last executing test programs:

1m15.252424216s ago: executing program 4 (id=426):
socket$igmp6(0xa, 0x3, 0x3a)
mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006}]})
r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='cgroup\x00')
lseek(r0, 0x10001, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000005400e5012abd7000ffffffff07"], 0x38}, 0x1, 0x0, 0x0, 0x24000084}, 0xc04c4c4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, &(0x7f0000000140), 0x4)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000002c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100d0000000fbdbdf25010000001800018014000200766574683100000000000000000000001c0002800c00018008000100030000000c000180"], 0x48}, 0x1, 0x0, 0x0, 0x840}, 0x4008800)

1m14.369001464s ago: executing program 4 (id=438):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mincore(&(0x7f0000a8a000/0x1000)=nil, 0x1000, &(0x7f0000000400)=""/18)

1m14.335067884s ago: executing program 4 (id=439):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x842, 0x0)
open(0x0, 0x143c62, 0x0)
socket$inet6(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0xf1311, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x2}, 0x0, 0x10000, 0xc, 0x2, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), r2)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x20, r3, 0x2586ad4018a3b31b, 0x0, 0xffffffff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

1m14.230889156s ago: executing program 4 (id=444):
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x40000)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = syz_open_dev$sg(0x0, 0x0, 0x8401)
ioctl$SG_BLKTRACETEARDOWN(r5, 0x1276, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x8f5, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x1, 0x89, 0x3, @private=0xa010102, @local}}}}}}, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x4, 0x2, @vifc_lcl_addr=@loopback, @remote}, 0x10)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

1m14.112976689s ago: executing program 4 (id=449):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = creat(&(0x7f00000003c0)='./file0\x00', 0x36)
write$bt_hci(r3, &(0x7f00000001c0)=ANY=[], 0x6) (fail_nth: 5)

1m13.964298711s ago: executing program 4 (id=450):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mincore(&(0x7f0000a8a000/0x1000)=nil, 0x1000, &(0x7f0000000400)=""/18)

1m11.103778687s ago: executing program 1 (id=491):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0)={<r3=>0xffffffffffffffff}, 0x2, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f00000002c0)=[{0x23, 0x0, [0x4, 0x4, 0x3f550a8b, 0x9, 0x61, 0x9, 0x0, 0x5, 0x4, 0x5, 0x5, 0xed, 0x8001, 0x8, 0x9, 0xdf39]}, {0x2b, 0x0, [0xffff3ee4, 0x8, 0x5, 0x4, 0xe0000000, 0x1, 0x7, 0x8, 0x8cd, 0x5, 0x3, 0x9, 0x6, 0x6, 0x2, 0x4]}], r3, 0x1, 0x1, 0x90}}, 0x20)

1m11.018574648s ago: executing program 1 (id=492):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bc00551a00000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_usbip_server_init(0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000300)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x10001}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
io_getevents(0x0, 0x4, 0x0, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x4}, &(0x7f0000000300)=<r5=>0x0, &(0x7f0000000580)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r4, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r7, 0x0, r8, 0x0, 0x88000cc, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c000240"], 0xd4}}, 0x4000010)
lsetxattr$security_selinux(0x0, &(0x7f0000000000), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000006bc0)='./file0\x00', 0x22508d8, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x2)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1m9.565017666s ago: executing program 1 (id=516):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x7, 0x6}, 0x513a, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x8020000006}, 0x0, 0xffffffffffff7fff, 0xffffffffffffffff, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x2c, 0x11, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x101}]}}}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xec}}, 0x0)

1m9.243619863s ago: executing program 1 (id=519):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x842, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0xf1311, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x2}, 0x0, 0x10000, 0xc, 0x2, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), r1)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x20, r2, 0x2586ad4018a3b31b, 0x0, 0xffffffff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

1m8.796909001s ago: executing program 1 (id=525):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x68, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xfff3, 0x7}, {0x0, 0xfff1}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_EMATCHES={0x34, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x28, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x24, 0x1, 0x0, 0x0, {{0xe38, 0x9, 0x4}, [@TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}]}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x40800}, 0x40010)

1m8.742550652s ago: executing program 1 (id=529):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x8, 0x0, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in=@remote, 0x2, 0x6c}, 0x0, @in=@empty, 0x0, 0x5, 0x0, 0xb7}}, 0xe8)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
sync()
ustat(0x3, &(0x7f0000000000))
sync()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r5, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket(0x10, 0x803, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xfffd}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2a, 0x8000002, {0x0, 0x0, 0x300, r8, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x14, 0x2, [@TCA_BASIC_EMATCHES={0x10, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x4, <r10=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0x16, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x3}, [@exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call]}, &(0x7f0000000080)='GPL\x00', 0x7fffffff, 0x0, &(0x7f0000000140), 0x41000, 0x44, '\x00', r8, @fallback=0xa, r9, 0x8, &(0x7f0000000240)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x2, 0x2, 0x9, 0xfffffffb}, 0x10, r10, 0xffffffffffffffff, 0x5, 0x0, &(0x7f00000007c0)=[{0x1, 0x3, 0xa, 0x5}, {0x3, 0x4, 0x9, 0x2}, {0x0, 0x5, 0xe, 0xc}, {0x1, 0x4, 0xd, 0xa}, {0x2, 0x1, 0x8, 0x9}], 0x10, 0x3}, 0x94)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}}, 0x0)

58.877091693s ago: executing program 32 (id=450):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mincore(&(0x7f0000a8a000/0x1000)=nil, 0x1000, &(0x7f0000000400)=""/18)

53.588760065s ago: executing program 33 (id=529):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x8, 0x0, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in=@remote, 0x2, 0x6c}, 0x0, @in=@empty, 0x0, 0x5, 0x0, 0xb7}}, 0xe8)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
sync()
ustat(0x3, &(0x7f0000000000))
sync()
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r5, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket(0x10, 0x803, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xfffd}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2a, 0x8000002, {0x0, 0x0, 0x300, r8, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x14, 0x2, [@TCA_BASIC_EMATCHES={0x10, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x4, <r10=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0x16, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x3}, [@exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @tail_call]}, &(0x7f0000000080)='GPL\x00', 0x7fffffff, 0x0, &(0x7f0000000140), 0x41000, 0x44, '\x00', r8, @fallback=0xa, r9, 0x8, &(0x7f0000000240)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x2, 0x2, 0x9, 0xfffffffb}, 0x10, r10, 0xffffffffffffffff, 0x5, 0x0, &(0x7f00000007c0)=[{0x1, 0x3, 0xa, 0x5}, {0x3, 0x4, 0x9, 0x2}, {0x0, 0x5, 0xe, 0xc}, {0x1, 0x4, 0xd, 0xa}, {0x2, 0x1, 0x8, 0x9}], 0x10, 0x3}, 0x94)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}}, 0x0)

2.292789356s ago: executing program 2 (id=1615):
socket$unix(0x1, 0x2, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0xfffffffffffffff5]}, 0x8, 0x800)

2.229142887s ago: executing program 2 (id=1616):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100001f00702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x400008)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x404e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x42000773)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
kcmp(r0, r0, 0x3, 0xffffffffffffffff, r1)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, 0x0)
poll(0x0, 0x0, 0x1d)
r5 = socket(0x10, 0x2, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000080)={0x8, 0x2, 0x2}, 0x10)
ioctl$TIOCSSOFTCAR(r6, 0x541a, &(0x7f0000000240)=0x2)
write(r5, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r5, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

1.54791842s ago: executing program 0 (id=1633):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
setsockopt$inet_opts(r2, 0x0, 0x4, 0x0, 0x0)

1.471747952s ago: executing program 0 (id=1635):
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x48)
open(&(0x7f0000000140)='./bus\x00', 0x143bc2, 0x1c0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={&(0x7f0000000240)="1aa38959cf4b9953c74d3880e7fe99bed273946af91b8af51dc1819940d167f6c321fcc4a142bd0cfe7c3898e9b3681478b372ce87a233ce7e86411b5652c08e5701710c418701dbd1ff0ee4ad0879530b5e9b00245e298604d96ffb091ff63f6a606f3d", &(0x7f0000000440)="b210757f2fa1e7f7afb4ea266ee129411a30f745ccc26e3e93146141e8c86699f347490a250f272b0b35d832aead54d5f8e1315f8ae837cf75eaaafef2d50e5e8c1dc488d42c754860dda43155f560b1c0329df30e5afd1ae36cae41"}}, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x109a88, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioperm(0x3c, 0x1, 0x8)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r0, 0x2000009)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)

1.355109504s ago: executing program 3 (id=1638):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mount_setattr(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x800, &(0x7f0000000200)={0x80, 0x0, 0x40000}, 0x20)

1.354747354s ago: executing program 3 (id=1639):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain)
add_key$keyring(&(0x7f0000000040), &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, r3)

1.352946395s ago: executing program 3 (id=1640):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
connect$unix(r0, 0x0, 0x0)

1.204627097s ago: executing program 5 (id=1642):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x114df, 0x1000, 0x1, 0x87}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r1, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

1.124330479s ago: executing program 2 (id=1645):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x40000001, 0x0)

944.633632ms ago: executing program 6 (id=1648):
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r2 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x2)
fallocate(r2, 0x0, 0x400000000000000, 0x2)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x12, 0x104, 0x8, 0xffffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x10000000}, 0x50)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)={0xcc, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'Q.931\x00'}}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_NAT_DST={0x28, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast2}]}]}, 0xcc}}, 0x0)

873.095944ms ago: executing program 5 (id=1649):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1fbe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000180), &(0x7f0000000200)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='cachefiles_lookup\x00', r2, 0x0, 0x1fe}, 0x18)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000380)=ANY=[@ANYRES64=r4, @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRES64=r4, @ANYBLOB="ac6d5241168f036b7c9ed09e44238950bbef83ed433219126a69d4bc475870366d0532b97851f355854490971e18a936d67a7d60e3eb1bacdf3aee4eea726afa44a81596b7deb93f54030fd1680c4f"])
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x6000)

818.825864ms ago: executing program 5 (id=1650):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mount_setattr(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x800, &(0x7f0000000200)={0x80, 0x0, 0x40000}, 0x20)

818.597715ms ago: executing program 5 (id=1651):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
getrlimit(0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x200000000000009d, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, [@printk={@ld}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x4d, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r4}, 0x10)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000)=0x80, 0x4)

721.270036ms ago: executing program 6 (id=1652):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
getdents64(0xffffffffffffffff, 0x0, 0x0) (fail_nth: 4)

428.072332ms ago: executing program 3 (id=1653):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x95f5, 0x10100, 0x0, 0x89}, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x207a98, 0x363, 0x4, 0x0, 0x0)

427.190762ms ago: executing program 0 (id=1654):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
signalfd(0xffffffffffffffff, &(0x7f0000000180)={[0x5]}, 0x8)

410.230363ms ago: executing program 3 (id=1655):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="1501685e5a0ebbd9df000500007f"], 0x14}, 0x1, 0x0, 0x0, 0x44840}, 0x80)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001cc0)={<r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r7, <r8=>0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$unix(r6, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r11, @ANYBLOB="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"], 0x1c8}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r5}, 0x18)
r12 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r12])

350.779134ms ago: executing program 6 (id=1656):
r0 = creat(&(0x7f0000000640)='./bus\x00', 0x1a8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000680)='dax_insert_mapping\x00', r0, 0x0, 0x203}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f0000000000)=ANY=[@ANYRES64=r0], 0x0, 0xc, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f00000008c0)=0x80, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

338.802134ms ago: executing program 5 (id=1657):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x7f}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000002240)=[{{&(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000001280)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @rand_addr=0x64010101}}}, @ip_retopts={{0x10}}], 0x30}}], 0x1, 0x0)

326.234814ms ago: executing program 6 (id=1658):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x60)

294.074884ms ago: executing program 5 (id=1659):
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x48)
open(&(0x7f0000000140)='./bus\x00', 0x143bc2, 0x1c0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={&(0x7f0000000240)="1aa38959cf4b9953c74d3880e7fe99bed273946af91b8af51dc1819940d167f6c321fcc4a142bd0cfe7c3898e9b3681478b372ce87a233ce7e86411b5652c08e5701710c418701dbd1ff0ee4ad0879530b5e9b00245e298604d96ffb091ff63f6a606f3d", &(0x7f0000000440)="b210757f2fa1e7f7afb4ea266ee129411a30f745ccc26e3e93146141e8c86699f347490a250f272b0b35d832aead54d5f8e1315f8ae837cf75eaaafef2d50e5e8c1dc488d42c754860dda43155f560b1c0329df30e5afd1ae36cae41"}}, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x109a88, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioperm(0x3c, 0x1, 0x8)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r0, 0x2000009)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)

218.803217ms ago: executing program 0 (id=1660):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kfree\x00', r2}, 0x18)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000006800)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="15060000f2ff01000000010000003000018014000400ff010000000000000000000000000001060005004e220000060001000a000000080006000100"], 0x44}, 0x5}, 0x0)

215.932926ms ago: executing program 0 (id=1661):
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000380)=@filename='./file0\x00', 0x0, &(0x7f00000003c0)='./file0\x00')

196.084937ms ago: executing program 2 (id=1662):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain)
add_key$keyring(&(0x7f0000000040), &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, r3)

176.225467ms ago: executing program 0 (id=1663):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
connect$unix(r0, 0x0, 0x0)

114.712608ms ago: executing program 2 (id=1664):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x0, 0x2, 0x7, 0x401})
fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="180a00000200000000000000000000109500100600000000"], &(0x7f0000000200)='GPL\x00', 0x5, 0x1f, &(0x7f0000000600)=""/183, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = gettid()
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000140)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_GATEWAY={0x8, 0x5, @broadcast}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x8800)
tkill(r1, 0x12)
r3 = syz_open_procfs(r1, &(0x7f0000000040)='attr\x00')
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x442002, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x11, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x8eb2e000f2c28467, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e29}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
pread64(r3, &(0x7f0000001600)=""/4103, 0x1007, 0x7f)

101.743709ms ago: executing program 6 (id=1665):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = syz_io_uring_setup(0x234, 0x0, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x207a98, 0x363, 0x4, 0x0, 0x0)

78.777499ms ago: executing program 2 (id=1666):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@gettaction={0xa0, 0x32, 0x300, 0x70bd25, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xa4cc}, @action_gd=@TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7cf}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x44000}, 0x2404c844)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000020000000900010073797a30000000000900030073797a32000000003a000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xa0}}, 0x8040)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000aef344895cbbe93dcdd92000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x2000051}, 0x800)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680))
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x818018, &(0x7f0000000300)={[{@minixdf}, {@grpjquota}]}, 0x1, 0x72d, &(0x7f00000014c0)="$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")
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x6, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r3}, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1a, 0x10, &(0x7f0000000480)=ANY=[@ANYRESHEX=r2], &(0x7f0000000340)='GPL\x00', 0x4, 0x0, 0x0, 0x1e00, 0xc, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r6}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1b00000000020000000000004000001800000000", @ANYRES32=r5, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0200"/28], 0x50)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = dup(r7)
setsockopt$inet_opts(r8, 0x0, 0x4, 0x0, 0x0)
r9 = open(&(0x7f0000000140)='./file1\x00', 0x64042, 0x169)
pwritev(r9, 0x0, 0x0, 0x8, 0x365)

548.231µs ago: executing program 3 (id=1667):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
getrlimit(0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x200000000000009d, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, [@printk={@ld}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x4d, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r4}, 0x10)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000)=0x80, 0x4)

0s ago: executing program 6 (id=1668):
r0 = creat(&(0x7f0000000640)='./bus\x00', 0x1a8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000680)='dax_insert_mapping\x00', r0, 0x0, 0x203}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f0000000000)=ANY=[@ANYRES64=r0], 0x0, 0xc, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f00000008c0)=0x80, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

rror (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   93.902103][ T5976] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   93.930756][ T5976] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   93.947213][ T5975] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   93.961610][ T5975] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   93.977491][ T5976] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   94.004234][ T5976] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   94.020848][ T5975] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #15: block 3: comm syz.3.829: lblock 3 mapped to illegal pblock 3 (length 1)
[   94.222760][ T5982] FAULT_INJECTION: forcing a failure.
[   94.222760][ T5982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.236300][ T5982] CPU: 1 UID: 0 PID: 5982 Comm: syz.3.829 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   94.236380][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.236396][ T5982] Call Trace:
[   94.236404][ T5982]  <TASK>
[   94.236414][ T5982]  __dump_stack+0x1d/0x30
[   94.236474][ T5982]  dump_stack_lvl+0xe8/0x140
[   94.236576][ T5982]  dump_stack+0x15/0x1b
[   94.236597][ T5982]  should_fail_ex+0x265/0x280
[   94.236625][ T5982]  should_fail+0xb/0x20
[   94.236648][ T5982]  should_fail_usercopy+0x1a/0x20
[   94.236703][ T5982]  _copy_to_user+0x20/0xa0
[   94.236741][ T5982]  simple_read_from_buffer+0xb5/0x130
[   94.236771][ T5982]  proc_fail_nth_read+0x10e/0x150
[   94.236861][ T5982]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   94.236886][ T5982]  vfs_read+0x1a8/0x770
[   94.236906][ T5982]  ? __rcu_read_unlock+0x4f/0x70
[   94.236973][ T5982]  ? __fget_files+0x184/0x1c0
[   94.236999][ T5982]  ? finish_task_switch+0xad/0x2b0
[   94.237021][ T5982]  ksys_read+0xda/0x1a0
[   94.237052][ T5982]  __x64_sys_read+0x40/0x50
[   94.237135][ T5982]  x64_sys_call+0x27bc/0x2ff0
[   94.237207][ T5982]  do_syscall_64+0xd2/0x200
[   94.237239][ T5982]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.237320][ T5982]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.237352][ T5982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.237403][ T5982] RIP: 0033:0x7f0394f4d5fc
[   94.237418][ T5982] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   94.237435][ T5982] RSP: 002b:00007f039398e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   94.237488][ T5982] RAX: ffffffffffffffda RBX: 00007f0395186090 RCX: 00007f0394f4d5fc
[   94.237561][ T5982] RDX: 000000000000000f RSI: 00007f039398e0a0 RDI: 0000000000000007
[   94.237573][ T5982] RBP: 00007f039398e090 R08: 0000000000000000 R09: 0000000000000000
[   94.237584][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.237669][ T5982] R13: 00007f0395186128 R14: 00007f0395186090 R15: 00007ffd8d08fd08
[   94.237688][ T5982]  </TASK>
[   94.526820][   T41] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[   94.539365][   T41] EXT4-fs (loop3): This should not happen!! Data will be lost
[   94.539365][   T41] 
[   94.551038][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   94.667838][ T6005] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=57921 sclass=netlink_xfrm_socket pid=6005 comm=syz.3.838
[   94.745818][ T6006] loop0: detected capacity change from 0 to 1024
[   94.764864][ T6006] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   94.776025][ T6006] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   94.786639][ T6006] JBD2: no valid journal superblock found
[   94.792415][ T6006] EXT4-fs (loop0): Could not load journal inode
[   95.476249][ T6022] hub 6-0:1.0: USB hub found
[   95.481112][ T6022] hub 6-0:1.0: 8 ports detected
[   95.594956][ T6036] __nla_validate_parse: 6 callbacks suppressed
[   95.594976][ T6036] netlink: 22 bytes leftover after parsing attributes in process `syz.0.848'.
[   95.611093][ T6036] openvswitch: netlink: Flow key attr not present in new flow.
[   95.645851][ T6038] loop5: detected capacity change from 0 to 512
[   95.654819][ T6038] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   95.680254][ T6038] EXT4-fs (loop5): 1 truncate cleaned up
[   95.697566][ T6038] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.716110][ T6044] Driver unsupported XDP return value 0 on prog  (id 1065) dev N/A, expect packet loss!
[   95.966391][ T6070] netlink: 20 bytes leftover after parsing attributes in process `syz.6.865'.
[   95.986351][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.011732][ T6076] FAULT_INJECTION: forcing a failure.
[   96.011732][ T6076] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.025161][ T6076] CPU: 1 UID: 0 PID: 6076 Comm: syz.5.866 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   96.025193][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.025208][ T6076] Call Trace:
[   96.025216][ T6076]  <TASK>
[   96.025227][ T6076]  __dump_stack+0x1d/0x30
[   96.025315][ T6076]  dump_stack_lvl+0xe8/0x140
[   96.025340][ T6076]  dump_stack+0x15/0x1b
[   96.025359][ T6076]  should_fail_ex+0x265/0x280
[   96.025425][ T6076]  should_fail+0xb/0x20
[   96.025448][ T6076]  should_fail_usercopy+0x1a/0x20
[   96.025469][ T6076]  _copy_from_iter+0xd2/0xe80
[   96.025573][ T6076]  ? __rcu_read_unlock+0x4f/0x70
[   96.025680][ T6076]  ? avc_has_perm_noaudit+0x1b1/0x200
[   96.025719][ T6076]  copy_page_from_iter+0x178/0x2a0
[   96.025750][ T6076]  anon_pipe_write+0x967/0xaa0
[   96.025845][ T6076]  ? __pfx_anon_pipe_write+0x10/0x10
[   96.025881][ T6076]  ? selinux_file_permission+0x2f0/0x320
[   96.025905][ T6076]  ? __pfx_anon_pipe_write+0x10/0x10
[   96.025937][ T6076]  vfs_write+0x52a/0x960
[   96.026025][ T6076]  ksys_write+0xda/0x1a0
[   96.026055][ T6076]  __x64_sys_write+0x40/0x50
[   96.026142][ T6076]  x64_sys_call+0x27fe/0x2ff0
[   96.026190][ T6076]  do_syscall_64+0xd2/0x200
[   96.026281][ T6076]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   96.026305][ T6076]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   96.026336][ T6076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.026373][ T6076] RIP: 0033:0x7f2955a8ebe9
[   96.026392][ T6076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.026416][ T6076] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   96.026477][ T6076] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[   96.026504][ T6076] RDX: 0000000000000020 RSI: 0000200000000100 RDI: 0000000000000006
[   96.026519][ T6076] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[   96.026535][ T6076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.026549][ T6076] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[   96.026569][ T6076]  </TASK>
[   96.556704][ T6097] netlink: 20 bytes leftover after parsing attributes in process `syz.6.877'.
[   96.586215][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.6.878'.
[   96.646946][ T6103] loop6: detected capacity change from 0 to 1024
[   96.657489][ T6103] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   96.668436][ T6103] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   96.680500][ T6103] JBD2: no valid journal superblock found
[   96.686274][ T6103] EXT4-fs (loop6): Could not load journal inode
[   96.742307][ T6108] netlink: 20 bytes leftover after parsing attributes in process `syz.2.882'.
[   96.857227][ T6121] netlink: 8 bytes leftover after parsing attributes in process `syz.3.887'.
[   96.867591][ T6121] FAULT_INJECTION: forcing a failure.
[   96.867591][ T6121] name failslab, interval 1, probability 0, space 0, times 0
[   96.880754][ T6121] CPU: 1 UID: 0 PID: 6121 Comm: syz.3.887 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   96.880818][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.880830][ T6121] Call Trace:
[   96.880835][ T6121]  <TASK>
[   96.880843][ T6121]  __dump_stack+0x1d/0x30
[   96.880865][ T6121]  dump_stack_lvl+0xe8/0x140
[   96.880923][ T6121]  dump_stack+0x15/0x1b
[   96.880938][ T6121]  should_fail_ex+0x265/0x280
[   96.880961][ T6121]  should_failslab+0x8c/0xb0
[   96.880987][ T6121]  kmem_cache_alloc_node_noprof+0x57/0x320
[   96.881020][ T6121]  ? __alloc_skb+0x101/0x320
[   96.881116][ T6121]  __alloc_skb+0x101/0x320
[   96.881139][ T6121]  netlink_ack+0xfd/0x500
[   96.881235][ T6121]  netlink_rcv_skb+0x192/0x220
[   96.881260][ T6121]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   96.881307][ T6121]  nfnetlink_rcv+0x16b/0x1690
[   96.881349][ T6121]  ? nlmon_xmit+0x4f/0x60
[   96.881374][ T6121]  ? consume_skb+0x49/0x150
[   96.881392][ T6121]  ? nlmon_xmit+0x4f/0x60
[   96.881503][ T6121]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   96.881536][ T6121]  ? __dev_queue_xmit+0x1200/0x2000
[   96.881564][ T6121]  ? __dev_queue_xmit+0x182/0x2000
[   96.881607][ T6121]  ? ref_tracker_free+0x37d/0x3e0
[   96.881699][ T6121]  ? __netlink_deliver_tap+0x4dc/0x500
[   96.881726][ T6121]  netlink_unicast+0x5c0/0x690
[   96.881748][ T6121]  netlink_sendmsg+0x58b/0x6b0
[   96.881824][ T6121]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.881848][ T6121]  __sock_sendmsg+0x145/0x180
[   96.881878][ T6121]  ____sys_sendmsg+0x31e/0x4e0
[   96.881959][ T6121]  ___sys_sendmsg+0x17b/0x1d0
[   96.881997][ T6121]  __x64_sys_sendmsg+0xd4/0x160
[   96.882079][ T6121]  x64_sys_call+0x191e/0x2ff0
[   96.882110][ T6121]  do_syscall_64+0xd2/0x200
[   96.882140][ T6121]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   96.882196][ T6121]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   96.882223][ T6121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.882244][ T6121] RIP: 0033:0x7f0394f4ebe9
[   96.882260][ T6121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.882279][ T6121] RSP: 002b:00007f03939af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.882329][ T6121] RAX: ffffffffffffffda RBX: 00007f0395185fa0 RCX: 00007f0394f4ebe9
[   96.882341][ T6121] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000003
[   96.882353][ T6121] RBP: 00007f03939af090 R08: 0000000000000000 R09: 0000000000000000
[   96.882426][ T6121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.882438][ T6121] R13: 00007f0395186038 R14: 00007f0395185fa0 R15: 00007ffd8d08fd08
[   96.882457][ T6121]  </TASK>
[   97.172790][   T30] kauditd_printk_skb: 636 callbacks suppressed
[   97.172808][   T30] audit: type=1400 audit(1757077944.853:6926): avc:  denied  { prog_load } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   97.200739][   T30] audit: type=1400 audit(1757077944.853:6927): avc:  denied  { bpf } for  pid=6125 comm="syz.6.889" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   97.221520][   T30] audit: type=1400 audit(1757077944.853:6928): avc:  denied  { create } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   97.242369][   T30] audit: type=1400 audit(1757077944.853:6929): avc:  denied  { map_create } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   97.261577][   T30] audit: type=1400 audit(1757077944.853:6930): avc:  denied  { map_read map_write } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   97.281589][   T30] audit: type=1400 audit(1757077944.853:6931): avc:  denied  { perfmon } for  pid=6125 comm="syz.6.889" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   97.302824][   T30] audit: type=1400 audit(1757077944.853:6932): avc:  denied  { prog_run } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   97.321853][   T30] audit: type=1400 audit(1757077944.863:6933): avc:  denied  { write } for  pid=6125 comm="syz.6.889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   97.342464][   T30] audit: type=1400 audit(1757077944.863:6934): avc:  denied  { read write } for  pid=5338 comm="syz-executor" name="loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   97.366890][   T30] audit: type=1400 audit(1757077944.863:6935): avc:  denied  { open } for  pid=5338 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   97.420416][ T6135] loop3: detected capacity change from 0 to 1024
[   97.430405][ T6135] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   97.441479][ T6135] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   97.454146][ T6135] JBD2: no valid journal superblock found
[   97.459933][ T6135] EXT4-fs (loop3): Could not load journal inode
[   97.466322][ T6140] netlink: 20 bytes leftover after parsing attributes in process `syz.5.895'.
[   97.616391][ T6221] netlink: 'syz.6.905': attribute type 10 has an invalid length.
[   97.648964][    C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[   97.715858][ T6224] loop0: detected capacity change from 0 to 1024
[   97.726257][ T6221] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[   97.802346][ T6224] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   97.813294][ T6224] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   97.954896][ T6224] JBD2: no valid journal superblock found
[   97.960761][ T6224] EXT4-fs (loop0): Could not load journal inode
[   98.143052][ T6232] netlink: 20 bytes leftover after parsing attributes in process `syz.6.908'.
[   98.560420][ T6254] loop6: detected capacity change from 0 to 512
[   98.567935][ T6254] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   98.580218][ T6254] EXT4-fs (loop6): orphan cleanup on readonly fs
[   98.586860][ T6254] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.916: Block bitmap for bg 0 marked uninitialized
[   98.689111][ T6245] netlink: 'syz.0.910': attribute type 1 has an invalid length.
[   98.698787][ T6254] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   98.760052][ T6254] EXT4-fs (loop6): 1 orphan inode deleted
[   98.766617][ T6254] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   98.824265][ T6261] usb usb5: usbfs: process 6261 (syz.3.917) did not claim interface 0 before use
[   98.845088][ T6245] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[   98.999054][ T6267] netlink: 20 bytes leftover after parsing attributes in process `syz.3.919'.
[   99.037867][ T5488] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.061190][ T6271] FAULT_INJECTION: forcing a failure.
[   99.061190][ T6271] name failslab, interval 1, probability 0, space 0, times 0
[   99.063390][ T6272] netlink: 'syz.5.922': attribute type 13 has an invalid length.
[   99.074030][ T6271] CPU: 0 UID: 0 PID: 6271 Comm: syz.0.921 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   99.074068][ T6271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.074086][ T6271] Call Trace:
[   99.074095][ T6271]  <TASK>
[   99.074107][ T6271]  __dump_stack+0x1d/0x30
[   99.074143][ T6271]  dump_stack_lvl+0xe8/0x140
[   99.074168][ T6271]  dump_stack+0x15/0x1b
[   99.074251][ T6271]  should_fail_ex+0x265/0x280
[   99.074280][ T6271]  should_failslab+0x8c/0xb0
[   99.074373][ T6271]  kmem_cache_alloc_node_noprof+0x57/0x320
[   99.074413][ T6271]  ? __alloc_skb+0x101/0x320
[   99.074443][ T6271]  __alloc_skb+0x101/0x320
[   99.074470][ T6271]  netlink_alloc_large_skb+0xba/0xf0
[   99.074518][ T6271]  netlink_sendmsg+0x3cf/0x6b0
[   99.074633][ T6271]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.074666][ T6271]  __sock_sendmsg+0x145/0x180
[   99.074706][ T6271]  ____sys_sendmsg+0x31e/0x4e0
[   99.074743][ T6271]  ___sys_sendmsg+0x17b/0x1d0
[   99.074986][ T6271]  __x64_sys_sendmsg+0xd4/0x160
[   99.075100][ T6271]  x64_sys_call+0x191e/0x2ff0
[   99.075129][ T6271]  do_syscall_64+0xd2/0x200
[   99.075169][ T6271]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   99.075204][ T6271]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.075323][ T6271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.075353][ T6271] RIP: 0033:0x7f2bb0bfebe9
[   99.075441][ T6271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.075467][ T6271] RSP: 002b:00007f2baf65f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.075496][ T6271] RAX: ffffffffffffffda RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfebe9
[   99.075537][ T6271] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[   99.075554][ T6271] RBP: 00007f2baf65f090 R08: 0000000000000000 R09: 0000000000000000
[   99.075571][ T6271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.075587][ T6271] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[   99.075613][ T6271]  </TASK>
[   99.111018][ T6275] loop0: detected capacity change from 0 to 1024
[   99.290172][ T6272] gretap0: refused to change device tx_queue_len
[   99.299415][ T6275] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   99.300193][ T6272] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   99.310748][ T6275] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   99.315303][ T6275] JBD2: no valid journal superblock found
[   99.342001][ T6275] EXT4-fs (loop0): Could not load journal inode
[   99.423770][ T6287] loop3: detected capacity change from 0 to 1024
[   99.430772][ T6287] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   99.441805][ T6287] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   99.452650][ T6287] JBD2: no valid journal superblock found
[   99.458491][ T6287] EXT4-fs (loop3): Could not load journal inode
[   99.498157][ T6293] netlink: 8 bytes leftover after parsing attributes in process `syz.5.924'.
[   99.587178][ T6298] lo speed is unknown, defaulting to 1000
[   99.828305][ T6307] loop3: detected capacity change from 0 to 2048
[   99.842908][ T6307] EXT4-fs (loop3): failed to initialize system zone (-117)
[   99.853827][ T6307] EXT4-fs (loop3): mount failed
[  100.001057][ T6323] netlink: zone id is out of range
[  100.006308][ T6323] netlink: zone id is out of range
[  100.011695][ T6323] netlink: zone id is out of range
[  100.016862][ T6323] netlink: zone id is out of range
[  100.022140][ T6323] netlink: zone id is out of range
[  100.027264][ T6323] netlink: zone id is out of range
[  100.034091][ T6323] netlink: zone id is out of range
[  100.039238][ T6323] netlink: zone id is out of range
[  100.045008][ T6327] loop6: detected capacity change from 0 to 512
[  100.056179][ T6327] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.065344][ T6325] loop3: detected capacity change from 0 to 1024
[  100.072528][ T6325] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  100.083504][ T6325] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  100.095766][ T6325] JBD2: no valid journal superblock found
[  100.097418][ T6327] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.101636][ T6325] EXT4-fs (loop3): Could not load journal inode
[  100.128832][ T6327] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.149454][ T6327] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.941: corrupted xattr block 19: overlapping e_value 
[  100.167870][ T6335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.175372][ T6335] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.183376][ T6335] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.190786][ T6335] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.204478][ T6327] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  100.215390][ T6327] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.941: corrupted xattr block 19: overlapping e_value 
[  100.230340][ T6327] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  100.240868][ T6327] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.941: corrupted xattr block 19: overlapping e_value 
[  100.272116][ T5488] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.314831][ T6340] loop6: detected capacity change from 0 to 1764
[  100.388903][ T6349] FAULT_INJECTION: forcing a failure.
[  100.388903][ T6349] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.402777][ T6349] CPU: 1 UID: 0 PID: 6349 Comm: syz.5.946 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.402853][ T6349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.402870][ T6349] Call Trace:
[  100.402948][ T6349]  <TASK>
[  100.402991][ T6349]  __dump_stack+0x1d/0x30
[  100.403023][ T6349]  dump_stack_lvl+0xe8/0x140
[  100.403080][ T6349]  dump_stack+0x15/0x1b
[  100.403101][ T6349]  should_fail_ex+0x265/0x280
[  100.403189][ T6349]  should_fail+0xb/0x20
[  100.403206][ T6349]  should_fail_usercopy+0x1a/0x20
[  100.403279][ T6349]  copy_fpstate_to_sigframe+0x628/0x7d0
[  100.403313][ T6349]  ? copy_fpstate_to_sigframe+0xe6/0x7d0
[  100.403367][ T6349]  ? x86_task_fpu+0x36/0x60
[  100.403427][ T6349]  get_sigframe+0x34d/0x490
[  100.403449][ T6349]  ? get_signal+0xdc8/0xf70
[  100.403502][ T6349]  x64_setup_rt_frame+0xa8/0x580
[  100.403528][ T6349]  arch_do_signal_or_restart+0x27c/0x480
[  100.403584][ T6349]  exit_to_user_mode_loop+0x7a/0x100
[  100.403605][ T6349]  do_syscall_64+0x1d6/0x200
[  100.403638][ T6349]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  100.403758][ T6349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.403786][ T6349] RIP: 0033:0x7f2955a8d69f
[  100.403804][ T6349] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  100.403822][ T6349] RSP: 002b:00007f29544ce030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  100.403840][ T6349] RAX: 0000000000000001 RBX: 000000000000000d RCX: 00007f2955a8d69f
[  100.403898][ T6349] RDX: 0000000000000001 RSI: 00007f29544ce090 RDI: 000000000000000d
[  100.403913][ T6349] RBP: 00007f29544ce090 R08: 0000000000000000 R09: 00007f29544cddf7
[  100.403927][ T6349] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  100.403939][ T6349] R13: 00007f2955cc6128 R14: 00007f2955cc6090 R15: 00007ffc6bc74678
[  100.403957][ T6349]  </TASK>
[  100.712950][ T6359] FAULT_INJECTION: forcing a failure.
[  100.712950][ T6359] name failslab, interval 1, probability 0, space 0, times 0
[  100.725761][ T6359] CPU: 0 UID: 0 PID: 6359 Comm: syz.5.949 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.725788][ T6359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.725801][ T6359] Call Trace:
[  100.725867][ T6359]  <TASK>
[  100.725874][ T6359]  __dump_stack+0x1d/0x30
[  100.725901][ T6359]  dump_stack_lvl+0xe8/0x140
[  100.725926][ T6359]  dump_stack+0x15/0x1b
[  100.725947][ T6359]  should_fail_ex+0x265/0x280
[  100.726038][ T6359]  should_failslab+0x8c/0xb0
[  100.726084][ T6359]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  100.726124][ T6359]  ? sidtab_sid2str_get+0xa0/0x130
[  100.726148][ T6359]  ? skb_put+0xa9/0xf0
[  100.726187][ T6359]  kmemdup_noprof+0x2b/0x70
[  100.726218][ T6359]  sidtab_sid2str_get+0xa0/0x130
[  100.726247][ T6359]  security_sid_to_context_core+0x1eb/0x2e0
[  100.726277][ T6359]  security_sid_to_context+0x27/0x40
[  100.726312][ T6359]  avc_audit_post_callback+0x9d/0x520
[  100.726425][ T6359]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  100.726460][ T6359]  common_lsm_audit+0x1bb/0x230
[  100.726502][ T6359]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  100.726534][ T6359]  slow_avc_audit+0x104/0x140
[  100.726575][ T6359]  avc_has_perm+0x13a/0x180
[  100.726616][ T6359]  selinux_socket_sendmsg+0x175/0x1b0
[  100.726656][ T6359]  security_socket_sendmsg+0x48/0x80
[  100.726737][ T6359]  __sock_sendmsg+0x30/0x180
[  100.726766][ T6359]  ____sys_sendmsg+0x31e/0x4e0
[  100.726792][ T6359]  ___sys_sendmsg+0x17b/0x1d0
[  100.726829][ T6359]  __x64_sys_sendmsg+0xd4/0x160
[  100.726866][ T6359]  x64_sys_call+0x191e/0x2ff0
[  100.727040][ T6359]  do_syscall_64+0xd2/0x200
[  100.727077][ T6359]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  100.727110][ T6359]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  100.727139][ T6359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.727164][ T6359] RIP: 0033:0x7f2955a8ebe9
[  100.727239][ T6359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.727262][ T6359] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.727284][ T6359] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  100.727298][ T6359] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  100.727311][ T6359] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[  100.727323][ T6359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.727399][ T6359] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  100.727443][ T6359]  </TASK>
[  101.086915][ T6365] __nla_validate_parse: 5 callbacks suppressed
[  101.086933][ T6365] netlink: 16 bytes leftover after parsing attributes in process `syz.0.952'.
[  101.121405][ T6363] netlink: 20 bytes leftover after parsing attributes in process `syz.5.951'.
[  101.158703][ T6367] loop6: detected capacity change from 0 to 1024
[  101.166906][ T6367] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  101.177923][ T6367] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  101.190189][ T6367] JBD2: no valid journal superblock found
[  101.195969][ T6367] EXT4-fs (loop6): Could not load journal inode
[  101.394367][ T6378] netlink: 8 bytes leftover after parsing attributes in process `syz.2.956'.
[  101.417941][ T6380] loop5: detected capacity change from 0 to 512
[  101.427097][ T6380] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  101.437936][ T6380] EXT4-fs (loop5): orphan cleanup on readonly fs
[  101.446173][ T6380] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.958: Block bitmap for bg 0 marked uninitialized
[  101.461058][ T6380] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  101.471845][ T6380] EXT4-fs (loop5): 1 orphan inode deleted
[  101.478384][ T6380] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  101.559021][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.655275][ T6405] loop3: detected capacity change from 0 to 512
[  101.662061][ T6405] ext4: Unknown parameter 'uid'
[  101.690229][ T6409] netlink: 14 bytes leftover after parsing attributes in process `syz.3.970'.
[  101.743816][ T6411] FAULT_INJECTION: forcing a failure.
[  101.743816][ T6411] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  101.757525][ T6411] CPU: 0 UID: 0 PID: 6411 Comm: syz.5.971 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  101.757571][ T6411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  101.757587][ T6411] Call Trace:
[  101.757595][ T6411]  <TASK>
[  101.757604][ T6411]  __dump_stack+0x1d/0x30
[  101.757654][ T6411]  dump_stack_lvl+0xe8/0x140
[  101.757677][ T6411]  dump_stack+0x15/0x1b
[  101.757697][ T6411]  should_fail_ex+0x265/0x280
[  101.757725][ T6411]  should_fail_alloc_page+0xf2/0x100
[  101.757788][ T6411]  __alloc_frozen_pages_noprof+0xff/0x360
[  101.757833][ T6411]  alloc_pages_mpol+0xb3/0x250
[  101.757867][ T6411]  alloc_pages_noprof+0x90/0x130
[  101.757934][ T6411]  get_free_pages_noprof+0xc/0x40
[  101.757955][ T6411]  selinux_genfs_get_sid+0x33/0x180
[  101.757993][ T6411]  inode_doinit_with_dentry+0x5fe/0x7a0
[  101.758060][ T6411]  selinux_d_instantiate+0x27/0x40
[  101.758115][ T6411]  security_d_instantiate+0x7a/0xa0
[  101.758147][ T6411]  d_instantiate+0x3f/0x80
[  101.758248][ T6411]  __debugfs_create_file+0x1c1/0x330
[  101.758281][ T6411]  debugfs_create_file_full+0x3f/0x60
[  101.758375][ T6411]  ? __pfx_ip6_tnl_dev_setup+0x10/0x10
[  101.758422][ T6411]  ref_tracker_dir_debugfs+0x100/0x1e0
[  101.758462][ T6411]  alloc_netdev_mqs+0x1a2/0xa30
[  101.758496][ T6411]  ip6_tnl_locate+0x37e/0x4a0
[  101.758536][ T6411]  ip6_tnl_siocdevprivate+0x550/0x920
[  101.758604][ T6411]  dev_ifsioc+0x8f5/0xaa0
[  101.758632][ T6411]  dev_ioctl+0x78d/0x960
[  101.758686][ T6411]  sock_ioctl+0x593/0x610
[  101.758721][ T6411]  ? __pfx_sock_ioctl+0x10/0x10
[  101.758755][ T6411]  __se_sys_ioctl+0xcb/0x140
[  101.758779][ T6411]  __x64_sys_ioctl+0x43/0x50
[  101.758801][ T6411]  x64_sys_call+0x1816/0x2ff0
[  101.758898][ T6411]  do_syscall_64+0xd2/0x200
[  101.758935][ T6411]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  101.758965][ T6411]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  101.759004][ T6411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.759031][ T6411] RIP: 0033:0x7f2955a8ebe9
[  101.759050][ T6411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.759073][ T6411] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  101.759096][ T6411] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  101.759112][ T6411] RDX: 0000200000000080 RSI: 00000000000089f1 RDI: 0000000000000009
[  101.759145][ T6411] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[  101.759193][ T6411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.759286][ T6411] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  101.759311][ T6411]  </TASK>
[  102.024845][ T6409] loop3: detected capacity change from 0 to 2048
[  102.043326][ T6409] EXT4-fs (loop3): failed to initialize system zone (-117)
[  102.050719][ T6409] EXT4-fs (loop3): mount failed
[  102.220218][ T6436] loop6: detected capacity change from 0 to 128
[  102.241184][ T6436] vfat: Unknown parameter '0000000000000000000000700000000000000000003'
[  102.262374][ T6444] loop3: detected capacity change from 0 to 512
[  102.272125][ T6444] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  102.283432][ T6444] EXT4-fs (loop3): 1 truncate cleaned up
[  102.289628][ T6444] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.319855][ T6441] lo speed is unknown, defaulting to 1000
[  102.351398][ T6447] loop6: detected capacity change from 0 to 1024
[  102.398745][ T6450] loop5: detected capacity change from 0 to 512
[  102.406838][ T6447] EXT4-fs: Ignoring removed i_version option
[  102.410049][ T6450] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  102.412995][ T6447] ext4: Unknown parameter 'subj_user'
[  102.624089][   T30] kauditd_printk_skb: 643 callbacks suppressed
[  102.624108][   T30] audit: type=1326 audit(1757077949.952:7579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6435 comm="syz.6.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ab4febe9 code=0x7ffc0000
[  102.653903][   T30] audit: type=1326 audit(1757077949.952:7580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6435 comm="syz.6.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ab4febe9 code=0x7ffc0000
[  102.690017][ T6450] EXT4-fs (loop5): 1 truncate cleaned up
[  102.690514][   T30] audit: type=1400 audit(1757077950.008:7581): avc:  denied  { unmount } for  pid=5488 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  102.700221][ T6450] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.741387][   T30] audit: type=1326 audit(1757077950.055:7582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2955a8d550 code=0x7ffc0000
[  102.764993][   T30] audit: type=1326 audit(1757077950.055:7583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f2955a8d937 code=0x7ffc0000
[  102.788401][   T30] audit: type=1326 audit(1757077950.055:7584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2955a8d550 code=0x7ffc0000
[  102.811823][   T30] audit: type=1326 audit(1757077950.055:7585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  102.835194][   T30] audit: type=1326 audit(1757077950.055:7586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  102.858656][   T30] audit: type=1326 audit(1757077950.064:7587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  102.881957][   T30] audit: type=1326 audit(1757077950.064:7588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6448 comm="syz.5.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  103.193928][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.250209][ T6466] loop0: detected capacity change from 0 to 512
[  103.257676][ T6466] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  103.270361][ T6466] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  103.289521][ T6466] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  103.303119][ T6476] netlink: 8 bytes leftover after parsing attributes in process `syz.3.992'.
[  103.304168][ T6466] EXT4-fs (loop0): 1 truncate cleaned up
[  103.318050][ T6466] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.349218][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.382660][ T6480] loop0: detected capacity change from 0 to 512
[  103.390776][ T6480] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  103.403448][ T6480] EXT4-fs (loop0): 1 truncate cleaned up
[  103.409675][ T6480] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.601699][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.708019][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.734534][ T6487] netlink: 20 bytes leftover after parsing attributes in process `syz.0.995'.
[  103.942117][ T6497] FAULT_INJECTION: forcing a failure.
[  103.942117][ T6497] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.955474][ T6497] CPU: 0 UID: 0 PID: 6497 Comm: syz.0.1000 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  103.955508][ T6497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.955600][ T6497] Call Trace:
[  103.955607][ T6497]  <TASK>
[  103.955616][ T6497]  __dump_stack+0x1d/0x30
[  103.955641][ T6497]  dump_stack_lvl+0xe8/0x140
[  103.955736][ T6497]  dump_stack+0x15/0x1b
[  103.955756][ T6497]  should_fail_ex+0x265/0x280
[  103.955793][ T6497]  should_fail+0xb/0x20
[  103.955810][ T6497]  should_fail_usercopy+0x1a/0x20
[  103.955836][ T6497]  _copy_from_user+0x1c/0xb0
[  103.955913][ T6497]  ___sys_recvmsg+0xaa/0x370
[  103.955966][ T6497]  ? _parse_integer+0x27/0x40
[  103.955997][ T6497]  do_recvmmsg+0x1ef/0x540
[  103.956071][ T6497]  ? fput+0x8f/0xc0
[  103.956111][ T6497]  __x64_sys_recvmmsg+0xe5/0x170
[  103.956146][ T6497]  x64_sys_call+0x27a6/0x2ff0
[  103.956173][ T6497]  do_syscall_64+0xd2/0x200
[  103.956242][ T6497]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.956272][ T6497]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  103.956308][ T6497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.956336][ T6497] RIP: 0033:0x7f2bb0bfebe9
[  103.956437][ T6497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.956460][ T6497] RSP: 002b:00007f2baf65f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  103.956484][ T6497] RAX: ffffffffffffffda RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfebe9
[  103.956500][ T6497] RDX: 0000000000000001 RSI: 00002000000007c0 RDI: 0000000000000003
[  103.956513][ T6497] RBP: 00007f2baf65f090 R08: 0000000000000000 R09: 0000000000000000
[  103.956558][ T6497] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001
[  103.956570][ T6497] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[  103.956589][ T6497]  </TASK>
[  104.263306][ T6509] loop8: detected capacity change from 0 to 16384
[  104.520299][ T6529] loop3: detected capacity change from 0 to 1024
[  104.536354][ T6530] 9pnet_fd: Insufficient options for proto=fd
[  104.564794][ T6529] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  104.575610][ T6519] loop8: detected capacity change from 16384 to 16383
[  104.575823][ T6529] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  104.598879][ T6531] loop5: detected capacity change from 0 to 512
[  104.606859][ T6525] loop0: detected capacity change from 0 to 1024
[  104.633355][ T6529] JBD2: no valid journal superblock found
[  104.639224][ T6529] EXT4-fs (loop3): Could not load journal inode
[  104.657158][ T6525] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  104.668143][ T6525] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  104.763313][ T6525] JBD2: no valid journal superblock found
[  104.769390][ T6525] EXT4-fs (loop0): Could not load journal inode
[  105.016318][ T6539] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1013'.
[  105.172194][ T6542] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1014'.
[  105.273686][ T6545] loop3: detected capacity change from 0 to 2048
[  105.293883][ T6545] EXT4-fs (loop3): failed to initialize system zone (-117)
[  105.301234][ T6545] EXT4-fs (loop3): mount failed
[  105.317261][ T6553] loop6: detected capacity change from 0 to 512
[  105.326718][ T6553] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities
[  105.390077][ T6563] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1022'.
[  105.399423][ T6560] loop0: detected capacity change from 0 to 1024
[  105.406542][ T6560] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  105.410303][ T6564] loop3: detected capacity change from 0 to 512
[  105.417698][ T6560] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  105.426560][ T6564] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  105.437014][ T6560] JBD2: no valid journal superblock found
[  105.450022][ T6560] EXT4-fs (loop0): Could not load journal inode
[  105.458289][ T6564] EXT4-fs (loop3): 1 truncate cleaned up
[  105.464699][ T6564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.509109][ T6567] loop0: detected capacity change from 0 to 1024
[  105.516294][ T6567] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  105.527441][ T6567] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  105.537957][ T6567] JBD2: no valid journal superblock found
[  105.539542][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.543745][ T6567] EXT4-fs (loop0): Could not load journal inode
[  105.691424][ T6576] loop3: detected capacity change from 0 to 1024
[  105.703648][ T6576] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  105.714667][ T6576] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  105.730978][ T6576] JBD2: no valid journal superblock found
[  105.736787][ T6576] EXT4-fs (loop3): Could not load journal inode
[  105.913231][ T6594] lo speed is unknown, defaulting to 1000
[  106.084671][ T6593] loop5: detected capacity change from 0 to 512
[  106.120969][ T6593] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  106.178343][ T6601] vxcan1: tx address claim with dest, not broadcast
[  106.191925][ T6593] EXT4-fs (loop5): 1 truncate cleaned up
[  106.201329][ T6593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.339565][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.368545][ T6606] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1039'.
[  106.792385][ T6619] usb usb5: usbfs: process 6619 (syz.3.1046) did not claim interface 0 before use
[  106.841018][ T6620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1044'.
[  107.181236][ T6629] loop3: detected capacity change from 0 to 128
[  107.207478][ T6629] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.235755][ T6629] ext4 filesystem being mounted at /231/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  107.511232][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.664364][ T6634] loop0: detected capacity change from 0 to 1024
[  107.680152][ T6634] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  107.691259][ T6634] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  107.740506][ T6634] JBD2: no valid journal superblock found
[  107.746329][ T6634] EXT4-fs (loop0): Could not load journal inode
[  107.869696][ T6640] loop3: detected capacity change from 0 to 512
[  107.894161][ T6640] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  107.908763][ T6650] loop6: detected capacity change from 0 to 764
[  107.924061][ T6640] EXT4-fs (loop3): 1 truncate cleaned up
[  107.930337][ T6640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.953434][ T6650] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  107.973962][ T6650] FAULT_INJECTION: forcing a failure.
[  107.973962][ T6650] name failslab, interval 1, probability 0, space 0, times 0
[  107.986780][ T6650] CPU: 1 UID: 0 PID: 6650 Comm: syz.6.1057 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  107.986826][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.986843][ T6650] Call Trace:
[  107.986901][ T6650]  <TASK>
[  107.986909][ T6650]  __dump_stack+0x1d/0x30
[  107.986940][ T6650]  dump_stack_lvl+0xe8/0x140
[  107.986962][ T6650]  dump_stack+0x15/0x1b
[  107.986983][ T6650]  should_fail_ex+0x265/0x280
[  107.987011][ T6650]  should_failslab+0x8c/0xb0
[  107.987076][ T6650]  kmem_cache_alloc_noprof+0x50/0x310
[  107.987112][ T6650]  ? security_file_alloc+0x32/0x100
[  107.987155][ T6650]  security_file_alloc+0x32/0x100
[  107.987254][ T6650]  init_file+0x5c/0x1d0
[  107.987283][ T6650]  alloc_empty_file+0x8b/0x200
[  107.987316][ T6650]  path_openat+0x68/0x2170
[  107.987342][ T6650]  ? _parse_integer_limit+0x170/0x190
[  107.987414][ T6650]  ? kstrtoull+0x111/0x140
[  107.987433][ T6650]  ? kstrtouint+0x76/0xc0
[  107.987455][ T6650]  do_filp_open+0x109/0x230
[  107.987492][ T6650]  do_sys_openat2+0xa6/0x110
[  107.987606][ T6650]  __x64_sys_openat+0xf2/0x120
[  107.987642][ T6650]  x64_sys_call+0x2e9c/0x2ff0
[  107.987662][ T6650]  do_syscall_64+0xd2/0x200
[  107.987697][ T6650]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  107.987738][ T6650]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  107.987773][ T6650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.987801][ T6650] RIP: 0033:0x7f27ab4febe9
[  107.987888][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.987905][ T6650] RSP: 002b:00007f27a9f5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  107.987930][ T6650] RAX: ffffffffffffffda RBX: 00007f27ab735fa0 RCX: 00007f27ab4febe9
[  107.987946][ T6650] RDX: 0000000000000042 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  107.988027][ T6650] RBP: 00007f27a9f5f090 R08: 0000000000000000 R09: 0000000000000000
[  107.988039][ T6650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.988050][ T6650] R13: 00007f27ab736038 R14: 00007f27ab735fa0 R15: 00007fff1847b178
[  107.988091][ T6650]  </TASK>
[  107.991227][   T30] kauditd_printk_skb: 803 callbacks suppressed
[  107.991240][   T30] audit: type=1326 audit(1757077954.976:8392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0394f4d550 code=0x7ffc0000
[  108.230752][   T30] audit: type=1326 audit(1757077954.976:8393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f0394f4d937 code=0x7ffc0000
[  108.254208][   T30] audit: type=1326 audit(1757077954.976:8394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0394f4d550 code=0x7ffc0000
[  108.277797][   T30] audit: type=1326 audit(1757077954.976:8395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.301577][   T30] audit: type=1326 audit(1757077954.976:8396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.324960][   T30] audit: type=1326 audit(1757077954.976:8397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.348828][   T30] audit: type=1326 audit(1757077954.976:8398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.373972][   T30] audit: type=1326 audit(1757077955.107:8399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.397475][   T30] audit: type=1326 audit(1757077955.107:8400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.420902][   T30] audit: type=1326 audit(1757077955.107:8401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6638 comm="syz.3.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0394f4ebe9 code=0x7ffc0000
[  108.451620][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.493045][ T6663] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  108.499705][ T6663] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  108.507585][ T6663] vhci_hcd vhci_hcd.0: Device attached
[  108.515206][ T6661] loop3: detected capacity change from 0 to 128
[  108.523840][ T6661] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  108.537078][ T6661] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.558263][ T6667] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1063'.
[  108.567792][ T6667] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6667 comm=syz.5.1063
[  108.590730][ T6661] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1060' sets config #1
[  108.615363][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  108.624887][ T6670] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1062'.
[  108.644644][ T6672] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1063'.
[  108.653731][ T6672] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1063'.
[  108.764498][ T6687] loop5: detected capacity change from 0 to 736
[  108.776363][ T3413] usb 13-1: new low-speed USB device number 2 using vhci_hcd
[  108.784457][ T6683] loop3: detected capacity change from 0 to 1024
[  108.792005][ T6683] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  108.803103][ T6683] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  108.803912][ T6688] capability: warning: `syz.2.1069' uses 32-bit capabilities (legacy support in use)
[  108.830188][ T6683] JBD2: no valid journal superblock found
[  108.834002][ T6687] iso9660: Corrupted directory entry in block 0 of inode 1472
[  108.836029][ T6683] EXT4-fs (loop3): Could not load journal inode
[  108.917548][ T6696] FAULT_INJECTION: forcing a failure.
[  108.917548][ T6696] name failslab, interval 1, probability 0, space 0, times 0
[  108.930254][ T6696] CPU: 1 UID: 0 PID: 6696 Comm: syz.0.1074 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  108.930408][ T6696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.930421][ T6696] Call Trace:
[  108.930427][ T6696]  <TASK>
[  108.930435][ T6696]  __dump_stack+0x1d/0x30
[  108.930463][ T6696]  dump_stack_lvl+0xe8/0x140
[  108.930480][ T6696]  dump_stack+0x15/0x1b
[  108.930520][ T6696]  should_fail_ex+0x265/0x280
[  108.930539][ T6696]  should_failslab+0x8c/0xb0
[  108.930562][ T6696]  kmem_cache_alloc_node_noprof+0x57/0x320
[  108.930645][ T6696]  ? __alloc_skb+0x101/0x320
[  108.930663][ T6696]  __alloc_skb+0x101/0x320
[  108.930681][ T6696]  inet6_netconf_notify_devconf+0x10f/0x1d0
[  108.930709][ T6696]  ip6mr_sk_done+0x190/0x1c0
[  108.930734][ T6696]  rawv6_close+0x50/0x60
[  108.930805][ T6696]  inet_release+0xce/0xf0
[  108.930928][ T6696]  inet6_release+0x3e/0x60
[  108.931114][ T6696]  sock_close+0x68/0x150
[  108.931137][ T6696]  ? __pfx_sock_close+0x10/0x10
[  108.931160][ T6696]  __fput+0x298/0x650
[  108.931217][ T6696]  ____fput+0x1c/0x30
[  108.931242][ T6696]  task_work_run+0x131/0x1a0
[  108.931266][ T6696]  exit_to_user_mode_loop+0xe4/0x100
[  108.931285][ T6696]  do_syscall_64+0x1d6/0x200
[  108.931344][ T6696]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  108.931373][ T6696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.931396][ T6696] RIP: 0033:0x7f2bb0bfebe9
[  108.931440][ T6696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.931462][ T6696] RSP: 002b:00007f2baf65f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  108.931479][ T6696] RAX: 0000000000000000 RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfebe9
[  108.931490][ T6696] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003
[  108.931501][ T6696] RBP: 00007f2baf65f090 R08: 0000000000000000 R09: 0000000000000000
[  108.931511][ T6696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.931522][ T6696] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[  108.931560][ T6696]  </TASK>
[  109.163437][ T6703] loop0: detected capacity change from 0 to 128
[  109.172317][ T6703] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.184925][ T6703] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.215193][ T6703] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1076' sets config #1
[  109.241376][ T3308] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  109.383419][ T6664] vhci_hcd: connection reset by peer
[  109.389051][ T6205] vhci_hcd: stop threads
[  109.393360][ T6205] vhci_hcd: release socket
[  109.397930][ T6205] vhci_hcd: disconnect device
[  109.778945][ T6734] lo speed is unknown, defaulting to 1000
[  109.790854][ T6737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1091'.
[  109.823333][ T6739] netlink: 'syz.2.1090': attribute type 13 has an invalid length.
[  109.831269][ T6739] netlink: 'syz.2.1090': attribute type 17 has an invalid length.
[  109.879133][ T6740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1090'.
[  109.890433][ T6740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1090'.
[  109.916194][ T6739] $Hÿ: left promiscuous mode
[  109.921132][ T6739] bond_slave_0: left promiscuous mode
[  109.926751][ T6739] bond_slave_1: left promiscuous mode
[  109.988659][ T6739] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[  110.002816][ T6739] net_ratelimit: 3 callbacks suppressed
[  110.002829][ T6739] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  110.074163][ T6742] loop6: detected capacity change from 0 to 8192
[  110.254147][ T6749] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1094'.
[  110.270733][ T6751] FAULT_INJECTION: forcing a failure.
[  110.270733][ T6751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.283879][ T6751] CPU: 1 UID: 0 PID: 6751 Comm: syz.0.1095 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  110.283910][ T6751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.283922][ T6751] Call Trace:
[  110.283930][ T6751]  <TASK>
[  110.283937][ T6751]  __dump_stack+0x1d/0x30
[  110.284001][ T6751]  dump_stack_lvl+0xe8/0x140
[  110.284021][ T6751]  dump_stack+0x15/0x1b
[  110.284046][ T6751]  should_fail_ex+0x265/0x280
[  110.284069][ T6751]  should_fail+0xb/0x20
[  110.284086][ T6751]  should_fail_usercopy+0x1a/0x20
[  110.284220][ T6751]  _copy_to_user+0x20/0xa0
[  110.284250][ T6751]  simple_read_from_buffer+0xb5/0x130
[  110.284311][ T6751]  proc_fail_nth_read+0x10e/0x150
[  110.284340][ T6751]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  110.284367][ T6751]  vfs_read+0x1a8/0x770
[  110.284389][ T6751]  ? __rcu_read_unlock+0x4f/0x70
[  110.284478][ T6751]  ? __fget_files+0x184/0x1c0
[  110.284506][ T6751]  ksys_read+0xda/0x1a0
[  110.284530][ T6751]  __x64_sys_read+0x40/0x50
[  110.284552][ T6751]  x64_sys_call+0x27bc/0x2ff0
[  110.284621][ T6751]  do_syscall_64+0xd2/0x200
[  110.284721][ T6751]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  110.284746][ T6751]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  110.284775][ T6751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.284826][ T6751] RIP: 0033:0x7f2bb0bfd5fc
[  110.284842][ T6751] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  110.284860][ T6751] RSP: 002b:00007f2baf65f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  110.284922][ T6751] RAX: ffffffffffffffda RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfd5fc
[  110.284935][ T6751] RDX: 000000000000000f RSI: 00007f2baf65f0a0 RDI: 0000000000000005
[  110.284947][ T6751] RBP: 00007f2baf65f090 R08: 0000000000000000 R09: 0000000000000000
[  110.284959][ T6751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.284971][ T6751] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[  110.285046][ T6751]  </TASK>
[  110.579356][ T5117] IPVS: starting estimator thread 0...
[  110.669406][ T6759] netlink: 340 bytes leftover after parsing attributes in process `syz.0.1096'.
[  110.764856][ T6756] IPVS: using max 2640 ests per chain, 132000 per kthread
[  111.223049][ T6774] loop3: detected capacity change from 0 to 2048
[  111.322957][ T6774] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.403697][ T6766] loop0: detected capacity change from 0 to 2048
[  111.674736][ T6766] EXT4-fs (loop0): failed to initialize system zone (-117)
[  111.682286][ T6766] EXT4-fs (loop0): mount failed
[  111.815029][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.890476][ T6808] loop3: detected capacity change from 0 to 512
[  111.913019][ T6808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.929875][ T6808] ext4 filesystem being mounted at /249/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.959289][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.983223][ T1036] IPVS: starting estimator thread 0...
[  112.037570][ T6830] FAULT_INJECTION: forcing a failure.
[  112.037570][ T6830] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.050946][ T6830] CPU: 0 UID: 0 PID: 6830 Comm: syz.0.1120 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.050979][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.050999][ T6830] Call Trace:
[  112.051007][ T6830]  <TASK>
[  112.051016][ T6830]  __dump_stack+0x1d/0x30
[  112.051044][ T6830]  dump_stack_lvl+0xe8/0x140
[  112.051117][ T6830]  dump_stack+0x15/0x1b
[  112.051132][ T6830]  should_fail_ex+0x265/0x280
[  112.051154][ T6830]  should_fail+0xb/0x20
[  112.051170][ T6830]  should_fail_usercopy+0x1a/0x20
[  112.051280][ T6830]  _copy_from_user+0x1c/0xb0
[  112.051316][ T6830]  do_ipv6_setsockopt+0x124/0x2160
[  112.051339][ T6830]  ? _parse_integer+0x27/0x40
[  112.051364][ T6830]  ? kstrtoull+0x111/0x140
[  112.051388][ T6830]  ? __rcu_read_unlock+0x4f/0x70
[  112.051416][ T6830]  ? avc_has_perm_noaudit+0x1b1/0x200
[  112.051473][ T6830]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  112.051578][ T6830]  ipv6_setsockopt+0x59/0x130
[  112.051607][ T6830]  rawv6_setsockopt+0x1d2/0x420
[  112.051684][ T6830]  sock_common_setsockopt+0x69/0x80
[  112.051755][ T6830]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  112.051843][ T6830]  __sys_setsockopt+0x184/0x200
[  112.051865][ T6830]  __x64_sys_setsockopt+0x64/0x80
[  112.051890][ T6830]  x64_sys_call+0x20ec/0x2ff0
[  112.051943][ T6830]  do_syscall_64+0xd2/0x200
[  112.052060][ T6830]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.052084][ T6830]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  112.052154][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.052180][ T6830] RIP: 0033:0x7f2bb0bfebe9
[  112.052197][ T6830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.052216][ T6830] RSP: 002b:00007f2baf65f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  112.052280][ T6830] RAX: ffffffffffffffda RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfebe9
[  112.052294][ T6830] RDX: 00000000000000cc RSI: 0000000000000029 RDI: 0000000000000007
[  112.052309][ T6830] RBP: 00007f2baf65f090 R08: 000000000000005c R09: 0000000000000000
[  112.052322][ T6830] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.052337][ T6830] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[  112.052359][ T6830]  </TASK>
[  112.280113][ T6820] IPVS: using max 2640 ests per chain, 132000 per kthread
[  112.360158][ T6842] __nla_validate_parse: 4 callbacks suppressed
[  112.360179][ T6842] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1124'.
[  112.379178][ T6848] netlink: 14 bytes leftover after parsing attributes in process `syz.5.1127'.
[  112.394566][ T6842] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.403659][ T6842] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.408954][ T6852] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1129'.
[  112.420758][ T6842] loop0: detected capacity change from 0 to 1024
[  112.440522][ T6842] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.481047][ T6859] FAULT_INJECTION: forcing a failure.
[  112.481047][ T6859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.494205][ T6859] CPU: 0 UID: 0 PID: 6859 Comm: syz.6.1131 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.494268][ T6848] loop5: detected capacity change from 0 to 2048
[  112.494294][ T6859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.494307][ T6859] Call Trace:
[  112.494315][ T6859]  <TASK>
[  112.494336][ T6859]  __dump_stack+0x1d/0x30
[  112.494363][ T6859]  dump_stack_lvl+0xe8/0x140
[  112.494389][ T6859]  dump_stack+0x15/0x1b
[  112.494438][ T6859]  should_fail_ex+0x265/0x280
[  112.494468][ T6859]  should_fail+0xb/0x20
[  112.494504][ T6859]  should_fail_usercopy+0x1a/0x20
[  112.494574][ T6859]  _copy_to_user+0x20/0xa0
[  112.494633][ T6859]  simple_read_from_buffer+0xb5/0x130
[  112.494665][ T6859]  proc_fail_nth_read+0x10e/0x150
[  112.494705][ T6859]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  112.494758][ T6859]  vfs_read+0x1a8/0x770
[  112.494787][ T6859]  ? __rcu_read_unlock+0x4f/0x70
[  112.494897][ T6859]  ? __fget_files+0x184/0x1c0
[  112.494935][ T6859]  ksys_read+0xda/0x1a0
[  112.495044][ T6859]  __x64_sys_read+0x40/0x50
[  112.495074][ T6859]  x64_sys_call+0x27bc/0x2ff0
[  112.495103][ T6859]  do_syscall_64+0xd2/0x200
[  112.495195][ T6859]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  112.495250][ T6859]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  112.495293][ T6859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.495323][ T6859] RIP: 0033:0x7f27ab4fd5fc
[  112.495345][ T6859] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  112.495438][ T6859] RSP: 002b:00007f27a9f5f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  112.495463][ T6859] RAX: ffffffffffffffda RBX: 00007f27ab735fa0 RCX: 00007f27ab4fd5fc
[  112.495481][ T6859] RDX: 000000000000000f RSI: 00007f27a9f5f0a0 RDI: 0000000000000009
[  112.495511][ T6859] RBP: 00007f27a9f5f090 R08: 0000000000000000 R09: 0000000000000000
[  112.495528][ T6859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.495547][ T6859] R13: 00007f27ab736038 R14: 00007f27ab735fa0 R15: 00007fff1847b178
[  112.495573][ T6859]  </TASK>
[  112.712292][ T6848] EXT4-fs (loop5): failed to initialize system zone (-117)
[  112.720076][ T6848] EXT4-fs (loop5): mount failed
[  112.810611][ T6872] netlink: 'syz.5.1136': attribute type 1 has an invalid length.
[  112.818435][ T6872] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1136'.
[  112.882609][ T6882] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1141'.
[  112.949362][ T6895] netlink: 14 bytes leftover after parsing attributes in process `syz.5.1146'.
[  113.033103][ T6895] loop5: detected capacity change from 0 to 2048
[  113.043523][ T6895] EXT4-fs (loop5): failed to initialize system zone (-117)
[  113.051173][ T6895] EXT4-fs (loop5): mount failed
[  113.104387][ T6914] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1154'.
[  113.325098][ T6842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.329470][ T6930] loop5: detected capacity change from 0 to 1024
[  113.341915][ T6930] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  113.352947][ T6930] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  113.364026][ T6930] JBD2: no valid journal superblock found
[  113.369813][ T6930] EXT4-fs (loop5): Could not load journal inode
[  113.418152][   T30] kauditd_printk_skb: 323 callbacks suppressed
[  113.418171][   T30] audit: type=1326 audit(1757077960.055:8725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.457649][   T30] audit: type=1326 audit(1757077960.055:8726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.481376][   T30] audit: type=1326 audit(1757077960.055:8727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.484921][ T6938] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1165'.
[  113.505914][   T30] audit: type=1326 audit(1757077960.055:8728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.506030][   T30] audit: type=1326 audit(1757077960.055:8729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.506062][   T30] audit: type=1326 audit(1757077960.055:8730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.506168][   T30] audit: type=1326 audit(1757077960.055:8731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.610483][   T30] audit: type=1326 audit(1757077960.055:8732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.633970][   T30] audit: type=1326 audit(1757077960.055:8733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.658312][   T30] audit: type=1326 audit(1757077960.055:8734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.0.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb0bfebe9 code=0x7ffc0000
[  113.770628][ T6959] lo speed is unknown, defaulting to 1000
[  113.776746][ T6959] lo speed is unknown, defaulting to 1000
[  113.784343][ T6959] lo speed is unknown, defaulting to 1000
[  113.790729][ T6959] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  113.798915][ T6959] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  113.811690][ T6959] lo speed is unknown, defaulting to 1000
[  113.817944][ T6959] lo speed is unknown, defaulting to 1000
[  113.825977][ T6959] lo speed is unknown, defaulting to 1000
[  113.836472][ T6959] lo speed is unknown, defaulting to 1000
[  113.864082][ T6959] lo speed is unknown, defaulting to 1000
[  113.877195][ T6959] lo speed is unknown, defaulting to 1000
[  113.893197][ T6959] lo speed is unknown, defaulting to 1000
[  113.931374][ T6953] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1169'.
[  114.154577][ T3413] usb 13-1: enqueue for inactive port 0
[  114.204357][ T3413] usb 13-1: enqueue for inactive port 0
[  114.324155][ T3413] vhci_hcd: vhci_device speed not set
[  114.945616][ T6985] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1180'.
[  115.029577][ T6991] FAULT_INJECTION: forcing a failure.
[  115.029577][ T6991] name failslab, interval 1, probability 0, space 0, times 0
[  115.042491][ T6991] CPU: 1 UID: 0 PID: 6991 Comm: syz.5.1182 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.042524][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.042539][ T6991] Call Trace:
[  115.042549][ T6991]  <TASK>
[  115.042559][ T6991]  __dump_stack+0x1d/0x30
[  115.042585][ T6991]  dump_stack_lvl+0xe8/0x140
[  115.042687][ T6991]  dump_stack+0x15/0x1b
[  115.042705][ T6991]  should_fail_ex+0x265/0x280
[  115.042729][ T6991]  should_failslab+0x8c/0xb0
[  115.042786][ T6991]  kmem_cache_alloc_noprof+0x50/0x310
[  115.042816][ T6991]  ? skb_clone+0x151/0x1f0
[  115.042930][ T6991]  skb_clone+0x151/0x1f0
[  115.042955][ T6991]  __netlink_deliver_tap+0x2c9/0x500
[  115.042985][ T6991]  netlink_unicast+0x66b/0x690
[  115.043006][ T6991]  netlink_sendmsg+0x58b/0x6b0
[  115.043048][ T6991]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.043145][ T6991]  __sock_sendmsg+0x145/0x180
[  115.043199][ T6991]  ____sys_sendmsg+0x31e/0x4e0
[  115.043233][ T6991]  ___sys_sendmsg+0x17b/0x1d0
[  115.043284][ T6991]  __x64_sys_sendmsg+0xd4/0x160
[  115.043312][ T6991]  x64_sys_call+0x191e/0x2ff0
[  115.043335][ T6991]  do_syscall_64+0xd2/0x200
[  115.043535][ T6991]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.043561][ T6991]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.043697][ T6991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.043720][ T6991] RIP: 0033:0x7f2955a8ebe9
[  115.043738][ T6991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.043759][ T6991] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.043780][ T6991] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  115.043868][ T6991] RDX: 0000000000044080 RSI: 0000200000000040 RDI: 0000000000000003
[  115.043882][ T6991] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[  115.043895][ T6991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.043909][ T6991] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  115.043936][ T6991]  </TASK>
[  115.313914][ T6995] GUP no longer grows the stack in syz.5.1184 (6995): 200000004000-20000000a000 (200000002000)
[  115.324675][ T6995] CPU: 1 UID: 0 PID: 6995 Comm: syz.5.1184 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.324776][ T6995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.324802][ T6995] Call Trace:
[  115.324811][ T6995]  <TASK>
[  115.324820][ T6995]  __dump_stack+0x1d/0x30
[  115.324843][ T6995]  dump_stack_lvl+0xe8/0x140
[  115.324864][ T6995]  dump_stack+0x15/0x1b
[  115.324904][ T6995]  __get_user_pages+0x198d/0x1fa0
[  115.324969][ T6995]  ? __rcu_read_unlock+0x4f/0x70
[  115.325000][ T6995]  get_user_pages_remote+0x1d5/0x6d0
[  115.325038][ T6995]  __access_remote_vm+0x15c/0x590
[  115.325066][ T6995]  access_remote_vm+0x32/0x40
[  115.325242][ T6995]  proc_pid_cmdline_read+0x32b/0x6c0
[  115.325283][ T6995]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  115.325309][ T6995]  vfs_readv+0x3fb/0x690
[  115.325363][ T6995]  __x64_sys_preadv+0xfd/0x1c0
[  115.325455][ T6995]  x64_sys_call+0x282a/0x2ff0
[  115.325483][ T6995]  do_syscall_64+0xd2/0x200
[  115.325527][ T6995]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.325561][ T6995]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.325588][ T6995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.325631][ T6995] RIP: 0033:0x7f2955a8ebe9
[  115.325646][ T6995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.325665][ T6995] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  115.325753][ T6995] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  115.325767][ T6995] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000005
[  115.325779][ T6995] RBP: 00007f2955b11e19 R08: 0000000000000000 R09: 0000000000000000
[  115.325790][ T6995] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  115.325807][ T6995] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  115.325831][ T6995]  </TASK>
[  115.328118][ T6995] netlink: 'syz.5.1184': attribute type 21 has an invalid length.
[  115.440810][ T6999] usb usb5: usbfs: process 6999 (syz.6.1186) did not claim interface 0 before use
[  115.465222][ T6995] netlink: 'syz.5.1184': attribute type 1 has an invalid length.
[  115.494034][ T6995] lo speed is unknown, defaulting to 1000
[  115.780502][ T6995] lo speed is unknown, defaulting to 1000
[  115.929713][ T7016] FAULT_INJECTION: forcing a failure.
[  115.929713][ T7016] name failslab, interval 1, probability 0, space 0, times 0
[  115.942751][ T7016] CPU: 0 UID: 0 PID: 7016 Comm: syz.5.1190 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.942845][ T7016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.942861][ T7016] Call Trace:
[  115.942869][ T7016]  <TASK>
[  115.942877][ T7016]  __dump_stack+0x1d/0x30
[  115.942904][ T7016]  dump_stack_lvl+0xe8/0x140
[  115.942997][ T7016]  dump_stack+0x15/0x1b
[  115.943013][ T7016]  should_fail_ex+0x265/0x280
[  115.943036][ T7016]  ? audit_log_d_path+0x8d/0x150
[  115.943076][ T7016]  should_failslab+0x8c/0xb0
[  115.943168][ T7016]  __kmalloc_cache_noprof+0x4c/0x320
[  115.943211][ T7016]  audit_log_d_path+0x8d/0x150
[  115.943248][ T7016]  audit_log_d_path_exe+0x42/0x70
[  115.943327][ T7016]  audit_log_task+0x1e9/0x250
[  115.943432][ T7016]  audit_seccomp+0x61/0x100
[  115.943463][ T7016]  ? __seccomp_filter+0x68c/0x10d0
[  115.943493][ T7016]  __seccomp_filter+0x69d/0x10d0
[  115.943582][ T7016]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  115.943609][ T7016]  ? vfs_write+0x7e8/0x960
[  115.943642][ T7016]  __secure_computing+0x82/0x150
[  115.943666][ T7016]  syscall_trace_enter+0xcf/0x1e0
[  115.943699][ T7016]  do_syscall_64+0xac/0x200
[  115.943756][ T7016]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.943783][ T7016]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.943818][ T7016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.943854][ T7016] RIP: 0033:0x7f2955a8ebe9
[  115.943872][ T7016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.943891][ T7016] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000123
[  115.943910][ T7016] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  115.943924][ T7016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  115.943987][ T7016] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[  115.944003][ T7016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.944016][ T7016] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  115.944037][ T7016]  </TASK>
[  116.217886][ T7012] loop3: detected capacity change from 0 to 2048
[  116.244872][ T7012] EXT4-fs (loop3): failed to initialize system zone (-117)
[  116.256921][ T7012] EXT4-fs (loop3): mount failed
[  116.375044][ T7034] loop5: detected capacity change from 0 to 4096
[  116.424246][ T7040] loop6: detected capacity change from 0 to 1024
[  116.442424][ T7034] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.457784][ T7040] EXT4-fs: Ignoring removed i_version option
[  116.471985][ T7040] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.472242][ T7036] loop0: detected capacity change from 0 to 8192
[  116.494485][ T7020] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1191: corrupted inode contents
[  116.518495][ T7040] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  116.526774][ T7020] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #15: comm syz.5.1191: mark_inode_dirty error
[  116.539894][ T7020] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1191: corrupted inode contents
[  116.552241][ T7020] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #15: comm syz.5.1191: mark_inode_dirty error
[  116.568948][ T7040] EXT4-fs (loop6): orphan cleanup on readonly fs
[  116.597727][ T7040] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  116.604553][ T7020] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1191: corrupted inode contents
[  116.612294][ T7040] EXT4-fs (loop6): Cannot turn on quotas: error -5
[  116.636884][ T7040] EXT4-fs (loop6): 1 truncate cleaned up
[  116.653536][ T7020] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #15: comm syz.5.1191: mark_inode_dirty error
[  116.686875][ T7020] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1191: corrupted inode contents
[  116.700695][ T7020] EXT4-fs error (device loop5): ext4_truncate:4666: inode #15: comm syz.5.1191: mark_inode_dirty error
[  116.715609][ T7020] EXT4-fs error (device loop5) in ext4_setattr:6071: Corrupt filesystem
[  116.729978][ T7028] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1191: corrupted inode contents
[  116.742120][ T7040] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.793326][ T5338] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  116.810529][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.840944][ T7063] loop3: detected capacity change from 0 to 1024
[  116.858103][ T7063] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  116.869083][ T7063] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  116.890019][ T7063] JBD2: no valid journal superblock found
[  116.895802][ T7063] EXT4-fs (loop3): Could not load journal inode
[  116.906509][ T7075] EXT4-fs error (device loop6): ext4_search_dir:1474: inode #2: block 16: comm syz.6.1197: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  116.951415][ T7075] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  117.107574][ T7102] FAULT_INJECTION: forcing a failure.
[  117.107574][ T7102] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.120768][ T7102] CPU: 1 UID: 0 PID: 7102 Comm: syz.3.1222 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  117.120823][ T7102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.120845][ T7102] Call Trace:
[  117.120854][ T7102]  <TASK>
[  117.120863][ T7102]  __dump_stack+0x1d/0x30
[  117.120891][ T7102]  dump_stack_lvl+0xe8/0x140
[  117.120913][ T7102]  dump_stack+0x15/0x1b
[  117.120998][ T7102]  should_fail_ex+0x265/0x280
[  117.121020][ T7102]  should_fail+0xb/0x20
[  117.121038][ T7102]  should_fail_usercopy+0x1a/0x20
[  117.121061][ T7102]  _copy_from_user+0x1c/0xb0
[  117.121159][ T7102]  __ia32_sys_rt_sigreturn+0x128/0x350
[  117.121195][ T7102]  x64_sys_call+0x2d3c/0x2ff0
[  117.121217][ T7102]  do_syscall_64+0xd2/0x200
[  117.121248][ T7102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.121337][ T7102]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.121443][ T7102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.121465][ T7102] RIP: 0033:0x7f0394eeadb9
[  117.121567][ T7102] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  117.121586][ T7102] RSP: 002b:00007f03939aea80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  117.121605][ T7102] RAX: ffffffffffffffda RBX: 00007f0395185fa0 RCX: 00007f0394eeadb9
[  117.121618][ T7102] RDX: 00007f03939aea80 RSI: 00007f03939aebb0 RDI: 0000000000000021
[  117.121641][ T7102] RBP: 00007f03939af090 R08: 0000000000000000 R09: 0000000000000000
[  117.121653][ T7102] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  117.121665][ T7102] R13: 00007f0395186038 R14: 00007f0395185fa0 R15: 00007ffd8d08fd08
[  117.121685][ T7102]  </TASK>
[  117.343795][ T5488] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.354568][ T7110] loop0: detected capacity change from 0 to 1024
[  117.363069][ T7110] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  117.374099][ T7110] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  117.386181][ T7110] JBD2: no valid journal superblock found
[  117.392009][ T7110] EXT4-fs (loop0): Could not load journal inode
[  117.435680][ T7117] loop0: detected capacity change from 0 to 512
[  117.442444][ T7117] EXT4-fs: Ignoring removed nobh option
[  117.458764][ T7117] EXT4-fs (loop0): orphan cleanup on readonly fs
[  117.467858][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.1230: corrupted inode contents
[  117.480699][ T7117] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.1230: mark_inode_dirty error
[  117.493729][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.1230: corrupted inode contents
[  117.506842][ T7117] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.1230: mark_inode_dirty error
[  117.530910][ T7124] 9pnet_fd: Insufficient options for proto=fd
[  117.531781][ T7117] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1230: Failed to acquire dquot type 0
[  117.549436][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1230: corrupted inode contents
[  117.561630][ T7117] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.1230: mark_inode_dirty error
[  117.584515][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1230: corrupted inode contents
[  117.598038][ T7117] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.1230: mark_inode_dirty error
[  117.609782][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1230: corrupted inode contents
[  117.623275][ T7117] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  117.632303][ T7117] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1230: corrupted inode contents
[  117.648540][ T7117] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.1230: mark_inode_dirty error
[  117.661608][ T7117] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  117.677636][ T7117] EXT4-fs (loop0): 1 truncate cleaned up
[  117.683813][ T7117] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.763328][ T7129] __nla_validate_parse: 8 callbacks suppressed
[  117.763347][ T7129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1230'.
[  117.806171][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.049949][ T7146] IPv6: Can't replace route, no match found
[  118.107722][ T7154] 9pnet_fd: Insufficient options for proto=fd
[  118.184975][ T7164] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1245'.
[  118.215217][ T7162] loop0: detected capacity change from 0 to 8192
[  118.771381][   T30] kauditd_printk_skb: 415 callbacks suppressed
[  118.771398][   T30] audit: type=1400 audit(1757077965.061:9147): avc:  denied  { create } for  pid=7173 comm="syz.3.1252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1
[  118.801094][ T7174] loop3: detected capacity change from 0 to 164
[  118.809308][ T7174] iso9660: Unknown parameter '0000000000000000000000300000000000000000000ÿÿÿÿ'
[  118.824749][   T30] audit: type=1400 audit(1757077965.117:9148): avc:  denied  { setopt } for  pid=7179 comm="syz.6.1253" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  118.854237][ T7180] loop6: detected capacity change from 0 to 1024
[  118.868751][ T7182] syz_tun: entered allmulticast mode
[  118.875507][   T30] audit: type=1400 audit(1757077965.154:9149): avc:  denied  { create } for  pid=7181 comm="syz.3.1254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  118.901218][ T7182] syz_tun: left allmulticast mode
[  118.907184][   T30] audit: type=1400 audit(1757077965.163:9150): avc:  denied  { ioctl } for  pid=7181 comm="syz.3.1254" path="socket:[17344]" dev="sockfs" ino=17344 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  118.933275][   T30] audit: type=1400 audit(1757077965.163:9151): avc:  denied  { setopt } for  pid=7181 comm="syz.3.1254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  118.942326][ T7180] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.952711][   T30] audit: type=1400 audit(1757077965.163:9152): avc:  denied  { bind } for  pid=7181 comm="syz.3.1254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  118.989243][   T30] audit: type=1400 audit(1757077965.266:9153): avc:  denied  { add_name } for  pid=7179 comm="syz.6.1253" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  119.010433][   T30] audit: type=1400 audit(1757077965.266:9154): avc:  denied  { create } for  pid=7179 comm="syz.6.1253" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  119.054652][ T7180] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4183: comm syz.6.1253: Allocating blocks 449-513 which overlap fs metadata
[  119.068794][   T30] audit: type=1400 audit(1757077965.313:9155): avc:  denied  { read write } for  pid=7179 comm="syz.6.1253" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  119.091722][   T30] audit: type=1400 audit(1757077965.313:9156): avc:  denied  { open } for  pid=7179 comm="syz.6.1253" path="/108/file1/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  119.127952][ T7179] EXT4-fs (loop6): pa ffff888107161930: logic 48, phys. 177, len 21
[  119.136118][ T7179] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  119.152394][ T7191] 9pnet_fd: Insufficient options for proto=fd
[  119.162139][ T5488] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.288377][ T7210] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1266'.
[  119.459191][ T7213] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1267'.
[  119.479910][ T7217] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=65535 sclass=netlink_audit_socket pid=7217 comm=syz.3.1268
[  119.522708][ T7219] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1269'.
[  119.647999][ T7239] 9pnet_fd: Insufficient options for proto=fd
[  119.656725][ T7241] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1279'.
[  119.686011][ T7246] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1273'.
[  119.725703][ T7252] loop3: detected capacity change from 0 to 512
[  119.739289][ T7252] EXT4-fs (loop3): orphan cleanup on readonly fs
[  119.746791][ T7252] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1283: bad orphan inode 13
[  119.759107][ T7252] ext4_test_bit(bit=12, block=18) = 1
[  119.764661][ T7252] is_bad_inode(inode)=0
[  119.769238][ T7252] NEXT_ORPHAN(inode)=2130706432
[  119.774319][ T7252] max_ino=32
[  119.777598][ T7252] i_nlink=1
[  119.782915][ T7252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.798222][ T7250] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  119.822715][ T7245] loop0: detected capacity change from 0 to 512
[  119.843168][ T7250] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  119.855068][ T7250] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz.3.1283: deleted inode referenced: 12
[  119.873066][ T7245] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.885914][ T7245] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.983669][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.009006][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.210387][ T7280] loop5: detected capacity change from 0 to 8192
[  120.343573][ T7296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1299'.
[  121.212249][ T7329] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  121.219083][ T7329] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  121.227148][ T7329] vhci_hcd vhci_hcd.0: Device attached
[  121.233504][ T7327] hub 6-0:1.0: USB hub found
[  121.238227][ T7330] vhci_hcd: connection closed
[  121.238347][ T7327] hub 6-0:1.0: 8 ports detected
[  121.238632][ T6187] vhci_hcd: stop threads
[  121.252413][ T6187] vhci_hcd: release socket
[  121.256920][ T6187] vhci_hcd: disconnect device
[  121.363156][ T7339] loop5: detected capacity change from 0 to 8192
[  121.372952][ T7339] netlink: 'syz.5.1315': attribute type 34 has an invalid length.
[  121.391827][ T7353] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1320'.
[  121.520269][ T7362] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.528737][ T7362] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.539833][ T7362] bridge0: entered allmulticast mode
[  121.586525][ T7368] netlink: 'syz.5.1326': attribute type 1 has an invalid length.
[  121.594411][ T7368] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1326'.
[  121.609770][ T7362] bridge_slave_1: left allmulticast mode
[  121.615860][ T7362] bridge_slave_1: left promiscuous mode
[  121.621768][ T7362] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.627838][ T7370] FAULT_INJECTION: forcing a failure.
[  121.627838][ T7370] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.642054][ T7370] CPU: 0 UID: 0 PID: 7370 Comm: syz.0.1327 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  121.642084][ T7370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  121.642096][ T7370] Call Trace:
[  121.642109][ T7370]  <TASK>
[  121.642116][ T7370]  __dump_stack+0x1d/0x30
[  121.642144][ T7370]  dump_stack_lvl+0xe8/0x140
[  121.642169][ T7370]  dump_stack+0x15/0x1b
[  121.642185][ T7370]  should_fail_ex+0x265/0x280
[  121.642205][ T7370]  should_fail+0xb/0x20
[  121.642236][ T7370]  should_fail_usercopy+0x1a/0x20
[  121.642258][ T7370]  _copy_from_user+0x1c/0xb0
[  121.642295][ T7370]  ___sys_sendmsg+0xc1/0x1d0
[  121.642342][ T7370]  __x64_sys_sendmsg+0xd4/0x160
[  121.642376][ T7370]  x64_sys_call+0x191e/0x2ff0
[  121.642403][ T7370]  do_syscall_64+0xd2/0x200
[  121.642433][ T7370]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  121.642532][ T7370]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  121.642566][ T7370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.642588][ T7370] RIP: 0033:0x7f2bb0bfebe9
[  121.642603][ T7370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.642620][ T7370] RSP: 002b:00007f2baf65f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.642671][ T7370] RAX: ffffffffffffffda RBX: 00007f2bb0e35fa0 RCX: 00007f2bb0bfebe9
[  121.642689][ T7370] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  121.642702][ T7370] RBP: 00007f2baf65f090 R08: 0000000000000000 R09: 0000000000000000
[  121.642717][ T7370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.642732][ T7370] R13: 00007f2bb0e36038 R14: 00007f2bb0e35fa0 R15: 00007ffd9b209b78
[  121.642756][ T7370]  </TASK>
[  121.646012][ T7362] bridge_slave_0: left allmulticast mode
[  121.826840][ T7362] bridge_slave_0: left promiscuous mode
[  121.832932][ T7362] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.861297][ T7380] netlink: 'syz.3.1331': attribute type 10 has an invalid length.
[  121.922533][ T7389] loop3: detected capacity change from 0 to 512
[  121.930950][ T7389] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1331: invalid block
[  121.946188][ T7389] EXT4-fs (loop3): Remounting filesystem read-only
[  121.953002][ T7389] EXT4-fs (loop3): 2 truncates cleaned up
[  121.963748][ T7389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.981860][ T7372] wireguard0: entered promiscuous mode
[  121.987456][ T7372] wireguard0: entered allmulticast mode
[  122.121022][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.179177][ T7403] loop3: detected capacity change from 0 to 8192
[  122.544514][ T7414] FAULT_INJECTION: forcing a failure.
[  122.544514][ T7414] name failslab, interval 1, probability 0, space 0, times 0
[  122.557295][ T7414] CPU: 0 UID: 0 PID: 7414 Comm: syz.5.1344 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.557329][ T7414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.557345][ T7414] Call Trace:
[  122.557354][ T7414]  <TASK>
[  122.557363][ T7414]  __dump_stack+0x1d/0x30
[  122.557386][ T7414]  dump_stack_lvl+0xe8/0x140
[  122.557411][ T7414]  dump_stack+0x15/0x1b
[  122.557428][ T7414]  should_fail_ex+0x265/0x280
[  122.557450][ T7414]  should_failslab+0x8c/0xb0
[  122.557476][ T7414]  kmem_cache_alloc_noprof+0x50/0x310
[  122.557511][ T7414]  ? mas_alloc_nodes+0x265/0x520
[  122.557544][ T7414]  mas_alloc_nodes+0x265/0x520
[  122.557577][ T7414]  mas_preallocate+0x33e/0x520
[  122.557610][ T7414]  __split_vma+0x240/0x650
[  122.557641][ T7414]  vma_modify+0x3f2/0xc80
[  122.557664][ T7414]  ? path_openat+0x1bf8/0x2170
[  122.557684][ T7414]  vma_modify_flags+0x101/0x130
[  122.557713][ T7414]  mprotect_fixup+0x2cc/0x570
[  122.557744][ T7414]  do_mprotect_pkey+0x6d6/0x980
[  122.557783][ T7414]  __x64_sys_mprotect+0x48/0x60
[  122.557808][ T7414]  x64_sys_call+0x274e/0x2ff0
[  122.557829][ T7414]  do_syscall_64+0xd2/0x200
[  122.557859][ T7414]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  122.557883][ T7414]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  122.557911][ T7414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.557932][ T7414] RIP: 0033:0x7f2955a8ebe9
[  122.557947][ T7414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.557966][ T7414] RSP: 002b:00007f29544ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a
[  122.557996][ T7414] RAX: ffffffffffffffda RBX: 00007f2955cc5fa0 RCX: 00007f2955a8ebe9
[  122.558009][ T7414] RDX: 0000000000000008 RSI: 0000000000800000 RDI: 0000200000000000
[  122.558021][ T7414] RBP: 00007f29544ef090 R08: 0000000000000000 R09: 0000000000000000
[  122.558033][ T7414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.558045][ T7414] R13: 00007f2955cc6038 R14: 00007f2955cc5fa0 R15: 00007ffc6bc74678
[  122.558064][ T7414]  </TASK>
[  122.834910][ T6187] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  122.861090][ T6187] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  122.882434][ T6187] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  122.897976][ T6164] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  122.944320][ T7448] loop5: detected capacity change from 0 to 512
[  122.952292][ T7448] EXT4-fs (loop5): orphan cleanup on readonly fs
[  122.958759][ T7448] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.1357: iget: bad extended attribute block 1
[  122.974181][ T7448] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1357: couldn't read orphan inode 15 (err -117)
[  122.987071][ T7448] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  123.023218][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.102518][ T7443] loop3: detected capacity change from 0 to 8192
[  123.107527][ T7452] netlink: 'syz.2.1359': attribute type 10 has an invalid length.
[  123.118734][ T7452] __nla_validate_parse: 12 callbacks suppressed
[  123.118792][ T7452] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1359'.
[  123.143937][ T7457] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1360'.
[  123.175338][ T7452] dummy0: entered promiscuous mode
[  123.191920][ T7452] bridge0: port 3(dummy0) entered blocking state
[  123.199555][ T7452] bridge0: port 3(dummy0) entered disabled state
[  123.208746][ T7452] dummy0: entered allmulticast mode
[  123.224642][ T7452] bridge0: port 3(dummy0) entered blocking state
[  123.231739][ T7452] bridge0: port 3(dummy0) entered forwarding state
[  123.694557][ T7469] loop0: detected capacity change from 0 to 8192
[  124.113273][ T7483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1367'.
[  124.144369][   T30] kauditd_printk_skb: 275 callbacks suppressed
[  124.144403][   T30] audit: type=1400 audit(1757077970.084:9432): avc:  denied  { create } for  pid=7484 comm="syz.6.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.174666][   T30] audit: type=1400 audit(1757077970.112:9433): avc:  denied  { setopt } for  pid=7484 comm="syz.6.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.194731][   T30] audit: type=1400 audit(1757077970.112:9434): avc:  denied  { ioctl } for  pid=7484 comm="syz.6.1368" path="socket:[18767]" dev="sockfs" ino=18767 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.279257][   T30] audit: type=1400 audit(1757077970.159:9435): avc:  denied  { bind } for  pid=7484 comm="syz.6.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.298797][   T30] audit: type=1400 audit(1757077970.159:9436): avc:  denied  { listen } for  pid=7484 comm="syz.6.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.318838][   T30] audit: type=1400 audit(1757077970.159:9437): avc:  denied  { connect } for  pid=7484 comm="syz.6.1368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.338663][   T30] audit: type=1400 audit(1757077970.159:9438): avc:  denied  { write } for  pid=7484 comm="syz.6.1368" path="socket:[18770]" dev="sockfs" ino=18770 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.460350][   T30] audit: type=1326 audit(1757077970.384:9439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7498 comm="syz.5.1373" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x0
[  124.591251][ T7503] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1373'.
[  124.626200][   T30] audit: type=1326 audit(1757077970.533:9440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7505 comm="syz.2.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  124.649805][   T30] audit: type=1326 audit(1757077970.533:9441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7505 comm="syz.2.1376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  124.703748][ T7512] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1378'.
[  124.715572][ T7514] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1379'.
[  124.757274][ T7521] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1382'.
[  124.932657][ T7530] loop0: detected capacity change from 0 to 8192
[  125.148305][ T7545] loop6: detected capacity change from 0 to 1764
[  125.721486][ T7562] loop5: detected capacity change from 0 to 8192
[  125.749564][ T7570] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1400'.
[  126.043236][ T7577] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1402'.
[  126.257985][ T7579] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1403'.
[  126.453342][ T7591] loop6: detected capacity change from 0 to 512
[  126.462778][ T7591] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  126.475858][ T7591] EXT4-fs (loop6): 1 truncate cleaned up
[  126.482202][ T7591] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.618298][ T7597] loop0: detected capacity change from 0 to 512
[  126.640792][ T7597] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  126.677846][ T7597] EXT4-fs (loop0): 1 truncate cleaned up
[  126.684288][ T7597] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.931728][ T7612] loop3: detected capacity change from 0 to 8192
[  127.122207][ T5488] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.353678][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.479303][ T7634] 9pnet_fd: Insufficient options for proto=fd
[  127.544516][ T7639] lo speed is unknown, defaulting to 1000
[  127.593089][ T7639] lo speed is unknown, defaulting to 1000
[  127.604473][ T7645] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  127.611144][ T7645] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  127.618758][ T7645] vhci_hcd vhci_hcd.0: Device attached
[  127.711480][ T7657] usb usb5: usbfs: process 7657 (syz.5.1432) did not claim interface 0 before use
[  127.737143][ T7660] loop3: detected capacity change from 0 to 764
[  127.746523][ T7660] rock: directory entry would overflow storage
[  127.752902][ T7660] rock: sig=0x5245, size=8, remaining=5
[  127.888863][ T3406] usb 1-1: new low-speed USB device number 4 using vhci_hcd
[  127.906856][ T7666] loop5: detected capacity change from 0 to 2048
[  127.926073][ T7666] EXT4-fs (loop5): failed to initialize system zone (-117)
[  127.937031][ T7666] EXT4-fs (loop5): mount failed
[  127.965392][ T7668] loop3: detected capacity change from 0 to 8192
[  128.499450][ T7646] vhci_hcd: connection reset by peer
[  128.540676][ T6174] vhci_hcd: stop threads
[  128.545006][ T6174] vhci_hcd: release socket
[  128.549508][ T6174] vhci_hcd: disconnect device
[  128.618289][ T7698] __nla_validate_parse: 3 callbacks suppressed
[  128.618309][ T7698] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1448'.
[  128.640634][ T7701] netlink: 14 bytes leftover after parsing attributes in process `syz.6.1449'.
[  128.750202][ T7701] loop6: detected capacity change from 0 to 2048
[  128.758156][ T7696] loop5: detected capacity change from 0 to 8192
[  128.777481][ T7701] EXT4-fs (loop6): failed to initialize system zone (-117)
[  128.785166][ T7701] EXT4-fs (loop6): mount failed
[  128.879981][ T7706] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1451'.
[  128.903144][ T7708] 9pnet_fd: Insufficient options for proto=fd
[  128.950031][ T7714] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1455'.
[  129.219022][ T7726] loop3: detected capacity change from 0 to 8192
[  129.366137][ T7742] 9pnet_fd: Insufficient options for proto=fd
[  129.368099][ T7735] loop0: detected capacity change from 0 to 8192
[  129.440399][ T7748] FAULT_INJECTION: forcing a failure.
[  129.440399][ T7748] name failslab, interval 1, probability 0, space 0, times 0
[  129.453231][ T7748] CPU: 1 UID: 0 PID: 7748 Comm: syz.6.1468 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  129.453294][ T7748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  129.453311][ T7748] Call Trace:
[  129.453320][ T7748]  <TASK>
[  129.453343][ T7748]  __dump_stack+0x1d/0x30
[  129.453372][ T7748]  dump_stack_lvl+0xe8/0x140
[  129.453393][ T7748]  dump_stack+0x15/0x1b
[  129.453425][ T7748]  should_fail_ex+0x265/0x280
[  129.453447][ T7748]  should_failslab+0x8c/0xb0
[  129.453480][ T7748]  kmem_cache_alloc_node_noprof+0x57/0x320
[  129.453513][ T7748]  ? __alloc_skb+0x101/0x320
[  129.453546][ T7748]  __alloc_skb+0x101/0x320
[  129.453565][ T7748]  netlink_alloc_large_skb+0xba/0xf0
[  129.453607][ T7748]  netlink_sendmsg+0x3cf/0x6b0
[  129.453686][ T7748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.453712][ T7748]  __sock_sendmsg+0x145/0x180
[  129.453741][ T7748]  ____sys_sendmsg+0x31e/0x4e0
[  129.453789][ T7748]  ___sys_sendmsg+0x17b/0x1d0
[  129.453828][ T7748]  __x64_sys_sendmsg+0xd4/0x160
[  129.453864][ T7748]  x64_sys_call+0x191e/0x2ff0
[  129.453892][ T7748]  do_syscall_64+0xd2/0x200
[  129.453947][ T7748]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  129.453970][ T7748]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  129.454005][ T7748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.454093][ T7748] RIP: 0033:0x7f27ab4febe9
[  129.454113][ T7748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.454137][ T7748] RSP: 002b:00007f27a9f5f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  129.454232][ T7748] RAX: ffffffffffffffda RBX: 00007f27ab735fa0 RCX: 00007f27ab4febe9
[  129.454246][ T7748] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[  129.454259][ T7748] RBP: 00007f27a9f5f090 R08: 0000000000000000 R09: 0000000000000000
[  129.454270][ T7748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.454284][ T7748] R13: 00007f27ab736038 R14: 00007f27ab735fa0 R15: 00007fff1847b178
[  129.454306][ T7748]  </TASK>
[  129.663391][ T7750] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1469'.
[  129.674782][   T30] kauditd_printk_skb: 861 callbacks suppressed
[  129.674801][   T30] audit: type=1326 audit(1757077975.258:10303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.704769][   T30] audit: type=1326 audit(1757077975.258:10304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.728484][   T30] audit: type=1326 audit(1757077975.258:10305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.752078][   T30] audit: type=1326 audit(1757077975.258:10306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.775662][   T30] audit: type=1326 audit(1757077975.258:10307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.799822][   T30] audit: type=1326 audit(1757077975.258:10308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.836825][   T30] audit: type=1326 audit(1757077975.258:10309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.860427][   T30] audit: type=1326 audit(1757077975.258:10310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.884052][   T30] audit: type=1326 audit(1757077975.258:10311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  129.907707][   T30] audit: type=1326 audit(1757077975.258:10312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7749 comm="syz.5.1469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2955a8ebe9 code=0x7ffc0000
[  130.061235][ T7768] 9pnet_fd: Insufficient options for proto=fd
[  130.077435][ T7766] netlink: 'syz.5.1477': attribute type 10 has an invalid length.
[  130.085589][ T7766] netlink: 55 bytes leftover after parsing attributes in process `syz.5.1477'.
[  130.171076][ T7771] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1477'.
[  130.297732][ T7771] loop5: detected capacity change from 0 to 512
[  130.377159][ T7771] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.1477: invalid block
[  130.393202][ T7771] EXT4-fs (loop5): Remounting filesystem read-only
[  130.408289][ T7771] EXT4-fs (loop5): 2 truncates cleaned up
[  130.414914][ T7771] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.469847][ T7791] loop6: detected capacity change from 0 to 8192
[  130.512375][ T7796] loop3: detected capacity change from 0 to 8192
[  130.527250][ T7801] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1488'.
[  130.569515][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.628079][ T7805] netlink: 'syz.0.1490': attribute type 10 has an invalid length.
[  130.783885][ T7805] lo speed is unknown, defaulting to 1000
[  130.820978][ T7805] lo speed is unknown, defaulting to 1000
[  131.094281][ T7830] netlink: 'syz.2.1499': attribute type 1 has an invalid length.
[  131.161727][ T7832] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1500'.
[  131.198543][ T7834] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1501'.
[  131.225290][ T7838] usb usb5: usbfs: process 7838 (syz.5.1503) did not claim interface 0 before use
[  131.331933][ T7849] loop0: detected capacity change from 0 to 512
[  131.347622][ T7849] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  131.461749][ T7843] loop6: detected capacity change from 0 to 8192
[  131.484164][ T7849] EXT4-fs (loop0): 1 truncate cleaned up
[  131.490392][ T7849] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.891302][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.031812][ T7899] 9pnet_fd: Insufficient options for proto=fd
[  132.065124][ T7896] loop3: detected capacity change from 0 to 8192
[  132.289233][ T7908] netlink: 'syz.3.1532': attribute type 10 has an invalid length.
[  132.305874][ T7908] loop3: detected capacity change from 0 to 512
[  132.316600][ T7908] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1532: invalid block
[  132.329430][ T7908] EXT4-fs (loop3): Remounting filesystem read-only
[  132.338565][ T7908] EXT4-fs (loop3): 2 truncates cleaned up
[  132.344722][ T7908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.369168][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.446353][ T7917] loop3: detected capacity change from 0 to 1024
[  132.455749][ T7917] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  132.467008][ T7917] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  132.479296][ T7917] JBD2: no valid journal superblock found
[  132.485178][ T7917] EXT4-fs (loop3): Could not load journal inode
[  132.682857][ T7931] loop0: detected capacity change from 0 to 8192
[  133.308070][ T3406] usb 1-1: enqueue for inactive port 0
[  133.317185][ T3406] usb 1-1: enqueue for inactive port 0
[  133.393603][ T3406] vhci_hcd: vhci_device speed not set
[  134.082290][ T8026] __nla_validate_parse: 9 callbacks suppressed
[  134.082307][ T8026] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1582'.
[  134.133900][ T8030] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1585'.
[  134.699667][ T8053] FAULT_INJECTION: forcing a failure.
[  134.699667][ T8053] name failslab, interval 1, probability 0, space 0, times 0
[  134.712699][ T8053] CPU: 1 UID: 0 PID: 8053 Comm: syz.3.1596 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  134.712734][ T8053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.712747][ T8053] Call Trace:
[  134.712754][ T8053]  <TASK>
[  134.712782][ T8053]  __dump_stack+0x1d/0x30
[  134.712825][ T8053]  dump_stack_lvl+0xe8/0x140
[  134.712847][ T8053]  dump_stack+0x15/0x1b
[  134.712868][ T8053]  should_fail_ex+0x265/0x280
[  134.712943][ T8053]  should_failslab+0x8c/0xb0
[  134.712975][ T8053]  __kmalloc_noprof+0xa5/0x3e0
[  134.713009][ T8053]  ? alloc_pipe_info+0x1c9/0x350
[  134.713041][ T8053]  alloc_pipe_info+0x1c9/0x350
[  134.713064][ T8053]  splice_direct_to_actor+0x592/0x680
[  134.713088][ T8053]  ? kstrtouint_from_user+0x9f/0xf0
[  134.713177][ T8053]  ? __pfx_direct_splice_actor+0x10/0x10
[  134.713202][ T8053]  ? __rcu_read_unlock+0x4f/0x70
[  134.713227][ T8053]  ? get_pid_task+0x96/0xd0
[  134.713246][ T8053]  ? avc_policy_seqno+0x15/0x30
[  134.713321][ T8053]  ? selinux_file_permission+0x1e4/0x320
[  134.713343][ T8053]  do_splice_direct+0xda/0x150
[  134.713424][ T8053]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  134.713455][ T8053]  do_sendfile+0x380/0x650
[  134.713489][ T8053]  __x64_sys_sendfile64+0x105/0x150
[  134.713574][ T8053]  x64_sys_call+0x2bb0/0x2ff0
[  134.713601][ T8053]  do_syscall_64+0xd2/0x200
[  134.713639][ T8053]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  134.713718][ T8053]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  134.713748][ T8053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.713812][ T8053] RIP: 0033:0x7f0394f4ebe9
[  134.713827][ T8053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.713845][ T8053] RSP: 002b:00007f03939af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  134.713868][ T8053] RAX: ffffffffffffffda RBX: 00007f0395185fa0 RCX: 00007f0394f4ebe9
[  134.713884][ T8053] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  134.713899][ T8053] RBP: 00007f03939af090 R08: 0000000000000000 R09: 0000000000000000
[  134.713963][ T8053] R10: 0000000000000043 R11: 0000000000000246 R12: 0000000000000001
[  134.713974][ T8053] R13: 00007f0395186038 R14: 00007f0395185fa0 R15: 00007ffd8d08fd08
[  134.713997][ T8053]  </TASK>
[  135.041576][   T30] kauditd_printk_skb: 646 callbacks suppressed
[  135.041592][   T30] audit: type=1326 audit(1757077980.281:10959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.074449][   T30] audit: type=1326 audit(1757077980.281:10960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.098331][   T30] audit: type=1326 audit(1757077980.281:10961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.122188][   T30] audit: type=1326 audit(1757077980.281:10962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.146186][   T30] audit: type=1326 audit(1757077980.281:10963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.169636][   T30] audit: type=1326 audit(1757077980.281:10964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.193352][   T30] audit: type=1326 audit(1757077980.281:10965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.217091][   T30] audit: type=1326 audit(1757077980.281:10966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.240634][   T30] audit: type=1326 audit(1757077980.281:10967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.264214][   T30] audit: type=1326 audit(1757077980.281:10968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8069 comm="syz.2.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe680ebe9 code=0x7ffc0000
[  135.323056][ T8075] netlink: 'syz.3.1605': attribute type 10 has an invalid length.
[  135.331053][ T8075] netlink: 55 bytes leftover after parsing attributes in process `syz.3.1605'.
[  135.350031][ T8075] loop3: detected capacity change from 0 to 512
[  135.375831][ T8082] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1608'.
[  135.376936][ T8075] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1605: invalid block
[  135.397825][ T8075] EXT4-fs (loop3): Remounting filesystem read-only
[  135.406988][ T8075] EXT4-fs (loop3): 2 truncates cleaned up
[  135.413432][ T8075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.452585][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.463175][ T8084] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1606'.
[  135.845838][ T8100] netlink: 'syz.3.1614': attribute type 1 has an invalid length.
[  135.887694][ T8100] 8021q: adding VLAN 0 to HW filter on device bond1
[  136.485392][ T8146] loop6: detected capacity change from 0 to 1024
[  136.499691][ T8146] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  136.510818][ T8146] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  136.522282][ T8146] JBD2: no valid journal superblock found
[  136.528112][ T8146] EXT4-fs (loop6): Could not load journal inode
[  136.554860][ T8156] netlink: 'syz.5.1636': attribute type 10 has an invalid length.
[  136.562792][ T8156] netlink: 55 bytes leftover after parsing attributes in process `syz.5.1636'.
[  136.583965][ T8156] loop5: detected capacity change from 0 to 512
[  136.607688][ T8156] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.1636: invalid block
[  136.651327][ T8155] loop0: detected capacity change from 0 to 8192
[  136.679279][ T8156] EXT4-fs (loop5): Remounting filesystem read-only
[  136.686054][ T8156] EXT4-fs (loop5): 2 truncates cleaned up
[  136.692493][ T8156] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.822629][ T5338] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.318956][ T8197] FAULT_INJECTION: forcing a failure.
[  137.318956][ T8197] name failslab, interval 1, probability 0, space 0, times 0
[  137.331964][ T8197] CPU: 1 UID: 0 PID: 8197 Comm: syz.6.1652 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  137.332012][ T8197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  137.332025][ T8197] Call Trace:
[  137.332030][ T8197]  <TASK>
[  137.332037][ T8197]  __dump_stack+0x1d/0x30
[  137.332065][ T8197]  dump_stack_lvl+0xe8/0x140
[  137.332090][ T8197]  dump_stack+0x15/0x1b
[  137.332111][ T8197]  should_fail_ex+0x265/0x280
[  137.332138][ T8197]  should_failslab+0x8c/0xb0
[  137.332210][ T8197]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  137.332292][ T8197]  ? sidtab_sid2str_get+0xa0/0x130
[  137.332322][ T8197]  kmemdup_noprof+0x2b/0x70
[  137.332432][ T8197]  sidtab_sid2str_get+0xa0/0x130
[  137.332510][ T8197]  security_sid_to_context_core+0x1eb/0x2e0
[  137.332539][ T8197]  security_sid_to_context+0x27/0x40
[  137.332563][ T8197]  selinux_lsmprop_to_secctx+0x67/0xf0
[  137.332668][ T8197]  security_lsmprop_to_secctx+0x43/0x80
[  137.332725][ T8197]  audit_log_task_context+0x77/0x190
[  137.332761][ T8197]  audit_log_task+0xf4/0x250
[  137.332797][ T8197]  audit_seccomp+0x61/0x100
[  137.332869][ T8197]  ? __seccomp_filter+0x68c/0x10d0
[  137.332905][ T8197]  __seccomp_filter+0x69d/0x10d0
[  137.332930][ T8197]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  137.332971][ T8197]  ? vfs_write+0x7e8/0x960
[  137.332999][ T8197]  ? __rcu_read_unlock+0x4f/0x70
[  137.333083][ T8197]  ? __fget_files+0x184/0x1c0
[  137.333118][ T8197]  __secure_computing+0x82/0x150
[  137.333144][ T8197]  syscall_trace_enter+0xcf/0x1e0
[  137.333253][ T8197]  do_syscall_64+0xac/0x200
[  137.333290][ T8197]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.333371][ T8197]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  137.333435][ T8197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.333462][ T8197] RIP: 0033:0x7f27ab4febe9
[  137.333483][ T8197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.333536][ T8197] RSP: 002b:00007f27a9f5f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  137.333554][ T8197] RAX: ffffffffffffffda RBX: 00007f27ab735fa0 RCX: 00007f27ab4febe9
[  137.333566][ T8197] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  137.333578][ T8197] RBP: 00007f27a9f5f090 R08: 0000000000000000 R09: 0000000000000000
[  137.333590][ T8197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.333605][ T8197] R13: 00007f27ab736038 R14: 00007f27ab735fa0 R15: 00007fff1847b178
[  137.333702][ T8197]  </TASK>
[  137.794663][ T8213] loop5: detected capacity change from 0 to 8192
[  137.964919][ T8231] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1666'.
[  138.066536][ T8223] ==================================================================
[  138.074669][ T8223] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[  138.081820][ T8223] 
[  138.084165][ T8223] write to 0xffff88812e81258e of 2 bytes by task 8213 on cpu 1:
[  138.091920][ T8223]  fat16_ent_put+0x28/0x60
[  138.096383][ T8223]  fat_ent_write+0x6c/0xe0
[  138.100866][ T8223]  fat_chain_add+0x15d/0x440
[  138.105486][ T8223]  fat_get_block+0x46c/0x5e0
[  138.110098][ T8223]  __block_write_begin_int+0x400/0xf90
[  138.115592][ T8223]  cont_write_begin+0x5fc/0x970
[  138.120474][ T8223]  fat_write_begin+0x4f/0xe0
[  138.125094][ T8223]  cont_write_begin+0x1b0/0x970
[  138.129975][ T8223]  fat_write_begin+0x4f/0xe0
[  138.134777][ T8223]  generic_cont_expand_simple+0xad/0x150
[  138.140436][ T8223]  fat_cont_expand+0x3e/0x170
[  138.145315][ T8223]  fat_setattr+0x2a5/0x8a0
[  138.149760][ T8223]  notify_change+0x806/0x890
[  138.154385][ T8223]  do_ftruncate+0x34b/0x450
[  138.158925][ T8223]  __x64_sys_ftruncate+0x68/0xc0
[  138.163887][ T8223]  x64_sys_call+0x2d52/0x2ff0
[  138.168595][ T8223]  do_syscall_64+0xd2/0x200
[  138.173141][ T8223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.179077][ T8223] 
[  138.181417][ T8223] read to 0xffff88812e812400 of 512 bytes by task 8223 on cpu 0:
[  138.189150][ T8223]  fat_mirror_bhs+0x1df/0x320
[  138.193856][ T8223]  fat_alloc_clusters+0x98b/0xa80
[  138.198930][ T8223]  fat_get_block+0x258/0x5e0
[  138.203543][ T8223]  __block_write_begin_int+0x400/0xf90
[  138.209117][ T8223]  cont_write_begin+0x5fc/0x970
[  138.213992][ T8223]  fat_write_begin+0x4f/0xe0
[  138.218599][ T8223]  generic_perform_write+0x181/0x490
[  138.223899][ T8223]  __generic_file_write_iter+0x9e/0x120
[  138.229469][ T8223]  generic_file_write_iter+0x8d/0x2f0
[  138.234864][ T8223]  do_iter_readv_writev+0x49c/0x540
[  138.240105][ T8223]  vfs_writev+0x2df/0x8b0
[  138.244471][ T8223]  __se_sys_pwritev2+0xfc/0x1c0
[  138.249374][ T8223]  __x64_sys_pwritev2+0x67/0x80
[  138.254247][ T8223]  x64_sys_call+0x2c55/0x2ff0
[  138.258962][ T8223]  do_syscall_64+0xd2/0x200
[  138.263649][ T8223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.269572][ T8223] 
[  138.271909][ T8223] Reported by Kernel Concurrency Sanitizer on:
[  138.278074][ T8223] CPU: 0 UID: 0 PID: 8223 Comm: syz.5.1659 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  138.287821][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  138.297893][ T8223] ==================================================================