last executing test programs:

47.654078615s ago: executing program 2 (id=3818):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000a80)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

47.633286555s ago: executing program 2 (id=3820):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000020000000000002000085000000ae00"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kfree\x00', r0}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x3f)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000002c0)=0x1)

47.570048976s ago: executing program 2 (id=3822):
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}], 0x1, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0x5, 0x1, 0x0, &(0x7f0000000000), 0x0)

47.491432847s ago: executing program 2 (id=3826):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r6, 0x0, r3, 0x0, 0xf37, 0x0)
write(r4, &(0x7f00000000c0)='\x00g\x00\x00\x00\x00', 0x6)
vmsplice(r8, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0)
tee(r3, r8, 0x8f5, 0x100000000000000)
write(r5, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r8, 0x29, 0x22, &(0x7f0000000400)={{{@in6=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@private1}, 0x0, @in6=@ipv4={""/10, ""/2, @multicast1}}}, &(0x7f0000000180)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000740)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@resuid={'resuid', 0x3d, r9}}, {@errors_remount}, {@quota}]}, 0x3, 0x447, &(0x7f00000011c0)="$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")
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYRES16=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0xd, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = socket$kcm(0x2, 0x1000000000000002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@ipv6_delrule={0x74, 0x21, 0x1, 0x70bd25, 0x25dfdbff, {0xa, 0x80, 0x10, 0x1, 0x3, 0x0, 0x0, 0x5, 0x10010}, [@FRA_SRC={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @FRA_SRC={0x14, 0x2, @mcast1}, @FRA_SRC={0x14, 0x2, @private2}, @FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0xfd}, @FRA_DST={0x14, 0x1, @mcast1}]}, 0x74}, 0x1, 0x0, 0x0, 0x20004000}, 0x8000)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000140)='kfree\x00', r7, 0x0, 0x3}, 0x18)
sendmsg$inet(r11, &(0x7f0000007940)={&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_retopts={{0x10}}], 0x10}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000009500000095000000000000003b0537ed376b803a9df94aa2e896ebfa2dea17e1e6e9241fce7d0fded8fc478f7badeccb74a9f086bc6934382fb5bf8bed3b83e6827633ef80f294f0b9e02cf638e449ab85794b128fd14631132ea6fa392d59662f13cc24774bcc58bb6a577fabc770d5980f6a11789db669813dd81e834bf68a00c6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0xf6a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r13}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @alu={0x7, 0x1, 0xa, 0x9, 0xb, 0xc}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r10}, 0x10)
r14 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r14)
ptrace(0x19, r14)

46.58722616s ago: executing program 2 (id=3845):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f00000002c0)={0x0, "de442bfc7910e10ac69ac014b0fa7807b11d2c99ed1f40d47a6edb3367b5cc888e1fd5102ae2d3d05f251f8d49025ceab4152b6e6d87cd6088e97a9d06d29143"}, 0x48, 0xffffffffffffffff)
keyctl$chown(0x4, r2, 0xee01, 0xee00)
keyctl$chown(0x4, r2, 0x0, 0x0)

46.334524794s ago: executing program 2 (id=3855):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(0xffffffffffffff9c, 0x0, r0, 0x0, 0x160)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5169, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r1, 0x0, 0x0})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0xfffffffffffffde8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x18)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')

46.334276543s ago: executing program 32 (id=3855):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(0xffffffffffffff9c, 0x0, r0, 0x0, 0x160)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5169, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r1, 0x0, 0x0})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0xfffffffffffffde8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x18)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')

2.21574878s ago: executing program 0 (id=4745):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

2.155136811s ago: executing program 0 (id=4746):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

2.154451791s ago: executing program 0 (id=4747):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000900)=ANY=[@ANYBLOB="48000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x48}}, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xd68210}], 0x1, 0x0, 0x1f00000000000000, 0x200000}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r7=>r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0x7, &(0x7f0000000340)={0xa, 0x88}, 0x0)
r9 = getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
getresuid(&(0x7f0000000080)=<r10=>0x0, &(0x7f0000000140), &(0x7f0000000180))
quotactl_fd$Q_QUOTAOFF(0xffffffffffffffff, 0xffffffff80000300, r10, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000940)='./bus\x00', 0x1000, 0x800, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x24, 0x2, 0x6, 0x1, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}]}, 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r12 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r12, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r12, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000b40)={{{@in6=@empty, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0}}, {{@in=@broadcast}, 0x0, @in=@multicast2}}, &(0x7f0000000c40)=0xe8)
statx(0xffffffffffffff9c, &(0x7f0000000c80)='./bus\x00', 0x800, 0x400, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0})
r15 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000dc0)='/sys/power/disk', 0x101d82, 0x0)
r16 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000e00), 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001140)=[{{&(0x7f0000000600)=@file={0x0, './bus\x00'}, 0x6e, &(0x7f0000000880)=[{&(0x7f0000002200)="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", 0x1000}, {&(0x7f0000000300)="faee2f1d6a7107eda8d7a4379f79c8f60fa685d6cb17364acc82083f3df651", 0x1f}, {&(0x7f0000000380)="d71c31d5a0a3ff38591e7207da6ecf49b20383ca57a0e0ce85b948a6518f9bde684f18139c5a955017349f6768792d6bb827", 0x32}, {&(0x7f0000003200)="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", 0x1000}, {&(0x7f0000000680)="3d7ec97dea2f4f294bf46d19ac589f25945fceb3e1a6b2c9c82420ebd593e8e16309f0d35a34c5272c2ad39fe5acca54c1b6fbd5eb4ae544e8ea7dcf1d5a6d35c2aad05faf511c39ef9e57962e2d1f244e2ea71fb3b3730ca381238b032d38159a1800d5c60d5aee8625ac1e074d175d0ade6a41515c766cc720918f2beefc0e3d0fefeba791dd1c8117bed187d2081e53e5d81e9fbf4fc3d5feff8eac2415bdf842c417bb5614c6b04852ce651545c92d4854ba601f9c548e67fff51e33d2fb2a083a9c497696825e3d5560f9ae888ac8783eade0b291de2d0062f989dbc90ec4d9d79e178bcbd5b8b603fd6fe33b836019ddf3d3e570d76b", 0xf9}, {&(0x7f0000000780)="3ea89c3e56429d2141fe1622771fa35844ca7df9fa6931646249fd15c3752381b8b6b9902138bd0e06249e2fb474051fe9734b10241f4c305950cda08361de34adba65bd46435acfc7f636ba7c35b2dcdc777f8d778b397d0636e6bf5076d0c5e8d15c26eaaae636c57406ddf3f62e81dfc426586fb5d51cbac3ccf218e9d5d304aee32ac5602923bbdec652e3c508ccdbfe07f6bd5532458ad1e0589764a8e80ac3269c159db8ae63fdd143e8047eaec580a9cdf1ac2ba10b80644e80036881eea33da9de7337482c7152c508180db4", 0xd0}], 0x6, &(0x7f0000001400)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r9, @ANYRES32=r7, @ANYRES32=r11, @ANYBLOB="100000ea000000000065f76117c8b92c79722f5193d6e2ff471f8948c26e7f2883049aedf07865ac3d4f1542d535d949717c2018922292e023d6813e9549164e6689d1147ac6009367b71ed71e1d27578f393cba9a252e5520f8f39761df79d3fc3f7603028d40fe73b6fcca", @ANYRES32=r9, @ANYRES32=r13, @ANYRES32=r14, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRESDEC=r10, @ANYRES32=r8, @ANYRES32=r15, @ANYRES32=r16, @ANYRES32=r8, @ANYRES32, @ANYRES32, @ANYRES32=r5, @ANYRES32=r0, @ANYRES32=r8, @ANYBLOB="20000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r6, @ANYRES32=r0, @ANYRES32=r8, @ANYRES32=r6, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r1, @ANYRESHEX=r0, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES64=r5, @ANYBLOB="67eb7c8966e8b5b34adefe53b17216ae1db6d212755f63f0c792412649b312edcd38f820c7722eb7147e01fccae727aa4c15e0e15ad1516eb48f48c97b1a768f194306be65746ed1433259691e97907c67fe613f5ece1a336be949a2aabd88927d694d549f54f59d1f10e2cecb950e104a342aab2caf996e751e1ab097cc6c4ae114d1ea8aef5fb81e637cfa779c3b06e179086fc137bc81754f6c37a54bfbeb09411afa38aff0f1176d16d105d261fca445e64f6bda2476f52e72ed0dc014832797df1dc862e6c9e3b2", @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0x110, 0x80c0}}], 0x1, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

1.707525736s ago: executing program 4 (id=4754):
capset(&(0x7f0000000a80)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000"], 0x30}}], 0x1, 0x4008804)

1.651106048s ago: executing program 4 (id=4755):
r0 = syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYRES32, @ANYRES8, @ANYRES64], 0x8, 0x2f6, &(0x7f0000001cc0)="$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")
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6tnl0\x00', 0x0, 0x6, 0x4, 0x5, 0x5, 0x1, @private1, @private0, 0x8, 0x8, 0x1, 0x203}})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x6653d40b, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
memfd_secret(0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)=@o_path={&(0x7f0000000400)='./file0\x00', 0x0, 0x4010, r0}, 0x18)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=ANY=[@ANYBLOB="12000000040000000400000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f00000000c0)=r1}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r2, &(0x7f00000002c0), 0x0}, 0x20)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

1.643800748s ago: executing program 4 (id=4756):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.626893088s ago: executing program 4 (id=4758):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)

1.569133198s ago: executing program 4 (id=4762):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x8010000}, 0x18)
socket$inet(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}, {0x2, 0xffe0}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x22, 0x1, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r4, 0x26, &(0x7f00000031c0)={0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
pipe2$9p(&(0x7f0000000140)={<r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="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"])

1.540833509s ago: executing program 1 (id=4763):
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x1, 0x0, 0xfffd, 0x0, {0xa, 0xfffc, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000540), 0x640, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)

1.512606459s ago: executing program 5 (id=4764):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4, 0x1a3}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x800000000008, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x7c}, 0x1, 0x0, 0x0, 0x24000812}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYRES8=r2], 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x40850)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES64], 0x50)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0x40}}, 0xc800)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
r6 = getpgid(0x0)
fcntl$lock(r5, 0x26, &(0x7f00000001c0)={0x2, 0x1, 0x8, 0xee, r6})
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @void, @value}, 0x94)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = syz_open_procfs$pagemap(0x0, &(0x7f0000000300))
ioctl$PAGEMAP_SCAN(r9, 0xc0606610, &(0x7f0000000880)={0x60, 0x3, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x9, 0x0, 0x0, 0x2, 0x40, 0x20, 0x22, 0x63})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000001400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.46386462s ago: executing program 1 (id=4766):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4, 0x1a3}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x800000000008, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100018412b01f5f90121207d3f8cd5b8a3f29a0f355e87d80b05103d075390928b0c7c435b7cf23e9569479c249699539d783b57a5bb14669d72e05631753025d7734e0c0b637fbc858282a422c0a1fd4b1e3ffbdb45029310b959bae7c32f3df06c1067554bf916f152dc3f1f7095525b5da408fa34acb68460d9706fd9f51f6f5e018938f7e000000000000"], 0x7c}, 0x1, 0x0, 0x0, 0x24000812}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYRES8=r2], 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x40850)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000000000020000000900010073797a320000000014000200626f6e643000000000000000000000000900030073797a3200000000"], 0x40}}, 0xc800)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
r6 = getpgid(0x0)
fcntl$lock(r5, 0x26, &(0x7f00000001c0)={0x2, 0x1, 0x8, 0xee, r6})
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)

1.418801551s ago: executing program 3 (id=4768):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x101042, 0x100)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

1.418355701s ago: executing program 3 (id=4769):
r0 = syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYRES32, @ANYRES8, @ANYRES64], 0x8, 0x2f6, &(0x7f0000001cc0)="$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")
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000001c0)={'ip6tnl0\x00', 0x0, 0x6, 0x4, 0x5, 0x5, 0x1, @private1, @private0, 0x8, 0x8, 0x1, 0x203}})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x6653d40b, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
memfd_secret(0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)=@o_path={&(0x7f0000000400)='./file0\x00', 0x0, 0x4010, r0}, 0x18)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=ANY=[@ANYBLOB="12000000040000000400000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f00000000c0)=r1}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r2, &(0x7f00000002c0), 0x0}, 0x20)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

1.386582481s ago: executing program 3 (id=4770):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_int(r0, 0x1, 0x48, 0x0, &(0x7f0000000180)=0x1d)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3af, 0x4}, 0x100000, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x20, 0x8, &(0x7f0000000380)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x8, 0x0, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = eventfd(0x800a6)
write$eventfd(r3, &(0x7f0000000200)=0xfffffffffffffffb, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000080ed070000faffffffffffffff18120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r5}, 0x18)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)

1.297901073s ago: executing program 0 (id=4771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

1.279839763s ago: executing program 0 (id=4772):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x8, 0x0, 0x0, 0x8, 0x1, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r0 = gettid()
syz_open_procfs(r0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r4, 0x26, &(0x7f00000031c0)={0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
pipe2$9p(&(0x7f0000000140)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = dup(r6)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB="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"])

720.669951ms ago: executing program 4 (id=4773):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
gettid()
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00'})
socket$netlink(0x10, 0x3, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r3, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r3, 0x26, &(0x7f00000031c0)={0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB="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"])

646.341601ms ago: executing program 5 (id=4774):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x48)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
timer_settime(0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000001040)=@filter={'filter\x00', 0xe, 0x4, 0xe10, [0x0, 0x200000001f80, 0x200000002b2c, 0x200000002b5c], 0x0, 0x0, &(0x7f0000003540)=ANY=[]}, 0x78)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000e00)={[{@delalloc}, {@noload}, {@acl}, {@mb_optimize_scan}]}, 0x1, 0x792, &(0x7f00000017c0)="$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")
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000001f80)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0ff5b14104fe62cc60e413905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf2364149215108333719acd97cfa107d40224edc5465a93df8513a32ec450bebc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe511195418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4929330142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da8c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000dd11e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15f2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f000010000000000000905ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400bee3dfc8fb24f67c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341b74abaa7c95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb232bbdb9dc33cbd7643866fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595270fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f76dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d2e959efc71f665c4d75cf2458e3322c9062ece84c99a061997a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99f0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d164118e4cbe02400000000ff0700000000cc9d8046c216c1f895778cb25122a2a998de44aeadea2a40da8daccf080842a4867217373934bbd42dcb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcd62981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba495aea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000001700d6d5210d7560eb92d6a97a27602b81f76386f1535b1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294059323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946932d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1fc8df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1785eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be2f5656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fd78f9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28de0bbc76d58dd92606b1ef6486c85fa3e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6968d12418a4d2a0d086d8438d415d713acebc5b014e61a543a5a391f03daca80f08f0e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e112645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c000000000000000000000000000000a1c3da144589dcaddb71cf9374843e23f992a237a9040747e0434a8a643990b4059a98411ce867d1af7e8ea89f49e6f564d4dce8a7d6939a9214a7f39e83bd247e03a09dba000000000000000000000000aaf033d47249c8444bc13844cbf1be617d82b269e5ea0c0d525603c0ec543ea581f63893ae414a6683e941fdbdff03cfc5f8744583c0aa766a65321f907927a59d75b47f06895e8471ebc2840ce5bd054df223fb09b9c739ad64cfcfd2d498b0f11056f6c40874cb977c99b6bc1a8732198a17e610082b7ce0365f271b11d4b4a3d4c7d0bb273f406ecd4b26c93151c30f5a269991402d109becb1b9bafcb2b47e940000000000e540d8b0db3774effb7469a21f96e2594b2973ebf7a1bd9ace2ed4d6eb1735f85885be5be74dc2ea5d7d499bd28271b98f187f5879b16b409a04d78175cc8d0f707c822805d7011ed4b22419186dd2b22aadf15828db2ca19d79e1bf2f7989237ee5cb2e1eb7b2bfc92d3aa95a26f060935c4fee8b2d7d0bf3c6d82d04329164bd4ee0b8060183f36762b0440d9082d7c8b06e4c2024f77e1018758d28e7ee290f32a48bfc2aa10b3dba9bff00d2410f3477a8e0df689c880dc9a677cfaa1660c53ae3d4cc3527c06625a3363744cea5f2d350224cc0fea76c72ca08507235c67346722f20690fde0790f040f5fd3eff75f9b291cc5e9c686ebaadbe756c6fa039ff441e427ed12578d5cb041ebf729cfaa575cc852fbdb54e60435e6d62a5d270433b220ed9ff1ff042b8d3d866231c460765"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x800000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e24, @private=0xa010100}, 0x1, 0x0, 0x2}}, 0x2e)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000007d40)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000004c0)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000001000), &(0x7f0000000480)='%-010d \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r6, <r7=>0xffffffffffffffff}, 0x4)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001400)={0x3, 0x11, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000000000000000020004008500000097000000b7080000000000007b8af8ff00000000b7080000ffffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=<r9=>r6, @ANYRES32=<r10=>r0], &(0x7f00000012c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r8, 0x0, 0xe, 0x0, &(0x7f0000000100)="b34715ecd04550d3abc89b6f7bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r11 = open(&(0x7f0000000000)='./bus\x00', 0x64142, 0x0)
r12 = open(&(0x7f0000000600)='./file1\x00', 0x185102, 0x15a)
ftruncate(r12, 0x2007ffb)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002dc0)=@mangle={'mangle\x00', 0x64, 0x6, 0x700, 0x268, 0x560, 0xf0, 0x560, 0x560, 0x630, 0x630, 0x630, 0x630, 0x630, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@local, @ipv4=@private, 0x0, 0x4}}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x87, 0x1, 0x6, 0x6, 0x6, @dev={0xfe, 0x80, '\x00', 0x26}, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [0x0, 0xffffff00, 0xff, 0xffffffff], [0x0, 0xff, 0x0, 0xff], [0xffffffff, 0xffffff00, 0xffffff00, 0xffffff00], 0x2204, 0x1810}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@private2}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xf0}}, {{@uncond, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138}, {0x200, [0x1000, 0x3], 0x0, 0x30, 0x7, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @dev={0xfe, 0x80, '\x00', 0x42}, @remote, @rand_addr=' \x01\x00', @loopback, @dev={0xfe, 0x80, '\x00', 0x39}, @loopback, @loopback, @dev={0xfe, 0x80, '\x00', 0x1b}, @dev={0xfe, 0x80, '\x00', 0x3e}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}], 0xf}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@remote, @ipv4=@loopback, 0x0, 0x3b}}}, {{@ipv6={@empty, @empty, [0xffffffff, 0x0, 0xe979eab540ef6e66, 0xffffffff], [0xffffff00, 0x0, 0xffffffff, 0xff], 'lo\x00', 'batadv0\x00', {}, {0xff}, 0x16, 0xf9, 0x2, 0x43}, 0x0, 0xa8, 0xd0}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x760)
sendfile(r11, r12, 0x0, 0x1000000201005)
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000001280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, 0x2, r11, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r13}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=ANY=[@ANYBLOB="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", @ANYRESHEX=r10, @ANYRESOCT=r9, @ANYRES32=<r14=>r1, @ANYRES64, @ANYRES16=r10, @ANYRES64=r3, @ANYBLOB="39d1c149707b30a23a5cf0c88abab9adf7e59c5fca8d7605ac624dabfdfaf13c24f521e505467cdafe5cb11e54362ed5817c92ecb87dfdc8cb3532"], 0x122}}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
r15 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000e40)=ANY=[@ANYRES8=r14, @ANYRES16=0x0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095", @ANYRES8=r7, @ANYRES16=r2, @ANYBLOB="35b1d245d7b934b9ff66194bebd24536ded25952c79239504a4ce4816b69952872d69f18910c404bf4c6961e81342c1c7c69eb02128a018c7e61592d04bbdac290911aed712b6c20b74863c7c4ac883cc0aa445ca2c131aac323e866aa46e4af0f895435a25128730125247ce041c2113223966a59c3695288afcf4dd28998b812d29ec337413f26e467090c130f1a090c309c7f9c678562ebe6c91b494be988d6844102be6faf0f61dcf9af15e0319d2b52286931b77f662c02c8a90213bd6232f9dcb174c973287ef3264a76a7bd9dd90e2e2fb20efe2e65783df985ebda5f5656f6cb797fa4388f987f519a9eb8"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r15}, 0x10)

578.792762ms ago: executing program 1 (id=4775):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {&(0x7f00000000c0)=""/160, 0xa0}, &(0x7f0000000340), 0x0, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)

564.888993ms ago: executing program 5 (id=4776):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
capset(&(0x7f0000000a80)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r1, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010"], 0x30}}], 0x1, 0x4008804)

517.391814ms ago: executing program 1 (id=4777):
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
pipe2$9p(&(0x7f00000007c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB, @ANYRESHEX=r2, @ANYBLOB=',debug=f'])

514.408803ms ago: executing program 3 (id=4778):
capset(&(0x7f0000000a80)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000"], 0x30}}], 0x1, 0x4008804)

508.852614ms ago: executing program 1 (id=4779):
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000100)={0x6, 0x1000, 0x2000, 0x0, 0x0, 0x0, 0x2401})
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24000844}, 0x8800)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYRES64=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x3323, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open_tree(r0, &(0x7f0000000a80)='./file0\x00', 0x8000)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000440)={'wg2\x00', <r5=>0x0})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000009c0)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000340)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x4}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x6}, @generic={0x8, 0x4, 0x8, 0xaa, 0x8001}], &(0x7f00000003c0)='syzkaller\x00', 0x1, 0x36, &(0x7f0000000400)=""/54, 0x40f00, 0x2a, '\x00', r5, 0x1c, r0, 0x8, &(0x7f0000000580)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000900)={0x1, 0x9, 0x80000000, 0x4}, 0x10, 0x2fc01, 0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000940)=[{0x5, 0x5, 0x7}, {0x3, 0x1, 0xc, 0x7}, {0x2, 0x3, 0x9}, {0x1, 0x3, 0xd, 0xa}, {0x2, 0x3, 0xa, 0xc}, {0x0, 0x1, 0x1, 0xc}], 0x10, 0x9, @void, @value}, 0x94)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r7 = socket(0x400000000010, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r8}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="01000000040010000400000005"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r9}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240), 0x0, 0x2, r9}, 0x38)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000002480)=@raw={'raw\x00', 0x8, 0x3, 0x2b8, 0x110, 0x11, 0x148, 0x0, 0x0, 0x220, 0x2a8, 0x2a8, 0x220, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xf0, 0x110, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x6, 0x88000000, 0x7, 0x7}}}, @common=@unspec=@connlabel={{0x28}, {0x6, 0x1}}]}, @unspec=@NOTRACK={0x20}}, {{@ip={@multicast1, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00', {}, {}, 0x89}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x20008000)

508.372014ms ago: executing program 5 (id=4780):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)

485.517404ms ago: executing program 3 (id=4781):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0xf00c84, &(0x7f0000000380)={[], [{@obj_user={'obj_user', 0x3d, 'GPL\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '%'}}, {@euid_eq}]}, 0x1, 0x775, &(0x7f0000000800)="$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")
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x1, 0x0, 0xfffd, 0x0, {0xa, 0xfffc, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000540), 0x640, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@cgroup, 0x4, 0x1, 0x800, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000480)=[0x0, 0x0]}, 0x40)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

485.210254ms ago: executing program 5 (id=4782):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

451.766084ms ago: executing program 5 (id=4783):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000008c0)={[{@delalloc}, {@stripe={'stripe', 0x3d, 0xe}}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@abort}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1004}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2, 0x0, 0x5}, 0x18)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r0, 0x0, 0x3ffff)
sendfile(r3, r0, 0x0, 0x7ffff000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r6, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x4e24, 0x4, @private0, 0x8}, 0x1c)
shutdown(r6, 0x1)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r6, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x7}, &(0x7f0000000100)=0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000000c0)='kfree\x00', r5, 0x0, 0x7}, 0xe)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737908320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000005900)=ANY=[@ANYBLOB="1c000000150a0102"], 0x1c}}, 0x0)

422.320515ms ago: executing program 3 (id=4784):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4, 0x1a3}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x800000000008, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x7c}, 0x1, 0x0, 0x0, 0x24000812}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYRES8=r2], 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x40850)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES64], 0x50)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0x40}}, 0xc800)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
r6 = getpgid(0x0)
fcntl$lock(r5, 0x26, &(0x7f00000001c0)={0x2, 0x1, 0x8, 0xee, r6})
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @void, @value}, 0x94)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = syz_open_procfs$pagemap(0x0, &(0x7f0000000300))
ioctl$PAGEMAP_SCAN(r9, 0xc0606610, &(0x7f0000000880)={0x60, 0x3, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x9, 0x0, 0x0, 0x2, 0x40, 0x20, 0x22, 0x63})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000001400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

403.908685ms ago: executing program 0 (id=4785):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4, 0x1a3}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x800000000008, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100018412b01f5f90121207d3f8cd5b8a3f29a0f355e87d80b05103d075390928b0c7c435b7cf23e9569479c249699539d783b57a5bb14669d72e05631753025d7734e0c0b637fbc858282a422c0a1fd4b1e3ffbdb45029310b959bae7c32f3df06c1067554bf916f152dc3f1f7095525b5da408fa34acb68460d9706fd9f51f6f5e018938f7e000000000000"], 0x7c}, 0x1, 0x0, 0x0, 0x24000812}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYRES8=r2], 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x40850)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000000000020000000900010073797a320000000014000200626f6e643000000000000000000000000900030073797a3200000000"], 0x40}}, 0xc800)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
r6 = getpgid(0x0)
fcntl$lock(r5, 0x26, &(0x7f00000001c0)={0x2, 0x1, 0x8, 0xee, r6})
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)

0s ago: executing program 1 (id=4786):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
syz_open_procfs(0x0, &(0x7f0000000240)='net/wireless\x00')
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x8010000}, 0x18)
socket$inet(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}, {0x2, 0xffe0}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x22, 0x1, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r4, 0x26, &(0x7f00000031c0)={0x1})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6d73697a653d3078303030303030303030303030313030302c6bd8ff499664472dc38ed7bc5058c97a600ec7a03e1182a9484a48d6d86a84cfd861b38d5180c717d295896e2b0b8cc5839fc2bd8e060c47e3eb1eb55163f7a166979920849c157fc1f82b17ef3dccf392c76a10c8c2d727a584a131cf4e89ab26df4c8d68bd1bd53a701c706974860d051934ef81778e72f62f7bd3af5412554f4aa6698981770889bc00ab99ece64f74a69da2d5c870ddb2b63eaf2d5c5834cbd9d036d21237ee9dd762db65f592f999053eca55645b5f26bbdc16fc25f427859e169601a8493acc5a70e179fde6ed0ea80e96a2e679cf9a1748b7ef09416acdf2d1b727"])

kernel console output (not intermixed with test programs):

loop3: detected capacity change from 0 to 2048
[  202.962821][T14913] loop1: detected capacity change from 0 to 128
[  203.155462][   T31] Buffer I/O error on dev loop1, logical block 305, lost async page write
[  203.169989][T14927] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3643'.
[  203.204938][T14927] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14927 comm=syz.2.3643
[  203.526550][T14936] loop0: detected capacity change from 0 to 2048
[  203.543707][T14936] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.591009][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.626521][T14946] FAULT_INJECTION: forcing a failure.
[  203.626521][T14946] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.639763][T14946] CPU: 1 UID: 0 PID: 14946 Comm: syz.0.3649 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  203.639870][T14946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.639886][T14946] Call Trace:
[  203.639895][T14946]  <TASK>
[  203.639904][T14946]  __dump_stack+0x1d/0x30
[  203.639931][T14946]  dump_stack_lvl+0xe8/0x140
[  203.640004][T14946]  dump_stack+0x15/0x1b
[  203.640026][T14946]  should_fail_ex+0x265/0x280
[  203.640109][T14946]  should_fail+0xb/0x20
[  203.640131][T14946]  should_fail_usercopy+0x1a/0x20
[  203.640234][T14946]  _copy_from_user+0x1c/0xb0
[  203.640266][T14946]  kstrtouint_from_user+0x69/0xf0
[  203.640335][T14946]  ? 0xffffffff81000000
[  203.640351][T14946]  ? selinux_file_permission+0x1e4/0x320
[  203.640379][T14946]  proc_fail_nth_write+0x50/0x160
[  203.640483][T14946]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  203.640506][T14946]  vfs_write+0x269/0x8e0
[  203.640530][T14946]  ? vfs_read+0x47f/0x6f0
[  203.640554][T14946]  ? __rcu_read_unlock+0x4f/0x70
[  203.640582][T14946]  ? __fget_files+0x184/0x1c0
[  203.640687][T14946]  ksys_write+0xda/0x1a0
[  203.640712][T14946]  __x64_sys_write+0x40/0x50
[  203.640731][T14946]  x64_sys_call+0x2cdd/0x2fb0
[  203.640752][T14946]  do_syscall_64+0xd2/0x200
[  203.640855][T14946]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  203.640889][T14946]  ? clear_bhb_loop+0x40/0x90
[  203.640913][T14946]  ? clear_bhb_loop+0x40/0x90
[  203.640960][T14946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.640981][T14946] RIP: 0033:0x7ff109c1d3df
[  203.640995][T14946] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  203.641012][T14946] RSP: 002b:00007ff108287030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  203.641030][T14946] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff109c1d3df
[  203.641046][T14946] RDX: 0000000000000001 RSI: 00007ff1082870a0 RDI: 0000000000000005
[  203.641064][T14946] RBP: 00007ff108287090 R08: 0000000000000000 R09: 0000000000000000
[  203.641079][T14946] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  203.641091][T14946] R13: 0000000000000000 R14: 00007ff109e45fa0 R15: 00007ffe42537a28
[  203.641117][T14946]  </TASK>
[  203.862262][T14940] loop2: detected capacity change from 0 to 512
[  203.868832][T14940] ext2: Unknown parameter 'noacl'
[  203.991563][T14961] netdevsim netdevsim0: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  204.101025][T14975] netdevsim netdevsim4: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  204.210808][T14980] loop1: detected capacity change from 0 to 2048
[  204.236693][T14984] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.298686][T14984] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.311233][T14994] netdevsim netdevsim2: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  204.354120][T14984] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.471189][T14984] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.606261][T14996] Set syz1 is full, maxelem 65536 reached
[  204.611456][T14984] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.612241][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  204.612259][   T29] audit: type=1326 audit(1749193480.968:24676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14995 comm="syz.2.3669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cdc60e929 code=0x7ffc0000
[  204.632280][T14984] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.662356][T14984] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.674548][T14984] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.742591][   T29] audit: type=1400 audit(1749193481.098:24677): avc:  denied  { mount } for  pid=15004 comm="syz.0.3672" name="/" dev="9p" ino=281474976710658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  204.743875][T15005] veth0: entered promiscuous mode
[  204.782818][T15005] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3672'.
[  204.812037][T15009] FAULT_INJECTION: forcing a failure.
[  204.812037][T15009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.825323][T15009] CPU: 1 UID: 0 PID: 15009 Comm: +}[@ Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  204.825430][T15009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.825460][T15009] Call Trace:
[  204.825467][T15009]  <TASK>
[  204.825476][T15009]  __dump_stack+0x1d/0x30
[  204.825499][T15009]  dump_stack_lvl+0xe8/0x140
[  204.825522][T15009]  dump_stack+0x15/0x1b
[  204.825611][T15009]  should_fail_ex+0x265/0x280
[  204.825637][T15009]  should_fail+0xb/0x20
[  204.825657][T15009]  should_fail_usercopy+0x1a/0x20
[  204.825710][T15009]  strncpy_from_user+0x25/0x230
[  204.825794][T15009]  ? kmem_cache_alloc_noprof+0x186/0x310
[  204.825864][T15009]  ? getname_flags+0x80/0x3b0
[  204.825898][T15009]  getname_flags+0xae/0x3b0
[  204.825932][T15009]  __x64_sys_lgetxattr+0xfd/0x140
[  204.826020][T15009]  x64_sys_call+0x1b0e/0x2fb0
[  204.826046][T15009]  do_syscall_64+0xd2/0x200
[  204.826149][T15009]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  204.826183][T15009]  ? clear_bhb_loop+0x40/0x90
[  204.826205][T15009]  ? clear_bhb_loop+0x40/0x90
[  204.826232][T15009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.826283][T15009] RIP: 0033:0x7f9b3fc4e929
[  204.826309][T15009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.826332][T15009] RSP: 002b:00007f9b3e2b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c0
[  204.826355][T15009] RAX: ffffffffffffffda RBX: 00007f9b3fe75fa0 RCX: 00007f9b3fc4e929
[  204.826431][T15009] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000000
[  204.826447][T15009] RBP: 00007f9b3e2b7090 R08: 0000000000000000 R09: 0000000000000000
[  204.826463][T15009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.826542][T15009] R13: 0000000000000000 R14: 00007f9b3fe75fa0 R15: 00007ffe45237608
[  204.826565][T15009]  </TASK>
[  205.037053][T15013] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3675'.
[  205.136754][T15023] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  205.178337][T15026] FAULT_INJECTION: forcing a failure.
[  205.178337][T15026] name failslab, interval 1, probability 0, space 0, times 0
[  205.191125][T15026] CPU: 1 UID: 0 PID: 15026 Comm: syz.4.3681 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  205.191159][T15026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.191173][T15026] Call Trace:
[  205.191179][T15026]  <TASK>
[  205.191187][T15026]  __dump_stack+0x1d/0x30
[  205.191208][T15026]  dump_stack_lvl+0xe8/0x140
[  205.191227][T15026]  dump_stack+0x15/0x1b
[  205.191304][T15026]  should_fail_ex+0x265/0x280
[  205.191371][T15026]  ? io_drain_req+0x67/0x350
[  205.191394][T15026]  should_failslab+0x8c/0xb0
[  205.191418][T15026]  __kmalloc_cache_noprof+0x4c/0x320
[  205.191450][T15026]  io_drain_req+0x67/0x350
[  205.191472][T15026]  ? io_queue_sqe_fallback+0xb3/0xc0
[  205.191562][T15026]  io_queue_sqe_fallback+0xbb/0xc0
[  205.191717][T15026]  io_submit_sqes+0xbad/0xfd0
[  205.191757][T15026]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  205.191843][T15026]  ? 0xffffffff81000000
[  205.191897][T15026]  ? __rcu_read_unlock+0x4f/0x70
[  205.191999][T15026]  ? get_pid_task+0x96/0xd0
[  205.192020][T15026]  ? proc_fail_nth_write+0x12d/0x160
[  205.192049][T15026]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  205.192072][T15026]  ? vfs_write+0x75e/0x8e0
[  205.192092][T15026]  ? __rcu_read_unlock+0x4f/0x70
[  205.192151][T15026]  ? __fget_files+0x184/0x1c0
[  205.192176][T15026]  ? fput+0x8f/0xc0
[  205.192206][T15026]  __x64_sys_io_uring_enter+0x78/0x90
[  205.192285][T15026]  x64_sys_call+0x28c8/0x2fb0
[  205.192308][T15026]  do_syscall_64+0xd2/0x200
[  205.192338][T15026]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  205.192365][T15026]  ? clear_bhb_loop+0x40/0x90
[  205.192507][T15026]  ? clear_bhb_loop+0x40/0x90
[  205.192528][T15026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.192595][T15026] RIP: 0033:0x7f8b744ce929
[  205.192609][T15026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.192678][T15026] RSP: 002b:00007f8b72b37038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  205.192703][T15026] RAX: ffffffffffffffda RBX: 00007f8b746f5fa0 RCX: 00007f8b744ce929
[  205.192716][T15026] RDX: 0000000000000004 RSI: 0000000000003516 RDI: 0000000000000003
[  205.192732][T15026] RBP: 00007f8b72b37090 R08: 0000000000000000 R09: 0000000000000000
[  205.192744][T15026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.192755][T15026] R13: 0000000000000000 R14: 00007f8b746f5fa0 R15: 00007ffcfcd9fbe8
[  205.192783][T15026]  </TASK>
[  205.466387][T15015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3676'.
[  205.567853][   T29] audit: type=1326 audit(1749193481.918:24678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.591541][   T29] audit: type=1326 audit(1749193481.918:24679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.621747][   T29] audit: type=1326 audit(1749193481.918:24680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.645451][   T29] audit: type=1326 audit(1749193481.918:24681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.669081][   T29] audit: type=1326 audit(1749193481.918:24682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15037 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f514bee11e5 code=0x7ffc0000
[  205.692686][   T29] audit: type=1326 audit(1749193481.918:24683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.716477][   T29] audit: type=1326 audit(1749193481.948:24684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.740125][   T29] audit: type=1326 audit(1749193481.948:24685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.1.3684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  205.740788][T15040] loop4: detected capacity change from 0 to 2048
[  205.815151][T15040] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.847063][T15046] xt_hashlimit: max too large, truncated to 1048576
[  205.873846][T15046] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  205.904345][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.004978][T15068] loop2: detected capacity change from 0 to 1024
[  206.018958][T15068] loop2: detected capacity change from 0 to 512
[  206.025632][T15068] EXT4-fs: quotafile must be on filesystem root
[  206.082844][T15072] Restarting kernel threads ...
[  206.089041][T15072] Done restarting kernel threads.
[  206.128149][T15079] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3703'.
[  206.213519][T15087] xt_hashlimit: max too large, truncated to 1048576
[  206.220422][T15087] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  206.256328][T15091] SELinux:  Context system_u:object_r:setfiles_exec_t:s0 is not valid (left unmapped).
[  206.269836][T15091] loop4: detected capacity change from 0 to 256
[  206.277405][T15091] msdos: Bad value for 'uid'
[  206.282096][T15091] msdos: Bad value for 'uid'
[  206.305923][T15093] FAULT_INJECTION: forcing a failure.
[  206.305923][T15093] name failslab, interval 1, probability 0, space 0, times 0
[  206.318688][T15093] CPU: 0 UID: 0 PID: 15093 Comm: syz.4.3710 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  206.318792][T15093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.318808][T15093] Call Trace:
[  206.318814][T15093]  <TASK>
[  206.318820][T15093]  __dump_stack+0x1d/0x30
[  206.318846][T15093]  dump_stack_lvl+0xe8/0x140
[  206.318871][T15093]  dump_stack+0x15/0x1b
[  206.318962][T15093]  should_fail_ex+0x265/0x280
[  206.318986][T15093]  ? assoc_array_insert+0x2e0/0x1990
[  206.319017][T15093]  should_failslab+0x8c/0xb0
[  206.319080][T15093]  __kmalloc_cache_noprof+0x4c/0x320
[  206.319118][T15093]  assoc_array_insert+0x2e0/0x1990
[  206.319189][T15093]  ? keyring_compare_object+0xda/0x100
[  206.319272][T15093]  ? assoc_array_delete+0x6e2/0x950
[  206.319306][T15093]  __key_link_begin+0x8a/0x140
[  206.319338][T15093]  key_move+0x160/0x550
[  206.319381][T15093]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  206.319428][T15093]  ? __pfx_keyring_search_iterator+0x10/0x10
[  206.319464][T15093]  keyctl_keyring_move+0xd6/0x110
[  206.319582][T15093]  __se_sys_keyctl+0x5f7/0xb80
[  206.319621][T15093]  ? __rcu_read_unlock+0x4f/0x70
[  206.319649][T15093]  ? __fget_files+0x184/0x1c0
[  206.319682][T15093]  ? fput+0x8f/0xc0
[  206.319721][T15093]  __x64_sys_keyctl+0x67/0x80
[  206.319786][T15093]  x64_sys_call+0x2e7f/0x2fb0
[  206.319814][T15093]  do_syscall_64+0xd2/0x200
[  206.319844][T15093]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  206.319923][T15093]  ? clear_bhb_loop+0x40/0x90
[  206.319949][T15093]  ? clear_bhb_loop+0x40/0x90
[  206.319977][T15093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.320000][T15093] RIP: 0033:0x7f8b744ce929
[  206.320019][T15093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.320047][T15093] RSP: 002b:00007f8b72b37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  206.320070][T15093] RAX: ffffffffffffffda RBX: 00007f8b746f5fa0 RCX: 00007f8b744ce929
[  206.320086][T15093] RDX: ffffffffffffffff RSI: 0000000033f9e333 RDI: 000000000000001e
[  206.320177][T15093] RBP: 00007f8b72b37090 R08: 0000000000000000 R09: 0000000000000000
[  206.320193][T15093] R10: 000000003dac3205 R11: 0000000000000246 R12: 0000000000000001
[  206.320209][T15093] R13: 0000000000000000 R14: 00007f8b746f5fa0 R15: 00007ffcfcd9fbe8
[  206.320234][T15093]  </TASK>
[  206.609563][T15101] loop4: detected capacity change from 0 to 2048
[  206.685644][T15107] loop2: detected capacity change from 0 to 1024
[  206.693914][T15107] EXT4-fs: test_dummy_encryption option not supported
[  206.709995][T15107] SET target dimension over the limit!
[  206.798578][T15119] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  206.844264][T15123] xt_hashlimit: max too large, truncated to 1048576
[  206.849658][T15124] 9pnet_fd: Insufficient options for proto=fd
[  206.851841][T15123] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  207.112553][T15131] loop4: detected capacity change from 0 to 1024
[  207.123192][T15131] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.148883][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.169611][T15137] loop4: detected capacity change from 0 to 128
[  207.177348][T15137] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  207.190319][T15137] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  207.664994][T15151] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  207.686662][T15153] loop2: detected capacity change from 0 to 512
[  207.695214][T15153] EXT4-fs: Ignoring removed i_version option
[  207.702366][T15153] EXT4-fs (loop2): orphan cleanup on readonly fs
[  207.709112][T15153] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3734: bg 0: block 131: padding at end of block bitmap is not set
[  207.724798][T15153] EXT4-fs (loop2): Remounting filesystem read-only
[  207.731556][T15153] EXT4-fs (loop2): 1 truncate cleaned up
[  207.737916][T15153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  208.273803][T15171] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3740'.
[  208.547349][T15180] xt_hashlimit: max too large, truncated to 1048576
[  208.555758][T15180] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  208.725216][T13149] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.892940][T15194] loop2: detected capacity change from 0 to 2048
[  208.936233][T15196] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3751'.
[  208.973008][T15199] loop3: detected capacity change from 0 to 2048
[  208.992105][T15197] Restarting kernel threads ...
[  209.009727][T15197] Done restarting kernel threads.
[  209.479835][T15209] loop3: detected capacity change from 0 to 2048
[  209.504702][T15209] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.537133][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.634574][T15219] xt_hashlimit: max too large, truncated to 1048576
[  209.662748][T15219] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  209.704736][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  209.704752][   T29] audit: type=1400 audit(1749193486.058:24717): avc:  denied  { unmount } for  pid=12394 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  209.753270][T15231] loop2: detected capacity change from 0 to 1024
[  209.761004][   T29] audit: type=1326 audit(1749193486.108:24718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15228 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  209.784677][   T29] audit: type=1326 audit(1749193486.108:24719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15228 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  209.809267][   T29] audit: type=1326 audit(1749193486.168:24720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15228 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  209.832971][   T29] audit: type=1326 audit(1749193486.168:24721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15228 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  209.856686][   T29] audit: type=1326 audit(1749193486.168:24722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15228 comm="syz.3.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  209.887838][T15231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.914343][T15235] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3764'.
[  209.923448][T15235] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3764'.
[  209.937470][T13149] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.949714][T15235] bond1: entered promiscuous mode
[  209.954900][T15235] bond1: entered allmulticast mode
[  209.960367][T15235] 8021q: adding VLAN 0 to HW filter on device bond1
[  209.961180][T15240] loop3: detected capacity change from 0 to 2048
[  210.027922][T15248] batadv_slave_1: entered promiscuous mode
[  210.034725][T15248] netlink: 304 bytes leftover after parsing attributes in process `syz.1.3771'.
[  210.052274][T15247] batadv_slave_1: left promiscuous mode
[  210.060584][T15240] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.093418][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.139274][T15261] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  210.179478][   T29] audit: type=1326 audit(1749193486.528:24723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15266 comm="syz.1.3779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  210.205713][T15263] loop3: detected capacity change from 0 to 1024
[  210.213532][   T29] audit: type=1326 audit(1749193486.558:24724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15266 comm="syz.1.3779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  210.237145][   T29] audit: type=1326 audit(1749193486.558:24725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15266 comm="syz.1.3779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  210.261055][   T29] audit: type=1326 audit(1749193486.568:24726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15268 comm="syz.1.3779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f514bee11e5 code=0x7ffc0000
[  210.278642][T15263] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.337017][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.526825][T15296] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  210.578467][T15300] loop2: detected capacity change from 0 to 1024
[  210.604170][T15300] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.644030][T15308] veth0: entered promiscuous mode
[  210.652866][T15308] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3795'.
[  210.666157][T13149] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.941623][T15316] loop3: detected capacity change from 0 to 2048
[  210.945930][T15318] loop0: detected capacity change from 0 to 2048
[  210.968071][T15316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.040135][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.068698][T15326] Restarting kernel threads ...
[  211.074211][T15326] Done restarting kernel threads.
[  211.096886][T15330] loop3: detected capacity change from 0 to 2048
[  211.123622][T15332] netdevsim netdevsim2: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  211.280628][T15343] veth0: entered promiscuous mode
[  211.299705][T15343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3808'.
[  211.371116][T15346] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=15346 comm=syz.0.3810
[  211.514671][T15362] netdevsim netdevsim2: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  211.580426][T15367] loop4: detected capacity change from 0 to 2048
[  211.593533][T15367] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.623772][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.766581][T15388] loop2: detected capacity change from 0 to 512
[  211.775407][T15388] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  211.792646][T15388] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.3826: corrupted in-inode xattr: bad e_name length
[  211.807320][T15388] EXT4-fs (loop2): Remounting filesystem read-only
[  211.816115][T15388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.870100][T15372] Set syz1 is full, maxelem 65536 reached
[  211.913149][T15393] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  212.165965][T15411] loop3: detected capacity change from 0 to 2048
[  212.273488][T15417] Restarting kernel threads ...
[  212.278497][T15417] Done restarting kernel threads.
[  212.342545][T15421] xt_hashlimit: max too large, truncated to 1048576
[  212.350465][T15421] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  212.639490][T15431] loop4: detected capacity change from 0 to 2048
[  212.782855][T15390] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.799777][T15443] loop3: detected capacity change from 0 to 512
[  212.808027][T15443] EXT4-fs: Ignoring removed nobh option
[  212.837403][  T310] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.858136][T15443] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  212.869793][T15443] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  212.879922][T15443] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.3851: Corrupt directory, running e2fsck is recommended
[  212.897585][T15447] xt_hashlimit: max too large, truncated to 1048576
[  212.904506][T15447] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  212.907976][T15443] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  212.926757][  T310] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.928287][T15443] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.3851: corrupted in-inode xattr: invalid ea_ino
[  212.952831][T15443] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.3851: couldn't read orphan inode 15 (err -117)
[  212.965372][T15443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.990584][T15443] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  213.002296][T15443] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  213.012500][T15443] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.3851: Corrupt directory, running e2fsck is recommended
[  213.057637][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.076168][  T310] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.147323][  T310] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.184432][T15451] chnl_net:caif_netlink_parms(): no params data found
[  213.220584][T15451] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.227810][T15451] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.235360][T15451] bridge_slave_0: entered allmulticast mode
[  213.242623][T15451] bridge_slave_0: entered promiscuous mode
[  213.249897][T15451] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.257178][T15451] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.264419][T15451] bridge_slave_1: entered allmulticast mode
[  213.280385][T15451] bridge_slave_1: entered promiscuous mode
[  213.312282][T15451] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  213.334341][T15451] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  213.352357][  T310] bridge_slave_1: left allmulticast mode
[  213.358061][  T310] bridge_slave_1: left promiscuous mode
[  213.363938][  T310] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.393168][  T310] bridge_slave_0: left allmulticast mode
[  213.398873][  T310] bridge_slave_0: left promiscuous mode
[  213.404665][  T310] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.504290][  T310] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  213.506005][T15492] SELinux:  policydb version -1238197807 does not match my version range 15-34
[  213.523286][  T310] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  213.524679][T15492] SELinux: failed to load policy
[  213.537895][  T310] bond0 (unregistering): Released all slaves
[  213.563831][T15451] team0: Port device team_slave_0 added
[  213.571094][T15451] team0: Port device team_slave_1 added
[  213.586467][  T310] hsr_slave_0: left promiscuous mode
[  213.592191][  T310] hsr_slave_1: left promiscuous mode
[  213.597798][  T310] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  213.605259][  T310] batman_adv: batadv0: Removing interface: batadv_slave_0
[  213.614686][  T310] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  213.622178][  T310] batman_adv: batadv0: Removing interface: batadv_slave_1
[  213.642374][  T310] veth1_macvtap: left promiscuous mode
[  213.649992][  T310] veth0_macvtap: left promiscuous mode
[  213.656866][  T310] veth1_vlan: left promiscuous mode
[  213.663476][  T310] veth0_vlan: left promiscuous mode
[  213.726842][  T310] team0 (unregistering): Port device team_slave_1 removed
[  213.736575][  T310] team0 (unregistering): Port device team_slave_0 removed
[  213.774502][T15495] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  213.775721][T15451] batman_adv: batadv0: Adding interface: batadv_slave_0
[  213.792011][T15451] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.818038][T15451] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  213.829913][T15451] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.836988][T15451] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.862962][T15451] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  213.908358][T15451] hsr_slave_0: entered promiscuous mode
[  213.914782][T15451] hsr_slave_1: entered promiscuous mode
[  213.920833][T15451] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  213.930073][T15451] Cannot create hsr debugfs directory
[  213.936366][T15502] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3871'.
[  214.000006][T15517] lo speed is unknown, defaulting to 1000
[  214.013791][T15517] lo speed is unknown, defaulting to 1000
[  214.026813][T15517] lo speed is unknown, defaulting to 1000
[  214.033564][T15517] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  214.049977][T15517] lo speed is unknown, defaulting to 1000
[  214.056714][T15519] loop0: detected capacity change from 0 to 2048
[  214.063773][T15451] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  214.073153][T15517] lo speed is unknown, defaulting to 1000
[  214.079345][T15517] lo speed is unknown, defaulting to 1000
[  214.085838][T15451] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  214.095155][T15451] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  214.105404][T15451] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  214.130539][T15522] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3878'.
[  214.139606][T15522] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3878'.
[  214.194297][T15517] lo speed is unknown, defaulting to 1000
[  214.200918][T15517] lo speed is unknown, defaulting to 1000
[  214.296795][T15539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=15539 comm=syz.1.3883
[  214.308191][T15451] 8021q: adding VLAN 0 to HW filter on device bond0
[  214.321073][T15451] 8021q: adding VLAN 0 to HW filter on device team0
[  214.343023][ T3485] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.350368][ T3485] bridge0: port 1(bridge_slave_0) entered forwarding state
[  214.364462][ T3485] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.371813][ T3485] bridge0: port 2(bridge_slave_1) entered forwarding state
[  214.400256][T15542] 9pnet_fd: Insufficient options for proto=fd
[  214.403620][T15451] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  214.567172][T15552] loop1: detected capacity change from 0 to 2048
[  214.685048][T15451] 8021q: adding VLAN 0 to HW filter on device batadv0
[  214.712033][T15555] Restarting kernel threads ...
[  214.717376][T15555] Done restarting kernel threads.
[  214.849007][   T29] kauditd_printk_skb: 140 callbacks suppressed
[  214.849026][   T29] audit: type=1326 audit(1749193491.198:24867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.1.3890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  214.878947][   T29] audit: type=1326 audit(1749193491.198:24868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.1.3890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  214.903734][   T29] audit: type=1400 audit(1749193491.238:24869): avc:  denied  { mount } for  pid=15565 comm="syz.0.3889" name="/" dev="ramfs" ino=41141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  214.913185][T15541] Set syz1 is full, maxelem 65536 reached
[  214.932604][   T29] audit: type=1326 audit(1749193491.278:24870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.1.3890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  214.956369][   T29] audit: type=1326 audit(1749193491.278:24871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.1.3890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  214.980166][   T29] audit: type=1326 audit(1749193491.278:24872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15563 comm="syz.1.3890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  215.003840][   T29] audit: type=1326 audit(1749193491.288:24873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15540 comm="syz.4.3884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  215.027984][   T29] audit: type=1326 audit(1749193491.288:24874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15540 comm="syz.4.3884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  215.071096][   T29] audit: type=1400 audit(1749193491.358:24875): avc:  denied  { mounton } for  pid=15568 comm="syz.1.3891" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  215.157746][T15451] veth0_vlan: entered promiscuous mode
[  215.185793][T15451] veth1_vlan: entered promiscuous mode
[  215.204807][T15589] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  215.218972][T15451] veth0_macvtap: entered promiscuous mode
[  215.240199][T15590] loop0: detected capacity change from 0 to 2048
[  215.249569][T15451] veth1_macvtap: entered promiscuous mode
[  215.262347][T15451] batman_adv: batadv0: Interface activated: batadv_slave_0
[  215.277561][T15451] batman_adv: batadv0: Interface activated: batadv_slave_1
[  215.290212][T15451] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.299002][T15451] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.307871][T15451] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.316729][T15451] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  215.353078][   T29] audit: type=1326 audit(1749193491.698:24876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15598 comm="syz.1.3902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  215.436032][T15606] netlink: 'syz.3.3903': attribute type 2 has an invalid length.
[  215.502173][T15606] capability: warning: `syz.3.3903' uses 32-bit capabilities (legacy support in use)
[  215.525822][T15606] loop3: detected capacity change from 0 to 4096
[  215.548205][T15614] 9pnet_fd: Insufficient options for proto=fd
[  215.560129][T15606] binfmt_misc: register: failed to install interpreter file ./file2
[  215.574670][T15606] loop3: detected capacity change from 0 to 1024
[  215.650881][T15624] loop5: detected capacity change from 0 to 1024
[  215.673850][T15624] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.697155][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.065160][T15651] FAULT_INJECTION: forcing a failure.
[  216.065160][T15651] name failslab, interval 1, probability 0, space 0, times 0
[  216.077877][T15651] CPU: 0 UID: 0 PID: 15651 Comm: syz.5.3920 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  216.077908][T15651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.077956][T15651] Call Trace:
[  216.077964][T15651]  <TASK>
[  216.077973][T15651]  __dump_stack+0x1d/0x30
[  216.077999][T15651]  dump_stack_lvl+0xe8/0x140
[  216.078021][T15651]  dump_stack+0x15/0x1b
[  216.078036][T15651]  should_fail_ex+0x265/0x280
[  216.078055][T15651]  should_failslab+0x8c/0xb0
[  216.078106][T15651]  kmem_cache_alloc_noprof+0x50/0x310
[  216.078147][T15651]  ? getname_flags+0x80/0x3b0
[  216.078177][T15651]  getname_flags+0x80/0x3b0
[  216.078211][T15651]  user_path_at+0x28/0x130
[  216.078302][T15651]  __se_sys_mount+0x25b/0x2e0
[  216.078338][T15651]  ? fput+0x8f/0xc0
[  216.078376][T15651]  __x64_sys_mount+0x67/0x80
[  216.078484][T15651]  x64_sys_call+0xd36/0x2fb0
[  216.078566][T15651]  do_syscall_64+0xd2/0x200
[  216.078598][T15651]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  216.078659][T15651]  ? clear_bhb_loop+0x40/0x90
[  216.078686][T15651]  ? clear_bhb_loop+0x40/0x90
[  216.078711][T15651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.078769][T15651] RIP: 0033:0x7fd36afae929
[  216.078787][T15651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.078848][T15651] RSP: 002b:00007fd369617038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  216.078865][T15651] RAX: ffffffffffffffda RBX: 00007fd36b1d5fa0 RCX: 00007fd36afae929
[  216.078876][T15651] RDX: 0000200000000600 RSI: 00002000000005c0 RDI: 0000200000000580
[  216.078886][T15651] RBP: 00007fd369617090 R08: 0000200000000640 R09: 0000000000000000
[  216.078897][T15651] R10: 0000000002800004 R11: 0000000000000246 R12: 0000000000000001
[  216.078911][T15651] R13: 0000000000000000 R14: 00007fd36b1d5fa0 R15: 00007ffff410a038
[  216.078936][T15651]  </TASK>
[  216.296399][T15653] netlink: 4 bytes leftover after parsing attributes in process `GPL'.
[  216.316058][T15657] loop1: detected capacity change from 0 to 1024
[  216.323237][T15653] hsr_slave_0 (unregistering): left promiscuous mode
[  216.344079][T15657] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.368278][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.423122][T15667] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  217.145724][T15723] loop3: detected capacity change from 0 to 2048
[  217.175543][T15723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.231016][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.258818][T15733] veth0: entered promiscuous mode
[  217.264199][T15733] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3957'.
[  217.309436][T15733] veth0 (unregistering): left promiscuous mode
[  217.414444][T15740] loop3: detected capacity change from 0 to 2048
[  217.490013][T15740] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  217.597592][T15755] loop3: detected capacity change from 0 to 1024
[  217.615599][T15755] rdma_op ffff88811922ed80 conn xmit_rdma 0000000000000000
[  217.653931][T15759] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3961'.
[  217.688614][T15761] loop1: detected capacity change from 0 to 2048
[  217.741117][T15767] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3961'.
[  217.750100][T15767] netlink: 2 bytes leftover after parsing attributes in process `syz.4.3961'.
[  217.823372][T15759] loop4: detected capacity change from 0 to 1024
[  217.836687][T15775] loop0: detected capacity change from 0 to 128
[  217.843629][T15775] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  217.856429][T15775] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  217.857623][T15759] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.955926][T15788] loop1: detected capacity change from 0 to 1024
[  217.991701][T15788] rdma_op ffff88811b1d7180 conn xmit_rdma 0000000000000000
[  218.058498][T15803] 9pnet_fd: Insufficient options for proto=fd
[  218.209221][T15813] loop4: detected capacity change from 0 to 1024
[  218.279170][T15825] loop4: detected capacity change from 0 to 1024
[  218.282911][T15827] loop3: detected capacity change from 0 to 128
[  218.292788][T15827] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  218.304975][T15825] rdma_op ffff88810af5a580 conn xmit_rdma 0000000000000000
[  218.305392][T15827] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  218.358204][T15833] xt_hashlimit: max too large, truncated to 1048576
[  218.365488][T15833] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  218.685030][T15852] loop1: detected capacity change from 0 to 1024
[  218.697394][T15854] loop4: detected capacity change from 0 to 1024
[  218.714335][T15854] rdma_op ffff88810af5a180 conn xmit_rdma 0000000000000000
[  219.013777][T15879] loop4: detected capacity change from 0 to 2048
[  219.056606][T15888] loop0: detected capacity change from 0 to 1024
[  219.085944][T15888] EXT4-fs mount: 18 callbacks suppressed
[  219.085964][T15888] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.124668][T15888] rdma_op ffff88811b1d7180 conn xmit_rdma 0000000000000000
[  219.160928][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.353101][T15904] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  219.415035][T15894] Set syz1 is full, maxelem 65536 reached
[  219.699361][T15926] loop5: detected capacity change from 0 to 1024
[  219.715149][T15926] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.748288][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.798903][T15940] loop5: detected capacity change from 0 to 1024
[  219.834209][T15940] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.860743][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.960447][T15957] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4042'.
[  219.978352][T15961] loop1: detected capacity change from 0 to 1024
[  219.993312][T15961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.017331][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.342135][T15989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4055'.
[  220.350653][T15991] loop1: detected capacity change from 0 to 1024
[  220.364131][T15991] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.388174][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.408505][   T29] kauditd_printk_skb: 68 callbacks suppressed
[  220.408522][   T29] audit: type=1326 audit(1749193496.758:24945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.439538][   T29] audit: type=1326 audit(1749193496.758:24946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.463169][   T29] audit: type=1326 audit(1749193496.758:24947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.487584][   T29] audit: type=1326 audit(1749193496.758:24948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.511435][   T29] audit: type=1326 audit(1749193496.758:24949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.535099][   T29] audit: type=1326 audit(1749193496.758:24950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.558684][   T29] audit: type=1326 audit(1749193496.758:24951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.582467][   T29] audit: type=1326 audit(1749193496.758:24952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.606146][   T29] audit: type=1326 audit(1749193496.758:24953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.629863][   T29] audit: type=1326 audit(1749193496.758:24954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15995 comm="syz.1.4057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  220.650675][T16001] loop1: detected capacity change from 0 to 2048
[  220.770233][T16001] Restarting kernel threads ...
[  220.776540][T16001] Done restarting kernel threads.
[  220.845454][T16019] loop1: detected capacity change from 0 to 1024
[  220.853667][T16021] 9pnet_fd: Insufficient options for proto=fd
[  220.863880][T16019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.889800][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.019575][T16033] xt_hashlimit: max too large, truncated to 1048576
[  221.026987][T16033] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  221.169750][T16040] loop5: detected capacity change from 0 to 1024
[  221.193160][T16040] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.207595][T16040] rdma_op ffff88811b1d7180 conn xmit_rdma 0000000000000000
[  221.226967][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.325504][T16049] loop3: detected capacity change from 0 to 2048
[  221.343450][T16052] loop5: detected capacity change from 0 to 1024
[  221.353567][T16052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.354091][T16049] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.396610][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.416350][T16049] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  221.427400][T16060] loop5: detected capacity change from 0 to 2048
[  221.450788][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.462972][T16060] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.500974][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.510835][T16068] rdma_op ffff88811b1d6180 conn xmit_rdma 0000000000000000
[  221.571780][T16070] Restarting kernel threads ...
[  221.576804][T16070] Done restarting kernel threads.
[  221.606875][T16077] loop4: detected capacity change from 0 to 128
[  221.614822][T16077] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.628530][T16077] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  221.692349][T16078] xt_hashlimit: max too large, truncated to 1048576
[  221.699289][T16078] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  221.868671][T16086] loop1: detected capacity change from 0 to 1024
[  221.894167][T16086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.938643][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.024771][T16092] loop1: detected capacity change from 0 to 2048
[  222.069820][T16092] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.119487][T16092] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  222.173956][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.509532][T16107] rdma_op ffff88811b1d6180 conn xmit_rdma 0000000000000000
[  222.541669][T16105] Restarting kernel threads ...
[  222.546722][T16105] Done restarting kernel threads.
[  222.604476][T16114] 9pnet_fd: Insufficient options for proto=fd
[  222.628544][T16116] loop0: detected capacity change from 0 to 1024
[  222.629937][T16118] netdevsim netdevsim5: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[  222.643965][T16116] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.670089][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.838714][T16136] 9pnet_fd: Insufficient options for proto=fd
[  222.911650][T16140] Restarting kernel threads ...
[  222.916806][T16140] Done restarting kernel threads.
[  223.518717][T16148] loop3: detected capacity change from 0 to 2048
[  223.882850][T16167] veth0: entered promiscuous mode
[  223.888423][T16167] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4123'.
[  224.136980][T16185] rdma_op ffff888104662d80 conn xmit_rdma 0000000000000000
[  224.184441][T16189] loop3: detected capacity change from 0 to 2048
[  224.203114][T16189] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.224645][T16189] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  224.255011][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.372037][T16198] 9pnet_fd: Insufficient options for proto=fd
[  224.730889][T16204] loop4: detected capacity change from 0 to 2048
[  224.745297][T16204] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.815697][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.849887][T16210] xt_hashlimit: max too large, truncated to 1048576
[  224.879746][T16210] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  224.928120][T16214] rdma_op ffff888104662d80 conn xmit_rdma 0000000000000000
[  224.988561][T16216] loop4: detected capacity change from 0 to 2048
[  225.040180][T16216] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.090943][T16216] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  225.175477][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.323071][T16241] rdma_op ffff888104662d80 conn xmit_rdma 0000000000000000
[  225.420342][   T29] kauditd_printk_skb: 96 callbacks suppressed
[  225.420356][   T29] audit: type=1326 audit(1749193501.768:25051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16233 comm="syz.5.4146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  225.780808][T16251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4153'.
[  225.896138][T16274] rdma_op ffff888104662d80 conn xmit_rdma 0000000000000000
[  225.995081][T16284] 9pnet_fd: Insufficient options for proto=fd
[  226.020978][T16290] loop5: detected capacity change from 0 to 2048
[  226.096254][T16294] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4171'.
[  226.099027][T16302] rdma_op ffff888104662980 conn xmit_rdma 0000000000000000
[  226.320994][T16322] 9pnet_fd: Insufficient options for proto=fd
[  226.472578][T16332] 9pnet_fd: Insufficient options for proto=fd
[  227.195795][T16342] rdma_op ffff88810af58980 conn xmit_rdma 0000000000000000
[  227.238158][T16345] loop5: detected capacity change from 0 to 2048
[  227.246761][T16348] loop4: detected capacity change from 0 to 2048
[  227.271883][T16345] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.301108][   T29] audit: type=1326 audit(1749193503.648:25052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.305902][T16345] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  227.324903][   T29] audit: type=1326 audit(1749193503.648:25053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.368689][   T29] audit: type=1326 audit(1749193503.718:25054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.428546][   T29] audit: type=1326 audit(1749193503.748:25055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.432032][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.452250][   T29] audit: type=1326 audit(1749193503.748:25056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.486013][   T29] audit: type=1326 audit(1749193503.748:25057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.510014][   T29] audit: type=1326 audit(1749193503.748:25058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.535135][   T29] audit: type=1326 audit(1749193503.748:25059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.559935][   T29] audit: type=1326 audit(1749193503.748:25060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16356 comm="syz.0.4195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff109c1e929 code=0x7ffc0000
[  227.596287][T16361] loop4: detected capacity change from 0 to 2048
[  227.686925][T16368] xt_hashlimit: max too large, truncated to 1048576
[  227.707454][T16368] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  227.856016][T16357] Set syz1 is full, maxelem 65536 reached
[  227.924065][T16379] rdma_op ffff88811b121580 conn xmit_rdma 0000000000000000
[  227.924100][T16378] 9pnet_fd: Insufficient options for proto=fd
[  228.011982][T16387] loop5: detected capacity change from 0 to 2048
[  228.076121][T16392] veth0: entered promiscuous mode
[  228.081750][T16392] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4209'.
[  228.163131][T16404] rdma_op ffff88810af5b180 conn xmit_rdma 0000000000000000
[  228.198400][T16406] xt_hashlimit: max too large, truncated to 1048576
[  228.205707][T16408] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4217'.
[  228.206124][T16406] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  228.443408][T16408] lo speed is unknown, defaulting to 1000
[  229.040660][T16427] 9pnet_fd: Insufficient options for proto=fd
[  229.097371][T16433] rdma_op ffff88810af58580 conn xmit_rdma 0000000000000000
[  229.158695][T16439] loop1: detected capacity change from 0 to 2048
[  229.348464][T16448] loop4: detected capacity change from 0 to 2048
[  229.379688][T16448] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.447547][T16461] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4236'.
[  229.461939][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.496166][T16465] loop1: detected capacity change from 0 to 2048
[  229.648192][T16461] lo speed is unknown, defaulting to 1000
[  229.681562][T16476] loop4: detected capacity change from 0 to 2048
[  229.761995][T16476] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.787115][T16476] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  229.824278][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.846644][T16490] loop4: detected capacity change from 0 to 128
[  229.854082][T16490] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  229.866912][T16490] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  229.969735][T16499] rdma_op ffff8881045d2180 conn xmit_rdma 0000000000000000
[  230.057595][T16511] loop5: detected capacity change from 0 to 2048
[  230.065634][T16507] Restarting kernel threads ...
[  230.070633][T16507] Done restarting kernel threads.
[  230.077423][T16511] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.091720][T16513] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4257'.
[  230.109755][T16511] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  230.136080][T16520] loop3: detected capacity change from 0 to 2048
[  230.144721][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.229149][T16531] rdma_op ffff8881045d2180 conn xmit_rdma 0000000000000000
[  230.344863][T16541] loop3: detected capacity change from 0 to 2048
[  230.468455][T16541] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.482034][T16548] xt_hashlimit: max too large, truncated to 1048576
[  230.489144][T16548] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  230.524141][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.602983][   T29] kauditd_printk_skb: 108 callbacks suppressed
[  230.602998][   T29] audit: type=1326 audit(1749193506.938:25169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.632959][   T29] audit: type=1326 audit(1749193506.938:25170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.656891][   T29] audit: type=1326 audit(1749193506.938:25171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.680477][   T29] audit: type=1326 audit(1749193506.938:25172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16558 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9b3fc811e5 code=0x7ffc0000
[  230.705867][   T29] audit: type=1326 audit(1749193506.938:25173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.729885][   T29] audit: type=1326 audit(1749193506.948:25174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.753678][   T29] audit: type=1326 audit(1749193506.948:25175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.777823][   T29] audit: type=1326 audit(1749193506.958:25176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.801616][   T29] audit: type=1326 audit(1749193506.958:25177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.825228][   T29] audit: type=1326 audit(1749193507.108:25178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16558 comm="syz.3.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f9b3fc4e929 code=0x7ffc0000
[  230.866365][T16563] rdma_op ffff888119218180 conn xmit_rdma 0000000000000000
[  230.901313][T16565] loop3: detected capacity change from 0 to 2048
[  230.934865][T16569] 9pnet_fd: Insufficient options for proto=fd
[  230.969820][T16573] loop3: detected capacity change from 0 to 2048
[  230.982767][T16575] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4280'.
[  230.983135][T16573] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.020832][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.199294][T16588] loop3: detected capacity change from 0 to 2048
[  231.213684][T16588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.238131][T16588] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  231.255892][T16575] lo speed is unknown, defaulting to 1000
[  231.266561][T16592] loop0: detected capacity change from 0 to 128
[  231.273613][T16592] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  231.275842][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.296173][T16592] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  231.348582][T16599] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4288'.
[  231.353425][T16603] loop3: detected capacity change from 0 to 2048
[  231.457084][T16610] 9pnet_fd: Insufficient options for proto=fd
[  231.481827][T16612] 9pnet_fd: Insufficient options for proto=fd
[  232.415020][T16638] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4302'.
[  232.469082][T16642] loop3: detected capacity change from 0 to 2048
[  232.778309][T16662] 9pnet_fd: Insufficient options for proto=fd
[  232.813636][T16664] rdma_op ffff888104048d80 conn xmit_rdma 0000000000000000
[  232.876557][T16670] loop4: detected capacity change from 0 to 2048
[  232.881893][T16668] Restarting kernel threads ...
[  232.888953][T16668] Done restarting kernel threads.
[  232.938630][T16672] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4316'.
[  232.975023][T16678] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4318'.
[  233.092320][T16688] 9pnet_fd: Insufficient options for proto=fd
[  233.114313][T16690] rdma_op ffff888104048d80 conn xmit_rdma 0000000000000000
[  233.136009][T16692] 9pnet_fd: Insufficient options for proto=fd
[  233.247372][T16695] xt_hashlimit: max too large, truncated to 1048576
[  233.254393][T16695] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  233.321573][T16697] loop1: detected capacity change from 0 to 128
[  233.328497][T16697] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  233.340689][T16697] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  233.535465][T16700] loop5: detected capacity change from 0 to 2048
[  233.605076][T16706] 9pnet_fd: Insufficient options for proto=fd
[  233.612934][T16702] Restarting kernel threads ...
[  233.618129][T16702] Done restarting kernel threads.
[  233.709397][T16719] xt_hashlimit: max too large, truncated to 1048576
[  233.716839][T16719] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  233.804601][T16723] 9pnet_fd: Insufficient options for proto=fd
[  233.836369][T16725] xt_hashlimit: max too large, truncated to 1048576
[  233.843337][T16725] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  233.919227][T16727] xt_hashlimit: max too large, truncated to 1048576
[  233.926436][T16727] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  234.015532][T16731] 9pnet_fd: Insufficient options for proto=fd
[  234.056930][T16736] loop5: detected capacity change from 0 to 2048
[  234.073509][T16736] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.095621][T16744] rdma_op ffff888104048d80 conn xmit_rdma 0000000000000000
[  234.103540][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.228333][T16756] 9pnet_fd: Insufficient options for proto=fd
[  234.707716][T16788] loop3: detected capacity change from 0 to 128
[  234.725863][T16788] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  234.819630][T16788] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  235.246597][T16795] xt_hashlimit: max too large, truncated to 1048576
[  235.279515][T16795] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  235.324292][T16806] loop0: detected capacity change from 0 to 2048
[  235.371077][T16806] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.405220][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.444811][T16815] loop0: detected capacity change from 0 to 2048
[  235.462789][T16815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.489108][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.567971][T16827] FAULT_INJECTION: forcing a failure.
[  235.567971][T16827] name failslab, interval 1, probability 0, space 0, times 0
[  235.580694][T16827] CPU: 0 UID: 0 PID: 16827 Comm: syz.4.4379 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  235.580791][T16827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  235.580834][T16827] Call Trace:
[  235.580840][T16827]  <TASK>
[  235.580847][T16827]  __dump_stack+0x1d/0x30
[  235.580872][T16827]  dump_stack_lvl+0xe8/0x140
[  235.580939][T16827]  dump_stack+0x15/0x1b
[  235.581033][T16827]  should_fail_ex+0x265/0x280
[  235.581059][T16827]  ? audit_log_d_path+0x8d/0x150
[  235.581100][T16827]  should_failslab+0x8c/0xb0
[  235.581153][T16827]  __kmalloc_cache_noprof+0x4c/0x320
[  235.581197][T16827]  audit_log_d_path+0x8d/0x150
[  235.581238][T16827]  audit_log_d_path_exe+0x42/0x70
[  235.581288][T16827]  audit_log_task+0x1e9/0x250
[  235.581392][T16827]  audit_seccomp+0x61/0x100
[  235.581459][T16827]  ? __seccomp_filter+0x68c/0x10d0
[  235.581490][T16827]  __seccomp_filter+0x69d/0x10d0
[  235.581522][T16827]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  235.581599][T16827]  ? vfs_write+0x75e/0x8e0
[  235.581625][T16827]  ? __rcu_read_unlock+0x4f/0x70
[  235.581661][T16827]  ? __fget_files+0x184/0x1c0
[  235.581691][T16827]  __secure_computing+0x82/0x150
[  235.581807][T16827]  syscall_trace_enter+0xcf/0x1e0
[  235.581834][T16827]  do_syscall_64+0xac/0x200
[  235.581871][T16827]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  235.581905][T16827]  ? clear_bhb_loop+0x40/0x90
[  235.581974][T16827]  ? clear_bhb_loop+0x40/0x90
[  235.581995][T16827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.582015][T16827] RIP: 0033:0x7f8b744ce929
[  235.582032][T16827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.582126][T16827] RSP: 002b:00007f8b72b37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  235.582151][T16827] RAX: ffffffffffffffda RBX: 00007f8b746f5fa0 RCX: 00007f8b744ce929
[  235.582167][T16827] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000080
[  235.582178][T16827] RBP: 00007f8b72b37090 R08: 0000000000000000 R09: 0000000000000000
[  235.582259][T16827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.582275][T16827] R13: 0000000000000000 R14: 00007f8b746f5fa0 R15: 00007ffcfcd9fbe8
[  235.582300][T16827]  </TASK>
[  235.614873][   T29] kauditd_printk_skb: 61 callbacks suppressed
[  235.614902][   T29] audit: type=1326 audit(1749193511.918:25240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  235.835583][   T29] audit: type=1326 audit(1749193511.918:25241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  235.859402][   T29] audit: type=1326 audit(1749193511.918:25242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8b744cd290 code=0x7ffc0000
[  235.883340][   T29] audit: type=1326 audit(1749193511.918:25243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8b744cd3df code=0x7ffc0000
[  235.906895][   T29] audit: type=1326 audit(1749193511.918:25244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="<no_memory>" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  235.930013][   T29] audit: type=1326 audit(1749193511.968:25245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f8b744cd33c code=0x7ffc0000
[  235.953525][   T29] audit: type=1326 audit(1749193511.968:25246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8b744cd3df code=0x7ffc0000
[  235.976987][   T29] audit: type=1326 audit(1749193511.968:25247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8b744cd58a code=0x7ffc0000
[  236.000435][   T29] audit: type=1326 audit(1749193511.968:25248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  236.024064][   T29] audit: type=1326 audit(1749193511.968:25249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16826 comm="syz.4.4379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  236.067011][T16833] 9pnet_fd: Insufficient options for proto=fd
[  236.178268][T16838] loop0: detected capacity change from 0 to 2048
[  236.193790][T16838] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.225887][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.378201][T16856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4390'.
[  236.387297][T16860] loop5: detected capacity change from 0 to 2048
[  236.403718][T16860] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.423490][T16860] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  236.450476][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.523445][T16873] loop1: detected capacity change from 0 to 2048
[  236.532946][T16873] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.545747][T16869] Restarting kernel threads ...
[  236.550933][T16869] Done restarting kernel threads.
[  236.562743][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.581588][T16877] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4399'.
[  236.759057][T16883] lo speed is unknown, defaulting to 1000
[  237.001116][T16886] loop4: detected capacity change from 0 to 128
[  237.008036][T16886] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  237.023291][T16886] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  237.227639][T16889] loop0: detected capacity change from 0 to 1024
[  237.235222][T16889] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  237.243834][T16889] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  237.254919][T16889] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  237.264259][T16889] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 2: comm syz.0.4401: lblock 2 mapped to illegal pblock 2 (length 1)
[  237.278522][T16889] EXT4-fs (loop0): Remounting filesystem read-only
[  237.285149][T16889] EXT4-fs (loop0): 1 orphan inode deleted
[  237.291263][T16889] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.304100][T16889] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.555410][T16909] loop0: detected capacity change from 0 to 2048
[  237.594087][T16909] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.730201][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.754595][T16914] xt_hashlimit: max too large, truncated to 1048576
[  237.788710][T16914] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  237.869018][T16895] Set syz1 is full, maxelem 65536 reached
[  237.989097][T16924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4415'.
[  238.183731][T16924] lo speed is unknown, defaulting to 1000
[  238.268932][T16939] rdma_op ffff88811b1d4580 conn xmit_rdma 0000000000000000
[  238.369976][T16943] loop5: detected capacity change from 0 to 2048
[  238.817945][T16952] 9pnet_fd: Insufficient options for proto=fd
[  238.843621][T16954] loop1: detected capacity change from 0 to 2048
[  238.853823][T16954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.881072][T16954] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  238.908439][T16959] loop0: detected capacity change from 0 to 128
[  238.916131][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.954282][T16963] rdma_op ffff88811b1d4580 conn xmit_rdma 0000000000000000
[  239.117505][T16973] loop1: detected capacity change from 0 to 2048
[  239.347807][T16984] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4436'.
[  239.384849][T16985] 9pnet_fd: Insufficient options for proto=fd
[  239.520110][T16987] lo speed is unknown, defaulting to 1000
[  239.613663][T16990] loop3: detected capacity change from 0 to 2048
[  239.630654][T16990] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  240.034218][T16999] loop4: detected capacity change from 0 to 512
[  240.063280][T16999] ext4 filesystem being mounted at /235/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  240.378558][T17019] 9pnet_fd: Insufficient options for proto=fd
[  240.754710][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  240.754728][   T29] audit: type=1326 audit(1749193517.108:25420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.801747][T17021] loop4: detected capacity change from 0 to 1024
[  240.809154][   T29] audit: type=1326 audit(1749193517.138:25421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.832844][   T29] audit: type=1326 audit(1749193517.138:25422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.841405][T17021] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  240.856569][   T29] audit: type=1326 audit(1749193517.138:25423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.889089][   T29] audit: type=1326 audit(1749193517.138:25424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.912717][   T29] audit: type=1326 audit(1749193517.138:25425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.936686][   T29] audit: type=1326 audit(1749193517.138:25426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.960349][   T29] audit: type=1326 audit(1749193517.138:25427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.984220][   T29] audit: type=1326 audit(1749193517.138:25428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  240.991002][T17021] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  241.007965][   T29] audit: type=1326 audit(1749193517.138:25429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17020 comm="syz.4.4448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b744ce929 code=0x7ffc0000
[  241.020367][T17021] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  241.055733][T17021] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 2: comm syz.4.4448: lblock 2 mapped to illegal pblock 2 (length 1)
[  241.070044][T17021] EXT4-fs (loop4): Remounting filesystem read-only
[  241.078215][T17021] EXT4-fs (loop4): 1 orphan inode deleted
[  241.089722][T17025] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.160646][T17027] netlink: 'syz.0.4450': attribute type 10 has an invalid length.
[  241.168723][T17027] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4450'.
[  241.204104][T17027] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  241.222831][T17027] team0: Failed to send options change via netlink (err -105)
[  241.230448][T17027] team0: Port device geneve1 added
[  241.288732][T17025] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.345328][T17034] xt_hashlimit: max too large, truncated to 1048576
[  241.362669][T17034] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  241.378149][T17025] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.523598][T17025] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.660462][T17025] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.672795][T17025] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.685106][T17025] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.697468][T17025] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.673930][T17088] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4472'.
[  242.688998][T17080] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4469'.
[  242.730891][T17090] loop3: detected capacity change from 0 to 2048
[  242.735082][T17092] loop0: detected capacity change from 0 to 2048
[  242.790800][T17095] openvswitch: netlink: Message has 6 unknown bytes.
[  242.916485][T17100] lo speed is unknown, defaulting to 1000
[  243.256463][T17115] 9pnet_fd: Insufficient options for proto=fd
[  243.875624][T17128] loop4: detected capacity change from 0 to 128
[  243.890701][T17129] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4485'.
[  243.970877][T17131] netlink: 596 bytes leftover after parsing attributes in process `syz.0.4487'.
[  244.072136][T17134] loop0: detected capacity change from 0 to 1024
[  244.083501][T17133] loop4: detected capacity change from 0 to 2048
[  244.104814][T17134] EXT4-fs: Ignoring removed nomblk_io_submit option
[  244.228808][T17136] loop5: detected capacity change from 0 to 2048
[  244.393620][T17133] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  244.410334][T17136] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  244.496995][T17152] 9pnet_fd: Insufficient options for proto=fd
[  244.507213][T17159] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4495'.
[  244.700522][T17159] lo speed is unknown, defaulting to 1000
[  245.435076][T17182] 9pnet_fd: Insufficient options for proto=fd
[  245.620583][T17188] lo speed is unknown, defaulting to 1000
[  245.809930][T17188] loop1: detected capacity change from 0 to 8192
[  246.044134][T17192] loop1: detected capacity change from 0 to 2048
[  246.072196][T17192] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  246.161669][T17196] Restarting kernel threads ...
[  246.166770][T17196] Done restarting kernel threads.
[  246.187931][   T29] kauditd_printk_skb: 124 callbacks suppressed
[  246.187949][   T29] audit: type=1326 audit(1749193522.538:25552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.219397][   T29] audit: type=1326 audit(1749193522.538:25553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.243131][   T29] audit: type=1326 audit(1749193522.538:25554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.266947][   T29] audit: type=1326 audit(1749193522.538:25555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.290896][   T29] audit: type=1326 audit(1749193522.538:25556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.314515][   T29] audit: type=1326 audit(1749193522.538:25557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.338347][   T29] audit: type=1326 audit(1749193522.538:25558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.362018][   T29] audit: type=1326 audit(1749193522.538:25559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.385604][   T29] audit: type=1326 audit(1749193522.538:25560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.409312][   T29] audit: type=1326 audit(1749193522.538:25561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17197 comm="syz.1.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  246.439171][T17202] 9pnet_fd: Insufficient options for proto=fd
[  246.466781][T17204] rdma_op ffff888113b81180 conn xmit_rdma 0000000000000000
[  246.521664][T17211] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4512'.
[  246.539911][T17213] FAULT_INJECTION: forcing a failure.
[  246.539911][T17213] name failslab, interval 1, probability 0, space 0, times 0
[  246.552738][T17213] CPU: 0 UID: 0 PID: 17213 Comm: syz.4.4513 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  246.552771][T17213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  246.552847][T17213] Call Trace:
[  246.552854][T17213]  <TASK>
[  246.552871][T17213]  __dump_stack+0x1d/0x30
[  246.552915][T17213]  dump_stack_lvl+0xe8/0x140
[  246.552940][T17213]  dump_stack+0x15/0x1b
[  246.552961][T17213]  should_fail_ex+0x265/0x280
[  246.553067][T17213]  should_failslab+0x8c/0xb0
[  246.553100][T17213]  kmem_cache_alloc_noprof+0x50/0x310
[  246.553133][T17213]  ? getname_flags+0x80/0x3b0
[  246.553226][T17213]  getname_flags+0x80/0x3b0
[  246.553259][T17213]  __x64_sys_renameat2+0x6c/0x90
[  246.553290][T17213]  x64_sys_call+0x2bf6/0x2fb0
[  246.553312][T17213]  do_syscall_64+0xd2/0x200
[  246.553407][T17213]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  246.553478][T17213]  ? clear_bhb_loop+0x40/0x90
[  246.553505][T17213]  ? clear_bhb_loop+0x40/0x90
[  246.553571][T17213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.553598][T17213] RIP: 0033:0x7f8b744ce929
[  246.553617][T17213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.553641][T17213] RSP: 002b:00007f8b72b37038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  246.553664][T17213] RAX: ffffffffffffffda RBX: 00007f8b746f5fa0 RCX: 00007f8b744ce929
[  246.553685][T17213] RDX: ffffffffffffff9c RSI: 0000200000000440 RDI: ffffffffffffff9c
[  246.553713][T17213] RBP: 00007f8b72b37090 R08: 0000000000000000 R09: 0000000000000000
[  246.553727][T17213] R10: 0000200000000480 R11: 0000000000000246 R12: 0000000000000001
[  246.553738][T17213] R13: 0000000000000000 R14: 00007f8b746f5fa0 R15: 00007ffcfcd9fbe8
[  246.553761][T17213]  </TASK>
[  246.776644][T17221] loop0: detected capacity change from 0 to 2048
[  246.802191][T17221] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  246.888723][T17227] lo speed is unknown, defaulting to 1000
[  246.934917][T17233] loop4: detected capacity change from 0 to 128
[  247.129042][T17246] 9pnet_fd: Insufficient options for proto=fd
[  247.143248][T17248] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.203466][T17248] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.245361][T17250] netlink: 'syz.0.4524': attribute type 10 has an invalid length.
[  247.253489][T17250] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4524'.
[  247.268584][T17248] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.313220][T17248] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.373535][T17254] loop3: detected capacity change from 0 to 128
[  247.387399][T17252] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.425673][T17248] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  247.440931][T17248] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  247.457335][T17252] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.503729][T17259] netlink: 'syz.5.4525': attribute type 10 has an invalid length.
[  247.511647][T17259] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4525'.
[  247.513453][T17248] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  247.536258][T17259] team0: Port device geneve1 added
[  247.546775][T17248] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  247.560374][T17252] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.616251][T17252] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.671048][T17252] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  247.683580][T17252] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  247.695542][T17252] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  247.707379][T17252] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  248.592664][T17304] xt_hashlimit: max too large, truncated to 1048576
[  248.599999][T17304] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  248.705961][T17319] 9pnet_fd: Insufficient options for proto=fd
[  248.772220][T17325] 9pnet_fd: Insufficient options for proto=fd
[  248.797455][T17329] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4557'.
[  248.859305][T17335] loop5: detected capacity change from 0 to 2048
[  248.883350][T17335] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  248.967590][T17344] loop5: detected capacity change from 0 to 128
[  248.984249][T17347] lo speed is unknown, defaulting to 1000
[  249.312019][T17368] Restarting kernel threads ...
[  249.317803][T17368] Done restarting kernel threads.
[  249.463335][T17379] 9pnet_fd: Insufficient options for proto=fd
[  249.659399][T17385] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4581'.
[  249.682792][T17390] FAULT_INJECTION: forcing a failure.
[  249.682792][T17390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  249.695964][T17390] CPU: 0 UID: 0 PID: 17390 Comm: +}[@ Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  249.695999][T17390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  249.696016][T17390] Call Trace:
[  249.696038][T17390]  <TASK>
[  249.696048][T17390]  __dump_stack+0x1d/0x30
[  249.696074][T17390]  dump_stack_lvl+0xe8/0x140
[  249.696135][T17390]  dump_stack+0x15/0x1b
[  249.696156][T17390]  should_fail_ex+0x265/0x280
[  249.696180][T17390]  should_fail+0xb/0x20
[  249.696200][T17390]  should_fail_usercopy+0x1a/0x20
[  249.696237][T17390]  _copy_to_user+0x20/0xa0
[  249.696268][T17390]  simple_read_from_buffer+0xb5/0x130
[  249.696330][T17390]  proc_fail_nth_read+0x100/0x140
[  249.696359][T17390]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  249.696387][T17390]  vfs_read+0x19d/0x6f0
[  249.696411][T17390]  ? __rcu_read_unlock+0x4f/0x70
[  249.696479][T17390]  ? __fget_files+0x184/0x1c0
[  249.696509][T17390]  ksys_read+0xda/0x1a0
[  249.696596][T17390]  __x64_sys_read+0x40/0x50
[  249.696674][T17390]  x64_sys_call+0x2d77/0x2fb0
[  249.696700][T17390]  do_syscall_64+0xd2/0x200
[  249.696759][T17390]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  249.696784][T17390]  ? clear_bhb_loop+0x40/0x90
[  249.696804][T17390]  ? clear_bhb_loop+0x40/0x90
[  249.696829][T17390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.696886][T17390] RIP: 0033:0x7f514bead33c
[  249.696900][T17390] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  249.696919][T17390] RSP: 002b:00007f514a517030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  249.696942][T17390] RAX: ffffffffffffffda RBX: 00007f514c0d5fa0 RCX: 00007f514bead33c
[  249.697011][T17390] RDX: 000000000000000f RSI: 00007f514a5170a0 RDI: 0000000000000005
[  249.697087][T17390] RBP: 00007f514a517090 R08: 0000000000000000 R09: 0000000000000000
[  249.697100][T17390] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  249.697112][T17390] R13: 0000000000000000 R14: 00007f514c0d5fa0 R15: 00007ffd6f7c66a8
[  249.697130][T17390]  </TASK>
[  250.025601][T17404] loop3: detected capacity change from 0 to 128
[  250.033638][T17404] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  250.046431][T17404] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  250.167426][T17407] xt_hashlimit: max too large, truncated to 1048576
[  250.203529][T17407] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  250.246320][T17419] xt_TPROXY: Can be used only with -p tcp or -p udp
[  250.259259][T17419] loop5: detected capacity change from 0 to 164
[  250.266533][T17419] iso9660: Unknown parameter ''
[  250.336451][T17423] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4597'.
[  250.350540][T17421] loop5: detected capacity change from 0 to 1024
[  250.362714][T17421] EXT4-fs: Ignoring removed mblk_io_submit option
[  250.369524][T17421] EXT4-fs: Ignoring removed nobh option
[  250.375363][T17421] EXT4-fs: Ignoring removed bh option
[  250.416509][T17421] EXT4-fs mount: 18 callbacks suppressed
[  250.416530][T17421] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.439146][T17421] xt_TPROXY: Can be used only with -p tcp or -p udp
[  250.459407][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.521534][T17437] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4601'.
[  250.597743][T17423] lo speed is unknown, defaulting to 1000
[  250.685774][T17452] 9pnet_fd: Insufficient options for proto=fd
[  250.721268][T17456] FAULT_INJECTION: forcing a failure.
[  250.721268][T17456] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.734533][T17456] CPU: 0 UID: 0 PID: 17456 Comm: syz.4.4609 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  250.734611][T17456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  250.734627][T17456] Call Trace:
[  250.734635][T17456]  <TASK>
[  250.734644][T17456]  __dump_stack+0x1d/0x30
[  250.734671][T17456]  dump_stack_lvl+0xe8/0x140
[  250.734696][T17456]  dump_stack+0x15/0x1b
[  250.734717][T17456]  should_fail_ex+0x265/0x280
[  250.734810][T17456]  should_fail+0xb/0x20
[  250.734832][T17456]  should_fail_usercopy+0x1a/0x20
[  250.734896][T17456]  _copy_to_user+0x20/0xa0
[  250.734928][T17456]  simple_read_from_buffer+0xb5/0x130
[  250.735027][T17456]  proc_fail_nth_read+0x100/0x140
[  250.735052][T17456]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  250.735081][T17456]  vfs_read+0x19d/0x6f0
[  250.735157][T17456]  ? sg_ioctl+0x12fb/0x1360
[  250.735197][T17456]  ksys_read+0xda/0x1a0
[  250.735224][T17456]  __x64_sys_read+0x40/0x50
[  250.735250][T17456]  x64_sys_call+0x2d77/0x2fb0
[  250.735358][T17456]  do_syscall_64+0xd2/0x200
[  250.735395][T17456]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  250.735440][T17456]  ? clear_bhb_loop+0x40/0x90
[  250.735467][T17456]  ? clear_bhb_loop+0x40/0x90
[  250.735495][T17456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.735579][T17456] RIP: 0033:0x7f8b744cd33c
[  250.735598][T17456] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  250.735696][T17456] RSP: 002b:00007f8b72b37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  250.735720][T17456] RAX: ffffffffffffffda RBX: 00007f8b746f5fa0 RCX: 00007f8b744cd33c
[  250.735737][T17456] RDX: 000000000000000f RSI: 00007f8b72b370a0 RDI: 0000000000000004
[  250.735753][T17456] RBP: 00007f8b72b37090 R08: 0000000000000000 R09: 0000000000000000
[  250.735807][T17456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  250.735820][T17456] R13: 0000000000000000 R14: 00007f8b746f5fa0 R15: 00007ffcfcd9fbe8
[  250.735844][T17456]  </TASK>
[  251.006282][T17464] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4613'.
[  251.130753][T17467] xt_hashlimit: max too large, truncated to 1048576
[  251.138484][T17470] loop1: detected capacity change from 0 to 2048
[  251.158634][T17467] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  251.267064][T17479] 9pnet_fd: Insufficient options for proto=fd
[  251.303444][T17482] xt_hashlimit: max too large, truncated to 1048576
[  251.312834][T17482] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  251.341502][T17476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4618'.
[  251.365973][   T29] kauditd_printk_skb: 236 callbacks suppressed
[  251.365992][   T29] audit: type=1326 audit(1749193527.718:25798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.400920][T17485] loop1: detected capacity change from 0 to 128
[  251.408672][   T29] audit: type=1326 audit(1749193527.718:25799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.432428][   T29] audit: type=1326 audit(1749193527.718:25800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.456241][   T29] audit: type=1326 audit(1749193527.718:25801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.479914][   T29] audit: type=1326 audit(1749193527.718:25802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.503920][   T29] audit: type=1326 audit(1749193527.718:25803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.527590][   T29] audit: type=1326 audit(1749193527.718:25804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.551191][   T29] audit: type=1326 audit(1749193527.728:25805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.575048][   T29] audit: type=1326 audit(1749193527.728:25806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.598728][   T29] audit: type=1326 audit(1749193527.728:25807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17484 comm="syz.1.4621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f514beae929 code=0x7ffc0000
[  251.734550][T17509] loop5: detected capacity change from 0 to 2048
[  251.790535][T17516] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4634'.
[  251.968026][T17524] lo speed is unknown, defaulting to 1000
[  252.450042][T17528] loop0: detected capacity change from 0 to 128
[  252.597838][T17531] xt_hashlimit: max too large, truncated to 1048576
[  252.604847][T17531] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  252.721901][T17534] Restarting kernel threads ...
[  252.731180][T17534] Done restarting kernel threads.
[  252.843592][T17544] loop1: detected capacity change from 0 to 2048
[  253.022829][T17551] FAULT_INJECTION: forcing a failure.
[  253.022829][T17551] name failslab, interval 1, probability 0, space 0, times 0
[  253.035534][T17551] CPU: 0 UID: 0 PID: 17551 Comm: syz.5.4645 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  253.035564][T17551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.035593][T17551] Call Trace:
[  253.035603][T17551]  <TASK>
[  253.035613][T17551]  __dump_stack+0x1d/0x30
[  253.035640][T17551]  dump_stack_lvl+0xe8/0x140
[  253.035666][T17551]  dump_stack+0x15/0x1b
[  253.035688][T17551]  should_fail_ex+0x265/0x280
[  253.035714][T17551]  should_failslab+0x8c/0xb0
[  253.035746][T17551]  kmem_cache_alloc_noprof+0x50/0x310
[  253.035781][T17551]  ? vm_area_dup+0x33/0x2c0
[  253.035817][T17551]  ? __rcu_read_unlock+0x4f/0x70
[  253.035847][T17551]  vm_area_dup+0x33/0x2c0
[  253.035885][T17551]  __split_vma+0xe9/0x610
[  253.035914][T17551]  ? refill_obj_stock+0x254/0x2e0
[  253.035961][T17551]  vms_gather_munmap_vmas+0x172/0x7a0
[  253.035997][T17551]  ? mas_find+0x515/0x610
[  253.036036][T17551]  mmap_region+0x4ce/0x1560
[  253.036071][T17551]  ? __rcu_read_unlock+0x4f/0x70
[  253.036095][T17551]  ? mntput_no_expire+0x6f/0x3c0
[  253.036128][T17551]  ? __rcu_read_unlock+0x4f/0x70
[  253.036156][T17551]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  253.036206][T17551]  do_mmap+0x9b3/0xbe0
[  253.036253][T17551]  __se_sys_remap_file_pages+0x55e/0x600
[  253.036287][T17551]  ? fput+0x8f/0xc0
[  253.036321][T17551]  __x64_sys_remap_file_pages+0x67/0x80
[  253.036344][T17551]  x64_sys_call+0x2c64/0x2fb0
[  253.036364][T17551]  do_syscall_64+0xd2/0x200
[  253.036399][T17551]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  253.036431][T17551]  ? clear_bhb_loop+0x40/0x90
[  253.036456][T17551]  ? clear_bhb_loop+0x40/0x90
[  253.036481][T17551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.036506][T17551] RIP: 0033:0x7fd36afae929
[  253.036524][T17551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.036546][T17551] RSP: 002b:00007fd3695f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[  253.036570][T17551] RAX: ffffffffffffffda RBX: 00007fd36b1d6080 RCX: 00007fd36afae929
[  253.036596][T17551] RDX: 0000000000000000 RSI: 0000000000400d00 RDI: 000020000051c000
[  253.036611][T17551] RBP: 00007fd3695f6090 R08: 0000000000000000 R09: 0000000000000000
[  253.036625][T17551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.036640][T17551] R13: 0000000000000000 R14: 00007fd36b1d6080 R15: 00007ffff410a038
[  253.036664][T17551]  </TASK>
[  253.316315][T17555] loop1: detected capacity change from 0 to 128
[  253.432221][T17566] Restarting kernel threads ...
[  253.437946][T17566] Done restarting kernel threads.
[  253.472545][T17572] bond1: entered promiscuous mode
[  253.477720][T17572] bond1: entered allmulticast mode
[  253.483358][T17572] 8021q: adding VLAN 0 to HW filter on device bond1
[  253.493736][T17572] bond1 (unregistering): Released all slaves
[  253.575684][T17577] loop3: detected capacity change from 0 to 2048
[  253.623455][T17579] xt_hashlimit: max too large, truncated to 1048576
[  253.624288][T17577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.651899][T17579] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  253.661810][T17577] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  253.709153][T12972] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.823709][T17588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4659'.
[  253.941399][T17602] loop1: detected capacity change from 0 to 128
[  254.019964][T17611] 9pnet_fd: Insufficient options for proto=fd
[  254.057477][T17609] loop1: detected capacity change from 0 to 128
[  254.065271][T17609] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  254.079296][T17609] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  254.376628][T17637] loop4: detected capacity change from 0 to 2048
[  254.503011][T17644] 9pnet_fd: Insufficient options for proto=fd
[  254.552826][T17648] loop5: detected capacity change from 0 to 2048
[  254.602315][T17652] loop4: detected capacity change from 0 to 128
[  254.617202][T17654] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[  254.644293][T17658] loop5: detected capacity change from 0 to 128
[  254.660319][T17658] bio_check_eod: 80 callbacks suppressed
[  254.660341][T17658] syz.5.4686: attempt to access beyond end of device
[  254.660341][T17658] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  254.680961][T17658] syz.5.4686: attempt to access beyond end of device
[  254.680961][T17658] loop5: rw=2049, sector=169, nr_sectors = 16 limit=128
[  254.695936][T17658] syz.5.4686: attempt to access beyond end of device
[  254.695936][T17658] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  254.709994][T17658] syz.5.4686: attempt to access beyond end of device
[  254.709994][T17658] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  254.731317][T17662] loop4: detected capacity change from 0 to 512
[  254.731824][T17658] syz.5.4686: attempt to access beyond end of device
[  254.731824][T17658] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  254.751849][T17662] EXT4-fs: Ignoring removed oldalloc option
[  254.753364][T17658] syz.5.4686: attempt to access beyond end of device
[  254.753364][T17658] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  254.766587][T17662] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.4688: Parent and EA inode have the same ino 15
[  254.771353][T17658] syz.5.4686: attempt to access beyond end of device
[  254.771353][T17658] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  254.784619][T17662] EXT4-fs (loop4): Remounting filesystem read-only
[  254.797743][T17658] syz.5.4686: attempt to access beyond end of device
[  254.797743][T17658] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128
[  254.803497][T17662] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  254.819551][T17658] syz.5.4686: attempt to access beyond end of device
[  254.819551][T17658] loop5: rw=2049, sector=289, nr_sectors = 9 limit=128
[  254.830239][T17662] EXT4-fs (loop4): 1 orphan inode deleted
[  254.846776][T17662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.887316][T17669] xt_hashlimit: max too large, truncated to 1048576
[  254.894299][T17669] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  254.915270][T13645] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.952727][T17675] 9pnet_fd: Insufficient options for proto=fd
[  255.015684][T17682] loop4: detected capacity change from 0 to 128
[  255.057681][T17686] bond2: entered promiscuous mode
[  255.063048][T17686] bond2: entered allmulticast mode
[  255.068517][T17686] 8021q: adding VLAN 0 to HW filter on device bond2
[  255.079851][T17686] bond2 (unregistering): Released all slaves
[  255.109487][T17694] loop0: detected capacity change from 0 to 512
[  255.116388][T17694] EXT4-fs: Ignoring removed nomblk_io_submit option
[  255.134878][T17694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.147687][T17694] ext4 filesystem being mounted at /331/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  255.258536][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.278996][T17703] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4702'.
[  255.289371][T17704] xt_hashlimit: max too large, truncated to 1048576
[  255.297508][T17704] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  255.313930][T17706] loop0: detected capacity change from 0 to 128
[  255.368447][T17714] loop0: detected capacity change from 0 to 2048
[  255.468965][T17725] 9pnet_fd: Insufficient options for proto=fd
[  255.559365][T17733] 9pnet_fd: Insufficient options for proto=fd
[  255.571706][T17735] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.606914][T17739] FAULT_INJECTION: forcing a failure.
[  255.606914][T17739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  255.620082][T17739] CPU: 0 UID: 0 PID: 17739 Comm: syz.0.4718 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  255.620175][T17739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  255.620224][T17739] Call Trace:
[  255.620231][T17739]  <TASK>
[  255.620241][T17739]  __dump_stack+0x1d/0x30
[  255.620267][T17739]  dump_stack_lvl+0xe8/0x140
[  255.620348][T17739]  dump_stack+0x15/0x1b
[  255.620365][T17739]  should_fail_ex+0x265/0x280
[  255.620452][T17739]  should_fail+0xb/0x20
[  255.620472][T17739]  should_fail_usercopy+0x1a/0x20
[  255.620551][T17739]  strncpy_from_user+0x25/0x230
[  255.620643][T17739]  ? kmem_cache_alloc_noprof+0x186/0x310
[  255.620765][T17739]  ? getname_flags+0x80/0x3b0
[  255.620860][T17739]  getname_flags+0xae/0x3b0
[  255.620892][T17739]  path_setxattrat+0x223/0x310
[  255.620978][T17739]  __x64_sys_lsetxattr+0x71/0x90
[  255.621005][T17739]  x64_sys_call+0x1e36/0x2fb0
[  255.621027][T17739]  do_syscall_64+0xd2/0x200
[  255.621060][T17739]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  255.621100][T17739]  ? clear_bhb_loop+0x40/0x90
[  255.621127][T17739]  ? clear_bhb_loop+0x40/0x90
[  255.621164][T17739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.621254][T17739] RIP: 0033:0x7ff109c1e929
[  255.621278][T17739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.621300][T17739] RSP: 002b:00007ff108287038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  255.621323][T17739] RAX: ffffffffffffffda RBX: 00007ff109e45fa0 RCX: 00007ff109c1e929
[  255.621417][T17739] RDX: 0000200000000240 RSI: 0000200000000200 RDI: 00002000000001c0
[  255.621434][T17739] RBP: 00007ff108287090 R08: 0000000000000000 R09: 0000000000000000
[  255.621460][T17739] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  255.621483][T17739] R13: 0000000000000000 R14: 00007ff109e45fa0 R15: 00007ffe42537a28
[  255.621507][T17739]  </TASK>
[  255.821726][T17735] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.873941][T17749] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4721'.
[  255.885409][T17735] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.897257][T17752] netlink: 'syz.4.4716': attribute type 10 has an invalid length.
[  255.905219][T17752] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4716'.
[  255.924568][T17752] team0: Failed to send port change of device geneve1 via netlink (err -105)
[  255.933504][T17752] team0: Failed to send options change via netlink (err -105)
[  255.940971][T17752] team0: Port device geneve1 added
[  255.974372][T17735] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.102964][T17749] lo speed is unknown, defaulting to 1000
[  256.116985][T17761] xt_hashlimit: max too large, truncated to 1048576
[  256.132187][T17761] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  256.136457][T17735] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  256.207546][T17735] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  256.219988][T17735] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  256.243343][T17735] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  256.381685][   T29] kauditd_printk_skb: 341 callbacks suppressed
[  256.381700][   T29] audit: type=1326 audit(1749193532.738:26149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.416969][T17773] loop5: detected capacity change from 0 to 128
[  256.425676][   T29] audit: type=1326 audit(1749193532.768:26150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.449356][   T29] audit: type=1326 audit(1749193532.768:26151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.473167][   T29] audit: type=1326 audit(1749193532.768:26152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.496791][   T29] audit: type=1326 audit(1749193532.768:26153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.520499][   T29] audit: type=1326 audit(1749193532.768:26154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.544138][   T29] audit: type=1326 audit(1749193532.768:26155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.567865][   T29] audit: type=1326 audit(1749193532.768:26156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.591736][   T29] audit: type=1326 audit(1749193532.768:26157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.615305][   T29] audit: type=1326 audit(1749193532.768:26158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17772 comm="syz.5.4730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd36afae929 code=0x7ffc0000
[  256.666560][T17778] loop4: detected capacity change from 0 to 128
[  256.705249][T17782] loop0: detected capacity change from 0 to 2048
[  256.737707][T17782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.771862][T17786] Restarting kernel threads ...
[  256.776971][T17782] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  256.777914][T17786] Done restarting kernel threads.
[  256.814956][T12394] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.874604][T17796] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4740'.
[  256.913521][T17807] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=17807 comm=syz.0.4743
[  256.927953][T17807] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=17807 comm=syz.0.4743
[  256.941202][T17807] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=17807 comm=syz.0.4743
[  257.019928][T17816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4747'.
[  257.100161][T17817] xt_hashlimit: max too large, truncated to 1048576
[  257.108372][T17817] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  257.236468][T17816] lo speed is unknown, defaulting to 1000
[  257.290465][T17824] loop1: detected capacity change from 0 to 2048
[  257.324011][T17824] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.344531][T17824] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  257.371992][T13322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.431761][T17831] Restarting kernel threads ...
[  257.436771][T17831] Done restarting kernel threads.
[  257.464722][T17835] 9pnet_fd: Insufficient options for proto=fd
[  257.501260][T17839] loop4: detected capacity change from 0 to 128
[  257.515222][T17839] syz.4.4755: attempt to access beyond end of device
[  257.515222][T17839] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  257.604997][T17850] loop1: detected capacity change from 0 to 128
[  257.605477][T17851] loop5: detected capacity change from 0 to 2048
[  257.624025][T17851] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.648162][T17851] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  257.675539][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.701748][T17857] Restarting kernel threads ...
[  257.706791][T17857] Done restarting kernel threads.
[  257.718924][T17863] 9pnet_fd: Insufficient options for proto=fd
[  257.775140][T17873] loop3: detected capacity change from 0 to 128
[  258.552496][T17887] loop5: detected capacity change from 0 to 2048
[  258.573195][T17887] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.594113][T17887] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  258.624172][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.639625][T17893] 9pnet_fd: Insufficient options for proto=fd
[  258.719533][T17903] loop3: detected capacity change from 0 to 2048
[  258.746550][T17907] loop5: detected capacity change from 0 to 1024
[  258.770547][T17907] EXT4-fs: Ignoring removed nobh option
[  258.776315][T17907] EXT4-fs: Ignoring removed bh option
[  258.788926][T17907] EXT4-fs (loop5): stripe (14) is not aligned with cluster size (16), stripe is disabled
[  258.836399][T17916] xt_hashlimit: max too large, truncated to 1048576
[  258.843238][T17916] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  258.849674][T17907] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.131979][T17920] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4783'.
[  259.143112][T17920] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4783'.
[  259.252274][T17925] 9pnet_fd: Insufficient options for proto=fd
[  259.287731][T17919] ==================================================================
[  259.295872][T17919] BUG: KCSAN: data-race in __writeback_single_inode / xas_clear_mark
[  259.303978][T17919] 
[  259.306305][T17919] write to 0xffff88811a007254 of 4 bytes by task 17907 on cpu 0:
[  259.314027][T17919]  xas_clear_mark+0x16b/0x180
[  259.318722][T17919]  __folio_start_writeback+0x2ce/0x440
[  259.324283][T17919]  ext4_bio_write_folio+0x5ad/0x9f0
[  259.329494][T17919]  mpage_submit_folio+0xe4/0x170
[  259.334446][T17919]  mpage_process_page_bufs+0x39b/0x4a0
[  259.339995][T17919]  mpage_prepare_extent_to_map+0x741/0xaa0
[  259.345825][T17919]  ext4_do_writepages+0xa1a/0x21c0
[  259.350953][T17919]  ext4_writepages+0x176/0x300
[  259.355733][T17919]  do_writepages+0x1c3/0x310
[  259.360327][T17919]  file_write_and_wait_range+0x156/0x2c0
[  259.365968][T17919]  generic_buffers_fsync_noflush+0x45/0x120
[  259.371944][T17919]  ext4_sync_file+0x1ab/0x690
[  259.376635][T17919]  vfs_fsync_range+0x10d/0x130
[  259.381399][T17919]  ext4_buffered_write_iter+0x34f/0x3c0
[  259.387009][T17919]  ext4_file_write_iter+0xdbf/0xf00
[  259.392217][T17919]  iter_file_splice_write+0x5f2/0x970
[  259.397609][T17919]  direct_splice_actor+0x156/0x2a0
[  259.402734][T17919]  splice_direct_to_actor+0x312/0x680
[  259.408125][T17919]  do_splice_direct+0xda/0x150
[  259.412933][T17919]  do_sendfile+0x380/0x650
[  259.417370][T17919]  __x64_sys_sendfile64+0x105/0x150
[  259.422576][T17919]  x64_sys_call+0xb39/0x2fb0
[  259.427174][T17919]  do_syscall_64+0xd2/0x200
[  259.431695][T17919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.437597][T17919] 
[  259.439915][T17919] read to 0xffff88811a007254 of 4 bytes by task 17919 on cpu 1:
[  259.447537][T17919]  __writeback_single_inode+0x1f9/0x7c0
[  259.453105][T17919]  writeback_single_inode+0x167/0x3e0
[  259.458506][T17919]  sync_inode_metadata+0x5b/0x90
[  259.463474][T17919]  generic_buffers_fsync_noflush+0xd9/0x120
[  259.469393][T17919]  ext4_sync_file+0x1ab/0x690
[  259.474079][T17919]  vfs_fsync_range+0x10d/0x130
[  259.478854][T17919]  ext4_buffered_write_iter+0x34f/0x3c0
[  259.484410][T17919]  ext4_file_write_iter+0xdbf/0xf00
[  259.489617][T17919]  iter_file_splice_write+0x5f2/0x970
[  259.495000][T17919]  direct_splice_actor+0x156/0x2a0
[  259.500122][T17919]  splice_direct_to_actor+0x312/0x680
[  259.505504][T17919]  do_splice_direct+0xda/0x150
[  259.510277][T17919]  do_sendfile+0x380/0x650
[  259.514697][T17919]  __x64_sys_sendfile64+0x105/0x150
[  259.519898][T17919]  x64_sys_call+0xb39/0x2fb0
[  259.524489][T17919]  do_syscall_64+0xd2/0x200
[  259.529015][T17919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.534907][T17919] 
[  259.537232][T17919] value changed: 0x0e000021 -> 0x04000021
[  259.542954][T17919] 
[  259.545282][T17919] Reported by Kernel Concurrency Sanitizer on:
[  259.551444][T17919] CPU: 1 UID: 0 PID: 17919 Comm: syz.5.4783 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(voluntary) 
[  259.563614][T17919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  259.573689][T17919] ==================================================================
[  259.733434][T15451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.