d4d7387b5d0b7ffe3e592230dd03b0a14d42201a5151efea1d550e3a97a5d2f13d2221e7564617c3dd298b09", 0xd1}, {&(0x7f0000000540)="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", 0xfe}, {&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000000000)="28580d2e25dfac4d353a075ec1ea7929ec4225a73fb478165d9427df796563c7", 0x20}, {&(0x7f0000000640)="990d891d4085bf1862980f57fd1d8a28e2d437bf685f23bc380de151376d7ab8a5aeedea1967a33b426755db78ac00208a96d99fe3a01bf5c6606553f2b1f86a211a3a746139c0f6ccc753c794c5a37e4afa6c163f180175ea8585926098f7343e09f400a2b08c", 0x67}, {&(0x7f00000001c0)="0dbfbda07821598ba7388fd85d0d1f57624fae", 0x13}], 0x6, 0x1400, 0xf, 0x3)

851.784904ms ago: executing program 6 (id=2191):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x4571, 0x4)
pipe2(&(0x7f00000032c0), 0x80800)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x80, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000003180)=[{{0x0, 0xffffffffffffff27, 0x0, 0xffffffffffffff6b}, 0x10000}, {{&(0x7f0000000000)=@l2={0x1f, 0x0, @none}, 0x0, &(0x7f0000000580)=[{&(0x7f0000000200)=""/223}, {&(0x7f0000000140)=""/52}, {&(0x7f0000000300)=""/86}, {&(0x7f0000000180)=""/39}, {&(0x7f0000000380)=""/148}, {&(0x7f0000000440)=""/151}, {&(0x7f0000000500)=""/101}], 0x0, &(0x7f0000000600)=""/139}, 0x2}, {{&(0x7f00000006c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000740)=""/29}, {&(0x7f0000000780)=""/64}], 0x0, &(0x7f0000000800)=""/4096}, 0x6}, {{0x0, 0x0, &(0x7f0000001b80)=[{&(0x7f0000001800)=""/108}, {&(0x7f0000001880)=""/171}, {&(0x7f0000001940)=""/29}, {&(0x7f0000001980)=""/200}, {&(0x7f0000001a80)=""/78}, {&(0x7f0000001b00)=""/128}], 0x0, &(0x7f0000001c00)=""/234}, 0x6}, {{&(0x7f0000001d00)=@l2tp6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @loopback}}, 0x0, &(0x7f0000003100)=[{&(0x7f0000001d80)=""/58}, {&(0x7f0000001dc0)=""/192}, {&(0x7f0000001e80)=""/4096}, {&(0x7f0000002e80)=""/155}, {&(0x7f0000002f40)=""/233}, {&(0x7f0000003040)=""/170}]}, 0x8001}], 0x1, 0x2011, 0x0)

417.399352ms ago: executing program 4 (id=2192):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
lsetxattr$trusted_overlay_upper(0x0, &(0x7f0000000180), 0x0, 0x361, 0x0) (fail_nth: 2)

398.454852ms ago: executing program 1 (id=2193):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000000))

373.118732ms ago: executing program 5 (id=2194):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000000))

305.974212ms ago: executing program 4 (id=2195):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000002c0)=0x1)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r4, 0x0, r4)
unshare(0x2c060000)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[], 0x50)
r5 = fsopen(&(0x7f00000000c0)='tracefs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x1)
fchdir(r6)

305.350131ms ago: executing program 6 (id=2196):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1f, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4357c978887379648e34b8e43761f35", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x8, 0x0, 0x7ffc0002}]})
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, 0x0, r2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r7, 0x2000009)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r8, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

304.720382ms ago: executing program 5 (id=2197):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
bind$bt_hci(r1, 0x0, 0x0)

286.996312ms ago: executing program 1 (id=2198):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x81, 0x0, &(0x7f00000004c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYRESOCT=r0], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

219.346621ms ago: executing program 1 (id=2199):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) (async, rerun: 64)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) (async, rerun: 64)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
close(r1) (async, rerun: 64)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)={0x14, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa497534dfc315b2, 0x0, 0xfffd}}, 0x14}, 0x1, 0x0, 0x0, 0x40050}, 0x84) (async)
r3 = socket$packet(0x11, 0x3, 0x300)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}}) (async, rerun: 64)
creat(&(0x7f00000000c0)='./file0\x00', 0x0) (async, rerun: 64)
pipe2$9p(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) (async, rerun: 32)
r6 = dup(r5) (rerun: 32)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x1}}, 0x20) (async)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) (async)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6]) (async)
chmod(&(0x7f0000000080)='./file0\x00', 0x145)

219.098061ms ago: executing program 5 (id=2200):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000000c0)='sys_enter\x00', r1, 0x0, 0x1}, 0x18)
acct(0xfffffffffffffffe)

218.200101ms ago: executing program 0 (id=2201):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)

214.825501ms ago: executing program 4 (id=2202):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f00000004c0)={0x1, 0x1, 0xc, 0x1d, 0x1a1, &(0x7f0000000b00)})
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r1, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x28}, 0x40080)
socket$netlink(0x10, 0x3, 0xf)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth0_macvtap\x00'})
socket(0x1, 0xa, 0x10000)
openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r4, 0x0, 0x5}, 0x18)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))
write$UHID_CREATE2(r2, 0x0, 0x9)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
clock_settime(0x1ed5d7403, &(0x7f0000000180))
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

160.231231ms ago: executing program 5 (id=2203):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0xfffffffb}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffef4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="180000005d00010025bd7000000000000a00000001000000"], 0x18}], 0x1}, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000180)={0x6000001f})
ppoll(&(0x7f0000000100)=[{r4, 0x2002}], 0x1, &(0x7f0000000240), 0x0, 0x0)
write(r0, &(0x7f0000000080)="240000001a005f0214f9f407000904008000000001020002020200008463af617cd9dde6", 0x24)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@broadcast, 0x4e21, 0x0, 0x4e24, 0x0, 0x2, 0x80, 0x80, 0x11, 0x0, 0xffffffffffffffff}, {0x52e, 0x8, 0x2, 0xffffffffffffffff, 0x8, 0x9, 0x5, 0x3}, {0x4b, 0x1, 0x800, 0x9}, 0x1ffc000, 0x0, 0x0, 0x0, 0x2, 0x2}, {{@in=@broadcast, 0x4d4, 0x3c}, 0x2, @in=@empty, 0x3507, 0x2, 0x2, 0x2, 0x3, 0x5, 0x3}}, 0xe8)

159.671301ms ago: executing program 1 (id=2204):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESDEC=r0], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
timer_create(0x3, 0x0, &(0x7f0000044000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x18)
timer_settime(0x0, 0x1, &(0x7f00000006c0)={{}, {0x0, 0x9}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getrandom(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
modify_ldt$write(0x1, &(0x7f00000003c0)={0x23, 0x1800, 0x400}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1f075, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000600)='g*;;\xa0\xb8[\x05\xda\xba\x00\x8b5\xcf+\xd0\xf3\x95\xf0`\x88\xfd\x15O\x91\x17\xf1\x87\xd4^e>\x8f-^\x97\xd5\xcb\xfd\'\xd6,\f\x0e\xdd\xd8\xbbr\xcdu\xb8\x9b\x81\xde/\xd1^zv\xb6\xa2\xb4\xfe\xcd\x99\xfa\r\x9a\xfa\xedvT\x1c 9\x8cb,@]M \xa2=\x1c\x8br\xee:\xa1P\x01\x84\x89`(\x89\xde\xe7\xee\x97\xfa\x86\xa0\xdc\xb3(\xce\xec\x87)\x1e?\xda\vY\xa8s`\xf5\x8a\xeb+$\xbb1\xcf\x1f\xab\xd1\x17\xecg\'\x14dt$\x93\xaaf\xa6Sh2I\x83o=\xc2\x87p\x90eW\xd5\v7\xcd\xb0\xc9\xf8\x7f\x8fQF\xa0\x8a\a\xa09\x10L\xaed\xe7\xe4-\x04}Q,db\x92\x89\xa2\x96', 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
utime(&(0x7f0000000240)='./file0\x00', &(0x7f0000000380)={0x670fd715, 0x3})
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ptrace$getregset(0x4205, r3, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
clock_settime(0x4, &(0x7f00000002c0))
syz_emit_ethernet(0x1f, &(0x7f0000000340)=ANY=[@ANYRESOCT], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000c80)='./bus\x00', 0x100c000, &(0x7f0000000840)={[{@nolazytime}, {}, {@barrier_val}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@min_batch_time={'min_batch_time', 0x3d, 0x7}}]}, 0xfc, 0x57c, &(0x7f0000000100)="$eJzs3V1rHNUbAPBnNpv0/d8USvnrhRR6YaV20yS+VBCsl6LFgt7XJZmGkk23ZDeliQXbC3vjjRRBxIL4Abz3svgF/BQFLRQpQS9EiMxmNt0ku3nrxk27vx9Mcs7OTM48e+aZnLOzywbQt05mPwoRL0XE10nEUMu6YuQrTy5vt/jk1kS2JLG09MkfSST5Y83tk/z3obzy/4j45cuIM4X17dbmF6bLlUo6m9dH6jPXR2rzC2evzpSn0qn02tj4+Pk3x8feefutrsX62qW/vvv4wQfnvzq1+O1Pj47dS+JCHM7XtcbxDG63Vk6W/8lLg3FhzYajXWhsL0l6fQDsyECe54ORXQOOxkCe9cCL74uIWAL6VCL/oU81xwHNuX2X5sHPjcfvL0+AGrEPtcZfXH5tJPY35kYHF5NVM6NsvjvchfazNn7+/f69bImNX4c4sEkdYFtu34mIc8Xi+ut/kl//du5c48Xjja1to9/+/0AvPcjGP6+3G/8VVsY/0Wb8c6hN7u7E5vlfeNSFZjrKxn/vth3/rly6hgfy2pHGmG8wuXK1kp6LiP9FxOkY3JfVN7qfc37x4VKnda3jv2zJ2m+OBfPjeFTct3qfyXK9HKtv1e3Y4zsRLxfbxZ+s9H/Spv+z5+PSFts4kd5/pdO6NfEnxXXx766lHyNebdv/T+9oJRvfnxxpnA8jzbNivT/vnvi1U/ub9//uyvr/4MbxDyet92tr22/jh/1/p53W7fT8H0o+bZSbSXCzXK/PjkYMJR+tf3zs6b7NenP7LP7Tpza+/rU7/7PJ12dbjP/u8bsdN10d/5HoRf9Pbqv/t194+OHn33dqf2v9/0ajdDp/JL/+tZefK1s9wGd9/gAAAAAAAGAvKUTE4UgKpZVyoVAqLb+/43gcLFSqtfqZK9W5a5PR+KzscAwWmne6j7a8H2I0fz9ssz62pj4eEcci4puBA416aaJamex18AAAAAAAAAAAAAAAAAAAALBHHOrw+f/MbwO9Pjpg1zW+2GBfr48C6IVNv/K/G9/0BOxJm+Y/8MKS/9C/5D/0L/kP/Uv+Q/+S/9C/5D/0L/kPAAAAAAAAAAAAAAAAAAAAAAAAAAAAXXXp4sVsWVp8cmsiq0/emJ+brt44O5nWpkszcxOliers9dJUtTpVSUsT1ZnN/l6lWr0+OhZzN0fqaa0+UptfuDxTnbtWv3x1pjyVXk4H/5OoAAAAAAAAAAAAAAAAAAAA4PlSm1+YLlcq6axCx8J7sScOYzcDXLaj3Yt7JQqFDoU7efdub68eXpQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYI1/AwAA///VDy/N")
unlink(&(0x7f0000000000)='./file0/file0\x00')

159.017251ms ago: executing program 4 (id=2205):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000e40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1f, 0x0, &(0x7f0000000000)="fae68670fef1c45ff0634fe72a6253b4357c978887379648e34b8e43761f35", 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x8, 0x0, 0x7ffc0002}]})
request_key(&(0x7f00000001c0)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='(.\'\x00', r2)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)

147.884241ms ago: executing program 0 (id=2206):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r3 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f00000003c0))
write$binfmt_elf64(r4, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x8, 0x7, 0x3, 0x0, 0x3, 0x6, 0x8, 0x64, 0x40, 0x83, 0x1, 0x3140, 0x38, 0x4, 0xfffe, 0x5, 0x5906}, [{0x4, 0x0, 0x43d87f53, 0x7f, 0xfffffffffffffffc, 0x0, 0x2, 0x4a}, {0x2, 0x1000, 0xf48, 0x2, 0x4, 0x3, 0x7fff, 0xffffffffffffffff}, {0x6, 0x6, 0x2, 0x300000000, 0x3, 0x6, 0x1, 0x1}, {0x7, 0xcad, 0x7, 0xd, 0x0, 0x7, 0x3}], "a12feedc067ea008377044e3e7fe6c1cde2b7f33f1cb2f8092a909dbec51d4c553ceba61aa2ff56a39fbe08e978a3cb37b6f258bdaecb974a1d2ba015d6c84eff75abd6c1e88eabcd92475e730484e09c547b2580fdfecbb0d1510f1f7e3b722a9285b7bbdb339420d9325943a03843e0b516aa15c4bad66ccd0632e7564a641ea3c3b4fd25ad9a316c74cc00eec9842ff9e"}, 0x1b2)
bpf$ITER_CREATE(0x21, &(0x7f0000000040)={r4}, 0x8)
symlinkat(&(0x7f0000000000)='.\x00', r4, &(0x7f0000000140)='./file0\x00')
socket$nl_rdma(0x10, 0x3, 0x14)

0s ago: executing program 5 (id=2207):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
unshare(0x400)
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="d00000001800010600000000fedbdf251c140000fe0000010000000005001a"], 0xd0}}, 0x0)
r4 = openat$cgroup(r2, &(0x7f0000000180)='syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f0000000000)='cgroup.controllers\x00', 0x300, 0x0)
preadv(r5, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/114, 0x72}], 0x1, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r7)
sendmsg$NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x4c, 0x0, 0x4, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0xc}}}}, [@NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x22}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x1c}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x8001}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x10}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4048001}, 0x8000)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000001400000008000f00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES64=r7], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
close(0x3)
r9 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r9, &(0x7f0000000100)={&(0x7f0000000080)={0xa, 0x4622, 0x1000000080000, @mcast2}, 0x1c, 0x0}, 0x0)

kernel console output (not intermixed with test programs):

xe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  124.105413][   T29] audit: type=1326 audit(1740732243.013:15653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7944 comm="syz.5.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  124.152649][ T7953] FAULT_INJECTION: forcing a failure.
[  124.152649][ T7953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.165949][ T7953] CPU: 0 UID: 0 PID: 7953 Comm: syz.0.1594 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  124.165989][ T7953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  124.166004][ T7953] Call Trace:
[  124.166013][ T7953]  <TASK>
[  124.166024][ T7953]  dump_stack_lvl+0xf2/0x150
[  124.166104][ T7953]  dump_stack+0x15/0x1a
[  124.166125][ T7953]  should_fail_ex+0x24a/0x260
[  124.166155][ T7953]  should_fail+0xb/0x10
[  124.166185][ T7953]  should_fail_usercopy+0x1a/0x20
[  124.166261][ T7953]  _copy_to_user+0x20/0xa0
[  124.166324][ T7953]  simple_read_from_buffer+0xa0/0x110
[  124.166356][ T7953]  proc_fail_nth_read+0xf9/0x140
[  124.166395][ T7953]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  124.166430][ T7953]  vfs_read+0x19b/0x6f0
[  124.166536][ T7953]  ? __rcu_read_unlock+0x4e/0x70
[  124.166572][ T7953]  ? __fget_files+0x17c/0x1c0
[  124.166616][ T7953]  ksys_read+0xe8/0x1b0
[  124.166685][ T7953]  __x64_sys_read+0x42/0x50
[  124.166712][ T7953]  x64_sys_call+0x2874/0x2dc0
[  124.166752][ T7953]  do_syscall_64+0xc9/0x1c0
[  124.166822][ T7953]  ? clear_bhb_loop+0x55/0xb0
[  124.166856][ T7953]  ? clear_bhb_loop+0x55/0xb0
[  124.166888][ T7953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.166918][ T7953] RIP: 0033:0x7f351e75bb7c
[  124.166934][ T7953] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  124.166963][ T7953] RSP: 002b:00007f351cda6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.166987][ T7953] RAX: ffffffffffffffda RBX: 00007f351e976080 RCX: 00007f351e75bb7c
[  124.167002][ T7953] RDX: 000000000000000f RSI: 00007f351cda60a0 RDI: 0000000000000007
[  124.167017][ T7953] RBP: 00007f351cda6090 R08: 0000000000000000 R09: 0000000000000000
[  124.167032][ T7953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.167047][ T7953] R13: 0000000000000001 R14: 00007f351e976080 R15: 00007fffc34b69b8
[  124.167068][ T7953]  </TASK>
[  124.380336][ T7949] 9pnet: Could not find request transport: fd-rvdno=0x0000000000000003
[  124.792823][ T7968] loop5: detected capacity change from 0 to 256
[  124.837490][ T7971] wg2: left promiscuous mode
[  124.842361][ T7971] wg2: left allmulticast mode
[  124.862129][ T7971] wg2: entered promiscuous mode
[  124.867064][ T7971] wg2: entered allmulticast mode
[  124.874800][ T7972] netlink: 'syz.5.1602': attribute type 1 has an invalid length.
[  125.042127][ T3375] IPVS: starting estimator thread 0...
[  125.134330][ T7978] IPVS: using max 1968 ests per chain, 98400 per kthread
[  125.398005][ T3375] IPVS: starting estimator thread 0...
[  125.530326][ T7990] IPVS: using max 2304 ests per chain, 115200 per kthread
[  125.548673][ T7995] wg2: left promiscuous mode
[  125.553456][ T7995] wg2: left allmulticast mode
[  125.582702][ T7995] wg2: entered promiscuous mode
[  125.587743][ T7995] wg2: entered allmulticast mode
[  125.744094][ T7999] loop4: detected capacity change from 0 to 8192
[  125.763320][ T7997] loop1: detected capacity change from 0 to 8192
[  126.133836][ T8016] loop5: detected capacity change from 0 to 256
[  126.510978][ T8027] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1622'.
[  126.520139][ T8027] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1622'.
[  126.605148][ T8029] FAULT_INJECTION: forcing a failure.
[  126.605148][ T8029] name failslab, interval 1, probability 0, space 0, times 0
[  126.617804][ T8029] CPU: 0 UID: 0 PID: 8029 Comm: syz.4.1623 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  126.617830][ T8029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.617844][ T8029] Call Trace:
[  126.617851][ T8029]  <TASK>
[  126.617858][ T8029]  dump_stack_lvl+0xf2/0x150
[  126.617960][ T8029]  dump_stack+0x15/0x1a
[  126.617978][ T8029]  should_fail_ex+0x24a/0x260
[  126.618110][ T8029]  should_failslab+0x8f/0xb0
[  126.618135][ T8029]  kmem_cache_alloc_node_noprof+0x59/0x320
[  126.618155][ T8029]  ? __alloc_skb+0x10b/0x310
[  126.618173][ T8029]  __alloc_skb+0x10b/0x310
[  126.618270][ T8029]  netlink_alloc_large_skb+0xad/0xe0
[  126.618303][ T8029]  netlink_sendmsg+0x3b4/0x6e0
[  126.618402][ T8029]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.618428][ T8029]  __sock_sendmsg+0x140/0x180
[  126.618455][ T8029]  ____sys_sendmsg+0x326/0x4b0
[  126.618522][ T8029]  __sys_sendmsg+0x19d/0x230
[  126.618553][ T8029]  __x64_sys_sendmsg+0x46/0x50
[  126.618579][ T8029]  x64_sys_call+0x2734/0x2dc0
[  126.618653][ T8029]  do_syscall_64+0xc9/0x1c0
[  126.618686][ T8029]  ? clear_bhb_loop+0x55/0xb0
[  126.618720][ T8029]  ? clear_bhb_loop+0x55/0xb0
[  126.618749][ T8029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.618881][ T8029] RIP: 0033:0x7f388d2dd169
[  126.618897][ T8029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.618913][ T8029] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.618928][ T8029] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  126.618938][ T8029] RDX: 0000000000008000 RSI: 00004000000002c0 RDI: 0000000000000004
[  126.618951][ T8029] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  126.618963][ T8029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.618976][ T8029] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  126.619062][ T8029]  </TASK>
[  126.890744][ T8033] FAULT_INJECTION: forcing a failure.
[  126.890744][ T8033] name failslab, interval 1, probability 0, space 0, times 0
[  126.903553][ T8033] CPU: 1 UID: 0 PID: 8033 Comm: syz.4.1626 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  126.903578][ T8033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.903590][ T8033] Call Trace:
[  126.903622][ T8033]  <TASK>
[  126.903628][ T8033]  dump_stack_lvl+0xf2/0x150
[  126.903653][ T8033]  dump_stack+0x15/0x1a
[  126.903674][ T8033]  should_fail_ex+0x24a/0x260
[  126.903702][ T8033]  should_failslab+0x8f/0xb0
[  126.903727][ T8033]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  126.903822][ T8033]  ? __d_alloc+0x3d/0x350
[  126.903913][ T8033]  __d_alloc+0x3d/0x350
[  126.903930][ T8033]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  126.903951][ T8033]  ? security_inode_alloc+0x37/0x100
[  126.904012][ T8033]  d_alloc_pseudo+0x1e/0x80
[  126.904035][ T8033]  alloc_file_pseudo+0x73/0x160
[  126.904091][ T8033]  ? inode_init_always_gfp+0x4b8/0x4f0
[  126.904126][ T8033]  sock_alloc_file+0x9b/0x1e0
[  126.904247][ T8033]  do_accept+0x1e3/0x390
[  126.904272][ T8033]  __sys_accept4+0xc3/0x150
[  126.904290][ T8033]  __x64_sys_accept4+0x53/0x60
[  126.904306][ T8033]  x64_sys_call+0x2824/0x2dc0
[  126.904328][ T8033]  do_syscall_64+0xc9/0x1c0
[  126.904419][ T8033]  ? clear_bhb_loop+0x55/0xb0
[  126.904451][ T8033]  ? clear_bhb_loop+0x55/0xb0
[  126.904589][ T8033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.904664][ T8033] RIP: 0033:0x7f388d2dd169
[  126.904683][ T8033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.904761][ T8033] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  126.904783][ T8033] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  126.904798][ T8033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  126.904812][ T8033] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  126.904826][ T8033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.904840][ T8033] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  126.904863][ T8033]  </TASK>
[  126.907369][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1625'.
[  127.119971][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1625'.
[  127.148999][ T8039] FAULT_INJECTION: forcing a failure.
[  127.148999][ T8039] name failslab, interval 1, probability 0, space 0, times 0
[  127.161721][ T8039] CPU: 0 UID: 0 PID: 8039 Comm: syz.4.1628 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  127.161747][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  127.161760][ T8039] Call Trace:
[  127.161767][ T8039]  <TASK>
[  127.161775][ T8039]  dump_stack_lvl+0xf2/0x150
[  127.161805][ T8039]  dump_stack+0x15/0x1a
[  127.161861][ T8039]  should_fail_ex+0x24a/0x260
[  127.161891][ T8039]  should_failslab+0x8f/0xb0
[  127.161924][ T8039]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  127.161950][ T8039]  ? sidtab_sid2str_get+0xb8/0x140
[  127.162062][ T8039]  kmemdup_noprof+0x2b/0x70
[  127.162098][ T8039]  sidtab_sid2str_get+0xb8/0x140
[  127.162127][ T8039]  security_sid_to_context_core+0x1eb/0x2f0
[  127.162154][ T8039]  security_sid_to_context+0x27/0x30
[  127.162188][ T8039]  selinux_lsmprop_to_secctx+0x68/0xf0
[  127.162222][ T8039]  security_lsmprop_to_secctx+0x40/0x80
[  127.162245][ T8039]  audit_log_task_context+0x76/0x180
[  127.162275][ T8039]  audit_log_task+0xf9/0x250
[  127.162371][ T8039]  audit_seccomp+0x68/0x130
[  127.162472][ T8039]  __seccomp_filter+0x6fa/0x1180
[  127.162495][ T8039]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  127.162521][ T8039]  ? vfs_write+0x644/0x920
[  127.162546][ T8039]  __secure_computing+0x9f/0x1c0
[  127.162645][ T8039]  syscall_trace_enter+0xd1/0x1f0
[  127.162671][ T8039]  ? fpregs_assert_state_consistent+0x83/0xa0
[  127.162696][ T8039]  do_syscall_64+0xaa/0x1c0
[  127.162730][ T8039]  ? clear_bhb_loop+0x55/0xb0
[  127.162791][ T8039]  ? clear_bhb_loop+0x55/0xb0
[  127.162814][ T8039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.162837][ T8039] RIP: 0033:0x7f388d2dd169
[  127.162850][ T8039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.162943][ T8039] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 000000000000008b
[  127.162968][ T8039] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  127.162978][ T8039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  127.162988][ T8039] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  127.162997][ T8039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.163006][ T8039] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  127.163023][ T8039]  </TASK>
[  127.187452][ T8040] futex_wake_op: syz.1.1624 tries to shift op by -1; fix this program
[  127.412696][ T8052] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1632'.
[  127.440611][ T8052] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  127.528706][ T8055] Cannot find del_set index 4 as target
[  127.611318][ T8057] loop1: detected capacity change from 0 to 8192
[  127.629383][ T8060] 9pnet_fd: Insufficient options for proto=fd
[  127.701692][ T8060] loop4: detected capacity change from 0 to 128
[  127.736732][ T8064] 9pnet_fd: Insufficient options for proto=fd
[  127.749363][ T8060] bio_check_eod: 19921 callbacks suppressed
[  127.749374][ T8060] syz.4.1635: attempt to access beyond end of device
[  127.749374][ T8060] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128
[  127.859330][ T8060] syz.4.1635: attempt to access beyond end of device
[  127.859330][ T8060] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128
[  127.876020][ T8069] loop5: detected capacity change from 0 to 164
[  127.897853][ T8069] 9pnet_fd: Insufficient options for proto=fd
[  127.906506][ T8069] syz.5.1638: attempt to access beyond end of device
[  127.906506][ T8069] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  127.930355][ T8069] syz.5.1638: attempt to access beyond end of device
[  127.930355][ T8069] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  127.951511][ T8060] syz.4.1635: attempt to access beyond end of device
[  127.951511][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  127.980390][ T8060] syz.4.1635: attempt to access beyond end of device
[  127.980390][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  128.011561][ T8074] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1640'.
[  128.019112][ T8060] syz.4.1635: attempt to access beyond end of device
[  128.019112][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  128.020646][ T8074] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1640'.
[  128.083937][ T8060] syz.4.1635: attempt to access beyond end of device
[  128.083937][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  128.117155][ T8060] syz.4.1635: attempt to access beyond end of device
[  128.117155][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  128.142373][ T8060] syz.4.1635: attempt to access beyond end of device
[  128.142373][ T8060] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  128.240049][ T8082] FAULT_INJECTION: forcing a failure.
[  128.240049][ T8082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  128.253173][ T8082] CPU: 1 UID: 0 PID: 8082 Comm: syz.0.1644 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  128.253194][ T8082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.253249][ T8082] Call Trace:
[  128.253254][ T8082]  <TASK>
[  128.253260][ T8082]  dump_stack_lvl+0xf2/0x150
[  128.253285][ T8082]  dump_stack+0x15/0x1a
[  128.253307][ T8082]  should_fail_ex+0x24a/0x260
[  128.253332][ T8082]  should_fail+0xb/0x10
[  128.253355][ T8082]  should_fail_usercopy+0x1a/0x20
[  128.253386][ T8082]  _copy_to_user+0x20/0xa0
[  128.253407][ T8082]  simple_read_from_buffer+0xa0/0x110
[  128.253485][ T8082]  proc_fail_nth_read+0xf9/0x140
[  128.253516][ T8082]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  128.253546][ T8082]  vfs_read+0x19b/0x6f0
[  128.253632][ T8082]  ? __rcu_read_unlock+0x4e/0x70
[  128.253656][ T8082]  ? __fget_files+0x17c/0x1c0
[  128.253688][ T8082]  ksys_read+0xe8/0x1b0
[  128.253712][ T8082]  __x64_sys_read+0x42/0x50
[  128.253735][ T8082]  x64_sys_call+0x2874/0x2dc0
[  128.253862][ T8084] 9pnet_fd: Insufficient options for proto=fd
[  128.253839][ T8082]  do_syscall_64+0xc9/0x1c0
[  128.253892][ T8082]  ? clear_bhb_loop+0x55/0xb0
[  128.253920][ T8082]  ? clear_bhb_loop+0x55/0xb0
[  128.253990][ T8082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.254020][ T8082] RIP: 0033:0x7f351e75bb7c
[  128.254035][ T8082] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  128.254054][ T8082] RSP: 002b:00007f351cdc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  128.254096][ T8082] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75bb7c
[  128.254115][ T8082] RDX: 000000000000000f RSI: 00007f351cdc70a0 RDI: 0000000000000005
[  128.254128][ T8082] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  128.254140][ T8082] R10: fffffffffffffef8 R11: 0000000000000246 R12: 0000000000000001
[  128.254153][ T8082] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  128.254173][ T8082]  </TASK>
[  128.453827][ T8088] loop5: detected capacity change from 0 to 128
[  128.468058][ T8087] 9pnet_fd: Insufficient options for proto=fd
[  128.681008][ T8094] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'.
[  128.867191][   T29] kauditd_printk_skb: 482 callbacks suppressed
[  128.867204][   T29] audit: type=1326 audit(1740732248.043:16135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8086 comm="syz.0.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  128.951551][ T8098] loop4: detected capacity change from 0 to 256
[  128.972307][   T29] audit: type=1326 audit(1740732248.153:16136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8086 comm="syz.0.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  129.091070][ T8101] loop4: detected capacity change from 0 to 256
[  129.107350][ T8101] FAULT_INJECTION: forcing a failure.
[  129.107350][ T8101] name failslab, interval 1, probability 0, space 0, times 0
[  129.113484][ T8099] loop1: detected capacity change from 0 to 8192
[  129.120010][ T8101] CPU: 0 UID: 0 PID: 8101 Comm: syz.4.1651 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  129.120096][ T8101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.120109][ T8101] Call Trace:
[  129.120116][ T8101]  <TASK>
[  129.120188][ T8101]  dump_stack_lvl+0xf2/0x150
[  129.120222][ T8101]  dump_stack+0x15/0x1a
[  129.120244][ T8101]  should_fail_ex+0x24a/0x260
[  129.120313][ T8101]  should_failslab+0x8f/0xb0
[  129.120345][ T8101]  kmem_cache_alloc_noprof+0x52/0x320
[  129.120427][ T8101]  ? getname_flags+0x81/0x3b0
[  129.120465][ T8101]  getname_flags+0x81/0x3b0
[  129.120500][ T8101]  __x64_sys_mkdirat+0x41/0x60
[  129.120527][ T8101]  x64_sys_call+0x1b6f/0x2dc0
[  129.120594][ T8101]  do_syscall_64+0xc9/0x1c0
[  129.120627][ T8101]  ? clear_bhb_loop+0x55/0xb0
[  129.120656][ T8101]  ? clear_bhb_loop+0x55/0xb0
[  129.120683][ T8101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.120795][ T8101] RIP: 0033:0x7f388d2dd169
[  129.120877][ T8101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.120896][ T8101] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  129.120916][ T8101] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  129.120971][ T8101] RDX: 00000000000001c0 RSI: 0000400000000100 RDI: ffffffffffffff9c
[  129.120984][ T8101] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  129.120997][ T8101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.121045][ T8101] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  129.121063][ T8101]  </TASK>
[  129.132263][   T29] audit: type=1326 audit(1740732248.193:16137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.209689][ T8103] loop5: detected capacity change from 0 to 512
[  129.215415][   T29] audit: type=1326 audit(1740732248.193:16138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.344110][   T29] audit: type=1326 audit(1740732248.193:16139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.367766][   T29] audit: type=1326 audit(1740732248.193:16140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.391349][   T29] audit: type=1326 audit(1740732248.193:16141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.414880][   T29] audit: type=1326 audit(1740732248.193:16142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.438511][   T29] audit: type=1326 audit(1740732248.193:16143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.462004][   T29] audit: type=1326 audit(1740732248.193:16144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8096 comm="syz.1.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  129.521670][ T8103] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1652: bg 0: block 248: padding at end of block bitmap is not set
[  129.598287][ T8103] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.1652: Failed to acquire dquot type 1
[  129.719236][ T8103] EXT4-fs (loop5): 1 truncate cleaned up
[  129.740506][ T8103] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.780978][ T8116] loop4: detected capacity change from 0 to 8192
[  129.788077][ T8103] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.867163][ T8118] wg2: left promiscuous mode
[  129.871848][ T8118] wg2: left allmulticast mode
[  129.893014][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.951731][ T8118] wg2: entered promiscuous mode
[  129.956616][ T8118] wg2: entered allmulticast mode
[  130.050755][ T8132] 9pnet_fd: Insufficient options for proto=fd
[  130.543008][ T8158] 9pnet_fd: Insufficient options for proto=fd
[  130.687436][ T8165] FAULT_INJECTION: forcing a failure.
[  130.687436][ T8165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.700590][ T8165] CPU: 0 UID: 0 PID: 8165 Comm: syz.1.1675 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  130.700614][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  130.700624][ T8165] Call Trace:
[  130.700630][ T8165]  <TASK>
[  130.700635][ T8165]  dump_stack_lvl+0xf2/0x150
[  130.700793][ T8165]  dump_stack+0x15/0x1a
[  130.700867][ T8165]  should_fail_ex+0x24a/0x260
[  130.700932][ T8165]  should_fail+0xb/0x10
[  130.700991][ T8165]  should_fail_usercopy+0x1a/0x20
[  130.701025][ T8165]  _copy_from_user+0x1c/0xa0
[  130.701072][ T8165]  io_submit_one+0x54/0x1230
[  130.701182][ T8165]  ? __rcu_read_unlock+0x4e/0x70
[  130.701203][ T8165]  __se_sys_io_submit+0xf5/0x280
[  130.701229][ T8165]  __x64_sys_io_submit+0x43/0x50
[  130.701254][ T8165]  x64_sys_call+0x2c20/0x2dc0
[  130.701281][ T8165]  do_syscall_64+0xc9/0x1c0
[  130.701385][ T8165]  ? clear_bhb_loop+0x55/0xb0
[  130.701451][ T8165]  ? clear_bhb_loop+0x55/0xb0
[  130.701479][ T8165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.701526][ T8165] RIP: 0033:0x7f43d39ad169
[  130.701539][ T8165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.701555][ T8165] RSP: 002b:00007f43d2017038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  130.701587][ T8165] RAX: ffffffffffffffda RBX: 00007f43d3bc5fa0 RCX: 00007f43d39ad169
[  130.701600][ T8165] RDX: 0000400000000040 RSI: 0000000000000001 RDI: 00007f43d4706000
[  130.701655][ T8165] RBP: 00007f43d2017090 R08: 0000000000000000 R09: 0000000000000000
[  130.701668][ T8165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.701682][ T8165] R13: 0000000000000000 R14: 00007f43d3bc5fa0 R15: 00007ffeb9fd75e8
[  130.701697][ T8165]  </TASK>
[  130.999514][ T8177] loop5: detected capacity change from 0 to 512
[  131.071687][ T8177] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1681: bg 0: block 248: padding at end of block bitmap is not set
[  131.090644][ T8177] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.1681: Failed to acquire dquot type 1
[  131.103976][ T8177] EXT4-fs (loop5): 1 truncate cleaned up
[  131.109872][ T8177] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.124076][ T8186] loop4: detected capacity change from 0 to 8192
[  131.130510][ T8177] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.216036][ T8196] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1686'.
[  131.225074][ T8196] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1686'.
[  131.243323][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.321767][ T8191] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  131.331668][ T8191] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.411013][ T8191] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  131.420867][ T8191] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.438172][ T8201] 9pnet_fd: Insufficient options for proto=fd
[  131.502697][ T8191] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  131.512552][ T8191] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.546814][ T8207] wg2: left promiscuous mode
[  131.551503][ T8207] wg2: left allmulticast mode
[  131.561839][ T8207] wg2: entered promiscuous mode
[  131.566781][ T8207] wg2: entered allmulticast mode
[  131.605280][ T8191] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  131.615156][ T8191] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.706985][ T8191] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  131.715284][ T8191] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.733823][ T8191] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  131.742250][ T8191] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.783600][ T8191] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  131.791902][ T8191] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.819626][ T8191] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.826524][ T8224] netlink: 'syz.5.1696': attribute type 4 has an invalid length.
[  131.827865][ T8191] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.852499][ T8222] loop1: detected capacity change from 0 to 8192
[  131.890751][ T8224] netlink: 'syz.5.1696': attribute type 4 has an invalid length.
[  131.995956][ T8228] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1698'.
[  132.071451][ T8230] FAULT_INJECTION: forcing a failure.
[  132.071451][ T8230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.084626][ T8230] CPU: 1 UID: 0 PID: 8230 Comm: syz.4.1697 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  132.084655][ T8230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.084667][ T8230] Call Trace:
[  132.084672][ T8230]  <TASK>
[  132.084679][ T8230]  dump_stack_lvl+0xf2/0x150
[  132.084712][ T8230]  dump_stack+0x15/0x1a
[  132.084799][ T8230]  should_fail_ex+0x24a/0x260
[  132.084832][ T8230]  should_fail+0xb/0x10
[  132.084865][ T8230]  should_fail_usercopy+0x1a/0x20
[  132.084971][ T8230]  _copy_from_user+0x1c/0xa0
[  132.085009][ T8230]  move_addr_to_kernel+0x82/0x120
[  132.085049][ T8230]  __sys_sendto+0x12e/0x230
[  132.085086][ T8230]  __x64_sys_sendto+0x78/0x90
[  132.085156][ T8230]  x64_sys_call+0x29fa/0x2dc0
[  132.085181][ T8230]  do_syscall_64+0xc9/0x1c0
[  132.085211][ T8230]  ? clear_bhb_loop+0x55/0xb0
[  132.085311][ T8230]  ? clear_bhb_loop+0x55/0xb0
[  132.085411][ T8230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.085439][ T8230] RIP: 0033:0x7f388d2dd169
[  132.085457][ T8230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.085557][ T8230] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  132.085577][ T8230] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  132.085600][ T8230] RDX: 000000000000ffec RSI: 0000400000000040 RDI: 0000000000000006
[  132.085613][ T8230] RBP: 00007f388b941090 R08: 0000400000000340 R09: 0000000000000010
[  132.085626][ T8230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.085642][ T8230] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  132.085661][ T8230]  </TASK>
[  132.313348][ T8237] FAULT_INJECTION: forcing a failure.
[  132.313348][ T8237] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.326595][ T8237] CPU: 1 UID: 0 PID: 8237 Comm: syz.0.1701 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  132.326672][ T8237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.326685][ T8237] Call Trace:
[  132.326741][ T8237]  <TASK>
[  132.326747][ T8237]  dump_stack_lvl+0xf2/0x150
[  132.326775][ T8237]  dump_stack+0x15/0x1a
[  132.326828][ T8237]  should_fail_ex+0x24a/0x260
[  132.326857][ T8237]  should_fail+0xb/0x10
[  132.326882][ T8237]  should_fail_usercopy+0x1a/0x20
[  132.326959][ T8237]  _copy_from_user+0x1c/0xa0
[  132.326993][ T8237]  copy_msghdr_from_user+0x54/0x2a0
[  132.327024][ T8237]  ? __fget_files+0x17c/0x1c0
[  132.327135][ T8237]  __sys_sendmsg+0x13e/0x230
[  132.327172][ T8237]  __x64_sys_sendmsg+0x46/0x50
[  132.327196][ T8237]  x64_sys_call+0x2734/0x2dc0
[  132.327221][ T8237]  do_syscall_64+0xc9/0x1c0
[  132.327325][ T8237]  ? clear_bhb_loop+0x55/0xb0
[  132.327352][ T8237]  ? clear_bhb_loop+0x55/0xb0
[  132.327435][ T8237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.327461][ T8237] RIP: 0033:0x7f351e75d169
[  132.327475][ T8237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.327493][ T8237] RSP: 002b:00007f351cdc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.327518][ T8237] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75d169
[  132.327538][ T8237] RDX: 0000000000000040 RSI: 0000400000000580 RDI: 0000000000000003
[  132.327550][ T8237] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  132.327630][ T8237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.327642][ T8237] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  132.327759][ T8237]  </TASK>
[  132.554821][ T8242] xt_TCPMSS: Only works on TCP SYN packets
[  132.576066][ T8240] 9pnet_fd: Insufficient options for proto=fd
[  132.586501][ T8240] loop4: detected capacity change from 0 to 128
[  132.656375][ T8248] FAULT_INJECTION: forcing a failure.
[  132.656375][ T8248] name failslab, interval 1, probability 0, space 0, times 0
[  132.669165][ T8248] CPU: 1 UID: 0 PID: 8248 Comm: syz.0.1706 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  132.669193][ T8248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.669206][ T8248] Call Trace:
[  132.669210][ T8248]  <TASK>
[  132.669216][ T8248]  dump_stack_lvl+0xf2/0x150
[  132.669244][ T8248]  dump_stack+0x15/0x1a
[  132.669381][ T8248]  should_fail_ex+0x24a/0x260
[  132.669409][ T8248]  should_failslab+0x8f/0xb0
[  132.669442][ T8248]  kmem_cache_alloc_node_noprof+0x59/0x320
[  132.669467][ T8248]  ? __alloc_skb+0x10b/0x310
[  132.669560][ T8248]  __alloc_skb+0x10b/0x310
[  132.669580][ T8248]  sock_wmalloc+0x7b/0xc0
[  132.669613][ T8248]  pppol2tp_sendmsg+0xff/0x440
[  132.669652][ T8248]  ? __pfx_pppol2tp_sendmsg+0x10/0x10
[  132.669748][ T8248]  __sock_sendmsg+0x140/0x180
[  132.669836][ T8248]  sock_write_iter+0x15e/0x1a0
[  132.669874][ T8248]  do_iter_readv_writev+0x403/0x4b0
[  132.669964][ T8248]  vfs_writev+0x2d9/0x880
[  132.669985][ T8248]  ? get_pid_task+0x8e/0xc0
[  132.670016][ T8248]  ? proc_fail_nth_write+0x12a/0x150
[  132.670128][ T8248]  do_writev+0xf4/0x220
[  132.670150][ T8248]  __x64_sys_writev+0x45/0x50
[  132.670183][ T8248]  x64_sys_call+0x1fab/0x2dc0
[  132.670210][ T8248]  do_syscall_64+0xc9/0x1c0
[  132.670245][ T8248]  ? clear_bhb_loop+0x55/0xb0
[  132.670272][ T8248]  ? clear_bhb_loop+0x55/0xb0
[  132.670301][ T8248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.670357][ T8248] RIP: 0033:0x7f351e75d169
[  132.670373][ T8248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.670390][ T8248] RSP: 002b:00007f351cdc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  132.670406][ T8248] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75d169
[  132.670484][ T8248] RDX: 0000000000000001 RSI: 0000400000000180 RDI: 0000000000000003
[  132.670499][ T8248] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  132.670513][ T8248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.670526][ T8248] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  132.670617][ T8248]  </TASK>
[  132.897669][ T8240] bio_check_eod: 24831 callbacks suppressed
[  132.897680][ T8240] syz.4.1703: attempt to access beyond end of device
[  132.897680][ T8240] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128
[  132.927489][ T8240] syz.4.1703: attempt to access beyond end of device
[  132.927489][ T8240] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128
[  132.967068][ T8250] atomic_op ffff88813a812528 conn xmit_atomic 0000000000000000
[  132.978797][ T8240] syz.4.1703: attempt to access beyond end of device
[  132.978797][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  132.993032][ T8240] syz.4.1703: attempt to access beyond end of device
[  132.993032][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.014090][ T8255] netlink: 'syz.0.1709': attribute type 4 has an invalid length.
[  133.033165][ T8255] netlink: 'syz.0.1709': attribute type 4 has an invalid length.
[  133.051508][ T8256] loop5: detected capacity change from 0 to 1024
[  133.058173][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.058173][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.081485][ T8256] EXT4-fs: inline encryption not supported
[  133.112050][ T8256] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  133.138381][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.138381][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.161683][ T8258] loop1: detected capacity change from 0 to 8192
[  133.181410][ T8256] EXT4-fs error (device loop5): ext4_map_blocks:705: inode #3: block 1: comm syz.5.1708: lblock 1 mapped to illegal pblock 1 (length 1)
[  133.240442][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.240442][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.253702][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.253702][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.266919][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.266919][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.280129][ T8240] syz.4.1703: attempt to access beyond end of device
[  133.280129][ T8240] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  133.374048][ T8256] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.1708: Failed to acquire dquot type 0
[  133.451016][ T8256] EXT4-fs error (device loop5): ext4_free_blocks:6589: comm syz.5.1708: Freeing blocks not in datazone - block = 0, count = 4096
[  133.465106][ T8256] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1708: Invalid inode bitmap blk 0 in block_group 0
[  133.477993][   T28] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  133.480262][ T8256] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  133.507642][ T8256] EXT4-fs (loop5): 1 orphan inode deleted
[  133.514555][   T28] EXT4-fs error (device loop5): ext4_release_dquot:6950: comm kworker/u8:1: Failed to release dquot type 0
[  133.518845][ T8256] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.722879][   T28] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.752703][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.790494][   T28] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.794441][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.836460][ T8294] netlink: 'syz.4.1722': attribute type 4 has an invalid length.
[  133.870290][   T29] kauditd_printk_skb: 607 callbacks suppressed
[  133.870301][   T29] audit: type=1326 audit(1740732253.043:16745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  133.925403][   T29] audit: type=1326 audit(1740732253.083:16746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  133.949027][   T29] audit: type=1326 audit(1740732253.083:16747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  133.950799][ T8294] netlink: 'syz.4.1722': attribute type 4 has an invalid length.
[  133.972562][   T29] audit: type=1326 audit(1740732253.083:16748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  134.003841][   T29] audit: type=1326 audit(1740732253.083:16749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  134.027302][   T29] audit: type=1326 audit(1740732253.083:16751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  134.051096][   T29] audit: type=1326 audit(1740732253.083:16750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  134.061118][   T28] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.074646][   T29] audit: type=1326 audit(1740732253.083:16753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  134.108002][   T29] audit: type=1326 audit(1740732253.083:16752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  134.131631][   T29] audit: type=1326 audit(1740732253.083:16754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8295 comm="syz.0.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f351e75d1a3 code=0x7ffc0000
[  134.251504][   T28] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.268606][ T8316] netlink: 'syz.1.1728': attribute type 4 has an invalid length.
[  134.290092][ T8320] atomic_op ffff888108e63928 conn xmit_atomic 0000000000000000
[  134.317402][ T8272] chnl_net:caif_netlink_parms(): no params data found
[  134.324371][ T8315] loop5: detected capacity change from 0 to 8192
[  134.338130][ T8316] netlink: 'syz.1.1728': attribute type 4 has an invalid length.
[  134.355952][   T28] bridge_slave_1: left allmulticast mode
[  134.361647][   T28] bridge_slave_1: left promiscuous mode
[  134.367402][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.381554][ T8322] loop4: detected capacity change from 0 to 1024
[  134.388134][   T28] bridge_slave_0: left allmulticast mode
[  134.388211][ T8322] EXT4-fs: inline encryption not supported
[  134.393897][   T28] bridge_slave_0: left promiscuous mode
[  134.405437][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.474831][ T8322] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  134.505880][ T8322] EXT4-fs error (device loop4): ext4_map_blocks:705: inode #3: block 1: comm syz.4.1730: lblock 1 mapped to illegal pblock 1 (length 1)
[  134.520329][ T8322] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1730: Failed to acquire dquot type 0
[  134.534129][ T8322] EXT4-fs error (device loop4): ext4_free_blocks:6589: comm syz.4.1730: Freeing blocks not in datazone - block = 0, count = 4096
[  134.548818][ T8322] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.1730: Invalid inode bitmap blk 0 in block_group 0
[  134.562878][ T8322] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  134.572174][   T11] EXT4-fs error (device loop4): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  134.572408][ T8322] EXT4-fs (loop4): 1 orphan inode deleted
[  134.593903][ T8322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.606754][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:0: Failed to release dquot type 0
[  134.622565][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.633719][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.647983][   T28] bond0 (unregistering): Released all slaves
[  134.706300][ T8340] netlink: 'syz.1.1736': attribute type 4 has an invalid length.
[  134.778979][   T28] hsr_slave_0: left promiscuous mode
[  134.789795][   T28] hsr_slave_1: left promiscuous mode
[  134.796497][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  134.803937][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.812464][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  134.819955][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.829167][   T28] veth1_macvtap: left promiscuous mode
[  134.834770][   T28] veth0_macvtap: left promiscuous mode
[  134.840701][   T28] veth1_vlan: left promiscuous mode
[  134.846228][ T8348] netlink: 'syz.1.1736': attribute type 4 has an invalid length.
[  134.854038][   T28] veth0_vlan: left promiscuous mode
[  134.923569][   T28] team0 (unregistering): Port device team_slave_1 removed
[  134.935232][   T28] team0 (unregistering): Port device team_slave_0 removed
[  134.971088][ T8272] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.978334][ T8272] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.000281][ T8272] bridge_slave_0: entered allmulticast mode
[  135.006961][ T8272] bridge_slave_0: entered promiscuous mode
[  135.017822][ T8272] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.024914][ T8272] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.067682][ T8272] bridge_slave_1: entered allmulticast mode
[  135.084286][ T8272] bridge_slave_1: entered promiscuous mode
[  135.085852][ T8352] loop1: detected capacity change from 0 to 8192
[  135.121840][ T8272] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.138007][ T8272] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.167992][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.182107][ T8272] team0: Port device team_slave_0 added
[  135.189321][ T8272] team0: Port device team_slave_1 added
[  135.212909][ T8272] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.219896][ T8272] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.246054][ T8272] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.268172][ T8272] batman_adv: batadv0: Adding interface: batadv_slave_1
[  135.275196][ T8272] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.301193][ T8272] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.382740][ T8272] hsr_slave_0: entered promiscuous mode
[  135.389033][ T8272] hsr_slave_1: entered promiscuous mode
[  135.395435][ T8272] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.403251][ T8272] Cannot create hsr debugfs directory
[  135.454705][ T8366] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1744'.
[  135.463727][ T8366] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1744'.
[  135.472758][ T8363] loop5: detected capacity change from 0 to 8192
[  135.565024][ T8272] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  135.591016][ T8272] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  135.617198][ T8272] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  135.637399][ T8272] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  135.679798][ T8374] Cannot find del_set index 4 as target
[  135.729060][ T8272] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.752816][ T8272] 8021q: adding VLAN 0 to HW filter on device team0
[  135.763924][ T8370] loop5: detected capacity change from 0 to 8192
[  135.777894][ T8306] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.784973][ T8306] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.805742][ T8306] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.812813][ T8306] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.834813][ T8379] loop4: detected capacity change from 0 to 8192
[  135.897407][ T8383] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  135.978658][ T8272] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.146806][ T8402] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  136.191822][ T8402] loop1: detected capacity change from 0 to 8192
[  136.198737][ T8405] 9pnet_fd: Insufficient options for proto=fd
[  136.242060][ T8402]  loop1: p1 < > p2 < p5 > p3 p4
[  136.249555][ T8402] loop1: p3 start 83890176 is beyond EOD, truncated
[  136.256211][ T8402] loop1: p4 size 16776960 extends beyond EOD, truncated
[  136.272688][ T8402] loop1: p5 size 16776960 extends beyond EOD, truncated
[  136.293935][ T8402] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1753'.
[  136.302883][ T8272] veth0_vlan: entered promiscuous mode
[  136.315345][ T8402] bond0: (slave bond_slave_0): Releasing backup interface
[  136.338051][ T8272] veth1_vlan: entered promiscuous mode
[  136.397199][ T8272] veth0_macvtap: entered promiscuous mode
[  136.415488][ T8272] veth1_macvtap: entered promiscuous mode
[  136.429696][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.440211][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.450152][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.460575][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.470575][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.481041][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.491065][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.501494][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.518543][ T8272] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.547349][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.557839][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.567672][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.578248][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.588129][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.598576][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.608419][ T8272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.619038][ T8272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.631482][ T8272] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.643658][ T8272] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.652398][ T8272] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.661264][ T8272] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.669982][ T8272] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.768449][ T8424] loop1: detected capacity change from 0 to 8192
[  136.816906][ T8442] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1766'.
[  136.831433][ T8447] FAULT_INJECTION: forcing a failure.
[  136.831433][ T8447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.840043][ T8442] loop5: detected capacity change from 0 to 512
[  136.844606][ T8447] CPU: 1 UID: 0 PID: 8447 Comm: syz.4.1768 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  136.844657][ T8447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.844674][ T8447] Call Trace:
[  136.844681][ T8447]  <TASK>
[  136.844691][ T8447]  dump_stack_lvl+0xf2/0x150
[  136.844727][ T8447]  dump_stack+0x15/0x1a
[  136.844757][ T8447]  should_fail_ex+0x24a/0x260
[  136.844847][ T8447]  should_fail+0xb/0x10
[  136.844880][ T8447]  should_fail_usercopy+0x1a/0x20
[  136.844946][ T8447]  copy_to_user_nofault+0x7d/0x110
[  136.844976][ T8447]  bpf_probe_write_user+0x80/0xc0
[  136.845097][ T8447]  bpf_prog_19072b5a3fcf5d64+0x41/0x45
[  136.845119][ T8447]  bpf_trace_run2+0x104/0x1d0
[  136.845151][ T8447]  ? __pfx___bpf_trace_sys_enter+0x10/0x10
[  136.845189][ T8447]  __bpf_trace_sys_enter+0x10/0x30
[  136.845219][ T8447]  __traceiter_sys_enter+0x4d/0x80
[  136.845248][ T8447]  trace_sys_enter+0x85/0x110
[  136.845277][ T8447]  syscall_trace_enter+0x13f/0x1f0
[  136.845317][ T8447]  ? fpregs_assert_state_consistent+0x83/0xa0
[  136.845354][ T8447]  do_syscall_64+0xaa/0x1c0
[  136.845394][ T8447]  ? clear_bhb_loop+0x55/0xb0
[  136.845428][ T8447]  ? clear_bhb_loop+0x55/0xb0
[  136.845495][ T8447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.845600][ T8447] RIP: 0033:0x7f388d2dd169
[  136.845627][ T8447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.845647][ T8447] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  136.845667][ T8447] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  136.845680][ T8447] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000003
[  136.845693][ T8447] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  136.845705][ T8447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.845779][ T8447] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  136.845798][ T8447]  </TASK>
[  136.849114][ T8444] 9pnet_fd: Insufficient options for proto=fd
[  136.859944][ T8431] loop6: detected capacity change from 0 to 8192
[  136.931939][ T8442] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  137.090993][ T8452] validate_nla: 2 callbacks suppressed
[  137.091008][ T8452] netlink: 'syz.4.1769': attribute type 4 has an invalid length.
[  137.105996][ T8442] EXT4-fs (loop5): 1 truncate cleaned up
[  137.122228][ T8452] netlink: 'syz.4.1769': attribute type 4 has an invalid length.
[  137.132262][ T8442] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.347385][ T8456] loop4: detected capacity change from 0 to 8192
[  137.476106][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.700814][ T8485] netlink: 'syz.5.1782': attribute type 4 has an invalid length.
[  137.714624][ T8485] netlink: 'syz.5.1782': attribute type 4 has an invalid length.
[  137.729126][ T8481] loop1: detected capacity change from 0 to 8192
[  137.799752][ T8489] Cannot find del_set index 4 as target
[  137.817397][ T8494] FAULT_INJECTION: forcing a failure.
[  137.817397][ T8494] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.830575][ T8494] CPU: 1 UID: 0 PID: 8494 Comm: syz.5.1786 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  137.830601][ T8494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.830614][ T8494] Call Trace:
[  137.830620][ T8494]  <TASK>
[  137.830628][ T8494]  dump_stack_lvl+0xf2/0x150
[  137.830657][ T8494]  dump_stack+0x15/0x1a
[  137.830700][ T8494]  should_fail_ex+0x24a/0x260
[  137.830731][ T8494]  should_fail+0xb/0x10
[  137.830757][ T8494]  should_fail_usercopy+0x1a/0x20
[  137.830782][ T8494]  _copy_from_user+0x1c/0xa0
[  137.830813][ T8494]  copy_msghdr_from_user+0x54/0x2a0
[  137.830842][ T8494]  ? __fget_files+0x17c/0x1c0
[  137.830878][ T8494]  __sys_sendmsg+0x13e/0x230
[  137.830915][ T8494]  __x64_sys_sendmsg+0x46/0x50
[  137.831001][ T8494]  x64_sys_call+0x2734/0x2dc0
[  137.831040][ T8494]  do_syscall_64+0xc9/0x1c0
[  137.831066][ T8494]  ? clear_bhb_loop+0x55/0xb0
[  137.831152][ T8494]  ? clear_bhb_loop+0x55/0xb0
[  137.831180][ T8494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.831254][ T8494] RIP: 0033:0x7fb3eeeed169
[  137.831266][ T8494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.831281][ T8494] RSP: 002b:00007fb3ed557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.831297][ T8494] RAX: ffffffffffffffda RBX: 00007fb3ef105fa0 RCX: 00007fb3eeeed169
[  137.831307][ T8494] RDX: 0000000004040020 RSI: 00004000000000c0 RDI: 0000000000000003
[  137.831317][ T8494] RBP: 00007fb3ed557090 R08: 0000000000000000 R09: 0000000000000000
[  137.831353][ T8494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.831366][ T8494] R13: 0000000000000000 R14: 00007fb3ef105fa0 R15: 00007ffe7f600df8
[  137.831385][ T8494]  </TASK>
[  138.254682][ T8521] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1800'.
[  138.263722][ T8521] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1800'.
[  138.372657][ T8538] netlink: 'syz.5.1797': attribute type 4 has an invalid length.
[  138.406539][ T3373] kernel write not supported for file bpf-prog (pid: 3373 comm: kworker/0:4)
[  138.449950][ T8538] netlink: 'syz.5.1797': attribute type 4 has an invalid length.
[  138.459843][ T8547] 9pnet_fd: Insufficient options for proto=fd
[  138.473209][ T8547] loop4: detected capacity change from 0 to 128
[  138.511917][ T8547] bio_check_eod: 4503 callbacks suppressed
[  138.511939][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.511939][ T8547] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128
[  138.548597][ T8554] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1813'.
[  138.557602][ T8554] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1813'.
[  138.570730][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.570730][ T8547] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128
[  138.584866][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.584866][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.598607][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.598607][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.625070][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.625070][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.638942][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.638942][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.652669][ T8558] FAULT_INJECTION: forcing a failure.
[  138.652669][ T8558] name failslab, interval 1, probability 0, space 0, times 0
[  138.665378][ T8558] CPU: 0 UID: 0 PID: 8558 Comm: syz.5.1816 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  138.665429][ T8558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.665445][ T8558] Call Trace:
[  138.665452][ T8558]  <TASK>
[  138.665461][ T8558]  dump_stack_lvl+0xf2/0x150
[  138.665494][ T8558]  dump_stack+0x15/0x1a
[  138.665565][ T8558]  should_fail_ex+0x24a/0x260
[  138.665608][ T8558]  should_failslab+0x8f/0xb0
[  138.665688][ T8558]  kmem_cache_alloc_noprof+0x52/0x320
[  138.665707][ T8558]  ? prepare_creds+0x37/0x480
[  138.665738][ T8558]  prepare_creds+0x37/0x480
[  138.665876][ T8558]  lookup_user_key+0x132/0xdf0
[  138.665898][ T8558]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  138.665923][ T8558]  __se_sys_add_key+0x24b/0x320
[  138.666010][ T8558]  ? fput+0x1c4/0x200
[  138.666086][ T8558]  __x64_sys_add_key+0x67/0x80
[  138.666119][ T8558]  x64_sys_call+0x2964/0x2dc0
[  138.666141][ T8558]  do_syscall_64+0xc9/0x1c0
[  138.666169][ T8558]  ? clear_bhb_loop+0x55/0xb0
[  138.666227][ T8558]  ? clear_bhb_loop+0x55/0xb0
[  138.666318][ T8558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.666375][ T8558] RIP: 0033:0x7fb3eeeed169
[  138.666387][ T8558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.666406][ T8558] RSP: 002b:00007fb3ed557038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  138.666422][ T8558] RAX: ffffffffffffffda RBX: 00007fb3ef105fa0 RCX: 00007fb3eeeed169
[  138.666433][ T8558] RDX: 00004000000000c0 RSI: 0000400000000080 RDI: 0000400000000040
[  138.666443][ T8558] RBP: 00007fb3ed557090 R08: ffffffffffffffff R09: 0000000000000000
[  138.666453][ T8558] R10: 00000000000052ba R11: 0000000000000246 R12: 0000000000000001
[  138.666462][ T8558] R13: 0000000000000000 R14: 00007fb3ef105fa0 R15: 00007ffe7f600df8
[  138.666600][ T8558]  </TASK>
[  138.855705][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.855705][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.869347][ T8552] loop6: detected capacity change from 0 to 8192
[  138.874386][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.874386][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.889016][   T29] kauditd_printk_skb: 1090 callbacks suppressed
[  138.889029][   T29] audit: type=1326 audit(1740732258.053:17842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fee5a57bdca code=0x7ffc0000
[  138.900341][ T8547] syz.4.1812: attempt to access beyond end of device
[  138.900341][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  138.918657][   T29] audit: type=1326 audit(1740732258.053:17843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fee5a57bdca code=0x7ffc0000
[  138.918758][   T29] audit: type=1326 audit(1740732258.053:17844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fee5a57b9d7 code=0x7ffc0000
[  138.978806][   T29] audit: type=1326 audit(1740732258.053:17845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fee5a57e90a code=0x7ffc0000
[  139.002299][   T29] audit: type=1326 audit(1740732258.053:17846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee5a57bad0 code=0x7ffc0000
[  139.004422][ T8547] syz.4.1812: attempt to access beyond end of device
[  139.004422][ T8547] loop4: rw=0, sector=145, nr_sectors = 8 limit=128
[  139.025761][   T29] audit: type=1326 audit(1740732258.053:17847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fee5a57beb7 code=0x7ffc0000
[  139.025790][   T29] audit: type=1326 audit(1740732258.053:17848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee5a57bad0 code=0x7ffc0000
[  139.025818][   T29] audit: type=1326 audit(1740732258.053:17849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5a57d169 code=0x7ffc0000
[  139.109445][   T29] audit: type=1326 audit(1740732258.053:17850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5a57d169 code=0x7ffc0000
[  139.132968][   T29] audit: type=1326 audit(1740732258.053:17851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8549 comm="syz.6.1811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee5a57d169 code=0x7ffc0000
[  139.173369][ T8572] loop5: detected capacity change from 0 to 164
[  139.183136][ T8572] 9pnet_fd: Insufficient options for proto=fd
[  139.239106][ T8575] loop1: detected capacity change from 0 to 164
[  139.287142][ T8575] 9pnet_fd: Insufficient options for proto=fd
[  139.321183][ T8585] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1828'.
[  139.330153][ T8585] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1828'.
[  139.360027][ T8590] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1829'.
[  139.369095][ T8590] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1829'.
[  139.395105][ T8592] 8021q: VLANs not supported on ipvlan0
[  139.445078][ T8598] loop6: detected capacity change from 0 to 256
[  139.453902][ T8598] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.499839][ T8604] netlink: 'syz.4.1835': attribute type 4 has an invalid length.
[  139.536106][ T8608] loop6: detected capacity change from 0 to 164
[  139.541215][ T8603] loop1: detected capacity change from 0 to 8192
[  139.549720][ T8608] 9pnet_fd: Insufficient options for proto=fd
[  139.583745][ T8604] netlink: 'syz.4.1835': attribute type 4 has an invalid length.
[  139.605898][ T8614] Cannot find del_set index 4 as target
[  139.610808][ T8616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1840'.
[  139.620514][ T8616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1840'.
[  139.653374][ T8620] ip6t_rpfilter: unknown options
[  139.679706][ T8624] geneve2: entered promiscuous mode
[  139.685125][ T8624] geneve2: entered allmulticast mode
[  139.698836][ T8624] loop6: detected capacity change from 0 to 764
[  139.706200][ T8624] rock: directory entry would overflow storage
[  139.712380][ T8624] rock: sig=0x4654, size=5, remaining=4
[  139.735384][ T8622] loop4: detected capacity change from 0 to 8192
[  139.808748][ T8637] loop6: detected capacity change from 0 to 256
[  139.817470][ T8637] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.956558][ T8647] Cannot find del_set index 4 as target
[  140.341887][    T9] kernel write not supported for file bpf-prog (pid: 9 comm: kworker/0:1)
[  140.405731][ T8656] wg2: entered promiscuous mode
[  140.410769][ T8656] wg2: entered allmulticast mode
[  140.453914][ T8659] FAULT_INJECTION: forcing a failure.
[  140.453914][ T8659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.467076][ T8659] CPU: 0 UID: 0 PID: 8659 Comm: syz.0.1857 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  140.467148][ T8659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  140.467161][ T8659] Call Trace:
[  140.467236][ T8659]  <TASK>
[  140.467243][ T8659]  dump_stack_lvl+0xf2/0x150
[  140.467267][ T8659]  dump_stack+0x15/0x1a
[  140.467286][ T8659]  should_fail_ex+0x24a/0x260
[  140.467391][ T8659]  should_fail+0xb/0x10
[  140.467419][ T8659]  should_fail_usercopy+0x1a/0x20
[  140.467449][ T8659]  _copy_from_user+0x1c/0xa0
[  140.467505][ T8659]  copy_msghdr_from_user+0x54/0x2a0
[  140.467539][ T8659]  ? __fget_files+0x17c/0x1c0
[  140.467594][ T8659]  __sys_sendmsg+0x13e/0x230
[  140.467664][ T8659]  __x64_sys_sendmsg+0x46/0x50
[  140.467690][ T8659]  x64_sys_call+0x2734/0x2dc0
[  140.467783][ T8659]  do_syscall_64+0xc9/0x1c0
[  140.467815][ T8659]  ? clear_bhb_loop+0x55/0xb0
[  140.467840][ T8659]  ? clear_bhb_loop+0x55/0xb0
[  140.467862][ T8659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.467922][ T8659] RIP: 0033:0x7f351e75d169
[  140.467983][ T8659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.468001][ T8659] RSP: 002b:00007f351cdc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.468016][ T8659] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75d169
[  140.468028][ T8659] RDX: 0000000004040020 RSI: 00004000000000c0 RDI: 0000000000000005
[  140.468038][ T8659] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  140.468050][ T8659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.468063][ T8659] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  140.468082][ T8659]  </TASK>
[  140.789878][ T8666] loop1: detected capacity change from 0 to 8192
[  140.812510][ T8664] FAULT_INJECTION: forcing a failure.
[  140.812510][ T8664] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.825644][ T8664] CPU: 0 UID: 0 PID: 8664 Comm: syz.0.1860 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  140.825681][ T8664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  140.825691][ T8664] Call Trace:
[  140.825697][ T8664]  <TASK>
[  140.825703][ T8664]  dump_stack_lvl+0xf2/0x150
[  140.825726][ T8664]  dump_stack+0x15/0x1a
[  140.825747][ T8664]  should_fail_ex+0x24a/0x260
[  140.825785][ T8664]  should_fail+0xb/0x10
[  140.825809][ T8664]  should_fail_usercopy+0x1a/0x20
[  140.825842][ T8664]  _copy_to_user+0x20/0xa0
[  140.825862][ T8664]  simple_read_from_buffer+0xa0/0x110
[  140.825947][ T8664]  proc_fail_nth_read+0xf9/0x140
[  140.826064][ T8664]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  140.826121][ T8664]  vfs_read+0x19b/0x6f0
[  140.826144][ T8664]  ? __rcu_read_unlock+0x4e/0x70
[  140.826260][ T8664]  ? __fget_files+0x17c/0x1c0
[  140.826295][ T8664]  ksys_read+0xe8/0x1b0
[  140.826324][ T8664]  __x64_sys_read+0x42/0x50
[  140.826381][ T8664]  x64_sys_call+0x2874/0x2dc0
[  140.826409][ T8664]  do_syscall_64+0xc9/0x1c0
[  140.826503][ T8664]  ? clear_bhb_loop+0x55/0xb0
[  140.826531][ T8664]  ? clear_bhb_loop+0x55/0xb0
[  140.826618][ T8664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.826647][ T8664] RIP: 0033:0x7f351e75bb7c
[  140.826662][ T8664] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  140.826715][ T8664] RSP: 002b:00007f351cdc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  140.826734][ T8664] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75bb7c
[  140.826747][ T8664] RDX: 000000000000000f RSI: 00007f351cdc70a0 RDI: 0000000000000004
[  140.826759][ T8664] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  140.826771][ T8664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.826782][ T8664] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  140.826805][ T8664]  </TASK>
[  141.023580][ T8666] /dev/loop1: Can't open blockdev
[  141.052593][ T8671] netlink: 'syz.1.1864': attribute type 4 has an invalid length.
[  141.097695][ T8668] loop6: detected capacity change from 0 to 8192
[  141.111824][ T8671] netlink: 'syz.1.1864': attribute type 4 has an invalid length.
[  141.137950][ T8673] loop4: detected capacity change from 0 to 256
[  141.166544][ T8673] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  141.202527][ T8680] Cannot find del_set index 4 as target
[  141.250523][ T8686] 9pnet_fd: Insufficient options for proto=fd
[  141.263748][ T8691] veth0_to_bond: entered promiscuous mode
[  141.273871][ T8691] veth0_to_bond (unregistering): left promiscuous mode
[  141.282064][ T8691] bond0: (slave bond_slave_0): Releasing backup interface
[  141.312605][ T8686] loop4: detected capacity change from 0 to 128
[  141.357492][ T8693] loop1: detected capacity change from 0 to 8192
[  141.727465][ T8707] FAULT_INJECTION: forcing a failure.
[  141.727465][ T8707] name failslab, interval 1, probability 0, space 0, times 0
[  141.740138][ T8707] CPU: 0 UID: 0 PID: 8707 Comm: syz.0.1878 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  141.740159][ T8707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.740169][ T8707] Call Trace:
[  141.740174][ T8707]  <TASK>
[  141.740180][ T8707]  dump_stack_lvl+0xf2/0x150
[  141.740274][ T8707]  dump_stack+0x15/0x1a
[  141.740299][ T8707]  should_fail_ex+0x24a/0x260
[  141.740330][ T8707]  should_failslab+0x8f/0xb0
[  141.740361][ T8707]  kmem_cache_alloc_noprof+0x52/0x320
[  141.740384][ T8707]  ? alloc_empty_file+0xd0/0x200
[  141.740429][ T8707]  ? _raw_spin_unlock+0x26/0x50
[  141.740452][ T8707]  alloc_empty_file+0xd0/0x200
[  141.740487][ T8707]  alloc_file_pseudo+0xc9/0x160
[  141.740506][ T8707]  __shmem_file_setup+0x1bb/0x1f0
[  141.740576][ T8707]  shmem_file_setup+0x3b/0x50
[  141.740624][ T8707]  __se_sys_memfd_create+0x2e1/0x5a0
[  141.740662][ T8707]  __x64_sys_memfd_create+0x31/0x40
[  141.740765][ T8707]  x64_sys_call+0x2d4c/0x2dc0
[  141.740791][ T8707]  do_syscall_64+0xc9/0x1c0
[  141.740875][ T8707]  ? clear_bhb_loop+0x55/0xb0
[  141.740909][ T8707]  ? clear_bhb_loop+0x55/0xb0
[  141.740944][ T8707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.740981][ T8707] RIP: 0033:0x7f351e75d169
[  141.741000][ T8707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.741022][ T8707] RSP: 002b:00007f351cdc6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  141.741042][ T8707] RAX: ffffffffffffffda RBX: 000000000000050a RCX: 00007f351e75d169
[  141.741054][ T8707] RDX: 00007f351cdc6ef0 RSI: 0000000000000000 RDI: 00007f351e7dec3c
[  141.741066][ T8707] RBP: 0000400000000200 R08: 00007f351cdc6bb7 R09: 00007f351cdc6e40
[  141.741124][ T8707] R10: 000000000000000a R11: 0000000000000202 R12: 00004000000001c0
[  141.741156][ T8707] R13: 00007f351cdc6ef0 R14: 00007f351cdc6eb0 R15: 00004000000008c0
[  141.741179][ T8707]  </TASK>
[  141.981032][ T8710] tipc: Can't bind to reserved service type 1
[  142.046112][ T8715] atomic_op ffff888102d45928 conn xmit_atomic 0000000000000000
[  142.145156][ T8726] loop5: detected capacity change from 0 to 1024
[  142.157410][ T8726] EXT4-fs: inline encryption not supported
[  142.163283][ T8723] Cannot find del_set index 4 as target
[  142.171566][ T8726] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  142.201243][ T8726] EXT4-fs error (device loop5): ext4_map_blocks:705: inode #3: block 1: comm syz.5.1881: lblock 1 mapped to illegal pblock 1 (length 1)
[  142.216925][ T8726] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.1881: Failed to acquire dquot type 0
[  142.228645][ T8726] EXT4-fs error (device loop5): ext4_free_blocks:6589: comm syz.5.1881: Freeing blocks not in datazone - block = 0, count = 4096
[  142.243934][ T8726] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1881: Invalid inode bitmap blk 0 in block_group 0
[  142.256809][ T8726] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  142.266775][  T112] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  142.268055][ T8730] netlink: 'syz.6.1888': attribute type 13 has an invalid length.
[  142.282049][ T8726] EXT4-fs (loop5): 1 orphan inode deleted
[  142.295154][ T8726] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.305895][  T112] EXT4-fs error (device loop5): ext4_release_dquot:6950: comm kworker/u8:4: Failed to release dquot type 0
[  142.357140][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.400125][ T8730] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.407421][ T8730] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.432462][ T8744] 9pnet_fd: Insufficient options for proto=fd
[  142.444551][ T8744] loop4: detected capacity change from 0 to 128
[  142.475056][ T8730] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.486066][ T8730] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.486221][ T1038] kernel write not supported for file bpf-prog (pid: 1038 comm: kworker/0:2)
[  142.531531][ T8730] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.540717][ T8730] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.549585][ T8730] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.558867][ T8730] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.669733][ T8759] loop1: detected capacity change from 0 to 8192
[  142.878170][ T8783] loop5: detected capacity change from 0 to 164
[  142.917677][ T8785] block device autoloading is deprecated and will be removed.
[  143.269556][ T8806] loop6: detected capacity change from 0 to 8192
[  143.351948][ T8815] netlink: 'syz.4.1920': attribute type 4 has an invalid length.
[  143.391168][ T8815] netlink: 'syz.4.1920': attribute type 4 has an invalid length.
[  143.615779][ T8819] loop4: detected capacity change from 0 to 8192
[  143.838963][ T8826] Cannot find del_set index 4 as target
[  144.051183][ T8840] 9pnet_fd: Insufficient options for proto=fd
[  144.057989][   T29] kauditd_printk_skb: 656 callbacks suppressed
[  144.058000][   T29] audit: type=1326 audit(1740732263.233:18505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.087698][   T29] audit: type=1400 audit(1740732263.243:18506): avc:  denied  { ioctl } for  pid=8836 comm="syz.0.1928" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x330d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  144.099789][ T8838] 9pnet_fd: Insufficient options for proto=fd
[  144.112645][   T29] audit: type=1326 audit(1740732263.243:18507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.125220][ T8845] loop0: detected capacity change from 0 to 1024
[  144.141983][   T29] audit: type=1326 audit(1740732263.243:18508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.142081][   T29] audit: type=1326 audit(1740732263.243:18509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.195535][   T29] audit: type=1326 audit(1740732263.243:18510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.219027][   T29] audit: type=1326 audit(1740732263.243:18511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f43d39ad169 code=0x7ffc0000
[  144.242548][   T29] audit: type=1326 audit(1740732263.243:18512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f43d39ad1a3 code=0x7ffc0000
[  144.263780][ T8840] loop1: detected capacity change from 0 to 128
[  144.265960][   T29] audit: type=1326 audit(1740732263.243:18513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f43d39abc1f code=0x7ffc0000
[  144.295550][   T29] audit: type=1326 audit(1740732263.243:18514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.1930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f43d39ad1f7 code=0x7ffc0000
[  144.319378][ T8847] 9pnet_fd: Insufficient options for proto=fd
[  144.326036][ T8845] EXT4-fs: Ignoring removed mblk_io_submit option
[  144.335834][ T8845] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  144.358941][ T8840] bio_check_eod: 22057 callbacks suppressed
[  144.358957][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.358957][ T8840] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[  144.385798][ T8845] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.399375][ T8845] __nla_validate_parse: 16 callbacks suppressed
[  144.399388][ T8845] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1928'.
[  144.429322][ T8851] loop5: detected capacity change from 0 to 8192
[  144.437618][ T8849] 9pnet_fd: Insufficient options for proto=fd
[  144.451605][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.451605][ T8840] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[  144.480442][ T8857] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1934'.
[  144.489460][ T8857] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1934'.
[  144.499114][ T8845] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm syz.0.1928: Allocating blocks 481-513 which overlap fs metadata
[  144.515103][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.515103][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.528396][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.528396][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.541872][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.541872][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.555748][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.555748][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.569352][ T8860] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16384 sclass=netlink_route_socket pid=8860 comm=syz.0.1928
[  144.582681][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.582681][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.607142][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.607142][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.621171][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.621171][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.637496][ T8840] syz.1.1930: attempt to access beyond end of device
[  144.637496][ T8840] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  144.660717][ T8867] FAULT_INJECTION: forcing a failure.
[  144.660717][ T8867] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.673841][ T8867] CPU: 1 UID: 0 PID: 8867 Comm: syz.4.1937 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  144.673867][ T8867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.673881][ T8867] Call Trace:
[  144.673887][ T8867]  <TASK>
[  144.673895][ T8867]  dump_stack_lvl+0xf2/0x150
[  144.673924][ T8867]  dump_stack+0x15/0x1a
[  144.673970][ T8867]  should_fail_ex+0x24a/0x260
[  144.674044][ T8867]  should_fail+0xb/0x10
[  144.674103][ T8867]  should_fail_usercopy+0x1a/0x20
[  144.674136][ T8867]  _copy_from_iter+0xd5/0xd00
[  144.674212][ T8867]  ? kmalloc_reserve+0x16e/0x190
[  144.674230][ T8867]  ? __build_skb_around+0x196/0x1f0
[  144.674297][ T8867]  ? __alloc_skb+0x21f/0x310
[  144.674314][ T8867]  ? __virt_addr_valid+0x1ed/0x250
[  144.674414][ T8867]  ? __check_object_size+0x364/0x520
[  144.674487][ T8867]  netlink_sendmsg+0x460/0x6e0
[  144.674530][ T8867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.674568][ T8867]  __sock_sendmsg+0x140/0x180
[  144.674598][ T8867]  ____sys_sendmsg+0x326/0x4b0
[  144.674671][ T8867]  __sys_sendmsg+0x19d/0x230
[  144.674797][ T8867]  __x64_sys_sendmsg+0x46/0x50
[  144.674896][ T8867]  x64_sys_call+0x2734/0x2dc0
[  144.674929][ T8867]  do_syscall_64+0xc9/0x1c0
[  144.675043][ T8867]  ? clear_bhb_loop+0x55/0xb0
[  144.675077][ T8867]  ? clear_bhb_loop+0x55/0xb0
[  144.675106][ T8867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.675157][ T8867] RIP: 0033:0x7f388d2dd169
[  144.675175][ T8867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.675261][ T8867] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  144.675335][ T8867] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  144.675351][ T8867] RDX: 0000000000000000 RSI: 0000400000000200 RDI: 0000000000000003
[  144.675366][ T8867] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  144.675381][ T8867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.675397][ T8867] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  144.675419][ T8867]  </TASK>
[  144.931488][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.971797][ T8879] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1939'.
[  145.020048][ T8877] loop6: detected capacity change from 0 to 8192
[  145.259493][ T8888] loop5: detected capacity change from 0 to 1024
[  145.266344][ T8888] EXT4-fs: Ignoring removed nobh option
[  145.272785][ T8888] EXT4-fs: Ignoring removed bh option
[  145.282534][ T8888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.312138][ T8888] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.1944: Allocating blocks 497-513 which overlap fs metadata
[  145.326547][ T8888] EXT4-fs (loop5): pa ffff8881005bcd20: logic 256, phys. 385, len 8
[  145.334601][ T8888] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  145.373750][ T6190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.551344][ T8892] xt_hashlimit: max too large, truncated to 1048576
[  145.562140][ T8892] loop5: detected capacity change from 0 to 512
[  145.582592][ T8892] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  145.595155][ T8892] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.607072][ T8892] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  145.777716][ T8898] 9pnet_fd: Insufficient options for proto=fd
[  145.786254][ T8901] 9pnet_fd: Insufficient options for proto=fd
[  145.802443][ T8901] loop5: detected capacity change from 0 to 128
[  145.828515][ T8898] loop4: detected capacity change from 0 to 128
[  145.854061][ T8907] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1950'.
[  145.863176][ T8907] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1950'.
[  145.993566][ T8918] loop6: detected capacity change from 0 to 164
[  146.010891][ T8920] Cannot find del_set index 4 as target
[  146.019611][ T8918] 9pnet_fd: Insufficient options for proto=fd
[  146.097052][ T8924] loop6: detected capacity change from 0 to 1024
[  146.113678][ T8924] EXT4-fs: Ignoring removed nobh option
[  146.124813][ T8924] EXT4-fs: Ignoring removed bh option
[  146.141053][ T8922] loop1: detected capacity change from 0 to 8192
[  146.173091][ T8924] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.255953][ T8924] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4115: comm syz.6.1956: Allocating blocks 497-513 which overlap fs metadata
[  146.394959][ T8928] loop0: detected capacity change from 0 to 8192
[  146.403540][ T8924] EXT4-fs (loop6): pa ffff8881005bf770: logic 256, phys. 385, len 8
[  146.411604][ T8924] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  146.597849][ T8272] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.757349][ T8934] loop6: detected capacity change from 0 to 8192
[  146.765288][ T8943] netlink: 'syz.4.1962': attribute type 4 has an invalid length.
[  146.784268][ T8943] netlink: 'syz.4.1962': attribute type 4 has an invalid length.
[  146.804650][ T8942] 9pnet_fd: Insufficient options for proto=fd
[  146.859352][ T8947] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1964'.
[  146.868404][ T8947] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1964'.
[  146.911012][ T8952] loop5: detected capacity change from 0 to 164
[  146.998924][ T8955] Cannot find del_set index 4 as target
[  147.087008][ T8948] loop4: detected capacity change from 0 to 8192
[  147.212204][ T8973] 9pnet_fd: Insufficient options for proto=fd
[  147.233173][ T8973] loop1: detected capacity change from 0 to 128
[  147.311491][ T8978] netlink: 'syz.5.1974': attribute type 4 has an invalid length.
[  147.339057][ T8978] netlink: 'syz.5.1974': attribute type 4 has an invalid length.
[  147.396192][ T8980] netlink: 'syz.5.1975': attribute type 10 has an invalid length.
[  147.450411][ T8980] hsr_slave_0: left promiscuous mode
[  147.456214][ T8980] hsr_slave_1: left promiscuous mode
[  147.652025][ T8987] loop6: detected capacity change from 0 to 8192
[  147.683201][ T8985] loop5: detected capacity change from 0 to 8192
[  147.824080][ T8992] Cannot find del_set index 4 as target
[  148.102622][ T9005] loop0: detected capacity change from 0 to 256
[  148.113640][ T9005] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  148.132494][ T9009] atomic_op ffff888120ca7d28 conn xmit_atomic 0000000000000000
[  148.217415][ T9007] loop1: detected capacity change from 0 to 8192
[  148.218627][ T9014] 9pnet_fd: Insufficient options for proto=fd
[  148.355754][ T9024] loop4: detected capacity change from 0 to 164
[  148.444181][ T9024] 9pnet_fd: Insufficient options for proto=fd
[  148.477237][ T9030] netlink: 'syz.4.1996': attribute type 4 has an invalid length.
[  148.610921][ T9028] FAULT_INJECTION: forcing a failure.
[  148.610921][ T9028] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.624218][ T9028] CPU: 1 UID: 0 PID: 9028 Comm: syz.0.1994 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  148.624243][ T9028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  148.624274][ T9028] Call Trace:
[  148.624283][ T9028]  <TASK>
[  148.624339][ T9028]  dump_stack_lvl+0xf2/0x150
[  148.624446][ T9028]  dump_stack+0x15/0x1a
[  148.624473][ T9028]  should_fail_ex+0x24a/0x260
[  148.624510][ T9028]  should_fail+0xb/0x10
[  148.624545][ T9028]  should_fail_usercopy+0x1a/0x20
[  148.624605][ T9028]  _copy_from_iter+0x24b/0xd00
[  148.624653][ T9028]  ? kmalloc_reserve+0x16e/0x190
[  148.624693][ T9028]  ? __virt_addr_valid+0x1ed/0x250
[  148.624721][ T9028]  ? __check_object_size+0x364/0x520
[  148.624751][ T9028]  skb_copy_datagram_from_iter+0xb3/0x460
[  148.624853][ T9028]  ? __netdev_alloc_frag_align+0xe1/0x130
[  148.624912][ T9028]  ? __netdev_alloc_frag_align+0x128/0x130
[  148.624933][ T9028]  tun_get_user+0x1132/0x25c0
[  148.624960][ T9028]  ? expand_files+0xc0/0x3b0
[  148.625045][ T9028]  ? terminate_walk+0x260/0x280
[  148.625160][ T9028]  ? ref_tracker_alloc+0x1f5/0x2f0
[  148.625196][ T9028]  tun_chr_write_iter+0x188/0x240
[  148.625354][ T9028]  do_iter_readv_writev+0x403/0x4b0
[  148.625393][ T9028]  vfs_writev+0x2d9/0x880
[  148.625414][ T9028]  ? get_pid_task+0x8e/0xc0
[  148.625440][ T9028]  ? proc_fail_nth_write+0x12a/0x150
[  148.625513][ T9028]  do_writev+0xf4/0x220
[  148.625532][ T9028]  __x64_sys_writev+0x45/0x50
[  148.625587][ T9028]  x64_sys_call+0x1fab/0x2dc0
[  148.625620][ T9028]  do_syscall_64+0xc9/0x1c0
[  148.625655][ T9028]  ? clear_bhb_loop+0x55/0xb0
[  148.625720][ T9028]  ? clear_bhb_loop+0x55/0xb0
[  148.625752][ T9028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.625838][ T9028] RIP: 0033:0x7f351e75d169
[  148.625856][ T9028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.625879][ T9028] RSP: 002b:00007f351cdc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  148.625901][ T9028] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75d169
[  148.625916][ T9028] RDX: 0000000000000002 RSI: 0000400000000180 RDI: 0000000000000008
[  148.625931][ T9028] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  148.625943][ T9028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.626016][ T9028] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  148.626037][ T9028]  </TASK>
[  148.889108][ T9030] netlink: 'syz.4.1996': attribute type 4 has an invalid length.
[  148.916408][ T9041] loop6: detected capacity change from 0 to 256
[  148.964832][ T9041] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  149.026716][ T9045] 9pnet_fd: Insufficient options for proto=fd
[  149.061877][   T29] kauditd_printk_skb: 663 callbacks suppressed
[  149.061894][   T29] audit: type=1326 audit(1740732268.243:19178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f351e75bad0 code=0x7ffc0000
[  149.093139][ T9049] loop0: detected capacity change from 0 to 8192
[  149.120920][   T29] audit: type=1326 audit(1740732268.273:19179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f351e75cd6b code=0x7ffc0000
[  149.144441][   T29] audit: type=1326 audit(1740732268.283:19180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f351e75bdca code=0x7ffc0000
[  149.167802][   T29] audit: type=1326 audit(1740732268.283:19181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f351e75bdca code=0x7ffc0000
[  149.190982][ T9055] loop4: detected capacity change from 0 to 8192
[  149.191311][   T29] audit: type=1326 audit(1740732268.293:19182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f351e75b9d7 code=0x7ffc0000
[  149.221022][   T29] audit: type=1326 audit(1740732268.293:19183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f351e75e90a code=0x7ffc0000
[  149.244593][   T29] audit: type=1326 audit(1740732268.293:19184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f351e75bad0 code=0x7ffc0000
[  149.268140][   T29] audit: type=1326 audit(1740732268.293:19185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f351e75beb7 code=0x7ffc0000
[  149.274156][ T9060] loop6: detected capacity change from 0 to 8192
[  149.291757][   T29] audit: type=1326 audit(1740732268.293:19186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f351e75bad0 code=0x7ffc0000
[  149.321649][   T29] audit: type=1326 audit(1740732268.293:19187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9048 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f351e75d169 code=0x7ffc0000
[  149.580353][ T9065] loop1: detected capacity change from 0 to 8192
[  149.590953][ T9067] loop4: detected capacity change from 0 to 8192
[  149.604185][ T9072] loop5: detected capacity change from 0 to 8192
[  149.989315][ T9081] loop0: detected capacity change from 0 to 8192
[  150.485690][ T9103] loop6: detected capacity change from 0 to 8192
[  150.505652][ T9099] loop4: detected capacity change from 0 to 8192
[  150.551659][ T9108] FAULT_INJECTION: forcing a failure.
[  150.551659][ T9108] name failslab, interval 1, probability 0, space 0, times 0
[  150.564495][ T9108] CPU: 1 UID: 0 PID: 9108 Comm: syz.5.2021 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  150.564527][ T9108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.564542][ T9108] Call Trace:
[  150.564551][ T9108]  <TASK>
[  150.564560][ T9108]  dump_stack_lvl+0xf2/0x150
[  150.564595][ T9108]  dump_stack+0x15/0x1a
[  150.564656][ T9108]  should_fail_ex+0x24a/0x260
[  150.564694][ T9108]  should_failslab+0x8f/0xb0
[  150.564733][ T9108]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  150.564764][ T9108]  ? sidtab_sid2str_get+0xb8/0x140
[  150.564869][ T9108]  kmemdup_noprof+0x2b/0x70
[  150.564909][ T9108]  sidtab_sid2str_get+0xb8/0x140
[  150.564940][ T9108]  security_sid_to_context_core+0x1eb/0x2f0
[  150.564974][ T9108]  security_sid_to_context+0x27/0x30
[  150.565011][ T9108]  selinux_lsm_getattr+0x1c8/0x240
[  150.565072][ T9108]  selinux_getselfattr+0x51/0xe0
[  150.565099][ T9108]  security_getselfattr+0x258/0x590
[  150.565124][ T9108]  __x64_sys_lsm_get_self_attr+0x53/0x60
[  150.565157][ T9108]  x64_sys_call+0x2644/0x2dc0
[  150.565220][ T9108]  do_syscall_64+0xc9/0x1c0
[  150.565250][ T9108]  ? clear_bhb_loop+0x55/0xb0
[  150.565278][ T9108]  ? clear_bhb_loop+0x55/0xb0
[  150.565312][ T9108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.565419][ T9108] RIP: 0033:0x7fb3eeeed169
[  150.565434][ T9108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.565467][ T9108] RSP: 002b:00007fb3ed557038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cb
[  150.565485][ T9108] RAX: ffffffffffffffda RBX: 00007fb3ef105fa0 RCX: 00007fb3eeeed169
[  150.565501][ T9108] RDX: 0000400000000000 RSI: 0000400000000040 RDI: 0000000000000064
[  150.565516][ T9108] RBP: 00007fb3ed557090 R08: 0000000000000000 R09: 0000000000000000
[  150.565541][ T9108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.565553][ T9108] R13: 0000000000000000 R14: 00007fb3ef105fa0 R15: 00007ffe7f600df8
[  150.565579][ T9108]  </TASK>
[  150.872321][ T9114] 9pnet_fd: Insufficient options for proto=fd
[  150.902413][ T9120] loop1: detected capacity change from 0 to 8192
[  150.937429][ T9118] loop4: detected capacity change from 0 to 8192
[  151.056804][ T9134] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2031'.
[  151.065855][ T9134] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2031'.
[  151.164357][ T9137] Cannot find del_set index 4 as target
[  151.257835][ T9141] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2035'.
[  151.267040][ T9141] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2035'.
[  151.383088][ T9149] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2036'.
[  151.392353][ T9149] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2036'.
[  151.453834][ T9147] program syz.5.2038 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  151.456657][ T9153] netlink: 'syz.6.2041': attribute type 4 has an invalid length.
[  151.481503][ T9153] netlink: 'syz.6.2041': attribute type 4 has an invalid length.
[  151.497111][ T9147] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  151.617955][ T9163] Cannot find del_set index 4 as target
[  151.648161][ T9166] FAULT_INJECTION: forcing a failure.
[  151.648161][ T9166] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.661310][ T9166] CPU: 0 UID: 0 PID: 9166 Comm: syz.6.2046 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  151.661338][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  151.661351][ T9166] Call Trace:
[  151.661359][ T9166]  <TASK>
[  151.661379][ T9166]  dump_stack_lvl+0xf2/0x150
[  151.661407][ T9166]  dump_stack+0x15/0x1a
[  151.661433][ T9166]  should_fail_ex+0x24a/0x260
[  151.661464][ T9166]  should_fail+0xb/0x10
[  151.661490][ T9166]  should_fail_usercopy+0x1a/0x20
[  151.661522][ T9166]  _copy_from_user+0x1c/0xa0
[  151.661575][ T9166]  br_dev_read_uargs+0xdb/0x270
[  151.661605][ T9166]  br_dev_siocdevprivate+0x6a/0xc10
[  151.661632][ T9166]  ? strcmp+0x16/0x50
[  151.661732][ T9166]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  151.661760][ T9166]  dev_ifsioc+0x84b/0xa10
[  151.661788][ T9166]  dev_ioctl+0x8e9/0xab0
[  151.661824][ T9166]  sock_ioctl+0x57d/0x600
[  151.661854][ T9166]  ? __pfx_sock_ioctl+0x10/0x10
[  151.661882][ T9166]  __se_sys_ioctl+0xc9/0x140
[  151.661931][ T9166]  __x64_sys_ioctl+0x43/0x50
[  151.661997][ T9166]  x64_sys_call+0x1690/0x2dc0
[  151.662024][ T9166]  do_syscall_64+0xc9/0x1c0
[  151.662055][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  151.662153][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  151.662179][ T9166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.662275][ T9166] RIP: 0033:0x7fee5a57d169
[  151.662291][ T9166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.662310][ T9166] RSP: 002b:00007fee58be7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  151.662364][ T9166] RAX: ffffffffffffffda RBX: 00007fee5a795fa0 RCX: 00007fee5a57d169
[  151.662377][ T9166] RDX: 0000400000001440 RSI: 00000000000089f0 RDI: 0000000000000003
[  151.662389][ T9166] RBP: 00007fee58be7090 R08: 0000000000000000 R09: 0000000000000000
[  151.662481][ T9166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.662508][ T9166] R13: 0000000000000000 R14: 00007fee5a795fa0 R15: 00007ffc0dbce998
[  151.662527][ T9166]  </TASK>
[  151.691822][ T9168] loop5: detected capacity change from 0 to 8192
[  152.006715][ T9178] 9pnet_fd: Insufficient options for proto=fd
[  152.056470][ T9188] atomic_op ffff8881082aa528 conn xmit_atomic 0000000000000000
[  152.189537][ T9197] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2059'.
[  152.198653][ T9197] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2059'.
[  152.238466][ T9199] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2060'.
[  152.247533][ T9199] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2060'.
[  152.329308][ T9195] loop6: detected capacity change from 0 to 8192
[  152.486651][ T9202] loop1: detected capacity change from 0 to 8192
[  152.623906][ T9210] loop0: detected capacity change from 0 to 8192
[  153.051083][ T9230] atomic_op ffff8881082a9d28 conn xmit_atomic 0000000000000000
[  153.434940][ T9237] loop5: detected capacity change from 0 to 8192
[  153.673703][ T9254] Cannot find del_set index 4 as target
[  153.878462][ T9263] loop4: detected capacity change from 0 to 8192
[  153.954262][ T9266] loop0: detected capacity change from 0 to 8192
[  154.160947][ T9272] atomic_op ffff8881044c2528 conn xmit_atomic 0000000000000000
[  154.225403][   T29] kauditd_printk_skb: 1037 callbacks suppressed
[  154.225467][   T29] audit: type=1326 audit(1740732273.403:20225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.298608][   T29] audit: type=1326 audit(1740732273.403:20226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.322297][   T29] audit: type=1326 audit(1740732273.403:20227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.341528][ T9274] loop5: detected capacity change from 0 to 8192
[  154.345797][   T29] audit: type=1326 audit(1740732273.403:20228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.375729][   T29] audit: type=1326 audit(1740732273.403:20229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.399440][   T29] audit: type=1326 audit(1740732273.403:20230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.422944][   T29] audit: type=1326 audit(1740732273.403:20231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.446416][   T29] audit: type=1326 audit(1740732273.403:20232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.469907][   T29] audit: type=1326 audit(1740732273.403:20233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.493318][   T29] audit: type=1326 audit(1740732273.403:20234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="syz.5.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3eeeed169 code=0x7ffc0000
[  154.624891][ T9279] netlink: 'syz.6.2088': attribute type 4 has an invalid length.
[  154.679799][ T9284] netlink: 'syz.6.2088': attribute type 4 has an invalid length.
[  154.925980][ T9296] loop1: detected capacity change from 0 to 8192
[  155.086159][ T9306] loop0: detected capacity change from 0 to 8192
[  155.380888][ T9324] Cannot find del_set index 4 as target
[  155.412689][ T9318] loop0: detected capacity change from 0 to 8192
[  155.471261][ T9330] loop5: detected capacity change from 0 to 164
[  155.615078][ T9338] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=93 sclass=netlink_route_socket pid=9338 comm=syz.5.2113
[  155.713161][ T9340] loop4: detected capacity change from 0 to 8192
[  155.829556][ T9348] loop1: detected capacity change from 0 to 2048
[  155.837395][ T9348] EXT4-fs: Ignoring removed bh option
[  155.853459][ T9348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.221224][ T9383] wg2: left promiscuous mode
[  156.225963][ T9383] wg2: left allmulticast mode
[  156.238947][ T9383] wg2: entered promiscuous mode
[  156.243910][ T9383] wg2: entered allmulticast mode
[  156.285945][  T112] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  156.314049][  T112] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1584 with error 28
[  156.326687][  T112] EXT4-fs (loop1): This should not happen!! Data will be lost
[  156.326687][  T112] 
[  156.336356][  T112] EXT4-fs (loop1): Total free blocks count 0
[  156.342353][  T112] EXT4-fs (loop1): Free/Dirty block details
[  156.348314][  T112] EXT4-fs (loop1): free_blocks=2415919104
[  156.354122][  T112] EXT4-fs (loop1): dirty_blocks=3216
[  156.359426][  T112] EXT4-fs (loop1): Block reservation details
[  156.365479][  T112] EXT4-fs (loop1): i_reserved_data_blocks=100
[  156.384244][  T112] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  156.477037][ T9390] loop1: detected capacity change from 0 to 2048
[  156.488789][ T9390] EXT4-fs: Ignoring removed bh option
[  156.525908][ T9390] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.604253][ T9388] loop0: detected capacity change from 0 to 8192
[  157.276761][ T9416] __nla_validate_parse: 4 callbacks suppressed
[  157.276777][ T9416] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2138'.
[  157.292611][ T9353] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  157.302741][ T9416] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  157.315569][ T9416] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  157.323807][ T9416] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  157.332081][ T9416] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  157.347783][ T9416] vxlan0: entered promiscuous mode
[  157.354184][ T9419] sch_tbf: peakrate 2147483647 is lower than or equals to rate 2831599472947593698 !
[  157.401785][ T9423] Cannot find del_set index 4 as target
[  157.434257][ T9426] loop0: detected capacity change from 0 to 164
[  157.477075][ T9432] FAULT_INJECTION: forcing a failure.
[  157.477075][ T9432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.490285][ T9432] CPU: 1 UID: 0 PID: 9432 Comm: syz.0.2145 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  157.490340][ T9432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.490351][ T9432] Call Trace:
[  157.490358][ T9432]  <TASK>
[  157.490366][ T9432]  dump_stack_lvl+0xf2/0x150
[  157.490394][ T9432]  dump_stack+0x15/0x1a
[  157.490485][ T9432]  should_fail_ex+0x24a/0x260
[  157.490512][ T9432]  should_fail+0xb/0x10
[  157.490533][ T9432]  should_fail_usercopy+0x1a/0x20
[  157.490606][ T9432]  _copy_to_user+0x20/0xa0
[  157.490626][ T9432]  simple_read_from_buffer+0xa0/0x110
[  157.490656][ T9432]  proc_fail_nth_read+0xf9/0x140
[  157.490684][ T9432]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.490819][ T9432]  vfs_read+0x19b/0x6f0
[  157.490841][ T9432]  ? __rcu_read_unlock+0x4e/0x70
[  157.490865][ T9432]  ? __fget_files+0x17c/0x1c0
[  157.490931][ T9432]  ksys_read+0xe8/0x1b0
[  157.491031][ T9432]  __x64_sys_read+0x42/0x50
[  157.491052][ T9432]  x64_sys_call+0x2874/0x2dc0
[  157.491080][ T9432]  do_syscall_64+0xc9/0x1c0
[  157.491159][ T9432]  ? clear_bhb_loop+0x55/0xb0
[  157.491183][ T9432]  ? clear_bhb_loop+0x55/0xb0
[  157.491208][ T9432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.491304][ T9432] RIP: 0033:0x7f351e75bb7c
[  157.491317][ T9432] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.491331][ T9432] RSP: 002b:00007f351cdc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.491347][ T9432] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75bb7c
[  157.491358][ T9432] RDX: 000000000000000f RSI: 00007f351cdc70a0 RDI: 0000000000000003
[  157.491370][ T9432] RBP: 00007f351cdc7090 R08: 0000000000000000 R09: 0000000000000000
[  157.491382][ T9432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.491395][ T9432] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  157.491414][ T9432]  </TASK>
[  157.797854][ T9442] loop5: detected capacity change from 0 to 8192
[  157.865034][ T9448] netlink: 'syz.6.2151': attribute type 4 has an invalid length.
[  157.875678][ T9448] netlink: 'syz.6.2151': attribute type 4 has an invalid length.
[  157.929818][ T9451] loop6: detected capacity change from 0 to 256
[  157.939175][ T9451] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  158.156972][ T9460] loop4: detected capacity change from 0 to 164
[  158.345425][ T9468] 9pnet_fd: Insufficient options for proto=fd
[  158.441846][ T9472] loop6: detected capacity change from 0 to 128
[  158.450671][ T9471] loop4: detected capacity change from 0 to 164
[  158.595123][ T9468] bio_check_eod: 45800 callbacks suppressed
[  158.595142][ T9468] syz.6.2158: attempt to access beyond end of device
[  158.595142][ T9468] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[  158.676329][ T9475] wg2: left promiscuous mode
[  158.681076][ T9475] wg2: left allmulticast mode
[  158.681532][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.681532][ T9472] loop6: rw=524288, sector=145, nr_sectors = 224 limit=128
[  158.699771][ T9475] wg2: entered promiscuous mode
[  158.704762][ T9475] wg2: entered allmulticast mode
[  158.719951][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.719951][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.748484][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.748484][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.770507][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.770507][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.798962][ T9477] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2163'.
[  158.808083][ T9477] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2163'.
[  158.818139][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.818139][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.845873][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.845873][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.850447][ T9481] loop5: detected capacity change from 0 to 256
[  158.871474][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.871474][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.898207][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.898207][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  158.912737][ T9481] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  158.922901][ T9472] syz.6.2158: attempt to access beyond end of device
[  158.922901][ T9472] loop6: rw=0, sector=145, nr_sectors = 8 limit=128
[  159.051847][ T9486] loop5: detected capacity change from 0 to 8192
[  159.184225][ T9496] wg2: left promiscuous mode
[  159.188852][ T9496] wg2: left allmulticast mode
[  159.202267][ T9496] wg2: entered promiscuous mode
[  159.207158][ T9496] wg2: entered allmulticast mode
[  159.279805][   T29] kauditd_printk_skb: 528 callbacks suppressed
[  159.279823][   T29] audit: type=1326 audit(1740732278.453:20763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.310701][   T29] audit: type=1326 audit(1740732278.453:20764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.334300][   T29] audit: type=1326 audit(1740732278.493:20765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.357863][   T29] audit: type=1326 audit(1740732278.493:20766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.381466][   T29] audit: type=1326 audit(1740732278.493:20767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.404970][   T29] audit: type=1326 audit(1740732278.493:20768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.405248][ T9501] loop4: detected capacity change from 0 to 8192
[  159.428444][   T29] audit: type=1326 audit(1740732278.493:20769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.458424][   T29] audit: type=1326 audit(1740732278.493:20770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.481888][   T29] audit: type=1326 audit(1740732278.493:20771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.505404][   T29] audit: type=1326 audit(1740732278.493:20772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9500 comm="syz.4.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f388d2dd169 code=0x7ffc0000
[  159.562496][  T112] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  159.574773][  T112] EXT4-fs (loop1): This should not happen!! Data will be lost
[  159.574773][  T112] 
[  159.584438][  T112] EXT4-fs (loop1): Total free blocks count 0
[  159.590581][  T112] EXT4-fs (loop1): Free/Dirty block details
[  159.596471][  T112] EXT4-fs (loop1): free_blocks=2415919104
[  159.602207][  T112] EXT4-fs (loop1): dirty_blocks=8224
[  159.607487][  T112] EXT4-fs (loop1): Block reservation details
[  159.613569][  T112] EXT4-fs (loop1): i_reserved_data_blocks=514
[  159.638318][   T50] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  159.689892][ T9509] netlink: 'syz.6.2176': attribute type 4 has an invalid length.
[  159.945380][ T9521] loop1: detected capacity change from 0 to 512
[  160.000438][ T9525] wg2: left promiscuous mode
[  160.000463][ T9521] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2181: bg 0: block 248: padding at end of block bitmap is not set
[  160.002619][ T9521] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.2181: Failed to acquire dquot type 1
[  160.005103][ T9525] wg2: left allmulticast mode
[  160.035617][ T9525] wg2: entered promiscuous mode
[  160.038118][ T9527] FAULT_INJECTION: forcing a failure.
[  160.038118][ T9527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.040579][ T9525] wg2: entered allmulticast mode
[  160.058596][ T9527] CPU: 0 UID: 0 PID: 9527 Comm: syz.0.2183 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  160.058681][ T9527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.058711][ T9527] Call Trace:
[  160.058715][ T9527]  <TASK>
[  160.058721][ T9527]  dump_stack_lvl+0xf2/0x150
[  160.058745][ T9527]  dump_stack+0x15/0x1a
[  160.058763][ T9527]  should_fail_ex+0x24a/0x260
[  160.058788][ T9527]  should_fail+0xb/0x10
[  160.058810][ T9527]  should_fail_usercopy+0x1a/0x20
[  160.058910][ T9527]  _copy_from_user+0x1c/0xa0
[  160.058939][ T9527]  copy_from_sockptr_offset+0x6b/0xb0
[  160.058967][ T9527]  do_arpt_set_ctl+0x6b2/0xa20
[  160.059061][ T9527]  ? _raw_spin_unlock_bh+0x36/0x40
[  160.059086][ T9527]  nf_setsockopt+0x195/0x1b0
[  160.059157][ T9527]  ip_setsockopt+0xea/0x100
[  160.059225][ T9527]  udp_setsockopt+0x95/0xb0
[  160.059246][ T9527]  sock_common_setsockopt+0x64/0x80
[  160.059334][ T9527]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  160.059370][ T9527]  __sys_setsockopt+0x187/0x200
[  160.059451][ T9527]  __x64_sys_setsockopt+0x66/0x80
[  160.059473][ T9527]  x64_sys_call+0x282e/0x2dc0
[  160.059499][ T9527]  do_syscall_64+0xc9/0x1c0
[  160.059528][ T9527]  ? clear_bhb_loop+0x55/0xb0
[  160.059554][ T9527]  ? clear_bhb_loop+0x55/0xb0
[  160.059676][ T9527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.059701][ T9527] RIP: 0033:0x7f351e75d169
[  160.059790][ T9527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.059854][ T9527] RSP: 002b:00007f351cdc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  160.059873][ T9527] RAX: ffffffffffffffda RBX: 00007f351e975fa0 RCX: 00007f351e75d169
[  160.059885][ T9527] RDX: 0000000000000060 RSI: 0a02000000000000 RDI: 0000000000000004
[  160.059896][ T9527] RBP: 00007f351cdc7090 R08: 0000000000000438 R09: 0000000000000000
[  160.059907][ T9527] R10: 0000400000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.059918][ T9527] R13: 0000000000000000 R14: 00007f351e975fa0 R15: 00007fffc34b69b8
[  160.059936][ T9527]  </TASK>
[  160.273274][ T9521] EXT4-fs (loop1): 1 truncate cleaned up
[  160.279560][ T9521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.292460][ T9532] loop5: detected capacity change from 0 to 8192
[  160.309303][ T9521] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.323715][ T9521] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2181: deleted inode referenced: 12
[  160.343024][ T9521] IPVS: set_ctl: invalid protocol: 115 0.0.0.0:20004
[  160.359385][ T9521] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2181: deleted inode referenced: 12
[  160.380763][ T9521] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2181: deleted inode referenced: 12
[  160.399696][ T9521] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.2181: deleted inode referenced: 12
[  160.412810][ T9542] FAULT_INJECTION: forcing a failure.
[  160.412810][ T9542] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  160.426101][ T9542] CPU: 0 UID: 0 PID: 9542 Comm: syz.4.2188 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  160.426127][ T9542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.426207][ T9542] Call Trace:
[  160.426233][ T9542]  <TASK>
[  160.426241][ T9542]  dump_stack_lvl+0xf2/0x150
[  160.426304][ T9542]  dump_stack+0x15/0x1a
[  160.426374][ T9542]  should_fail_ex+0x24a/0x260
[  160.426406][ T9542]  should_fail_alloc_page+0xfd/0x110
[  160.426440][ T9542]  __alloc_frozen_pages_noprof+0x109/0x340
[  160.426474][ T9542]  alloc_pages_mpol+0xb4/0x260
[  160.426546][ T9542]  vma_alloc_folio_noprof+0x1a0/0x310
[  160.426574][ T9542]  handle_mm_fault+0xdd7/0x2ac0
[  160.426696][ T9542]  exc_page_fault+0x296/0x650
[  160.426726][ T9542]  asm_exc_page_fault+0x26/0x30
[  160.426826][ T9542] RIP: 0010:__put_user_4+0x11/0x20
[  160.426873][ T9542] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  160.426891][ T9542] RSP: 0018:ffffc9000a1c7e08 EFLAGS: 00050206
[  160.426903][ T9542] RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 0000400000000000
[  160.426916][ T9542] RDX: 0000000000000000 RSI: 0000000000000246 RDI: ffff888137478030
[  160.426926][ T9542] RBP: ffff888137478030 R08: 0001888137478087 R09: 0000000000000000
[  160.426936][ T9542] R10: 0001ffffffffffff R11: 0001c9000a1c7de8 R12: ffff888137478080
[  160.426949][ T9542] R13: 0000000000000246 R14: ffff888102475cc0 R15: ffff888137478000
[  160.426969][ T9542]  sg_ioctl+0x109a/0x1870
[  160.427018][ T9542]  ? __fget_files+0x17c/0x1c0
[  160.427099][ T9542]  ? __pfx_sg_ioctl+0x10/0x10
[  160.427205][ T9542]  __se_sys_ioctl+0xc9/0x140
[  160.427233][ T9542]  __x64_sys_ioctl+0x43/0x50
[  160.427318][ T9542]  x64_sys_call+0x1690/0x2dc0
[  160.427404][ T9542]  do_syscall_64+0xc9/0x1c0
[  160.427436][ T9542]  ? clear_bhb_loop+0x55/0xb0
[  160.427464][ T9542]  ? clear_bhb_loop+0x55/0xb0
[  160.427563][ T9542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.427592][ T9542] RIP: 0033:0x7f388d2dd169
[  160.427644][ T9542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.427663][ T9542] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  160.427680][ T9542] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  160.427689][ T9542] RDX: 0000400000000000 RSI: 000000000000227c RDI: 0000000000000003
[  160.427699][ T9542] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  160.427709][ T9542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.427718][ T9542] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  160.427805][ T9542]  </TASK>
[  160.740684][ T9550] FAULT_INJECTION: forcing a failure.
[  160.740684][ T9550] name failslab, interval 1, probability 0, space 0, times 0
[  160.753397][ T9550] CPU: 1 UID: 0 PID: 9550 Comm: syz.4.2192 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  160.753423][ T9550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.753436][ T9550] Call Trace:
[  160.753464][ T9550]  <TASK>
[  160.753471][ T9550]  dump_stack_lvl+0xf2/0x150
[  160.753501][ T9550]  dump_stack+0x15/0x1a
[  160.753525][ T9550]  should_fail_ex+0x24a/0x260
[  160.753599][ T9550]  should_failslab+0x8f/0xb0
[  160.753632][ T9550]  __kmalloc_node_noprof+0xad/0x410
[  160.753656][ T9550]  ? vmemdup_user+0x42/0x1b0
[  160.753683][ T9550]  vmemdup_user+0x42/0x1b0
[  160.753747][ T9550]  path_setxattrat+0x1c9/0x310
[  160.753813][ T9550]  __x64_sys_lsetxattr+0x71/0x90
[  160.753843][ T9550]  x64_sys_call+0x29c8/0x2dc0
[  160.753874][ T9550]  do_syscall_64+0xc9/0x1c0
[  160.753906][ T9550]  ? clear_bhb_loop+0x55/0xb0
[  160.753935][ T9550]  ? clear_bhb_loop+0x55/0xb0
[  160.753982][ T9550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.754024][ T9550] RIP: 0033:0x7f388d2dd169
[  160.754041][ T9550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.754061][ T9550] RSP: 002b:00007f388b941038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  160.754128][ T9550] RAX: ffffffffffffffda RBX: 00007f388d4f5fa0 RCX: 00007f388d2dd169
[  160.754143][ T9550] RDX: 0000000000000000 RSI: 0000400000000180 RDI: 0000000000000000
[  160.754157][ T9550] RBP: 00007f388b941090 R08: 0000000000000000 R09: 0000000000000000
[  160.754170][ T9550] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000001
[  160.754181][ T9550] R13: 0000000000000000 R14: 00007f388d4f5fa0 R15: 00007fff74f13558
[  160.754254][ T9550]  </TASK>
[  160.948243][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.959425][   T50] EXT4-fs error (device loop1): ext4_release_dquot:6950: comm kworker/u8:3: Failed to release dquot type 1
[  160.995660][ T9548] loop0: detected capacity change from 0 to 8192
[  161.159836][ T9559] loop6: detected capacity change from 0 to 8192
[  161.192039][ T9575] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=93 sclass=netlink_route_socket pid=9575 comm=syz.5.2203
[  161.311230][ T9588] netlink: 172 bytes leftover after parsing attributes in process `syz.5.2207'.
[  161.344402][ T9588] pim6reg1: entered promiscuous mode
[  161.349782][ T9588] pim6reg1: entered allmulticast mode
[  161.357189][ T9588] netlink: 'syz.5.2207': attribute type 11 has an invalid length.
[  161.388655][ T9559] ==================================================================
[  161.396741][ T9559] BUG: KCSAN: data-race in mark_buffer_dirty_inode / sync_mapping_buffers
[  161.405275][ T9559] 
[  161.407605][ T9559] write to 0xffff8881071da670 of 8 bytes by task 9586 on cpu 0:
[  161.415242][ T9559]  sync_mapping_buffers+0x159/0x7c0
[  161.420457][ T9559]  fat_file_fsync+0xa7/0x100
[  161.425056][ T9559]  vfs_fsync_range+0x116/0x130
[  161.429832][ T9559]  generic_file_write_iter+0x1c3/0x310
[  161.435296][ T9559]  do_iter_readv_writev+0x403/0x4b0
[  161.440509][ T9559]  vfs_writev+0x2d9/0x880
[  161.444833][ T9559]  __se_sys_pwritev2+0x100/0x1c0
[  161.449781][ T9559]  __x64_sys_pwritev2+0x78/0x90
[  161.454634][ T9559]  x64_sys_call+0x2afe/0x2dc0
[  161.459323][ T9559]  do_syscall_64+0xc9/0x1c0
[  161.463834][ T9559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.469727][ T9559] 
[  161.472047][ T9559] read to 0xffff8881071da670 of 8 bytes by task 9559 on cpu 1:
[  161.479578][ T9559]  mark_buffer_dirty_inode+0x96/0x1c0
[  161.484961][ T9559]  fat16_ent_put+0x4f/0x60
[  161.489388][ T9559]  fat_alloc_clusters+0x4c9/0xa80
[  161.494436][ T9559]  fat_get_block+0x25c/0x5e0
[  161.499042][ T9559]  __block_write_begin_int+0x417/0xfa0
[  161.504532][ T9559]  cont_write_begin+0x546/0x860
[  161.509393][ T9559]  fat_write_begin+0x51/0xe0
[  161.513978][ T9559]  cont_write_begin+0x18b/0x860
[  161.518832][ T9559]  fat_write_begin+0x51/0xe0
[  161.523417][ T9559]  generic_cont_expand_simple+0xaa/0x150
[  161.529049][ T9559]  fat_cont_expand+0x3a/0x160
[  161.533736][ T9559]  fat_setattr+0x2aa/0x840
[  161.538169][ T9559]  notify_change+0x85c/0x8e0
[  161.542755][ T9559]  do_ftruncate+0x332/0x440
[  161.547259][ T9559]  __x64_sys_ftruncate+0x67/0xc0
[  161.552196][ T9559]  x64_sys_call+0x9d9/0x2dc0
[  161.556786][ T9559]  do_syscall_64+0xc9/0x1c0
[  161.561296][ T9559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.567205][ T9559] 
[  161.569518][ T9559] value changed: 0xffff888105fe1708 -> 0x0000000000000000
[  161.576612][ T9559] 
[  161.578926][ T9559] Reported by Kernel Concurrency Sanitizer on:
[  161.585068][ T9559] CPU: 1 UID: 0 PID: 9559 Comm: syz.6.2196 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0
[  161.595748][ T9559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  161.605799][ T9559] ==================================================================
[  161.628141][ T9581] loop4: detected capacity change from 0 to 8192
[  161.723587][ T9579] loop1: detected capacity change from 0 to 1024
[  161.752518][ T9579] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c018, mo2=0002]
[  161.762394][ T9579] System zones: 0-1, 3-12
[  161.767497][ T9579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.812725][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.