last executing test programs:

2.694601376s ago: executing program 4 (id=1481):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014001700b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r1}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

2.607269485s ago: executing program 2 (id=1483):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000002d80)={0x0, 0x0, &(0x7f0000002d40)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000020301020000000000000000000000000900020000000047020000000800034000000000080001"], 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0xfffffea4, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000180)="bd2191d2a65d02aa13ede03e90c413776c91b17e28c4b6f14b4825c10be1dec1b7c8c6b62904111283293c0b1a24f90e21ae3310096b217d61245bdbce1cfd6d285faee9406e08b873174a11687497f73cc6c65a2f6a2353e67246b79ddfcf4b889edbe39ce7cc891fcb98c6a08448bb1548e66c866a39ec0cde341e4284d88d5a48d17f5ca60a6fba720b7047bb468f875fb481fcebb57368b313453c7278b5b9c8b2c613365ecf46ddc54318aae2d317e8ee60b349da10f9391fdeb1c5b201a7a2efe92149313ca2d986220183dec23d71f07498748f8ef148d04b4015258d022c05709f547882cf1cc1ea68b4546fd6eb2442251f6dcd", &(0x7f0000000280)=@tcp=r0, 0x2}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0x2, 0x4fd, &(0x7f0000000b00)="$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")
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0xee01, 0x1000)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @remote, @initdev}, &(0x7f0000000080)=0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
open_tree(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8100)
umount2(&(0x7f0000000040)='.\x00', 0x2)

2.565655569s ago: executing program 4 (id=1486):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500000000fd8f711075000000000072050200000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
gettid()
timer_create(0x0, 0x0, &(0x7f0000000300))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlink(&(0x7f00000003c0)='./file0/file0/..\x00', &(0x7f0000000240)='./file1\x00')

2.473865508s ago: executing program 2 (id=1487):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f00000000c0)='.\x00', 0xa4000061)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = syz_clone(0x0, 0x0, 0x43, 0x0, 0x0, 0x0)
symlinkat(&(0x7f00000004c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000480)='./file0/../file0\x00')
read(r1, &(0x7f0000000140)=""/68, 0x44)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={r5, 0xccab}, 0x8)
getrandom(&(0x7f0000000000)=""/47, 0x2f, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000"], 0x50)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYRES32=r2], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000003c0)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x20, 0x103)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYBLOB="e5ffbe60e0116729d9e4b0d5d01a30df6f69719cc784dd8827cd0baf5e83c497300299b7f604d0471515a4e2f2a0c0a4d1113418963c60a68e637bb3b77be250f0931a52f9d47546c90d6ae2623a8fbd406c2adf13980c2de75a18891141aedf4e61cadd152e1f7b93e31dd53429b42c43a3fc48d6ce1687b5eed8cee16989afba49284a700f710dba6c778650729db41d24806701f209c73c1b04b9f62faa1af1dd9fb7491a4a6b7ca6f1275bd8f83254", @ANYRES8=r3], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
close(r8)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x5, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000085a46251d162fdfd8982651af98208587067560816339000000029b11b3ceaec04d45d98f4cddf198796000000", @ANYRESOCT=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x10, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000202020871af8ff00000000bfa100f50000000007010020f8ffffffb702000008000000b703000000000000850000007200000095", @ANYRESOCT=0x0], &(0x7f0000000280)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f00000000c0)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r10, 0x400454cd, 0x20)

2.300154365s ago: executing program 3 (id=1491):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x800090, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x6, 0x2d1, &(0x7f0000000740)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
ftruncate(r0, 0xc17a)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x7c}}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000e, 0x6c033, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x30, r3, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x400c0c4}, 0x4000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0xd)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r6, 0x4b68, 0x0)

2.189433436s ago: executing program 2 (id=1492):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = io_uring_setup(0x792b, &(0x7f0000000600)={0x0, 0x2002, 0x400, 0x0, 0x4b1})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0xffffffffffffff3c, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f"}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a"}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae"}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
socket$nl_route(0x10, 0x3, 0x0)
socket(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x142, 0x106)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x3, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}, {0x8, 0x5, 0xd, 0x3e51}, {0xd, 0x8, 0x3, 0x8}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x9400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x9, 0x7}, 0x100, 0xa88, 0x8406, 0x5, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0x46}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
ioperm(0x4, 0x1, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18000, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES16=0x0, @ANYRES32, @ANYBLOB="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", @ANYRESOCT], 0x8, 0x2f6, &(0x7f0000000880)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=@newtfilter={0x4e8, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xf}, {}, {0x9, 0x2}}, [@filter_kind_options=@f_u32={{0x8}, {0x4bc, 0x2, [@TCA_U32_POLICE={0x444, 0x6, [@TCA_POLICE_RATE={0x404, 0x2, [0x2dbc04b6, 0x1, 0x10, 0xa, 0x4, 0x0, 0x3, 0x10, 0x7, 0x9, 0x0, 0xd, 0x8, 0x5, 0x7f, 0x9, 0x9, 0x4, 0x81, 0x5, 0x537d, 0x0, 0xfffffffa, 0x12000000, 0x6, 0x3, 0x4, 0x0, 0xffffffff, 0x8, 0x0, 0x1, 0x7, 0x7fff, 0x0, 0x8, 0x10, 0x258, 0x5, 0x8, 0x4, 0x1d, 0x5, 0x1, 0xfffff173, 0x1, 0x401, 0x7, 0x8000, 0x10000, 0xe, 0x3, 0x1, 0xd, 0x8, 0x0, 0x0, 0x4, 0xa79, 0x5, 0xc, 0x2, 0x0, 0x30000, 0xd, 0x81, 0xfff, 0x40, 0xfffeffff, 0x7fff, 0x6b81102, 0x7f, 0xfffffffe, 0x800000, 0x6, 0x8, 0x0, 0xe, 0x20000, 0xffff, 0x80000001, 0x1, 0x99c, 0x4, 0x8, 0x6, 0x7, 0xfffffffb, 0x1ff, 0x3ff, 0x0, 0x40, 0xfc5, 0x800000, 0xb422, 0x7, 0x1, 0x8, 0x1, 0xa0bd, 0x200, 0x400, 0x1, 0xc, 0xff, 0x3, 0x2, 0xffffffc0, 0x8, 0x8001, 0x3f3, 0x8, 0x9, 0xf, 0x4, 0x3, 0x0, 0x6, 0xd, 0x8, 0x9, 0x800, 0x0, 0x9, 0x3, 0x8, 0x2, 0xf4, 0x81, 0x0, 0x6, 0x200, 0xad07, 0x8001, 0x8, 0x9, 0x100, 0x1, 0xb10, 0x8, 0x7, 0xfff, 0xa, 0x4e, 0x80, 0xfec300, 0xe815, 0x1, 0xfffffff9, 0xfffff801, 0x9, 0x1, 0xff, 0x7, 0x7, 0x7, 0x8001, 0x7, 0x1ff, 0x401, 0x5, 0x2, 0x1ff, 0x4, 0x2, 0x5f, 0x2, 0x1, 0x1, 0xb, 0x7, 0xb, 0x7, 0x9, 0x9, 0x68, 0x8, 0x6, 0x4, 0x9ca, 0x100, 0x9, 0xfff, 0xfffffffd, 0x1, 0xf, 0x2, 0xfffffff8, 0x80000001, 0x4, 0x3, 0x8, 0x8, 0x9, 0x3, 0x1, 0x7, 0x8, 0x5, 0x4, 0xc, 0x0, 0xf, 0x80000000, 0x5, 0x5, 0xfffffff7, 0xd6f, 0x4, 0x38, 0x1, 0x6, 0x9bb, 0xd31d, 0xfff, 0xfff, 0x40, 0x101, 0x3, 0x4, 0x0, 0x1ff, 0x6, 0x0, 0x9, 0x1, 0x4, 0x0, 0x1000, 0x5, 0x1c000000, 0x1, 0x6, 0x9, 0x6, 0x3, 0x1, 0x0, 0x10000, 0x2, 0x7, 0x7, 0x6, 0xfffffff0, 0x2, 0x3, 0x8090, 0x7, 0x6d8, 0xfffffffb, 0x6, 0x400, 0x800, 0x8, 0x6, 0x76]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x6e8ccd9d, 0x8, 0x9, 0x9, 0x7fffffff, {0x8, 0x2, 0x92fd, 0x0, 0x1, 0x100}, {0x1, 0x2, 0xab11, 0x7, 0x8}, 0x3, 0x2, 0x6}}]}, @TCA_U32_SEL={0x74, 0x5, {0x10, 0x9, 0x6, 0x10da, 0xa760, 0x0, 0x10, 0x100, [{0x1000, 0xe, 0xfffff000, 0x9f6}, {0xdeb2, 0x3, 0x6, 0x3}, {0x1, 0xfffffffb, 0x100, 0x3ff}, {0x200, 0x3ff, 0x3, 0x4}, {0x9, 0x7, 0x40, 0x80}, {0x3ff, 0xb, 0x3, 0xa6d}]}}]}}]}, 0x4e8}, 0x1, 0x0, 0x0, 0xccd4ddef28b9e10e}, 0x40094)
ioctl$sock_inet6_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000500)={@mcast2, 0x16})
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x0)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x2000, 0x0)
msgrcv(r5, &(0x7f0000001080)={0x0, ""/1}, 0x2000, 0x2, 0x3000)

2.062054068s ago: executing program 3 (id=1493):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x141900)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000340)={{0x80, 0xfc}, 'port0\x00', 0x0, 0x60004, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1})
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_io_uring_setup(0x14f, &(0x7f0000000e80)={0x0, 0x657f, 0x1000, 0x1, 0x290}, &(0x7f0000000f00), &(0x7f0000000f40))
r1 = syz_open_procfs(0x0, &(0x7f0000000940)='net/snmp\x00')
readv(r1, &(0x7f0000000140)=[{&(0x7f0000000040)=""/140, 0x8c}], 0x1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3800002, 0x204031, 0xffffffffffffffff, 0x2798c000)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGKBDIACR(r2, 0x4b4a, &(0x7f0000000000)=""/34)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x80}, 'port0\x00', 0x25, 0x60041, 0x8000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x9})
close(0x3)

1.930457761s ago: executing program 3 (id=1494):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x4050)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)
socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x26)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r6, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
socket$netlink(0x10, 0x3, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x14)
statx(0xffffffffffffffff, &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x7100, 0x1, 0x0)

1.859064968s ago: executing program 3 (id=1495):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r1 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x4}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
semctl$IPC_SET(0x0, 0x0, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r1, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
pause()
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001500)={0x0, 0x0, 0x0}, 0x4000)
sched_setscheduler(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000180)={0x57, 0x0, 0x0, {0xfffe, 0x1}, {0x74, 0x2}, @rumble={0xa8, 0x5}})

1.816611502s ago: executing program 1 (id=1496):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
readlink(&(0x7f0000000080)='./cgroup\x00', &(0x7f00000005c0)=""/15, 0xf)

1.747004869s ago: executing program 1 (id=1497):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000040)={0x6e7, {{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x1, 0x9, [{{0x2, 0x4e24, @loopback}}, {{0x2, 0x4e21, @multicast1}}, {{0x2, 0x4e23, @local}}, {{0x2, 0x4e21, @local}}, {{0x2, 0x4e22, @private=0xa010101}}, {{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {{0x2, 0x4e20, @broadcast}}, {{0x2, 0x4e24, @rand_addr=0x64010101}}, {{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x19}}}]}, 0x510)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000600)={0x756, {0x20, 0xc743, 0x7, 0x3ff, 0x3}})
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000640)=0x16, 0x4)
syz_open_dev$usbfs(&(0x7f0000000680), 0xfcba, 0xc00)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000006c0), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f0000000700)={'system_u:object_r:scanner_device_t:s0', 0x20, 'system_u:object_r:audit_spool_t:s0', 0x20, 0x3, 0x20, 'unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00'}, 0x8c)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f00000007c0)={<r3=>0x0, 0x1}, &(0x7f0000000800)=0x8)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000840)={r3, 0x1}, &(0x7f0000000880)=0x8)
fcntl$setpipe(r1, 0x407, 0xa5)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f00000008c0))
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000900)={r3, 0x9, 0x2, 0x80000000}, 0x10)
r5 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000009c0), r0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r5, &(0x7f0000000a80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x38, r6, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x38}}, 0x0)
r7 = getpgrp(0x0)
r8 = getpgrp(0x0)
r9 = gettid()
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000c00)={'\x00', 0x7, 0x71, 0x58, 0x5b3, 0x200, <r10=>0x0})
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000c80)={'\x00', 0x40, 0x1, 0x2e, 0x100000001, 0x1, <r11=>0xffffffffffffffff})
syz_clone3(&(0x7f0000000d40)={0x4020080, &(0x7f0000000ac0), &(0x7f0000000b00), &(0x7f0000000b40), {0x2c}, &(0x7f0000000b80)=""/39, 0x27, &(0x7f0000000bc0)=""/24, &(0x7f0000000d00)=[0xffffffffffffffff, r7, r8, r9, r10, r11], 0x6, {r4}}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000dc0)={r3, 0x1}, 0x8)
r12 = syz_init_net_socket$llc(0x1a, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r12, 0x8982, &(0x7f0000000e00))
r13 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r13, 0x11b, 0x4, &(0x7f0000000e80)={&(0x7f0000000e40)=""/24, 0x230000, 0x1800, 0xee, 0x1}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000ec0))

1.667062437s ago: executing program 1 (id=1498):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2000, 0x0)
syz_open_dev$sg(0x0, 0xd, 0x200000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b7030000070000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@noblock_validity}]}, 0x1, 0xbb6, &(0x7f0000000c00)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtIxk5nEZDLHpr8fvDnve96TeZ4nJ5nzHpiTAJ5ak9mXNOJIRJxPIsbr+9OIGKj2hiLWa8c9vH91NmtJVCpv/5ZEEhEP7l+dbbxWUt+O1gdDEXH7tST+/VFr3OXVtcWZcrm0VB8fX7l45fjy6torCxdnLpQulC6dmn711PTp6eku1nr3yntfPPPDG89fv/nx1JufH/ouibMxVp9rrqNbJmNy42fSrBARM90OlpO+ej3NdSaFHBMCAKCjtGkN998Yj754vHgbj29/zDU5AAAAoCsqfREVAAAA4IBL3P8DAADAAdf4HMCD+1dnGy3fTyT01r1zETFRq7/xfHNtphDr1e1Q9EfEyO9JND/WmtS+bc8ms0hff1/KWmz3HPJwFwJusn4tIv6/1flPqvVPVJ/ibq0/jYipLsSf3DTu9e/fXuo/24X4edcPwNPp1rnahaz1+pfW1j+DtdHm619hi2vXbuR9/Wus/x62rP/SjfVfX5v131s7jHH00Uu32801r//e/eTnuSx+tt1TUX/DvWsRRwtb1Z9s1J+0qf/8DmOMzt690W4uqz+rt9F6XX/lZsSx6mqutf6GpNP/Jzo+v1AuTdW+bvH6q6c7x28+/1nL4jfuBXohO/8jsbvzf2WHMSb+9+uRdnPb15/+MpC8U+0N1Pd8OLOysnQiYiB5vXX/yc65NI5pvEZW/4vPdf7736r+7D1hvf5zyH57rtW32fj6ppijx05+tfv691dW/9wuz/+nO4zx5Tc33m83l3f9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwZ0ogYiyQtbvTTtFiMGI2I/8RIWr68vPLy/OUPLs1lcxET0Z/OL5RLUxExXhsn2fhEtf94fHLTeDoiDkfEZ+PD1XFx9nJ5Lu/iAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2DAaEWORpMWISCPij/E0LRbzzgoAAADouom8EwAAAAD2nft/AAAAOPha7v8LfxkN9TIXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADqTDz966k0TE+pnhassM1Of6c80M2G/pzg4b2e88gN7ryzsBIDeFpn6lUqnkmArQY+7xgWSb+aG2M4NdzwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf64Xjty6k0TE+pnhassM1Of6c80M2G9p3gkAuenrNJlsuwN4ghXyTgDIjXt8oLayf1SpaZ0favudg3uOCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCTY6zakrQYEWm1n6bFYsS/ImIi+pP5hXJpKiIORcRP4/2D2fhE3kkDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQdcura4sz5XJpSUdHp4ud4ehZrOH6H3ObYwbbT3Xo5PzGBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABALpZX1xZnyuXS0nLemQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5W15dW5wpl0tL+9jJu0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLzZwAAAP//0L4Jug==")
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r2 = open(&(0x7f0000000240)='./file2\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

1.550915969s ago: executing program 4 (id=1499):
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x18)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r2, 0x40045402, &(0x7f0000000140)=0x1)
read(r2, &(0x7f0000000180)=""/65, 0x41)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f00000000c0)={0x7, 0x9dc5, 0x0, 0x0, 0xf})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)

1.439681019s ago: executing program 0 (id=1500):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x6}, 0x4)
close(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1, 0x0, 0x1}, 0x18)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x2)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="01000100fe00000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)

1.339776669s ago: executing program 4 (id=1501):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001803000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000380)={[{@grpquota}, {@data_ordered}, {@init_itable_val={'init_itable', 0x3d, 0x101}}, {@nobh}]}, 0x1, 0x520, &(0x7f0000001000)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
timer_create(0x0, 0x0, &(0x7f0000000300))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x21c91c, &(0x7f0000000900)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000000}}, {@noblock_validity}, {@mblk_io_submit}, {@jqfmt_vfsold}, {@nodelalloc}, {@nomblk_io_submit}, {@usrjquota}, {@minixdf}, {@resgid, 0x32}]}, 0x1e, 0x4ea, &(0x7f00000009c0)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000200)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x1, 0x246, 0x2, 0xfffffffffffffffa, 0xffffffffffffffff, 0x0, 0x7fff, 0x9b})

1.32795963s ago: executing program 0 (id=1502):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006d"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendfile(r0, r0, 0x0, 0xd)

1.248260708s ago: executing program 0 (id=1503):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x800090, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x6, 0x2d1, &(0x7f0000000740)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
ftruncate(r0, 0xc17a)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x7c}}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000e, 0x6c033, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x30, r3, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x400c0c4}, 0x4000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0xd)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r6, 0x4b68, 0x0)

1.064690466s ago: executing program 0 (id=1504):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendfile(r0, r0, &(0x7f0000000080)=0x8, 0xd)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0xf69, 0x4040)
ioctl$TUNSETOFFLOAD(r3, 0x541b, 0xf0ff1f00000002)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="09000000070000000000010003"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00'}, 0x18)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
writev(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)='?', 0x1}], 0x1)
r7 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmsg(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x32)
write(r8, &(0x7f00000001c0)="49bda8f11851b8436bebb25ac5f8202ffbcc3d0b6c01", 0x16)
sendfile(r8, r1, 0x0, 0x3ffff)
sendfile(r8, r1, 0x0, 0x7ffffffffffffffd)
epoll_create(0x80f04)
socket$nl_route(0x10, 0x3, 0x0)

1.047431568s ago: executing program 1 (id=1505):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
getsockopt$nfc_llcp(r5, 0x118, 0x4, 0x0, 0x0)
sendmmsg$inet6(r2, &(0x7f00000024c0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffe00}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000040)="6eb79ef94ce952944dc0e223e8437111f8ef70db310490593804bd07152b8cafe0760456e76fd4ffad7384335b219f62a60b65ad56b5ae11c2ad0a0223a96116aa87680604b2ba563205ef17253d39ccb4a0caa9a813210c1c093717cdcd04de76708bff20ea89a2f5ba7021cb37d80eeec4d92824971e8c296b5fb3b4eff3c6ae3e7e37dbb47b35dac99c05011b1a12fab0f0abe35eea0367986789d42d4d4d041a171e31da047e675434dba73b8b0599a38e2666a3a55529dca36329b3f9160d8e4bd878f1e7495b8e5c143b3462a2bd28252376300e96e087977fb8c207efd6a9ead16991491bffbe53c903f79543", 0xf0}, {&(0x7f0000000140)="22ce5846e4935904b088c14712df9d18dd6f97f3e0e6df98e23fb4aed11bb495454aea7e07c67bd715cf1199cdd305af236a33a51fec1e64bffd844b215f13a065e89604932d985c8cc20b74fa2d774b72e1eecc23be392663c785b174f5857d3c908e269d6d7cc7d40be30e62e43907a003a95411cebdc6399f63a642485b7d69be62dcdcebf26fb298bca91a454ccffa6f65d24cb5364d2a24ebc5a8702c99d6735874e02bb4e5af78d1cbb3792e19c07012f9c2809bd1160e59d0d7f0b331f655f2ae0dbc34873e705ccaabc85d20f27b4a89bd", 0xd5}, {&(0x7f0000000240)="b9411d0cd4513a8b2dd98b4da930b192a837be0c6d26be62c63c6944bce1a0f122453f0f03d3e01b8af5aee2acd43d3f7f0595d9d065133d84d46c00092530092158a7ab4bf33a12f397356acb70e42eddcb043f097f7c8d98b68500c4d1e15714e681f10b2029c47a595359b0051b27088affccc7b354439fef94ca4b843b8729e0a2fb70f34fef786d1b8ba67a6517812f88761f2b947fc925e322735e50a0b0187cf40651541539a593028c158cc4db642b1287b84cb264d99361894f6f26cbd3381e5025abf925af1d7794fabf3871d48501702fd9339e892eaea7e51acb0bedb1", 0xe3}, {&(0x7f0000000340)="44d8c1d4921e16cbb8b29fe3123746487cb352e0de94a3c72c565376486bb96fa286458a99d6b229bd7f98a934e4ba13d07266e155c12873cdb794c351d0071d16694525266dac554929c64f928c131eebff4c", 0x53}, {&(0x7f00000003c0)="4a000819e6ba919b7273f439a42779c129e5c89333d451beb9d93f128ae57e7fc65accf869122ea7fc32a4a0", 0x2c}, {&(0x7f0000000400)="1be14c68600fd7ed71c8b40afa2d0ba36f586e58e52b002043df18897611f836795da489ec0fea28b4da0d0c2d5e1061fb718513485635dd5a92d3c0d9cab4a3ebe9ef36656fc1b24ac80c01777f6d4ab3eeab7a4cc25fb04d719b59b19afbde268e22acfce8d747324bc7701edb137c4135cd202300f685f9f7f6ad15c42cafcc1c24adefd6eefb1382b95be5dc6a28a3edd392f151028a557fa2c5e672b4bdba7f9637dfef0f2062b0053f9cf5aa5ce68ce877e8a3836fdd55e6aca7e6bf5636ecdc587c", 0xc5}], 0x6, &(0x7f0000000580)=[@rthdrdstopts={{0x158, 0x29, 0x37, {0x33, 0x27, '\x00', [@hao={0xc9, 0x10, @empty}, @enc_lim={0x4, 0x1, 0x4}, @generic={0x4, 0x54, "3f1306e87e88478942853c64d094e7b4eeb1371ff5c982d551e02610f4646cec163228af77ed7430281e9bcdbb946bdc6d0e81fc813d8aa54ee6f145a9cf94efdced4f4396add8eac0d9f1a8f3560e4a7ef83f9e"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x2a}}, @generic={0x3, 0x6c, "56b4f0145b74e7d90e6159904fb568bcca464b4bf1b3bd6af2d07bd1d3c6fab80ad382d6c22c7701c5def9a12fc52aabc9a9d5dc8bd2b8269bb6e98cf69f22bc9be4a153886da5248b75773aa74f232a6cc45d0753e30265d6cf958a6f6db5b87a986d567d14120dcb5429c0"}, @calipso={0x7, 0x38, {0x3, 0xc, 0x0, 0x7, [0x4163d5ed, 0x551, 0x0, 0x0, 0x100000000, 0x8000000000000000]}}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x34}}}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x6}]}}}], 0x158}}, {{&(0x7f0000000700)={0xa, 0x4e20, 0xf5, @private0, 0x1}, 0x1c, &(0x7f0000000c80)=[{&(0x7f0000000740)="bad646aa03da37dbfa0f30a81cf9e90837504caf93937c5c4b659d2cfa36c44022256722e28096754f4de828abe543134187384f1d03420271197eae6422556a96b5242a562239637c7175ecfe8675431f6810effe82f7050c908a3cf0f1d7a823cf35b6b9bf053fadc532c914faedf210a8cfe33bd631e2ff79e565402bde92381261d1341fb99eac0f664e4f02d4225c6132c65acd06cb86ad667def249e2ca469b6eba5dafb597a37f87bdb79c85557be016f21df42217cd6ba43de77dfe18922c9f67e5266f486c9b374ea63d30f630847984cc8ce9fd608", 0xda}, {&(0x7f0000000840)}, {&(0x7f0000000940)="86c7030cf6e627fed236685a5d9848fe5ad089c8dda0b5eec9dde0aca25da19ff36cc6f8410b08a8eb194fbdbb4450ee5fa7be169d6cc18240697af4b89c31b862f8a395ccdf58643eedd7dfd36be8666ba8e3a16ffcc2e92c796153523c01d3302ec4be078bb3530b845865c672d3f52fae4a5d3d8c4f150268fbf666aa", 0x7e}, {&(0x7f00000009c0)="9a73073fe8f6e6013f4897b351887a8dacebacadc2f68a0781033ad8ce5d03c6e3ab14d365aa7c561ba74d4b2ce1cf4bae0c3caed45f6191e5a5c7d0ea9118d2bcb7a297b57ac33a99bd323abb3f614afa77fb742daf", 0x56}, {&(0x7f0000000a40)="4fe87d8bde689566e837eb5633389422060e57887b51f5c60e970d24cc4bcd705a79b2df02dcf5c42893e1d6de79f48c4b612b6d8c5d5c1900156dc81b47b770e377c1ace74bd37c2ceafba4fa83f595638d131f4cc63e1f102faf2cb0e3a3459487b6361fc9b6b4fe7d170d8ea0c562e550affc7ba9984482c55fc35eabca3374a09248564b397b0b", 0x89}, {&(0x7f0000000b00)="488bb7cc4f69cb", 0x7}, {&(0x7f0000000b40)="531e8112c4fc4f9f3240e39c5168be58c365ff963603a434afeaf37dddeef70949cf60aafc3947deae8883a5886e50ba297975eda953a41984a8dac49aeacbb910b6d561ed679e809510dcc347cf0dcab6470e242a97cb92", 0x58}, {&(0x7f0000000bc0)="e87a25ff52303e7f71164535c0e51968eae12446119121618eee24fc55d7813275298767b8dc5aec9e4dd430f2947dd006f4f010ea3b0c0dc015ef1f3ca147581d5fe56eac520f238fefa1ce75c50d48583c6a631b3da368036e1ae5411a2e798257a3cc0a14a157921f", 0x6a}, {&(0x7f0000000c40)="7d7361b018743e6bb007f77f423bf4e09056c4aa75983e", 0x17}], 0x9, &(0x7f0000000d40)=[@tclass={{0x14, 0x29, 0x43, 0x1}}, @tclass={{0x14, 0x29, 0x43, 0x6}}, @dstopts={{0x110, 0x29, 0x37, {0x2c, 0x1e, '\x00', [@generic={0x2, 0xdb, "47b01cc343e98c9ef612689779f2c76cd21dc41917c31ecda43bb882fd9ee1a2571dff827b9d03f785e49e29dfac190fa75902ec652d89549d86cb8567571071d4bc620c1be4ea6c3cd192e6fc2c019cbefce8d574dceda0baaa05ee75a2351bc53d7801a54cb07aaccefbbe45d193f8c956eda346bf5a0c2b37002eb11c3c699ed3bd7dce0f50e4ae04d6dabb0b43878b2d9c886ec003f751870e3ccb1b32d5bf5b994848bb947550b021470e2908f0fe406809b2ba456965090e824083147bcbae15b59fdc301ee83bcb6a16f70d360b6270fcd943e852e9d639"}, @ra={0x5, 0x2, 0x2}, @calipso={0x7, 0x8, {0x3, 0x0, 0x3, 0xd}}, @pad1, @ra={0x5, 0x2, 0x4}]}}}, @hopopts_2292={{0x30, 0x29, 0x36, {0x4e50cd32d2027e11, 0x2, '\x00', [@pad1, @hao={0xc9, 0x10, @mcast2}]}}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x5c, 0x10, 0x0, 0x8, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote]}}}], 0x208}}, {{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000f80)="3d40edeae88bc70bf37388a27897db4f54ae5cb8ef3b22bf8a0212264d4e42f9a1ebdabf83d3398a8d23c74d326b7862f5fd33adb09e56f60f409be471ea5b27a278e797eaff12eb3fa076a3a86c7353600712fe8c30884e08422e7ee87ac8007a2a4b23776d21a85b8c5dcf77438d002d73bfbcfedf3f7e75efe8bc5d9b261719457d53098975a9497e01413f80b4f4c34b2909a9092f5df824c843d89a23499774fad30d904c3fbe437b7983751fd8260ae8a71a4702f14b2b3abb85dbccf0cf9e9e5f097b3d01507fe31834558b02e4af419f45f77f4c13", 0xd9}, {&(0x7f0000001080)="98ef204d7bc983f8ef72166e22962adbeefd5f4bb118e29a47125fd6e617d9d17b5884a3e345608a16d417343149b92b322d06067e78f86fe8866c696211730b1d169bd2d5394c86979b553266e404ff8b7ad8969727b75f27dbe4aa5e4986d4691755e59fc69019a9dda0f2b40c2871584ed7fce24c7ed50d8c352db07d187848f41ded002f03d0435ec381175e30d2c5a8d5d42bb22a79d493a98b462f4ada9d879372af314999780923c60aa38b", 0xaf}, {&(0x7f0000001140)="9f1e69a153b91e25bc4b69a5174a89fb142944746d7018d2121f5b388d", 0x1d}, {&(0x7f0000001180)="e08dafa0837d1491a5c70a6d59301860a63dc162d652bd115538fdad9c3794c8c41fd9a5d822e0c2b4d2c684b1a3b83af99a89a7002c6fbc80f7c246a759e440b81f82418ebb08c4cd3fabf9b19d8bad3e27192ab9a84596907ffc0045227fbbe60bc5cfed2bafa4e62b6743868e74f91dd5b6c6f845789c5b6cd570e4720ab0c02c691f7fd1002544eaeba68288b14f6ac096", 0x93}], 0x4, &(0x7f0000001280)=[@flowinfo={{0x14, 0x29, 0xb, 0x8}}, @pktinfo={{0x24, 0x29, 0x32, {@remote, r4}}}, @rthdr={{0x68, 0x29, 0x39, {0x2c, 0xa, 0x0, 0x3, 0x0, [@private1={0xfc, 0x1, '\x00', 0x1}, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @loopback}, @private1]}}}, @hopopts={{0x1138, 0x29, 0x36, {0x2b, 0x223, '\x00', [@generic={0x4, 0x1000, "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"}, @jumbo, @ra={0x5, 0x2, 0x9}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x10, {0x3, 0x2, 0xd, 0x1, [0x6]}}, @hao={0xc9, 0x10, @local}, @generic={0xb, 0xc5, "af2d4472a2c70936dc59413ff68699f571b73e9121cdf0b25e7061abc03f9470d59d7bfdae49ff7594dde4c31d61976dc0ff3cc9544730b41f0c2dacb49e2c3981092b2042fde2339b47fefe315c63f90d7a2f122d67440af9dd4b59e7a13ae5b86f860f83aa7190dbd5d5bd1f1196086bb83e52aa54cb142fc2bca5d1f12468680d45c0ce26240047d9fe2875f7c5482719cad3f22609a9fc790a69333e7617917e2c097ab3507a688e27b6a0ab4ad2297adf42a4479fda61298fe7e4ee346d426d76f3bd"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @mcast1}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x16}}], 0x1210}}], 0x3, 0x0)

1.006617942s ago: executing program 3 (id=1506):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
prlimit64(0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x20040040)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="180800001bc80a000000000000000001851000000200000018000000", @ANYRES32, @ANYBLOB="000000000000000066080000040001011800000000000000000000000000000095000000000000001826", @ANYRES32=r0, @ANYBLOB="0000000040000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a0000fdffffff85000000060000fe24009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b705000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
syz_clone(0xa1000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtKxk5nGdGaOSX8/eHPe97wn8zxPTmfOe2BOA3hqTWc/0ohDEXE2iZis708jYqjaG4nYrB13/+7l+awlUam8/VsSSUTcu3t5vvFaSX07Xh+MRMTN15L490etcVfXN5bnyuXSSn18dO38paOr6xuvLJ2fO1c6V7pwYvbVE7MnZ2e7WOvtS+998cwPbzx/9frHM29+fuC7JE7HRH2uuY5umY7prb9Js0JEzHU7WE4G6vU015kUckwIAICO0qY13H9jMgbi4eJtMr79MdfkAAAAgK6oDERUAAAAgH0ucf8PAAAA+1zjewD37l6eb7R8v5HQX3fORMRUrf7G8821mUJsVrcjMRgRY78n0fxYa1L7tSc2nUX6+vtS1qJHzyF3snklIv6/3flPqvVPVZ/ibq0/jYiZLsSffmS8l+o/3YX4edcPwNPpxpnahaz1+pdurX9im+tfYZtr127kff1rrP/ut6z/HtY/0Gb999YOYxx+8NLNdnPN6793P/l5IYufbZ+oqL/hzpWIw4Xt6k+26k/a1H92hzHG529fazeX1Z/V22j9rr9yPeJIdTXXWn9D0un/Jzq6uFQuzdR+bvP66yc7x28+/1nL4jfuBfohO/9jsbvzf2mHMab+9+uhdnOPrz/9ZSh5p9obqu/5cG5tbeVYxFDyeuv+451zaRzTeI2s/hef6/z+367+7DNhs/53yP71XKlvs/HVR2KOHzn+1e7r762s/oVdnv9Pdxjjy2+uvd9uLu/6AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANgb0oiYiCQtbvXTtFiMGI+I/8RYWr64uvby4sUPLixkcxFTMZguLpVLMxExWRsn2fhYtf9wfPyR8WxEHIyIzyZHq+Pi/MXyQt7FAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsGU8IiYiSYsRkUbEH5NpWizmnRUAAADQdVN5JwAAAAD0nPt/AAAA2P9a7v8LfxmN9DMXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qWDz964lUTE5qnRassM1ecGc80M6LV0Z4eN9ToPoP8G8k4AyE2hqV+pVCo5pgL0mXt8IHnM/EjbmeGu5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP9cLh27cSiJi89RotWWG6nODuWYG9FqadwJAbgY6TSaP3QHsYYW8EwBy4x4fqK3sH1RqWudH2v7m8BNHBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDvmKi2JC1GRFrtp2mxGPGviJiKwWRxqVyaiYgDEfHT5OBwNj6Wd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03er6xvJcuVxa0dHR6WJnNPoWa7T+Zm5zzHD7qQ6dnD+YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIxer6xvJcuVxaWc07EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBvq+sby3Plcmmlh528awQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID9/BgAA///GyAmy")
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000000)=0x9, 0x8, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

841.595198ms ago: executing program 2 (id=1507):
syz_extract_tcp_res$synack(&(0x7f00000007c0)={0x41424344, <r0=>0x41424344}, 0x1, 0x0)
syz_emit_ethernet(0x92, &(0x7f0000000700)={@local, @random="4bac0a17a4e4", @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x2, 0x2, 0x84, 0x64, 0x0, 0x0, 0x6, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x3e}, {[@cipso={0x86, 0x17, 0xffffffffffffffff, [{0x5, 0x11, "afcf26c9b6fb7c38c13ca7f690bb93"}]}]}}, {{0x4e20, 0x4e22, r0, 0x41424344, 0x1, 0x0, 0x5, 0x20, 0x5, 0x0, 0x4}, {"f924149b039b6d5e607ebe4c4dcea4996d85a795d3d4780e19d06e255ee2f3d95541ff999d8b1f9a108f433011473cb999262784d71df4ca7d1438ceb6e0bb1960b20151"}}}}}}, 0x0)

769.562185ms ago: executing program 1 (id=1508):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
readlink(&(0x7f0000000080)='./cgroup\x00', &(0x7f00000005c0)=""/15, 0xf)

669.213045ms ago: executing program 2 (id=1509):
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x71, 0x71, 0x3, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x1, 0x5a7, 0x1}, {0x4, 0x610, 0xe90}, {0x5, 0xfffffff8, 0x6}, {0x4, 0x7f0, 0x80000000}, {0x3, 0x9, 0xff}, {0x5, 0xe34, 0x1}], 'l'}, @decl_tag={0xd, 0x0, 0x0, 0x11, 0x5, 0xfffffffe}, @type_tag={0xc, 0x0, 0x0, 0x12, 0x3}]}, {0x0, [0x2e]}}, &(0x7f0000000bc0)=""/4096, 0x8f, 0x1000, 0x0, 0x9}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback=0x15, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000180)=0x2, 0x4)
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x108)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140100001a0001002bbd7000fbdbdf25e0000001000000000000000000000000e00000010000000000000000000000cbc872e016069c9b190bc188004e24fff74e2200000200200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff010000000000000000000000000001000004d33c000000e000000100000000000000000000000001000000000000000800000000000000060000000000000096676a00000000005b22000000000000020000000000000008000000000000006106000000000000e60000000000000001000000000000800400000000000000ff0700000000000006000000000000800500000025bd7000033500000200020f000000000000000008001e000300000008001d000500000014000e00ffffffff00"/204], 0x114}, 0x1, 0x0, 0x0, 0xc008040}, 0x4000010)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
connect$inet6(r2, &(0x7f0000000300)={0xa, 0x3, 0x8, @loopback, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "41328ac34a4ad2ba", "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "89b06aff130000fd"}, 0x38)
sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[@ip_tos_int={{0x14, 0x11a, 0x1, 0x8}}, @ip_tos_u8={{0x11, 0x11a, 0x1, 0x1}}], 0x30}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r7=>0x0})
bind$can_raw(r6, &(0x7f0000000200)={0x1d, r7}, 0x10)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r7, {0x1}, {0xffff, 0xa}, {0x1}}}, 0x24}}, 0x80)

645.021957ms ago: executing program 1 (id=1510):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500000000fd8f711075000000000072050200000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
gettid()
timer_create(0x0, 0x0, &(0x7f0000000300))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlink(&(0x7f00000003c0)='./file0/file0/..\x00', &(0x7f0000000240)='./file1\x00')

320.010769ms ago: executing program 4 (id=1511):
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x18)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r2, 0x40045402, &(0x7f0000000140)=0x1)
read(r2, &(0x7f0000000180)=""/65, 0x41)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f00000000c0)={0x7, 0x9dc5, 0x0, 0x0, 0xf})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)

125.877918ms ago: executing program 2 (id=1512):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_read_part_table(0x106b, &(0x7f0000002280)="$eJzsz7FJxkAcxuH3ckm8YOcCrmFpEbCxVNzFRgVHcALBxspaN3ALV8gCEQNxBP2K5+nux8vBP/yrqWsnb8nZY31KS3Kf5GZIUscxSfkdfnxe/jyG56UdpdSc91te319u91FN+ovlKsN6V77Wbmtlntr+xXycpHs4rXuo169/eCoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHKzvAAAA//8EGhD+")

113.909009ms ago: executing program 0 (id=1513):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006d"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendfile(r0, r0, 0x0, 0xd)

19.124289ms ago: executing program 0 (id=1514):
socket(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x2528a0d, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000), 0x4080)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
socket$inet6(0xa, 0x3, 0xff)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x5, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x3218f72e}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xc1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x43400, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]})
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x3, 0x7, 0x3, 0x5000a, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x8, 0x0, 0x6}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='kfree\x00', r5}, 0x18)
rt_sigaction(0x1c, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r7, 0x0)
write$selinux_load(r6, &(0x7f0000000000)=ANY=[], 0xffa8)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x18)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

18.895819ms ago: executing program 3 (id=1515):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2000, 0x0)
syz_open_dev$sg(0x0, 0xd, 0x200000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000700000085000000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@noblock_validity}]}, 0x1, 0xbb6, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r2 = open(&(0x7f0000000240)='./file2\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

0s ago: executing program 4 (id=1516):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendfile(r0, r0, &(0x7f0000000080)=0x8, 0xd)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
r3 = syz_open_dev$vcsa(&(0x7f0000000000), 0xf69, 0x4040)
ioctl$TUNSETOFFLOAD(r3, 0x541b, 0xf0ff1f00000002)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="09000000070000000000010003"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00'}, 0x18)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
writev(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)='?', 0x1}], 0x1)
r7 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmsg(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x32)
write(r8, &(0x7f00000001c0)="49bda8f11851b8436bebb25ac5f8202ffbcc3d0b6c01", 0x16)
sendfile(r8, r1, 0x0, 0x3ffff)
sendfile(r8, r1, 0x0, 0x7ffffffffffffffd)
epoll_create(0x80f04)
socket$nl_route(0x10, 0x3, 0x0)

kernel console output (not intermixed with test programs):

562][ T7560] EXT4-fs (loop1): 1 orphan inode deleted
[  202.531606][ T7548] EXT4-fs error (device loop4): ext4_truncate:4637: inode #12: comm syz.4.1132: mark_inode_dirty error
[  202.556423][ T7560] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.574071][ T7548] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[  202.608175][ T7548] EXT4-fs (loop4): 1 truncate cleaned up
[  202.629020][ T7554] loop0: detected capacity change from 0 to 4096
[  202.634912][ T7548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.638015][ T7554] EXT4-fs: Ignoring removed nomblk_io_submit option
[  202.670694][ T7554] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.852528][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.958725][ T7575] loop3: detected capacity change from 0 to 128
[  202.998058][ T7573] loop4: detected capacity change from 0 to 8192
[  203.045805][ T7573]  loop4: p1 p2[DM] p3 p4
[  203.050429][ T7573] loop4: p1 size 196608 extends beyond EOD, truncated
[  203.067045][ T7573] loop4: p2 start 4292936063 is beyond EOD, truncated
[  203.073924][ T7573] loop4: p3 size 189005824 extends beyond EOD, truncated
[  203.103899][ T7573] loop4: p4 size 50331648 extends beyond EOD, truncated
[  203.205525][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.253723][ T7577] syz.3.1138: attempt to access beyond end of device
[  203.253723][ T7577] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  203.266322][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  203.267323][ T7577] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  203.279017][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  203.287297][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  203.306519][ T7578] syz.3.1138: attempt to access beyond end of device
[  203.306519][ T7578] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  203.319983][ T7578] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  203.329425][ T7578] syz.3.1138: attempt to access beyond end of device
[  203.329425][ T7578] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  203.342978][ T7578] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  203.386412][ T7581] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1140'.
[  203.396051][ T7581] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1140'.
[  203.398314][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  203.408015][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  203.418482][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  203.444004][ T7583] loop4: detected capacity change from 0 to 128
[  203.755311][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.773157][ T7590] syz.4.1139: attempt to access beyond end of device
[  203.773157][ T7590] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  203.786741][ T7590] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  203.808073][ T7589] loop1: detected capacity change from 0 to 4096
[  203.815069][ T7590] syz.4.1139: attempt to access beyond end of device
[  203.815069][ T7590] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  203.825840][ T7589] EXT4-fs: Ignoring removed nomblk_io_submit option
[  203.828720][ T7590] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  203.894408][ T7600] loop0: detected capacity change from 0 to 4096
[  203.911369][ T7589] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.938059][ T7600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.086851][ T7605] loop4: detected capacity change from 0 to 128
[  204.151297][ T7608] loop3: detected capacity change from 0 to 256
[  204.177433][ T7608] syz.3.1147: attempt to access beyond end of device
[  204.177433][ T7608] loop3: rw=2049, sector=256, nr_sectors = 100 limit=256
[  204.303771][ T7614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1148'.
[  204.390013][ T7614] syz.2.1148: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  204.404651][ T7614] CPU: 1 UID: 0 PID: 7614 Comm: syz.2.1148 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  204.404751][ T7614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  204.404823][ T7614] Call Trace:
[  204.404831][ T7614]  <TASK>
[  204.404841][ T7614]  __dump_stack+0x1d/0x30
[  204.404871][ T7614]  dump_stack_lvl+0xe8/0x140
[  204.404893][ T7614]  dump_stack+0x15/0x1b
[  204.404937][ T7614]  warn_alloc+0x12b/0x1a0
[  204.404987][ T7614]  ? __rcu_read_unlock+0x4f/0x70
[  204.405023][ T7614]  __vmalloc_node_range_noprof+0x9d/0xed0
[  204.405079][ T7614]  ? __futex_wait+0x1fa/0x260
[  204.405187][ T7614]  ? __pfx_futex_wake_mark+0x10/0x10
[  204.405214][ T7614]  ? __rcu_read_unlock+0x4f/0x70
[  204.405246][ T7614]  ? avc_has_perm_noaudit+0x1b1/0x200
[  204.405318][ T7614]  ? should_fail_ex+0x30/0x280
[  204.405359][ T7614]  ? xskq_create+0x36/0xe0
[  204.405413][ T7614]  vmalloc_user_noprof+0x7d/0xb0
[  204.405455][ T7614]  ? xskq_create+0x80/0xe0
[  204.405537][ T7614]  xskq_create+0x80/0xe0
[  204.405557][ T7614]  xsk_init_queue+0x95/0xf0
[  204.405582][ T7614]  xsk_setsockopt+0x3f5/0x640
[  204.405605][ T7614]  ? __pfx_xsk_setsockopt+0x10/0x10
[  204.405628][ T7614]  __sys_setsockopt+0x184/0x200
[  204.405749][ T7614]  __x64_sys_setsockopt+0x64/0x80
[  204.405859][ T7614]  x64_sys_call+0x20ec/0x3000
[  204.405892][ T7614]  do_syscall_64+0xd2/0x200
[  204.405914][ T7614]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  204.405950][ T7614]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  204.406071][ T7614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.406094][ T7614] RIP: 0033:0x7fbc8adbefc9
[  204.406115][ T7614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.406138][ T7614] RSP: 002b:00007fbc89827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  204.406162][ T7614] RAX: ffffffffffffffda RBX: 00007fbc8b015fa0 RCX: 00007fbc8adbefc9
[  204.406257][ T7614] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[  204.406272][ T7614] RBP: 00007fbc8ae41f91 R08: 0000000000000004 R09: 0000000000000000
[  204.406287][ T7614] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  204.406303][ T7614] R13: 00007fbc8b016038 R14: 00007fbc8b015fa0 R15: 00007ffc0cf23678
[  204.406327][ T7614]  </TASK>
[  204.629769][ T7614] Mem-Info:
[  204.632889][ T7614] active_anon:21869 inactive_anon:157 isolated_anon:0
[  204.632889][ T7614]  active_file:27837 inactive_file:2770 isolated_file:0
[  204.632889][ T7614]  unevictable:0 dirty:621 writeback:2
[  204.632889][ T7614]  slab_reclaimable:3348 slab_unreclaimable:15204
[  204.632889][ T7614]  mapped:35239 shmem:5695 pagetables:1730
[  204.632889][ T7614]  sec_pagetables:0 bounce:0
[  204.632889][ T7614]  kernel_misc_reclaimable:0
[  204.632889][ T7614]  free:1868505 free_pcp:7383 free_cma:0
[  204.678125][ T7614] Node 0 active_anon:87476kB inactive_anon:628kB active_file:111348kB inactive_file:11080kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:140956kB dirty:2484kB writeback:8kB shmem:22780kB kernel_stack:4336kB pagetables:6920kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  204.705868][ T7614] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  204.735596][ T7614] lowmem_reserve[]: 0 2881 7859 7859
[  204.740973][ T7614] Node 0 DMA32 free:2946744kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950272kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  204.750472][ T7611] syz.4.1146: attempt to access beyond end of device
[  204.750472][ T7611] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  204.772160][ T7614] lowmem_reserve[]: 0 0 4978 4978
[  204.785606][ T7611] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  204.790656][ T7614] Node 0 Normal free:4512172kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:87576kB inactive_anon:680kB active_file:111348kB inactive_file:11144kB unevictable:0kB writepending:2568kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:26004kB local_pcp:11836kB free_cma:0kB
[  204.832630][ T7614] lowmem_reserve[]: 0 0 0 0
[  204.837207][ T7614] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  204.850038][ T7614] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 6*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946744kB
[  204.866405][ T7614] Node 0 Normal: 763*4kB (UME) 1084*8kB (UM) 522*16kB (UME) 1402*32kB (UME) 854*64kB (UME) 517*128kB (UME) 218*256kB (UME) 85*512kB (UME) 24*1024kB (UME) 14*2048kB (UME) 1019*4096kB (UM) = 4512172kB
[  204.886264][ T7614] Node 0 hugepages_total=4 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  204.895595][ T7614] 36419 total pagecache pages
[  204.897061][ T7609] syz.4.1146: attempt to access beyond end of device
[  204.897061][ T7609] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  204.900286][ T7614] 87 pages in swap cache
[  204.900297][ T7614] Free swap  = 124616kB
[  204.900305][ T7614] Total swap = 124996kB
[  204.900312][ T7614] 2097051 pages RAM
[  204.900317][ T7614] 0 pages HighMem/MovableOnly
[  204.900324][ T7614] 81083 pages reserved
[  204.939141][ T7609] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  204.976484][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.989627][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.318742][ T7622] loop0: detected capacity change from 0 to 8192
[  205.411883][ T7631] loop2: detected capacity change from 0 to 512
[  205.418800][ T3307]  loop0: p1 p2[DM] p3 p4
[  205.430760][ T3307] loop0: p1 size 196608 extends beyond EOD, truncated
[  205.455550][ T3307] loop0: p2 start 4292936063 is beyond EOD, truncated
[  205.462476][ T3307] loop0: p3 size 189005824 extends beyond EOD, truncated
[  205.482824][ T7631] EXT4-fs: Ignoring removed bh option
[  205.491291][ T7635] loop4: detected capacity change from 0 to 128
[  205.502472][ T3307] loop0: p4 size 50331648 extends beyond EOD, truncated
[  205.517419][ T7631] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  205.530492][ T7622]  loop0: p1 p2[DM] p3 p4
[  205.535099][ T7622] loop0: p1 size 196608 extends beyond EOD, truncated
[  205.543390][ T7622] loop0: p2 start 4292936063 is beyond EOD, truncated
[  205.550345][ T7622] loop0: p3 size 189005824 extends beyond EOD, truncated
[  205.558502][ T7631] EXT4-fs (loop2): 1 truncate cleaned up
[  205.564608][ T7622] loop0: p4 size 50331648 extends beyond EOD, truncated
[  205.565648][ T7631] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.599733][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.733518][ T7643] loop2: detected capacity change from 0 to 8192
[  205.784549][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  205.785668][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  205.799431][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  205.883518][ T7646] loop0: detected capacity change from 0 to 8192
[  206.809528][ T7651] workqueue: Failed to create a rescuer kthread for wq "bond6": -EINTR
[  208.027288][ T7668] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  208.081378][ T7664] loop2: detected capacity change from 0 to 4096
[  208.139547][ T7664] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.439142][ T7683] loop4: detected capacity change from 0 to 512
[  208.446339][ T7683] EXT4-fs: Ignoring removed bh option
[  208.452287][ T7683] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  208.481722][ T7683] EXT4-fs (loop4): 1 truncate cleaned up
[  208.493925][ T7661] loop1: detected capacity change from 0 to 4096
[  208.507124][ T7661] EXT4-fs: Ignoring removed nomblk_io_submit option
[  208.515034][ T7683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.529809][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.541319][ T7661] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.576441][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.586132][ T7659] loop0: detected capacity change from 0 to 4096
[  208.593080][ T7659] EXT4-fs: Ignoring removed nomblk_io_submit option
[  208.629769][ T7659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.631218][ T7693] loop2: detected capacity change from 0 to 512
[  208.755337][ T7693] EXT4-fs: Ignoring removed bh option
[  208.815436][ T7693] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  208.856475][ T7693] EXT4-fs (loop2): 1 truncate cleaned up
[  208.862619][ T7693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.928040][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.031941][ T7697] loop4: detected capacity change from 0 to 4096
[  209.075113][ T7697] EXT4-fs: Ignoring removed nomblk_io_submit option
[  209.126729][ T7697] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.150814][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.279579][ T7711] loop1: detected capacity change from 0 to 128
[  209.581463][ T7699] loop3: detected capacity change from 0 to 128
[  209.691161][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.892640][ T7718] loop4: detected capacity change from 0 to 512
[  209.962215][ T7718] EXT4-fs: Ignoring removed nobh option
[  210.016670][ T7718] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[  210.039037][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.050238][ T7718] netlink: 'syz.4.1174': attribute type 3 has an invalid length.
[  210.063000][ T7718] loop4: detected capacity change from 0 to 512
[  210.108510][ T7718] EXT4-fs: Ignoring removed mblk_io_submit option
[  211.047249][ T7727] workqueue: Failed to create a rescuer kthread for wq "bond6": -EINTR
[  211.049931][ T7718] EXT4-fs: Ignoring removed nomblk_io_submit option
[  211.104518][ T7718] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  211.113101][ T7718] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  211.157373][ T7718] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1174: Allocating blocks 41-42 which overlap fs metadata
[  211.245655][ T7718] __quota_error: 458 callbacks suppressed
[  211.245673][ T7718] Quota error (device loop4): write_blk: dquota write failed
[  211.258970][ T7718] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5
[  211.296250][ T7718] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  211.314569][ T7734] loop0: detected capacity change from 0 to 512
[  211.321670][ T7718] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1174: Failed to acquire dquot type 1
[  211.335570][ T7718] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  211.353473][ T7740] loop3: detected capacity change from 0 to 128
[  211.364014][ T7718] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1174: corrupted inode contents
[  211.386233][ T7718] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #12: comm syz.4.1174: mark_inode_dirty error
[  211.399514][ T7734] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1177: error while reading EA inode 32 err=-116
[  211.420887][ T7718] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1174: corrupted inode contents
[  211.425671][ T7734] EXT4-fs (loop0): Remounting filesystem read-only
[  211.440050][ T7718] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.1174: mark_inode_dirty error
[  211.452036][ T7734] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  211.462431][ T7718] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1174: corrupted inode contents
[  211.474662][ T7734] EXT4-fs (loop0): 1 orphan inode deleted
[  211.514666][ T7718] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[  211.523389][ T7734] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.536664][ T7718] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1174: corrupted inode contents
[  211.555739][ T7755] netlink: 'syz.2.1183': attribute type 3 has an invalid length.
[  211.564128][ T7718] EXT4-fs error (device loop4): ext4_truncate:4637: inode #12: comm syz.4.1174: mark_inode_dirty error
[  211.584685][ T7718] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[  211.610677][ T7718] EXT4-fs (loop4): 1 truncate cleaned up
[  211.620919][ T7718] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.645344][ T7718] ext4: Unknown parameter 'ÿÿ'
[  211.664533][ T7750] loop1: detected capacity change from 0 to 512
[  211.671679][ T7716] delete_channel: no stack
[  211.679188][ T7750] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1180: error while reading EA inode 32 err=-116
[  211.693739][ T7750] EXT4-fs (loop1): Remounting filesystem read-only
[  211.700468][ T7750] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  211.711071][ T7750] EXT4-fs (loop1): 1 orphan inode deleted
[  211.718008][ T7750] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.727555][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.777497][ T7763] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1185'.
[  211.798679][ T7740] syz.3.1179: attempt to access beyond end of device
[  211.798679][ T7740] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  211.812271][ T7740] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  211.821360][ T7747] syz.3.1179: attempt to access beyond end of device
[  211.821360][ T7747] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  211.834837][ T7747] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  211.845526][ T7760] loop2: detected capacity change from 0 to 512
[  211.855814][ T7747] syz.3.1179: attempt to access beyond end of device
[  211.855814][ T7747] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  211.869349][ T7747] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  211.878923][ T7760] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1184: error while reading EA inode 32 err=-116
[  211.912037][ T7760] EXT4-fs (loop2): Remounting filesystem read-only
[  211.923391][ T7760] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  211.934125][ T7760] EXT4-fs (loop2): 1 orphan inode deleted
[  212.002963][ T7772] loop3: detected capacity change from 0 to 256
[  212.016743][ T7769] loop0: detected capacity change from 0 to 4096
[  212.113823][ T7772] syz.3.1188: attempt to access beyond end of device
[  212.113823][ T7772] loop3: rw=2049, sector=256, nr_sectors = 100 limit=256
[  212.175288][ T7772] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1188'.
[  212.241858][ T7779] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1189'.
[  212.382350][ T7783] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1192'.
[  212.461731][ T7767] loop4: detected capacity change from 0 to 128
[  212.548083][ T7794] netlink: 'syz.2.1195': attribute type 3 has an invalid length.
[  212.562437][ T7788] loop3: detected capacity change from 0 to 4096
[  212.612847][ T7796] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1197'.
[  212.622435][ T7796] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1197'.
[  212.749805][ T7802] loop0: detected capacity change from 0 to 512
[  212.769658][ T7802] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1196: error while reading EA inode 32 err=-116
[  212.810263][ T7802] EXT4-fs (loop0): Remounting filesystem read-only
[  212.823366][ T7802] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  212.824467][ T7807] loop2: detected capacity change from 0 to 512
[  212.834054][ T7802] EXT4-fs (loop0): 1 orphan inode deleted
[  212.862474][ T7807] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1198: error while reading EA inode 32 err=-116
[  212.881130][ T7807] EXT4-fs (loop2): Remounting filesystem read-only
[  212.888955][ T7807] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  212.905923][ T7807] EXT4-fs (loop2): 1 orphan inode deleted
[  212.989886][ T7814] loop3: detected capacity change from 0 to 128
[  213.023414][ T7816] loop3: detected capacity change from 0 to 256
[  213.044503][ T7816] syz.3.1202: attempt to access beyond end of device
[  213.044503][ T7816] loop3: rw=2049, sector=256, nr_sectors = 100 limit=256
[  213.059261][ T7816] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1202'.
[  213.205225][ T7812] loop4: detected capacity change from 0 to 4096
[  213.211862][ T7825] loop3: detected capacity change from 0 to 256
[  213.212435][ T7812] EXT4-fs: Ignoring removed nomblk_io_submit option
[  213.261171][ T7825] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1205'.
[  213.322462][ T7830] loop3: detected capacity change from 0 to 512
[  213.329463][ T7830] EXT4-fs: Ignoring removed bh option
[  213.346688][ T7830] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  213.363076][ T7830] EXT4-fs (loop3): 1 truncate cleaned up
[  213.452408][ T7835] netlink: 7 bytes leftover after parsing attributes in process `syz.3.1209'.
[  213.462076][ T7835] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1209'.
[  213.513716][ T7837] loop0: detected capacity change from 0 to 512
[  213.537355][ T7837] EXT4-fs: Ignoring removed bh option
[  213.547366][ T7837] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  213.570421][ T7837] EXT4-fs (loop0): 1 truncate cleaned up
[  213.617593][ T7842] loop2: detected capacity change from 0 to 128
[  213.701524][ T7846] loop0: detected capacity change from 0 to 128
[  213.795837][ T7839] loop3: detected capacity change from 0 to 128
[  213.991301][ T7852] syz.0.1213: attempt to access beyond end of device
[  213.991301][ T7852] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  214.004794][ T7852] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  214.028996][ T7852] syz.0.1213: attempt to access beyond end of device
[  214.028996][ T7852] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  214.042515][ T7852] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  214.094287][ T7863] loop4: detected capacity change from 0 to 128
[  214.159735][   T29] audit: type=1326 audit(1761260557.835:11844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.207907][   T29] audit: type=1326 audit(1761260557.865:11845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.231494][   T29] audit: type=1326 audit(1761260557.865:11846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.255045][   T29] audit: type=1326 audit(1761260557.865:11847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.278627][   T29] audit: type=1326 audit(1761260557.865:11848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.302224][   T29] audit: type=1326 audit(1761260557.865:11849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.325838][   T29] audit: type=1326 audit(1761260557.865:11850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7866 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  214.443128][ T7876] loop3: detected capacity change from 0 to 128
[  214.456293][ T7863] syz.4.1218: attempt to access beyond end of device
[  214.456293][ T7863] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  214.469779][ T7863] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  214.478808][ T7869] syz.4.1218: attempt to access beyond end of device
[  214.478808][ T7869] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  214.492340][ T7869] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  214.683397][ T7883] loop0: detected capacity change from 0 to 512
[  214.700789][ T7883] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1223: error while reading EA inode 32 err=-116
[  214.725738][ T7883] EXT4-fs (loop0): Remounting filesystem read-only
[  214.742836][ T7883] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  214.753340][ T7883] EXT4-fs (loop0): 1 orphan inode deleted
[  214.789224][ T7882] loop2: detected capacity change from 0 to 4096
[  214.808883][ T7882] EXT4-fs: Ignoring removed nomblk_io_submit option
[  214.926623][ T7876] syz.3.1222: attempt to access beyond end of device
[  214.926623][ T7876] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  214.940210][ T7876] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  214.956918][ T7877] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  214.974340][ T7877] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  215.018462][ T7897] loop1: detected capacity change from 0 to 128
[  215.091265][ T7891] loop4: detected capacity change from 0 to 4096
[  215.116053][ T7891] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.109995][ T7907] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  216.210045][ T7912] netlink: 'syz.0.1230': attribute type 4 has an invalid length.
[  216.264351][ T7913] bridge5: entered promiscuous mode
[  216.291561][ T7913] netlink: 'syz.0.1230': attribute type 4 has an invalid length.
[  216.337719][ T7915] loop0: detected capacity change from 0 to 128
[  216.598403][ T7922] loop2: detected capacity change from 0 to 128
[  216.796374][ T7903] loop1: detected capacity change from 0 to 128
[  216.828273][ T7918] bio_check_eod: 2 callbacks suppressed
[  216.828293][ T7918] syz.0.1232: attempt to access beyond end of device
[  216.828293][ T7918] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  216.847609][ T7918] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  216.859754][ T7915] syz.0.1232: attempt to access beyond end of device
[  216.859754][ T7915] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  216.873423][ T7915] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  216.892912][ T7932] loop3: detected capacity change from 0 to 512
[  216.909638][ T7915] syz.0.1232: attempt to access beyond end of device
[  216.909638][ T7915] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  216.923227][ T7915] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  216.931834][   T29] kauditd_printk_skb: 451 callbacks suppressed
[  216.931854][   T29] audit: type=1326 audit(1761260560.605:12302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  216.961707][   T29] audit: type=1326 audit(1761260560.605:12303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  216.985287][   T29] audit: type=1326 audit(1761260560.605:12304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  216.995921][ T7926] syz.2.1233: attempt to access beyond end of device
[  216.995921][ T7926] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  217.008913][   T29] audit: type=1326 audit(1761260560.605:12305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.022301][ T7926] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  217.054322][   T29] audit: type=1326 audit(1761260560.605:12306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.077952][   T29] audit: type=1326 audit(1761260560.605:12307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.101553][   T29] audit: type=1326 audit(1761260560.605:12308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.115916][ T7932] EXT4-fs: Ignoring removed bh option
[  217.125092][   T29] audit: type=1326 audit(1761260560.605:12309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.153968][   T29] audit: type=1326 audit(1761260560.605:12310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.164682][ T7926] syz.2.1233: attempt to access beyond end of device
[  217.164682][ T7926] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  217.177527][   T29] audit: type=1326 audit(1761260560.605:12311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7916 comm="syz.4.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  217.190931][ T7926] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  217.243998][ T7932] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  217.277264][ T7932] EXT4-fs (loop3): 1 truncate cleaned up
[  217.371925][ T7941] loop0: detected capacity change from 0 to 4096
[  217.438128][ T7948] netlink: 'syz.3.1240': attribute type 3 has an invalid length.
[  217.456693][ T7950] 9pnet_fd: p9_fd_create_unix (7950): problem connecting socket: ./file0: -2
[  217.471179][ T7950] bridge6: entered promiscuous mode
[  217.486099][ T7950] netlink: 'syz.2.1239': attribute type 4 has an invalid length.
[  217.508053][ T7952] loop1: detected capacity change from 0 to 512
[  217.556602][ T7956] netlink: 'syz.2.1242': attribute type 4 has an invalid length.
[  217.664842][ T7954] loop3: detected capacity change from 0 to 4096
[  217.683784][ T7956] bridge7: entered promiscuous mode
[  217.694115][ T7952] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1236: error while reading EA inode 32 err=-116
[  217.711587][ T7954] EXT4-fs: Ignoring removed nomblk_io_submit option
[  217.767556][ T7952] EXT4-fs (loop1): Remounting filesystem read-only
[  217.778136][ T7962] netlink: 'syz.2.1242': attribute type 4 has an invalid length.
[  217.785720][ T7952] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  217.797048][ T7952] EXT4-fs (loop1): 1 orphan inode deleted
[  218.984840][ T7973] 8021q: adding VLAN 0 to HW filter on device bond6
[  219.197767][ T7983] __nla_validate_parse: 4 callbacks suppressed
[  219.197841][ T7983] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1249'.
[  219.267358][ T7983] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1249'.
[  219.299442][ T7983] warn_alloc: 4 callbacks suppressed
[  219.299458][ T7983] syz.0.1249: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  219.319488][ T7983] CPU: 1 UID: 0 PID: 7983 Comm: syz.0.1249 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  219.319557][ T7983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  219.319574][ T7983] Call Trace:
[  219.319583][ T7983]  <TASK>
[  219.319593][ T7983]  __dump_stack+0x1d/0x30
[  219.319620][ T7983]  dump_stack_lvl+0xe8/0x140
[  219.319646][ T7983]  dump_stack+0x15/0x1b
[  219.319724][ T7983]  warn_alloc+0x12b/0x1a0
[  219.319765][ T7983]  __vmalloc_node_range_noprof+0x9d/0xed0
[  219.319811][ T7983]  ? probe_sched_wakeup+0x85/0xa0
[  219.319898][ T7983]  ? ttwu_do_activate+0x1d0/0x210
[  219.319927][ T7983]  ? __rcu_read_unlock+0x4f/0x70
[  219.319961][ T7983]  ? avc_has_perm_noaudit+0x1b1/0x200
[  219.319987][ T7983]  ? should_fail_ex+0x30/0x280
[  219.320094][ T7983]  ? xskq_create+0x36/0xe0
[  219.320130][ T7983]  vmalloc_user_noprof+0x7d/0xb0
[  219.320171][ T7983]  ? xskq_create+0x80/0xe0
[  219.320196][ T7983]  xskq_create+0x80/0xe0
[  219.320248][ T7983]  xsk_init_queue+0x95/0xf0
[  219.320273][ T7983]  xsk_setsockopt+0x3f5/0x640
[  219.320292][ T7983]  ? __pfx_xsk_setsockopt+0x10/0x10
[  219.320316][ T7983]  __sys_setsockopt+0x184/0x200
[  219.320439][ T7983]  __x64_sys_setsockopt+0x64/0x80
[  219.320486][ T7983]  x64_sys_call+0x20ec/0x3000
[  219.320515][ T7983]  do_syscall_64+0xd2/0x200
[  219.320538][ T7983]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  219.320617][ T7983]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  219.320656][ T7983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.320753][ T7983] RIP: 0033:0x7f02d998efc9
[  219.320768][ T7983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.320791][ T7983] RSP: 002b:00007f02d83f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  219.320816][ T7983] RAX: ffffffffffffffda RBX: 00007f02d9be5fa0 RCX: 00007f02d998efc9
[  219.320831][ T7983] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[  219.320846][ T7983] RBP: 00007f02d9a11f91 R08: 0000000000000004 R09: 0000000000000000
[  219.320892][ T7983] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  219.320908][ T7983] R13: 00007f02d9be6038 R14: 00007f02d9be5fa0 R15: 00007ffc5730e468
[  219.320933][ T7983]  </TASK>
[  219.320941][ T7983] Mem-Info:
[  219.543937][ T7983] active_anon:21831 inactive_anon:24 isolated_anon:0
[  219.543937][ T7983]  active_file:27837 inactive_file:2355 isolated_file:0
[  219.543937][ T7983]  unevictable:0 dirty:195 writeback:29
[  219.543937][ T7983]  slab_reclaimable:3373 slab_unreclaimable:15215
[  219.543937][ T7983]  mapped:33628 shmem:3574 pagetables:1678
[  219.543937][ T7983]  sec_pagetables:0 bounce:0
[  219.543937][ T7983]  kernel_misc_reclaimable:0
[  219.543937][ T7983]  free:1830509 free_pcp:44843 free_cma:0
[  219.589322][ T7983] Node 0 active_anon:87440kB inactive_anon:96kB active_file:111348kB inactive_file:9420kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:134512kB dirty:780kB writeback:116kB shmem:14296kB kernel_stack:4240kB pagetables:6712kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  219.616942][ T7983] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  219.646613][ T7983] lowmem_reserve[]: 0 2881 7859 7859
[  219.651987][ T7983] Node 0 DMA32 free:2946744kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950272kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  219.658093][ T7990] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1246'.
[  219.683134][ T7983] lowmem_reserve[]: 0 0 4978 4978
[  219.683177][ T7983] Node 0 Normal free:4359660kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:90108kB inactive_anon:96kB active_file:111348kB inactive_file:9420kB unevictable:0kB writepending:896kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:172648kB local_pcp:105456kB free_cma:0kB
[  219.730481][ T7983] lowmem_reserve[]: 0 0 0 0
[  219.735124][ T7983] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  219.747999][ T7983] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 6*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946744kB
[  219.764200][ T7983] Node 0 Normal: 259*4kB (UME) 426*8kB (UE) 267*16kB (UE) 117*32kB (UME) 83*64kB (UE) 107*128kB (UME) 225*256kB (UME) 85*512kB (UME) 30*1024kB (UME) 13*2048kB (UME) 1018*4096kB (UM) = 4359660kB
[  219.783562][ T7983] Node 0 hugepages_total=4 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  219.792908][ T7983] 33733 total pagecache pages
[  219.797635][ T7983] 0 pages in swap cache
[  219.801869][ T7983] Free swap  = 124996kB
[  219.806084][ T7983] Total swap = 124996kB
[  219.810272][ T7983] 2097051 pages RAM
[  219.814089][ T7983] 0 pages HighMem/MovableOnly
[  219.818876][ T7983] 81083 pages reserved
[  219.883299][ T7996] loop3: detected capacity change from 0 to 128
[  220.026267][ T8001] loop1: detected capacity change from 0 to 512
[  220.064757][ T8001] EXT4-fs: Ignoring removed nobh option
[  220.075809][ T8001] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  220.085307][ T7998] loop0: detected capacity change from 0 to 8192
[  220.093400][ T8001] netlink: 'syz.1.1254': attribute type 3 has an invalid length.
[  220.135635][ T7984] loop4: detected capacity change from 0 to 128
[  220.143177][ T8001] loop1: detected capacity change from 0 to 512
[  220.154555][ T8001] EXT4-fs: Ignoring removed mblk_io_submit option
[  220.188749][ T8001] EXT4-fs: Ignoring removed nomblk_io_submit option
[  220.219405][ T8001] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  220.227923][ T8001] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  220.237715][ T8009] netlink: 'syz.0.1255': attribute type 4 has an invalid length.
[  220.254271][ T8009] bridge6: entered promiscuous mode
[  220.262824][ T8009] netlink: 'syz.0.1255': attribute type 4 has an invalid length.
[  220.275290][ T7992] loop2: detected capacity change from 0 to 4096
[  220.283076][ T7992] EXT4-fs: Ignoring removed nomblk_io_submit option
[  220.303150][ T8001] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1254: Allocating blocks 41-42 which overlap fs metadata
[  220.321814][ T8001] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1254: Allocating blocks 41-42 which overlap fs metadata
[  220.346185][ T8001] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1254: Failed to acquire dquot type 1
[  220.375873][ T8001] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  220.415093][ T8001] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #12: comm syz.1.1254: corrupted inode contents
[  220.436559][ T8001] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #12: comm syz.1.1254: mark_inode_dirty error
[  220.517589][ T8001] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #12: comm syz.1.1254: corrupted inode contents
[  220.529883][ T8001] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #12: comm syz.1.1254: mark_inode_dirty error
[  220.541459][ T8001] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #12: comm syz.1.1254: corrupted inode contents
[  221.402309][ T8018] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR
[  221.520072][ T8001] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  221.562606][ T8013] loop0: detected capacity change from 0 to 512
[  221.606270][ T8013] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1256: error while reading EA inode 32 err=-116
[  221.620104][ T8001] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #12: comm syz.1.1254: corrupted inode contents
[  221.655049][ T8025] loop3: detected capacity change from 0 to 128
[  221.682639][ T8001] EXT4-fs error (device loop1): ext4_truncate:4637: inode #12: comm syz.1.1254: mark_inode_dirty error
[  221.697591][ T8013] EXT4-fs (loop0): Remounting filesystem read-only
[  221.704142][ T8013] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  221.725766][ T8001] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  221.745176][ T8001] EXT4-fs (loop1): 1 truncate cleaned up
[  221.751285][ T8013] EXT4-fs (loop0): 1 orphan inode deleted
[  221.778001][ T8001] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1254: Failed to acquire dquot type 1
[  221.865453][ T8000] delete_channel: no stack
[  221.916631][ T8034] loop0: detected capacity change from 0 to 4096
[  221.936141][ T8038] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1262'.
[  222.003604][ T8042] loop0: detected capacity change from 0 to 256
[  222.052533][ T8042] syz.0.1264: attempt to access beyond end of device
[  222.052533][ T8042] loop0: rw=2049, sector=256, nr_sectors = 100 limit=256
[  222.105454][ T8047] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1264'.
[  222.131950][ T8049] netlink: 'syz.1.1266': attribute type 4 has an invalid length.
[  222.158586][ T8046] loop4: detected capacity change from 0 to 8192
[  222.174089][ T8049] bridge5: entered promiscuous mode
[  222.204530][ T8049] netlink: 'syz.1.1266': attribute type 4 has an invalid length.
[  222.227158][ T8051] 9pnet_fd: p9_fd_create_unix (8051): problem connecting socket: ./file0: -2
[  222.234547][ T8053] 9pnet_fd: p9_fd_create_unix (8053): problem connecting socket: ./file0: -2
[  222.249665][ T8054] netlink: 'syz.0.1267': attribute type 4 has an invalid length.
[  222.265618][ T8054] bridge7: entered promiscuous mode
[  222.278956][ T8053] netlink: 'syz.1.1268': attribute type 4 has an invalid length.
[  222.281919][ T8051] netlink: 'syz.0.1267': attribute type 4 has an invalid length.
[  222.344527][ T8053] bridge6: entered promiscuous mode
[  222.368030][ T8053] netlink: 'syz.1.1268': attribute type 4 has an invalid length.
[  223.245024][ T8058] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR
[  223.516727][   T29] kauditd_printk_skb: 41 callbacks suppressed
[  223.516753][   T29] audit: type=1326 audit(1761260567.185:12347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  223.554832][   T29] audit: type=1326 audit(1761260567.185:12348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  223.578410][   T29] audit: type=1326 audit(1761260567.185:12349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f02d998f003 code=0x7ffc0000
[  223.647060][   T29] audit: type=1326 audit(1761260567.305:12350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f02d998da7f code=0x7ffc0000
[  223.686748][ T8068] loop0: detected capacity change from 0 to 8192
[  223.690924][ T3321] EXT4-fs unmount: 39 callbacks suppressed
[  223.690943][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.713729][ T8072] loop4: detected capacity change from 0 to 512
[  223.747218][   T29] audit: type=1326 audit(1761260567.365:12351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f02d998f057 code=0x7ffc0000
[  223.770700][   T29] audit: type=1326 audit(1761260567.365:12352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f02d998d810 code=0x7ffc0000
[  223.794345][   T29] audit: type=1326 audit(1761260567.365:12353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f02d998ebcb code=0x7ffc0000
[  223.817866][   T29] audit: type=1326 audit(1761260567.405:12354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f02d998dc2a code=0x7ffc0000
[  223.841269][   T29] audit: type=1326 audit(1761260567.405:12355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f02d998ebcb code=0x7ffc0000
[  223.864758][   T29] audit: type=1326 audit(1761260567.405:12356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8067 comm="syz.0.1273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f02d998ebcb code=0x7ffc0000
[  224.595368][ T8078] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  224.657746][ T8072] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.1271: error while reading EA inode 32 err=-116
[  224.702084][ T8072] EXT4-fs (loop4): Remounting filesystem read-only
[  224.723434][ T8072] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  224.733859][ T8072] EXT4-fs (loop4): 1 orphan inode deleted
[  224.741293][ T8072] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.777385][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.893606][ T8068]  loop0: p1 p2[DM] p3 p4
[  224.898420][ T8068] loop0: p1 size 196608 extends beyond EOD, truncated
[  224.906101][ T8068] loop0: p2 start 4292936063 is beyond EOD, truncated
[  224.912933][ T8068] loop0: p3 size 189005824 extends beyond EOD, truncated
[  224.942274][ T8068] loop0: p4 size 50331648 extends beyond EOD, truncated
[  225.056398][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  225.067512][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  225.079087][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  225.099147][ T8088] loop3: detected capacity change from 0 to 8192
[  225.411202][ T8093] 8021q: adding VLAN 0 to HW filter on device bond7
[  226.660591][ T8101] 8021q: adding VLAN 0 to HW filter on device bond3
[  226.688261][ T8108] 9pnet_virtio: no channels available for device ./file0
[  226.707547][ T8109] 9pnet_fd: p9_fd_create_unix (8109): problem connecting socket: ./file0: -2
[  226.728909][ T8111] 9pnet_fd: p9_fd_create_unix (8111): problem connecting socket: ./file0: -2
[  226.747030][ T8112] netlink: 'syz.4.1278': attribute type 4 has an invalid length.
[  226.757674][ T8109] netlink: 'syz.2.1274': attribute type 4 has an invalid length.
[  226.786800][ T8111] netlink: 'syz.3.1282': attribute type 4 has an invalid length.
[  226.826787][ T8108] bridge6: entered promiscuous mode
[  226.858897][ T8113] bridge8: entered promiscuous mode
[  226.867982][ T8108] netlink: 'syz.4.1278': attribute type 4 has an invalid length.
[  226.896551][ T8114] bridge7: entered promiscuous mode
[  227.035816][ T8123] loop4: detected capacity change from 0 to 128
[  227.266320][ T8130] 8021q: adding VLAN 0 to HW filter on device bond4
[  228.316341][ T8147] loop2: detected capacity change from 0 to 128
[  228.327732][ T8148] loop0: detected capacity change from 0 to 512
[  228.359624][ T8148] EXT4-fs: Ignoring removed mblk_io_submit option
[  228.370778][ T8148] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  228.379701][ T8148] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  228.421756][ T8148] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1292: Allocating blocks 41-42 which overlap fs metadata
[  228.453852][ T8148] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1292: Failed to acquire dquot type 1
[  228.465482][ T8157] 9pnet_virtio: no channels available for device ./file0
[  228.474500][ T8157] validate_nla: 2 callbacks suppressed
[  228.474516][ T8157] netlink: 'syz.4.1295': attribute type 4 has an invalid length.
[  228.497222][ T8148] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  228.516965][ T8157] bridge7: entered promiscuous mode
[  228.526859][ T8157] netlink: 'syz.4.1295': attribute type 4 has an invalid length.
[  228.545353][ T8148] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.1292: corrupted inode contents
[  228.557718][ T8148] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #12: comm syz.0.1292: mark_inode_dirty error
[  228.569501][ T8148] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.1292: corrupted inode contents
[  228.582056][ T8148] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.1292: mark_inode_dirty error
[  228.617566][ T8148] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.1292: corrupted inode contents
[  228.635516][ T8148] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[  228.644818][ T8148] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.1292: corrupted inode contents
[  228.665519][ T8148] EXT4-fs error (device loop0): ext4_truncate:4637: inode #12: comm syz.0.1292: mark_inode_dirty error
[  228.669731][ T8162] loop4: detected capacity change from 0 to 8192
[  228.679239][ T8148] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[  228.695777][ T8148] EXT4-fs (loop0): 1 truncate cleaned up
[  228.709893][ T8148] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.722701][ T3581]  loop4: p1 p2[DM] p3 p4
[  228.729076][ T3581] loop4: p1 size 196608 extends beyond EOD, truncated
[  228.738562][ T3581] loop4: p2 start 4292936063 is beyond EOD, truncated
[  228.745417][ T3581] loop4: p3 size 189005824 extends beyond EOD, truncated
[  228.756327][ T3581] loop4: p4 size 50331648 extends beyond EOD, truncated
[  228.756858][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  228.756875][   T29] audit: type=1326 audit(1761260572.435:12437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f02d998d810 code=0x7ffc0000
[  228.800495][ T8162]  loop4: p1 p2[DM] p3 p4
[  228.824150][   T29] audit: type=1326 audit(1761260572.475:12438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.847879][   T29] audit: type=1326 audit(1761260572.475:12439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.848498][ T8162] loop4: p1 size 196608 extends beyond EOD, truncated
[  228.871464][   T29] audit: type=1326 audit(1761260572.475:12440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.878875][ T8162] loop4: p2 start 4292936063 is beyond EOD, truncated
[  228.901643][   T29] audit: type=1326 audit(1761260572.475:12441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.908467][ T8162] loop4: p3 size 189005824 extends beyond EOD, 
[  228.931910][   T29] audit: type=1326 audit(1761260572.475:12442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.931946][   T29] audit: type=1326 audit(1761260572.475:12443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  228.938215][ T8162] truncated
[  228.986092][ T8162] loop4: p4 size 50331648 extends beyond EOD, truncated
[  228.988541][   T29] audit: type=1326 audit(1761260572.475:12444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  229.019060][   T29] audit: type=1326 audit(1761260572.475:12445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  229.042785][   T29] audit: type=1326 audit(1761260572.475:12446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8143 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  229.171743][ T8150] loop1: detected capacity change from 0 to 128
[  229.195561][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.214908][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  229.224902][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  229.236378][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  229.281461][ T8166] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1298'.
[  229.295165][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  229.296432][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  229.317468][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  229.330739][ T8166] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1298'.
[  229.369036][ T8172] loop3: detected capacity change from 0 to 128
[  229.917526][ T8192] loop2: detected capacity change from 0 to 128
[  230.937385][ T8193] 8021q: adding VLAN 0 to HW filter on device bond4
[  231.126485][ T8202] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1306'.
[  231.205230][ T8202] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1306'.
[  231.312288][ T8200] loop2: detected capacity change from 0 to 8192
[  231.425772][ T8200]  loop2: p1 p2[DM] p3 p4
[  231.436069][ T8200] loop2: p1 size 196608 extends beyond EOD, truncated
[  231.496745][ T8200] loop2: p2 start 4292936063 is beyond EOD, truncated
[  231.503673][ T8200] loop2: p3 size 189005824 extends beyond EOD, truncated
[  231.577839][ T8200] loop2: p4 size 50331648 extends beyond EOD, truncated
[  231.625783][ T3004]  loop2: p1 p2[DM] p3 p4
[  231.639320][ T3004] loop2: p1 size 196608 extends beyond EOD, truncated
[  231.661001][ T8206] loop1: detected capacity change from 0 to 4096
[  231.672313][ T3004] loop2: p2 start 4292936063 is beyond EOD, truncated
[  231.679202][ T3004] loop2: p3 size 189005824 extends beyond EOD, truncated
[  231.697398][ T3004] loop2: p4 size 50331648 extends beyond EOD, truncated
[  231.705885][ T8206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.720330][ T8208] loop0: detected capacity change from 0 to 128
[  231.879928][ T3489] udevd[3489]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  231.882209][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  231.901357][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  231.973956][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  231.987644][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  232.004048][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  232.415024][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.443560][ T8225] loop3: detected capacity change from 0 to 512
[  232.458212][ T8225] EXT4-fs: Ignoring removed nobh option
[  232.515200][ T8225] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  232.596376][ T8225] loop3: detected capacity change from 0 to 512
[  232.645634][ T8225] EXT4-fs: Ignoring removed mblk_io_submit option
[  232.652257][ T8225] EXT4-fs: Ignoring removed nomblk_io_submit option
[  232.708482][ T8225] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  232.717055][ T8225] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  232.786699][ T8225] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.1316: Allocating blocks 41-42 which overlap fs metadata
[  232.808023][ T8233] loop2: detected capacity change from 0 to 512
[  232.816871][ T8231] loop4: detected capacity change from 0 to 4096
[  232.852532][ T8225] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.1316: Allocating blocks 41-42 which overlap fs metadata
[  232.886558][ T8231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.910740][ T8233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.136091][ T8225] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1316: Failed to acquire dquot type 1
[  233.935017][ T8241] workqueue: Failed to create a rescuer kthread for wq "bond5": -EINTR
[  233.963978][ T8225] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  234.115394][ T8225] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #12: comm syz.3.1316: corrupted inode contents
[  234.125360][   T29] kauditd_printk_skb: 40 callbacks suppressed
[  234.125384][   T29] audit: type=1400 audit(1761260576.885:12483): avc:  denied  { map } for  pid=8232 comm="syz.2.1319" path="/251/file0/memory.events.local" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  234.128816][ T8225] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #12: comm syz.3.1316: mark_inode_dirty error
[  234.226788][ T8225] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #12: comm syz.3.1316: corrupted inode contents
[  234.245442][ T8225] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.1316: mark_inode_dirty error
[  234.293356][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.320325][ T8225] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #12: comm syz.3.1316: corrupted inode contents
[  234.370584][ T8225] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  234.385211][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.404258][ T8254] loop2: detected capacity change from 0 to 256
[  234.417909][ T8225] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #12: comm syz.3.1316: corrupted inode contents
[  234.431459][ T8225] EXT4-fs error (device loop3): ext4_truncate:4637: inode #12: comm syz.3.1316: mark_inode_dirty error
[  234.466186][ T8225] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  234.484791][   T29] audit: type=1400 audit(1761260578.155:12484): avc:  denied  { shutdown } for  pid=8256 comm="syz.4.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  234.545289][ T8225] EXT4-fs (loop3): 1 truncate cleaned up
[  234.551495][ T8225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.565886][ T8254] syz.2.1322: attempt to access beyond end of device
[  234.565886][ T8254] loop2: rw=2049, sector=256, nr_sectors = 100 limit=256
[  234.584779][   T29] audit: type=1400 audit(1761260578.155:12485): avc:  denied  { getopt } for  pid=8256 comm="syz.4.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  234.604533][   T29] audit: type=1400 audit(1761260578.265:12486): avc:  denied  { name_bind } for  pid=8256 comm="syz.4.1323" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  234.608410][ T8225] Quota error (device loop3): write_blk: dquota write failed
[  234.625823][   T29] audit: type=1400 audit(1761260578.265:12487): avc:  denied  { node_bind } for  pid=8256 comm="syz.4.1323" saddr=fe80::bb src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  234.655262][   T29] audit: type=1400 audit(1761260578.265:12488): avc:  denied  { bind } for  pid=8256 comm="syz.4.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  234.674878][   T29] audit: type=1400 audit(1761260578.265:12489): avc:  denied  { write } for  pid=8256 comm="syz.4.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  234.724545][ T8251] 8021q: adding VLAN 0 to HW filter on device bond8
[  234.754500][ T8260] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1322'.
[  234.827918][ T8225] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  234.838228][ T8225] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1316: Failed to acquire dquot type 1
[  234.838347][   T29] audit: type=1326 audit(1761260578.495:12490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8256 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa23c78efc9 code=0x7ffc0000
[  234.881805][ T8264] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1320'.
[  234.963016][ T8267] warn_alloc: 1 callbacks suppressed
[  234.963030][ T8267] syz.0.1320: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  234.982980][ T8267] CPU: 1 UID: 0 PID: 8267 Comm: syz.0.1320 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  234.983009][ T8267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  234.983022][ T8267] Call Trace:
[  234.983029][ T8267]  <TASK>
[  234.983037][ T8267]  __dump_stack+0x1d/0x30
[  234.983064][ T8267]  dump_stack_lvl+0xe8/0x140
[  234.983090][ T8267]  dump_stack+0x15/0x1b
[  234.983121][ T8267]  warn_alloc+0x12b/0x1a0
[  234.983168][ T8267]  __vmalloc_node_range_noprof+0x9d/0xed0
[  234.983251][ T8267]  ? probe_sched_wakeup+0x85/0xa0
[  234.983351][ T8267]  ? ttwu_do_activate+0x1d0/0x210
[  234.983379][ T8267]  ? __rcu_read_unlock+0x4f/0x70
[  234.983412][ T8267]  ? avc_has_perm_noaudit+0x1b1/0x200
[  234.983435][ T8267]  ? should_fail_ex+0x30/0x280
[  234.983605][ T8267]  ? xskq_create+0x36/0xe0
[  234.983632][ T8267]  vmalloc_user_noprof+0x7d/0xb0
[  234.983669][ T8267]  ? xskq_create+0x80/0xe0
[  234.983694][ T8267]  xskq_create+0x80/0xe0
[  234.983720][ T8267]  xsk_init_queue+0x95/0xf0
[  234.983780][ T8267]  xsk_setsockopt+0x3f5/0x640
[  234.983799][ T8267]  ? __pfx_xsk_setsockopt+0x10/0x10
[  234.983818][ T8267]  __sys_setsockopt+0x184/0x200
[  234.983884][ T8267]  __x64_sys_setsockopt+0x64/0x80
[  234.983927][ T8267]  x64_sys_call+0x20ec/0x3000
[  234.983950][ T8267]  do_syscall_64+0xd2/0x200
[  234.984000][ T8267]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  234.984027][ T8267]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  234.984119][ T8267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.984143][ T8267] RIP: 0033:0x7f02d998efc9
[  234.984162][ T8267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.984185][ T8267] RSP: 002b:00007f02d83d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  234.984204][ T8267] RAX: ffffffffffffffda RBX: 00007f02d9be6090 RCX: 00007f02d998efc9
[  234.984291][ T8267] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[  234.984307][ T8267] RBP: 00007f02d9a11f91 R08: 0000000000000004 R09: 0000000000000000
[  234.984322][ T8267] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.984337][ T8267] R13: 00007f02d9be6128 R14: 00007f02d9be6090 R15: 00007ffc5730e468
[  234.984358][ T8267]  </TASK>
[  234.984365][ T8267] Mem-Info:
[  235.001208][ T8270] netlink: 'syz.2.1324': attribute type 3 has an invalid length.
[  235.004343][ T8267] active_anon:41620 inactive_anon:0 isolated_anon:0
[  235.004343][ T8267]  active_file:27837 inactive_file:2344 isolated_file:0
[  235.004343][ T8267]  unevictable:0 dirty:264 writeback:0
[  235.004343][ T8267]  slab_reclaimable:3411 slab_unreclaimable:15495
[  235.004343][ T8267]  mapped:37459 shmem:25277 pagetables:1834
[  235.004343][ T8267]  sec_pagetables:0 bounce:0
[  235.004343][ T8267]  kernel_misc_reclaimable:0
[  235.004343][ T8267]  free:1810652 free_pcp:45861 free_cma:0
[  235.260289][ T8267] Node 0 active_anon:114396kB inactive_anon:0kB active_file:111348kB inactive_file:9376kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:139744kB dirty:1056kB writeback:0kB shmem:49140kB kernel_stack:4352kB pagetables:7336kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  235.287845][ T8267] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  235.317554][ T8267] lowmem_reserve[]: 0 2881 7859 7859
[  235.322887][ T8267] Node 0 DMA32 free:2946744kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950272kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  235.354131][ T8267] lowmem_reserve[]: 0 0 4978 4978
[  235.359238][ T8267] Node 0 Normal free:4311592kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:103956kB inactive_anon:0kB active_file:111348kB inactive_file:9376kB unevictable:0kB writepending:1056kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:211244kB local_pcp:123420kB free_cma:0kB
[  235.392673][ T8267] lowmem_reserve[]: 0 0 0 0
[  235.397246][ T8267] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  235.410068][ T8267] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 6*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946744kB
[  235.426284][ T8267] Node 0 Normal: 379*4kB (UME) 741*8kB (UME) 542*16kB (UME) 640*32kB (UME) 302*64kB (UME) 108*128kB (UME) 14*256kB (UME) 8*512kB (UME) 31*1024kB (UME) 14*2048kB (UME) 1019*4096kB (UM) = 4311668kB
[  235.445726][ T8267] Node 0 hugepages_total=4 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  235.455072][ T8267] 42462 total pagecache pages
[  235.459764][ T8267] 0 pages in swap cache
[  235.463933][ T8267] Free swap  = 124996kB
[  235.468184][ T8267] Total swap = 124996kB
[  235.472350][ T8267] 2097051 pages RAM
[  235.476193][ T8267] 0 pages HighMem/MovableOnly
[  235.480877][ T8267] 81083 pages reserved
[  235.486523][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.594740][ T8274] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1327'.
[  235.670624][ T8278] loop3: detected capacity change from 0 to 4096
[  235.707297][ T8283] loop2: detected capacity change from 0 to 128
[  235.889510][ T8278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.105987][ T8299] loop2: detected capacity change from 0 to 512
[  236.112715][ T8299] EXT4-fs: Ignoring removed bh option
[  236.118808][ T8299] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  236.130054][ T8299] EXT4-fs (loop2): 1 truncate cleaned up
[  236.138221][ T8299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.200642][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.234595][ T8290] loop1: detected capacity change from 0 to 4096
[  236.249748][ T8306] netlink: 'syz.2.1337': attribute type 3 has an invalid length.
[  236.296072][ T8290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.331096][ T8309] 9pnet_fd: Insufficient options for proto=fd
[  236.349677][ T8280] loop0: detected capacity change from 0 to 128
[  236.374573][ T8309] loop2: detected capacity change from 0 to 128
[  236.433686][ T8309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1338'.
[  236.515031][ T8314] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1340'.
[  236.562447][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.679475][ T8311] loop4: detected capacity change from 0 to 8192
[  236.715042][ T8318] loop2: detected capacity change from 0 to 512
[  236.735796][ T8318] EXT4-fs: Ignoring removed bh option
[  236.749313][ T8318] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  236.790897][ T8318] EXT4-fs (loop2): 1 truncate cleaned up
[  236.849846][ T8322] loop4: detected capacity change from 0 to 512
[  236.857077][ T8318] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.916372][ T8322] EXT4-fs: Ignoring removed bh option
[  236.944461][ T8322] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  236.956031][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.997438][ T8322] EXT4-fs (loop4): 1 truncate cleaned up
[  237.014426][ T8328] netlink: 200 bytes leftover after parsing attributes in process `syz.2.1345'.
[  237.024172][ T8322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.096720][ T8335] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1345'.
[  237.167378][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.180617][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.233213][ T8337] loop4: detected capacity change from 0 to 128
[  237.282326][ T8341] loop1: detected capacity change from 0 to 128
[  237.538461][ T8342] syz.4.1348: attempt to access beyond end of device
[  237.538461][ T8342] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  237.552017][ T8342] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  237.603621][ T8337] syz.4.1348: attempt to access beyond end of device
[  237.603621][ T8337] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  237.617113][ T8337] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  237.629771][ T8337] syz.4.1348: attempt to access beyond end of device
[  237.629771][ T8337] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  237.643405][ T8337] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  237.643578][ T8349] loop0: detected capacity change from 0 to 4096
[  237.661370][ T8351] loop3: detected capacity change from 0 to 128
[  237.774383][ T8349] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.923605][ T8341] syz.1.1347: attempt to access beyond end of device
[  237.923605][ T8341] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  237.937270][ T8341] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  237.955495][ T8344] syz.1.1347: attempt to access beyond end of device
[  237.955495][ T8344] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  237.968999][ T8344] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  238.001157][ T8344] syz.1.1347: attempt to access beyond end of device
[  238.001157][ T8344] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  238.014685][ T8344] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  238.163965][ T8365] loop2: detected capacity change from 0 to 512
[  238.171135][ T8365] EXT4-fs: Ignoring removed bh option
[  238.182487][ T8365] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  238.197126][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.197903][ T8365] EXT4-fs (loop2): 1 truncate cleaned up
[  238.212311][ T8365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.286946][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.349682][ T8372] loop0: detected capacity change from 0 to 4096
[  238.416725][ T8372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.459618][ T8354] syz.3.1352: attempt to access beyond end of device
[  238.459618][ T8354] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  238.473122][ T8354] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  238.552429][ T8355] syz.3.1352: attempt to access beyond end of device
[  238.552429][ T8355] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  238.565963][ T8355] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  238.813508][ T8382] FAULT_INJECTION: forcing a failure.
[  238.813508][ T8382] name failslab, interval 1, probability 0, space 0, times 1
[  238.826280][ T8382] CPU: 0 UID: 0 PID: 8382 Comm: syz.3.1359 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  238.826314][ T8382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  238.826328][ T8382] Call Trace:
[  238.826334][ T8382]  <TASK>
[  238.826343][ T8382]  __dump_stack+0x1d/0x30
[  238.826431][ T8382]  dump_stack_lvl+0xe8/0x140
[  238.826457][ T8382]  dump_stack+0x15/0x1b
[  238.826476][ T8382]  should_fail_ex+0x265/0x280
[  238.826514][ T8382]  should_failslab+0x8c/0xb0
[  238.826549][ T8382]  kmem_cache_alloc_noprof+0x50/0x480
[  238.826603][ T8382]  ? audit_log_start+0x342/0x720
[  238.826627][ T8382]  audit_log_start+0x342/0x720
[  238.826726][ T8382]  ? kstrtouint+0x76/0xc0
[  238.826764][ T8382]  audit_seccomp+0x48/0x100
[  238.826866][ T8382]  ? __seccomp_filter+0x82d/0x1250
[  238.826949][ T8382]  __seccomp_filter+0x83e/0x1250
[  238.826984][ T8382]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  238.827021][ T8382]  ? vfs_write+0x7e8/0x960
[  238.827089][ T8382]  ? __rcu_read_unlock+0x4f/0x70
[  238.827121][ T8382]  ? __fget_files+0x184/0x1c0
[  238.827199][ T8382]  __secure_computing+0x82/0x150
[  238.827301][ T8382]  syscall_trace_enter+0xcf/0x1e0
[  238.827356][ T8382]  do_syscall_64+0xac/0x200
[  238.827379][ T8382]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  238.827414][ T8382]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  238.827452][ T8382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.827543][ T8382] RIP: 0033:0x7fe1ca6eefc9
[  238.827561][ T8382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.827583][ T8382] RSP: 002b:00007fe1c9157038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  238.827606][ T8382] RAX: ffffffffffffffda RBX: 00007fe1ca945fa0 RCX: 00007fe1ca6eefc9
[  238.827622][ T8382] RDX: 0000000000000009 RSI: 0000000000600002 RDI: 0000200000000000
[  238.827637][ T8382] RBP: 00007fe1c9157090 R08: 0000000000000000 R09: 0000000000000000
[  238.827674][ T8382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.827688][ T8382] R13: 00007fe1ca946038 R14: 00007fe1ca945fa0 R15: 00007ffe29b5ef88
[  238.827712][ T8382]  </TASK>
[  239.139076][ T8379] 8021q: adding VLAN 0 to HW filter on device bond7
[  239.170231][ T8387] loop4: detected capacity change from 0 to 128
[  239.248360][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.336711][   T29] kauditd_printk_skb: 431 callbacks suppressed
[  239.336728][   T29] audit: type=1326 audit(1761260583.015:12920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.480691][ T8400] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1366'.
[  239.490871][ T8397] loop0: detected capacity change from 0 to 8192
[  239.497775][   T29] audit: type=1326 audit(1761260583.015:12921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.521366][   T29] audit: type=1326 audit(1761260583.015:12922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.545084][   T29] audit: type=1326 audit(1761260583.015:12923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.568640][   T29] audit: type=1326 audit(1761260583.015:12924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.569054][ T8391] loop2: detected capacity change from 0 to 512
[  239.592392][   T29] audit: type=1326 audit(1761260583.015:12925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f02d998efc9 code=0x7ffc0000
[  239.592426][   T29] audit: type=1326 audit(1761260583.015:12926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f02d998f003 code=0x7ffc0000
[  239.592457][   T29] audit: type=1326 audit(1761260583.015:12927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8396 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f02d998da7f code=0x7ffc0000
[  239.669206][   T29] audit: type=1326 audit(1761260583.115:12928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8399 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ca6eefc9 code=0x7ffc0000
[  239.692778][   T29] audit: type=1326 audit(1761260583.115:12929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8399 comm="syz.3.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ca6eefc9 code=0x7ffc0000
[  239.755107][ T3581]  loop0: p1 p2[DM] p3 p4
[  239.759640][ T3581] loop0: p1 size 196608 extends beyond EOD, truncated
[  239.772824][ T3581] loop0: p2 start 4292936063 is beyond EOD, truncated
[  239.779689][ T3581] loop0: p3 size 189005824 extends beyond EOD, truncated
[  239.787513][ T8400] loop3: detected capacity change from 0 to 512
[  239.847549][ T8391] EXT4-fs: Ignoring removed nobh option
[  239.856764][ T8400] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  239.880462][ T3581] loop0: p4 size 50331648 extends beyond EOD, truncated
[  239.893654][ T8409] loop4: detected capacity change from 0 to 256
[  239.900905][ T8400] EXT4-fs (loop3): orphan cleanup on readonly fs
[  239.933217][ T8397]  loop0: p1 p2[DM] p3 p4
[  239.937739][ T8397] loop0: p1 size 196608 extends beyond EOD, truncated
[  239.955695][ T8400] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  239.975673][ T8397] loop0: p2 start 4292936063 is beyond EOD, truncated
[  239.982766][ T8397] loop0: p3 size 189005824 extends beyond EOD, truncated
[  240.015179][ T8400] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  240.022332][ T8400] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1366: bg 0: block 40: padding at end of block bitmap is not set
[  240.022714][ T8397] loop0: p4 size 50331648 extends beyond EOD, truncated
[  240.036896][ T8400] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  240.060419][ T8407] loop1: detected capacity change from 0 to 8192
[  240.070359][ T8391] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  240.091022][ T8400] EXT4-fs (loop3): 1 truncate cleaned up
[  240.097335][ T8400] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  240.112736][ T8409] syz.4.1369: attempt to access beyond end of device
[  240.112736][ T8409] loop4: rw=2049, sector=256, nr_sectors = 100 limit=256
[  240.141384][ T8409] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1369'.
[  240.165839][ T8412] netlink: 'syz.0.1370': attribute type 7 has an invalid length.
[  240.173748][ T8412] netlink: 'syz.0.1370': attribute type 5 has an invalid length.
[  240.216328][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.240437][ T8415] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1371'.
[  240.246950][ T8412] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1370'.
[  240.259897][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  240.269862][ T8415] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1371'.
[  240.272049][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  240.287043][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  240.372190][ T8391] loop2: detected capacity change from 0 to 512
[  240.451738][ T8391] EXT4-fs: Ignoring removed mblk_io_submit option
[  240.472127][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  240.483473][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  240.499294][ T8425] loop4: detected capacity change from 0 to 4096
[  240.580456][ T3489] udevd[3489]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  240.681151][ T8391] EXT4-fs: Ignoring removed nomblk_io_submit option
[  240.763219][ T8425] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.947994][ T8391] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  240.956620][ T8391] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  240.981301][ T8421] 8021q: adding VLAN 0 to HW filter on device bond9
[  241.351569][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.468880][ T8444] loop3: detected capacity change from 0 to 8192
[  241.500776][ T8448] 9pnet_fd: p9_fd_create_unix (8448): problem connecting socket: ./file0: -2
[  241.515384][ T8391] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.1362: Allocating blocks 41-42 which overlap fs metadata
[  241.527261][ T8448] netlink: 'syz.4.1380': attribute type 4 has an invalid length.
[  241.546135][ T8448] bridge8: entered promiscuous mode
[  241.556720][ T8448] netlink: 'syz.4.1380': attribute type 4 has an invalid length.
[  241.677940][ T8391] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.1362: Allocating blocks 41-42 which overlap fs metadata
[  241.749120][ T8450] loop4: detected capacity change from 0 to 8192
[  241.795175][ T8391] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1362: Failed to acquire dquot type 1
[  241.837021][ T3581]  loop4: p1 p2[DM] p3 p4
[  241.841481][ T3581] loop4: p1 size 196608 extends beyond EOD, truncated
[  241.892347][ T3581] loop4: p2 start 4292936063 is beyond EOD, truncated
[  241.899278][ T3581] loop4: p3 size 189005824 extends beyond EOD, truncated
[  241.911380][ T8458] loop3: detected capacity change from 0 to 128
[  241.967411][ T8391] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  241.982488][ T3581] loop4: p4 size 50331648 extends beyond EOD, truncated
[  242.023938][ T8450]  loop4: p1 p2[DM] p3 p4
[  242.030324][ T8450] loop4: p1 size 196608 extends beyond EOD, truncated
[  242.055155][ T8450] loop4: p2 start 4292936063 is beyond EOD, truncated
[  242.062011][ T8450] loop4: p3 size 189005824 extends beyond EOD, truncated
[  242.079936][ T8391] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1362: corrupted inode contents
[  242.092295][ T8450] loop4: p4 size 50331648 extends beyond EOD, truncated
[  242.214767][ T8391] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #12: comm syz.2.1362: mark_inode_dirty error
[  242.238432][ T8464] loop0: detected capacity change from 0 to 1024
[  242.296182][ T8391] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1362: corrupted inode contents
[  242.309725][ T8442] loop1: detected capacity change from 0 to 4096
[  242.316260][ T8464] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  242.352529][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  242.364377][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  242.377228][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  242.389528][ T8464] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  242.402780][ T8442] EXT4-fs: Ignoring removed nomblk_io_submit option
[  242.450271][ T8391] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.1362: mark_inode_dirty error
[  242.466515][ T8391] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1362: corrupted inode contents
[  242.478744][ T8391] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[  242.486627][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  242.487912][ T8391] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1362: corrupted inode contents
[  242.513140][ T8464] EXT4-fs error (device loop0): ext4_get_journal_inode:5808: inode #5: comm syz.0.1384: unexpected bad inode w/o EXT4_IGET_BAD
[  242.529253][ T8464] EXT4-fs (loop0): Remounting filesystem read-only
[  242.536046][ T8464] EXT4-fs (loop0): no journal found
[  242.541289][ T8464] EXT4-fs (loop0): can't get journal size
[  242.548774][ T8442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.564904][ T8464] EXT4-fs (loop0): failed to initialize system zone (-117)
[  242.585011][ T8391] EXT4-fs error (device loop2): ext4_truncate:4637: inode #12: comm syz.2.1362: mark_inode_dirty error
[  242.596488][ T8464] EXT4-fs (loop0): mount failed
[  242.625698][ T8464] 9pnet_fd: Insufficient options for proto=fd
[  242.902822][ T8485] loop0: detected capacity change from 0 to 4096
[  243.158428][ T8391] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[  243.168286][ T8391] EXT4-fs (loop2): 1 truncate cleaned up
[  243.175059][ T8485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.188179][ T8391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.190232][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.350202][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.429892][ T8489] loop3: detected capacity change from 0 to 8192
[  243.457331][ T8492] loop1: detected capacity change from 0 to 4096
[  243.513855][ T8492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.901532][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.016465][ T8508] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1396'.
[  244.028189][ T8506] loop2: detected capacity change from 0 to 4096
[  244.050052][ T8506] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.063166][ T8508] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1396'.
[  244.262252][ T8515] loop0: detected capacity change from 0 to 256
[  244.271803][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.311156][ T8517] 9pnet_fd: p9_fd_create_unix (8517): problem connecting socket: ./file0: -2
[  244.341641][ T8517] netlink: 'syz.1.1399': attribute type 4 has an invalid length.
[  244.363907][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.371321][ T8517] bridge7: entered promiscuous mode
[  244.380125][ T8493] loop4: detected capacity change from 0 to 128
[  244.392589][ T8517] netlink: 'syz.1.1399': attribute type 4 has an invalid length.
[  244.405382][ T8515] syz.0.1398: attempt to access beyond end of device
[  244.405382][ T8515] loop0: rw=2049, sector=256, nr_sectors = 100 limit=256
[  244.458631][ T8515] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1398'.
[  245.873021][ T8531] loop1: detected capacity change from 0 to 512
[  245.976102][ T8539] workqueue: Failed to create a rescuer kthread for wq "bond5": -EINTR
[  246.087443][ T8543] bridge0: entered promiscuous mode
[  246.089575][ T8543] bridge0: left promiscuous mode
[  246.099646][   T29] kauditd_printk_skb: 378 callbacks suppressed
[  246.099665][   T29] audit: type=1400 audit(1761260589.775:13303): avc:  denied  { listen } for  pid=8542 comm="syz.4.1408" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  246.317711][ T8544] loop2: detected capacity change from 0 to 512
[  246.329607][ T8544] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1405: error while reading EA inode 32 err=-116
[  246.329845][ T8544] EXT4-fs (loop2): Remounting filesystem read-only
[  246.329865][ T8544] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  246.329896][ T8544] EXT4-fs (loop2): 1 orphan inode deleted
[  246.330373][ T8544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.334397][ T8531] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6).
[  246.334440][ T8531] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  246.334652][ T8531] EXT4-fs (loop1): mount failed
[  246.355882][ T8550] loop4: detected capacity change from 0 to 4096
[  246.367209][ T8550] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.501378][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.543670][ T8559] 9pnet_fd: p9_fd_create_unix (8559): problem connecting socket: ./file0: -2
[  246.567255][ T8559] netlink: 'syz.2.1411': attribute type 4 has an invalid length.
[  246.576917][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.601979][ T8559] bridge9: entered promiscuous mode
[  246.604414][ T8559] netlink: 'syz.2.1411': attribute type 4 has an invalid length.
[  246.605828][ T8562] 9pnet_fd: p9_fd_create_unix (8562): problem connecting socket: ./file0: -2
[  246.640821][ T8562] netlink: 'syz.0.1413': attribute type 4 has an invalid length.
[  246.665995][ T8562] bridge8: entered promiscuous mode
[  246.675976][ T8562] netlink: 'syz.0.1413': attribute type 4 has an invalid length.
[  246.708890][   T29] audit: type=1400 audit(1761260590.385:13304): avc:  denied  { read write } for  pid=8567 comm="syz.2.1415" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  246.709008][   T29] audit: type=1400 audit(1761260590.385:13305): avc:  denied  { open } for  pid=8567 comm="syz.2.1415" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  246.738475][ T8572] loop2: detected capacity change from 0 to 128
[  246.877712][ T8576] FAULT_INJECTION: forcing a failure.
[  246.877712][ T8576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  246.890936][ T8576] CPU: 0 UID: 0 PID: 8576 Comm: syz.0.1416 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  246.890970][ T8576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  246.891062][ T8576] Call Trace:
[  246.891070][ T8576]  <TASK>
[  246.891081][ T8576]  __dump_stack+0x1d/0x30
[  246.891170][ T8576]  dump_stack_lvl+0xe8/0x140
[  246.891192][ T8576]  dump_stack+0x15/0x1b
[  246.891236][ T8576]  should_fail_ex+0x265/0x280
[  246.891318][ T8576]  should_fail+0xb/0x20
[  246.891408][ T8576]  should_fail_usercopy+0x1a/0x20
[  246.891435][ T8576]  _copy_from_user+0x1c/0xb0
[  246.891460][ T8576]  ___sys_sendmsg+0xc1/0x1d0
[  246.891564][ T8576]  __x64_sys_sendmsg+0xd4/0x160
[  246.891619][ T8576]  x64_sys_call+0x191e/0x3000
[  246.891648][ T8576]  do_syscall_64+0xd2/0x200
[  246.891705][ T8576]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  246.891739][ T8576]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  246.891769][ T8576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.891844][ T8576] RIP: 0033:0x7f02d998efc9
[  246.891941][ T8576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.891965][ T8576] RSP: 002b:00007f02d83b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  246.891988][ T8576] RAX: ffffffffffffffda RBX: 00007f02d9be6180 RCX: 00007f02d998efc9
[  246.892004][ T8576] RDX: 0000000000000000 RSI: 0000200000001600 RDI: 0000000000000003
[  246.892017][ T8576] RBP: 00007f02d83b5090 R08: 0000000000000000 R09: 0000000000000000
[  246.892108][ T8576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.892124][ T8576] R13: 00007f02d9be6218 R14: 00007f02d9be6180 R15: 00007ffc5730e468
[  246.892149][ T8576]  </TASK>
[  247.068401][   T29] audit: type=1400 audit(1761260590.745:13306): avc:  denied  { audit_write } for  pid=8577 comm="syz.1.1418" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  247.098900][   T29] audit: type=1326 audit(1761260590.775:13307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8577 comm="syz.1.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  247.125096][   T29] audit: type=1326 audit(1761260590.805:13308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8577 comm="syz.1.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  247.148658][   T29] audit: type=1326 audit(1761260590.805:13309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8577 comm="syz.1.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  247.172286][   T29] audit: type=1326 audit(1761260590.805:13310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8577 comm="syz.1.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  247.195724][   T29] audit: type=1326 audit(1761260590.805:13311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8577 comm="syz.1.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7506aefc9 code=0x7ffc0000
[  247.213861][ T8572] syz.2.1417: attempt to access beyond end of device
[  247.213861][ T8572] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  247.232764][ T8572] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  247.234687][ T8579] gretap0: entered promiscuous mode
[  247.260126][ T8575] loop4: detected capacity change from 0 to 4096
[  247.270866][ T8575] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.288874][ T8574] syz.2.1417: attempt to access beyond end of device
[  247.288874][ T8574] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  247.302376][ T8574] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  247.325822][ T8575] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  247.436674][ T8585] loop3: detected capacity change from 0 to 512
[  247.468941][ T8585] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.1419: error while reading EA inode 32 err=-116
[  247.514883][ T8585] EXT4-fs (loop3): Remounting filesystem read-only
[  247.556232][ T8585] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  247.586052][ T8585] EXT4-fs (loop3): 1 orphan inode deleted
[  247.596212][ T8585] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.638256][ T8593] loop2: detected capacity change from 0 to 128
[  247.677139][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.742665][ T8594] loop0: detected capacity change from 0 to 512
[  247.773949][ T8594] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.1421: error while reading EA inode 32 err=-116
[  247.812868][ T8604] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1425'.
[  247.824239][ T8594] EXT4-fs (loop0): Remounting filesystem read-only
[  247.847298][ T8604] warn_alloc: 2 callbacks suppressed
[  247.847312][ T8604] syz.4.1425: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0
[  247.867511][ T8604] CPU: 1 UID: 0 PID: 8604 Comm: syz.4.1425 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  247.867599][ T8604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  247.867612][ T8604] Call Trace:
[  247.867619][ T8604]  <TASK>
[  247.867629][ T8604]  __dump_stack+0x1d/0x30
[  247.867656][ T8604]  dump_stack_lvl+0xe8/0x140
[  247.867676][ T8604]  dump_stack+0x15/0x1b
[  247.867776][ T8604]  warn_alloc+0x12b/0x1a0
[  247.867818][ T8604]  ? __rcu_read_unlock+0x4f/0x70
[  247.867849][ T8604]  __vmalloc_node_range_noprof+0x9d/0xed0
[  247.867893][ T8604]  ? __futex_wait+0x1fa/0x260
[  247.867982][ T8604]  ? __pfx_futex_wake_mark+0x10/0x10
[  247.868036][ T8604]  ? __rcu_read_unlock+0x4f/0x70
[  247.868061][ T8604]  ? avc_has_perm_noaudit+0x1b1/0x200
[  247.868141][ T8604]  ? should_fail_ex+0x30/0x280
[  247.868227][ T8604]  ? xskq_create+0x36/0xe0
[  247.868250][ T8604]  vmalloc_user_noprof+0x7d/0xb0
[  247.868299][ T8604]  ? xskq_create+0x80/0xe0
[  247.868326][ T8604]  xskq_create+0x80/0xe0
[  247.868350][ T8604]  xsk_init_queue+0x95/0xf0
[  247.868379][ T8604]  xsk_setsockopt+0x3f5/0x640
[  247.868404][ T8604]  ? __pfx_xsk_setsockopt+0x10/0x10
[  247.868428][ T8604]  __sys_setsockopt+0x184/0x200
[  247.868470][ T8604]  __x64_sys_setsockopt+0x64/0x80
[  247.868570][ T8604]  x64_sys_call+0x20ec/0x3000
[  247.868645][ T8604]  do_syscall_64+0xd2/0x200
[  247.868743][ T8604]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  247.868778][ T8604]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  247.868817][ T8604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.868839][ T8604] RIP: 0033:0x7fa23c78efc9
[  247.868930][ T8604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.868961][ T8604] RSP: 002b:00007fa23b1ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  247.868980][ T8604] RAX: ffffffffffffffda RBX: 00007fa23c9e5fa0 RCX: 00007fa23c78efc9
[  247.868996][ T8604] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[  247.869012][ T8604] RBP: 00007fa23c811f91 R08: 0000000000000004 R09: 0000000000000000
[  247.869024][ T8604] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  247.869037][ T8604] R13: 00007fa23c9e6038 R14: 00007fa23c9e5fa0 R15: 00007fff57c6c218
[  247.869060][ T8604]  </TASK>
[  247.869068][ T8604] Mem-Info:
[  247.896671][ T8594] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  247.899532][ T8604] active_anon:22040 inactive_anon:63 isolated_anon:0
[  247.899532][ T8604]  active_file:27837 inactive_file:2327 isolated_file:0
[  247.899532][ T8604]  unevictable:0 dirty:300 writeback:0
[  247.899532][ T8604]  slab_reclaimable:3389 slab_unreclaimable:15567
[  247.899532][ T8604]  mapped:30817 shmem:314 pagetables:1760
[  247.899532][ T8604]  sec_pagetables:0 bounce:0
[  247.899532][ T8604]  kernel_misc_reclaimable:0
[  247.899532][ T8604]  free:1849907 free_pcp:26265 free_cma:0
[  247.926177][ T8594] EXT4-fs (loop0): 1 orphan inode deleted
[  247.928310][ T8604] Node 0 active_anon:88160kB inactive_anon:252kB active_file:111348kB inactive_file:9308kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:123268kB dirty:1200kB writeback:0kB shmem:1256kB kernel_stack:4464kB pagetables:7040kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  247.934250][ T8594] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.938586][ T8604] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  248.085980][ T8598] syz.2.1422: attempt to access beyond end of device
[  248.085980][ T8598] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  248.091163][ T8604] lowmem_reserve[]: 0 2881 7859 7859
[  248.091196][ T8604] Node 0 DMA32 free:2946744kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950272kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  248.094312][ T8598] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  248.097422][ T8604] lowmem_reserve[]: 0 0 4978
[  248.108476][ T8602] syz.2.1422: attempt to access beyond end of device
[  248.108476][ T8602] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  248.152671][ T8604]  4978
[  248.152692][ T8604] Node 0 Normal free:4437524kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:88160kB inactive_anon:252kB active_file:111348kB inactive_file:9308kB unevictable:0kB writepending:1316kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:101500kB local_pcp:56196kB free_cma:0kB
[  248.152787][ T8604] lowmem_reserve[]: 0 0
[  248.158577][ T8602] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  248.186033][ T8604]  0 0
[  248.186056][ T8604] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  248.368291][ T8604] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 6*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946744kB
[  248.384617][ T8604] Node 0 Normal: 2819*4kB (UME) 1876*8kB (UME) 1622*16kB (UME) 874*32kB (UME) 614*64kB (UME) 306*128kB (UME) 80*256kB (ME) 47*512kB (UME) 31*1024kB (UME) 14*2048kB (UME) 1019*4096kB (UM) = 4437452kB
[  248.404449][ T8604] Node 0 hugepages_total=4 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  248.413779][ T8604] 30536 total pagecache pages
[  248.418476][ T8604] 63 pages in swap cache
[  248.422725][ T8604] Free swap  = 124744kB
[  248.426923][ T8604] Total swap = 124996kB
[  248.431089][ T8604] 2097051 pages RAM
[  248.434901][ T8604] 0 pages HighMem/MovableOnly
[  248.439717][ T8604] 81083 pages reserved
[  248.445164][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.490405][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.534725][ T8613] loop2: detected capacity change from 0 to 512
[  248.568343][ T8613] EXT4-fs: Ignoring removed bh option
[  248.710954][ T8623] 8021q: adding VLAN 0 to HW filter on device bond5
[  248.731187][ T8613] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  248.823860][ T8613] EXT4-fs (loop2): 1 truncate cleaned up
[  248.851375][ T8622] netlink: 'syz.0.1431': attribute type 39 has an invalid length.
[  248.864246][ T8613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  248.930900][ T8631] loop4: detected capacity change from 0 to 4096
[  248.968860][ T8631] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.060006][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.402772][ T8643] loop0: detected capacity change from 0 to 512
[  249.430400][ T8643] EXT4-fs: Ignoring removed bh option
[  249.539495][ T8641] loop2: detected capacity change from 0 to 8192
[  249.574590][ T8643] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  249.595815][ T8641]  loop2: p1 p2[DM] p3 p4
[  249.607861][ T8643] EXT4-fs (loop0): 1 truncate cleaned up
[  249.615399][ T8641] loop2: p1 size 196608 extends beyond EOD, truncated
[  249.634024][ T8643] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.653996][ T8641] loop2: p2 start 4292936063 is beyond EOD, truncated
[  249.661138][ T8641] loop2: p3 size 189005824 extends beyond EOD, truncated
[  249.728924][ T8641] loop2: p4 size 50331648 extends beyond EOD, truncated
[  249.801413][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.930460][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  249.937170][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  249.951753][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  249.984716][ T8648] loop0: detected capacity change from 0 to 4096
[  249.997694][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.028069][ T8648] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.217846][ T8666] loop1: detected capacity change from 0 to 512
[  250.224654][ T8666] EXT4-fs: Ignoring removed bh option
[  250.234139][ T8666] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  250.249224][ T8664] loop4: detected capacity change from 0 to 512
[  250.267669][ T8666] EXT4-fs (loop1): 1 truncate cleaned up
[  250.290587][ T8666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.314652][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.335972][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.356103][ T8664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.369365][ T8664] ext4 filesystem being mounted at /303/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  250.387408][ T8664] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1447: corrupted inode contents
[  250.428474][ T8664] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.1447: mark_inode_dirty error
[  250.467880][ T8664] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1447: corrupted inode contents
[  250.499899][ T8664] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1447: mark_inode_dirty error
[  250.538954][ T8671] loop1: detected capacity change from 0 to 8192
[  250.560497][ T8673] loop0: detected capacity change from 0 to 8192
[  250.585235][ T3304]  loop1: p1 p2[DM] p3 p4
[  250.589818][ T3304] loop1: p1 size 196608 extends beyond EOD, truncated
[  250.597631][ T3304] loop1: p2 start 4292936063 is beyond EOD, truncated
[  250.604576][ T3304] loop1: p3 size 189005824 extends beyond EOD, truncated
[  250.612668][ T3304] loop1: p4 size 50331648 extends beyond EOD, truncated
[  250.625645][ T8673]  loop0: p1 p2[DM] p3 p4
[  250.630452][ T8673] loop0: p1 size 196608 extends beyond EOD, truncated
[  250.630679][ T8671]  loop1: p1 p2[DM] p3 p4
[  250.645252][ T8673] loop0: p2 start 4292936063 is beyond EOD, truncated
[  250.652230][ T8673] loop0: p3 size 189005824 extends beyond EOD, truncated
[  250.665121][ T8671] loop1: p1 size 196608 extends beyond EOD, truncated
[  250.679750][ T8682] loop2: detected capacity change from 0 to 512
[  250.688225][ T8673] loop0: p4 size 50331648 extends beyond EOD, truncated
[  250.692541][ T8671] loop1: p2 start 4292936063 is beyond EOD, truncated
[  250.702055][ T8671] loop1: p3 size 189005824 extends beyond EOD, truncated
[  250.709745][ T8678] loop3: detected capacity change from 0 to 4096
[  250.725526][ T8671] loop1: p4 size 50331648 extends beyond EOD, truncated
[  250.800917][ T8682] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.852789][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  250.864010][ T8682] IPv6: NLM_F_CREATE should be specified when creating new route
[  250.874329][ T8682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1453'.
[  250.895818][ T8690] loop0: detected capacity change from 0 to 256
[  250.902422][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  250.916590][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  250.939975][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  250.946317][ T8690] syz.0.1456: attempt to access beyond end of device
[  250.946317][ T8690] loop0: rw=2049, sector=256, nr_sectors = 100 limit=256
[  250.969976][ T8694] loop1: detected capacity change from 0 to 128
[  250.977025][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  251.007045][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  251.026846][ T3581] udevd[3581]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  251.089689][ T8688] loop4: detected capacity change from 0 to 4096
[  251.116954][ T8688] EXT4-fs: Ignoring removed nomblk_io_submit option
[  251.278132][ T8711] loop2: detected capacity change from 0 to 512
[  251.284840][ T8711] EXT4-fs: Ignoring removed bh option
[  251.311713][ T8711] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  251.369522][ T8711] EXT4-fs (loop2): 1 truncate cleaned up
[  251.426827][ T8716] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1462'.
[  251.472898][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.482204][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.505003][   T29] kauditd_printk_skb: 121 callbacks suppressed
[  251.505028][   T29] audit: type=1326 audit(1761260595.175:13433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.534890][   T29] audit: type=1326 audit(1761260595.175:13434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.558416][   T29] audit: type=1326 audit(1761260595.175:13435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.581934][   T29] audit: type=1326 audit(1761260595.175:13436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.599105][ T8700] syz.1.1455: attempt to access beyond end of device
[  251.599105][ T8700] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  251.605548][   T29] audit: type=1326 audit(1761260595.175:13437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.618961][ T8700] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  251.642464][   T29] audit: type=1326 audit(1761260595.175:13438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbc8adbefc9 code=0x7ffc0000
[  251.674663][   T29] audit: type=1326 audit(1761260595.175:13439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbc8adbf003 code=0x7ffc0000
[  251.713896][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.723044][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.733116][ T8703] syz.1.1455: attempt to access beyond end of device
[  251.733116][ T8703] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  251.746623][ T8703] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  251.755301][   T29] audit: type=1326 audit(1761260595.415:13440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbc8adbda7f code=0x7ffc0000
[  251.768499][ T8728] loop0: detected capacity change from 0 to 512
[  251.792613][   T29] audit: type=1326 audit(1761260595.465:13441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fbc8adbf057 code=0x7ffc0000
[  251.802978][ T8728] ext4: Unknown parameter 'subj_role'
[  251.822579][ T8725] loop2: detected capacity change from 0 to 8192
[  251.822717][   T29] audit: type=1326 audit(1761260595.495:13442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.2.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbc8adbd810 code=0x7ffc0000
[  251.875175][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.884291][ T8723] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1463'.
[  251.905593][ T3304]  loop2: p1 p2[DM] p3 p4
[  251.919642][ T3304] loop2: p1 size 196608 extends beyond EOD, truncated
[  251.945202][ T3304] loop2: p2 start 4292936063 is beyond EOD, truncated
[  251.952169][ T3304] loop2: p3 size 189005824 extends beyond EOD, truncated
[  251.962997][ T8734] loop4: detected capacity change from 0 to 256
[  251.972867][ T3304] loop2: p4 size 50331648 extends beyond EOD, truncated
[  251.990962][ T8725]  loop2: p1 p2[DM] p3 p4
[  252.007372][ T8725] loop2: p1 size 196608 extends beyond EOD, truncated
[  252.015026][ T8734] syz.4.1469: attempt to access beyond end of device
[  252.015026][ T8734] loop4: rw=2049, sector=256, nr_sectors = 100 limit=256
[  252.029025][ T8725] loop2: p2 start 4292936063 is beyond EOD, truncated
[  252.035892][ T8725] loop2: p3 size 189005824 extends beyond EOD, truncated
[  252.074598][ T8725] loop2: p4 size 50331648 extends beyond EOD, truncated
[  252.125592][ T8742] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1472'.
[  252.179091][ T8746] loop2: detected capacity change from 0 to 512
[  252.188286][ T8746] EXT4-fs: Ignoring removed bh option
[  252.225612][ T8750] IPv6: NLM_F_CREATE should be specified when creating new route
[  252.242312][ T8746] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  252.256492][ T8750] loop4: detected capacity change from 0 to 128
[  252.290892][ T8746] EXT4-fs (loop2): 1 truncate cleaned up
[  252.382264][ T8760] 9pnet_fd: p9_fd_create_unix (8760): problem connecting socket: ./file0: -2
[  252.419263][ T8760] netlink: 'syz.3.1480': attribute type 4 has an invalid length.
[  252.457802][ T8760] bridge8: entered promiscuous mode
[  252.468178][ T8760] netlink: 'syz.3.1480': attribute type 4 has an invalid length.
[  252.518469][ T8768] loop2: detected capacity change from 0 to 512
[  252.533577][ T8751] loop1: detected capacity change from 0 to 4096
[  252.541545][ T8751] EXT4-fs: Ignoring removed nomblk_io_submit option
[  252.552757][ T8768] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.1483: bad orphan inode 11862016
[  252.566324][ T8768] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.612109][ T8770] loop3: detected capacity change from 0 to 8192
[  252.836154][ T8792] loop3: detected capacity change from 0 to 256
[  252.935218][ T8792] syz.3.1491: attempt to access beyond end of device
[  252.935218][ T8792] loop3: rw=2049, sector=256, nr_sectors = 100 limit=256
[  253.189371][ T8802] __nla_validate_parse: 3 callbacks suppressed
[  253.189403][ T8802] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1494'.
[  253.528682][ T8813] loop1: detected capacity change from 0 to 4096
[  253.765030][ T8822] loop4: detected capacity change from 0 to 512
[  253.798433][ T8822] EXT4-fs: Ignoring removed nobh option
[  253.838897][ T8822] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[  253.885327][ T8827] loop0: detected capacity change from 0 to 256
[  253.899571][ T8822] loop4: detected capacity change from 0 to 512
[  253.930157][ T8822] EXT4-fs: Ignoring removed mblk_io_submit option
[  253.940990][ T8822] EXT4-fs: Ignoring removed nomblk_io_submit option
[  253.977756][ T8827] syz.0.1503: attempt to access beyond end of device
[  253.977756][ T8827] loop0: rw=2049, sector=256, nr_sectors = 100 limit=256
[  253.991693][ T8822] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  254.000237][ T8822] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  254.048655][ T3314] EXT4-fs unmount: 16 callbacks suppressed
[  254.048671][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.070659][ T8829] loop0: detected capacity change from 0 to 128
[  254.099631][ T8822] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1501: Allocating blocks 41-42 which overlap fs metadata
[  254.153143][ T8822] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1501: Allocating blocks 41-42 which overlap fs metadata
[  254.216262][ T8822] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1501: Failed to acquire dquot type 1
[  254.236733][ T8822] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  254.275128][ T8822] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1501: corrupted inode contents
[  254.290965][ T8822] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #12: comm syz.4.1501: mark_inode_dirty error
[  254.302894][ T8822] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1501: corrupted inode contents
[  254.347569][ T8822] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.1501: mark_inode_dirty error
[  254.361381][ T8822] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1501: corrupted inode contents
[  254.374425][ T8822] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[  254.451473][ T8822] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.1501: corrupted inode contents
[  254.515286][ T8822] EXT4-fs error (device loop4): ext4_truncate:4637: inode #12: comm syz.4.1501: mark_inode_dirty error
[  254.544722][ T8844] loop3: detected capacity change from 0 to 4096
[  254.555280][ T8822] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[  254.583817][ T8822] EXT4-fs (loop4): 1 truncate cleaned up
[  254.590395][ T8844] EXT4-fs: Ignoring removed nomblk_io_submit option
[  254.595425][ T8835] syz.0.1504: attempt to access beyond end of device
[  254.595425][ T8835] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  254.610564][ T8835] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  254.620151][ T8822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.634707][ T8844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.652912][ T8838] syz.0.1504: attempt to access beyond end of device
[  254.652912][ T8838] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  254.666415][ T8838] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  254.678656][ T8822] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1501: Allocating blocks 41-42 which overlap fs metadata
[  254.707694][ T8851] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1509'.
[  254.723254][ T8822] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1501: Failed to acquire dquot type 1
[  254.728631][ T8851] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1509'.
[  254.750475][ T8835] syz.0.1504: attempt to access beyond end of device
[  254.750475][ T8835] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  254.764010][ T8835] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  254.788586][ T3318] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.061560][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.101944][ T8865] loop4: detected capacity change from 0 to 128
[  255.132274][ T8866] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  255.157196][ T8866] SELinux: failed to load policy
[  255.205382][ T8868] loop3: detected capacity change from 0 to 4096
[  255.231381][ T8870] ==================================================================
[  255.239535][ T8870] BUG: KCSAN: data-race in __mark_inode_dirty / writeback_single_inode
[  255.247817][ T8870] 
[  255.250147][ T8870] write to 0xffff88811ac39328 of 4 bytes by task 8869 on cpu 0:
[  255.257787][ T8870]  writeback_single_inode+0x150/0x3f0
[  255.263183][ T8870]  sync_inode_metadata+0x5b/0x90
[  255.268138][ T8870]  __generic_file_fsync+0xf8/0x140
[  255.273263][ T8870]  fat_file_fsync+0x49/0x100
[  255.277864][ T8870]  vfs_fsync_range+0x10d/0x130
[  255.282644][ T8870]  generic_file_write_iter+0x1b8/0x2f0
[  255.288121][ T8870]  iter_file_splice_write+0x666/0xa60
[  255.293518][ T8870]  direct_splice_actor+0x156/0x2a0
[  255.298650][ T8870]  splice_direct_to_actor+0x312/0x680
[  255.304058][ T8870]  do_splice_direct+0xda/0x150
[  255.308828][ T8870]  do_sendfile+0x380/0x650
[  255.313261][ T8870]  __x64_sys_sendfile64+0x105/0x150
[  255.318483][ T8870]  x64_sys_call+0x2bb4/0x3000
[  255.323184][ T8870]  do_syscall_64+0xd2/0x200
[  255.327735][ T8870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.333646][ T8870] 
[  255.335981][ T8870] read to 0xffff88811ac39328 of 4 bytes by task 8870 on cpu 1:
[  255.343527][ T8870]  __mark_inode_dirty+0x55/0x750
[  255.348488][ T8870]  fat_update_time+0x1ec/0x200
[  255.353270][ T8870]  touch_atime+0x148/0x340
[  255.357707][ T8870]  filemap_splice_read+0x6ba/0x740
[  255.362849][ T8870]  splice_direct_to_actor+0x26f/0x680
[  255.368244][ T8870]  do_splice_direct+0xda/0x150
[  255.373028][ T8870]  do_sendfile+0x380/0x650
[  255.377465][ T8870]  __x64_sys_sendfile64+0x105/0x150
[  255.382841][ T8870]  x64_sys_call+0x2bb4/0x3000
[  255.387529][ T8870]  do_syscall_64+0xd2/0x200
[  255.392036][ T8870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.397938][ T8870] 
[  255.400261][ T8870] value changed: 0x00000070 -> 0x00000002
[  255.405980][ T8870] 
[  255.408307][ T8870] Reported by Kernel Concurrency Sanitizer on:
[  255.414460][ T8870] CPU: 1 UID: 0 PID: 8870 Comm: syz.4.1516 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  255.424186][ T8870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  255.434260][ T8870] ==================================================================
[  255.496637][ T8868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.698676][ T8869] syz.4.1516: attempt to access beyond end of device
[  255.698676][ T8869] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  255.712310][ T8869] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  255.723482][ T8870] syz.4.1516: attempt to access beyond end of device
[  255.723482][ T8870] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  255.737091][ T8870] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  255.752321][ T8870] syz.4.1516: attempt to access beyond end of device
[  255.752321][ T8870] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  255.765854][ T8870] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  255.781479][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.