last executing test programs:

2.152731968s ago: executing program 3 (id=2115):
r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
write$selinux_access(r0, &(0x7f0000001a80)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742973797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

2.03189819s ago: executing program 3 (id=2116):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
flock(0xffffffffffffffff, 0x5)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x40044)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r2, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x4, 0x0, 0x7ffc1ffb}]})
r3 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x170)
fgetxattr(r3, &(0x7f00000003c0)=@known='security.selinux\x00', 0x0, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001740)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000bc7ef9642d29ba564165605dca29708efdf9b15a5c10a126121b2751f642635bcd9a8bf7a928a5d054b0d2c54d519ea75c52f41ed6f2886973626b684c8bd9108c0b0b2ea7e556948f0367aff4fbcede3294f6e73d06ad16dc2d26725ff833b5f83b499918e6a6ec245b781d41aee9624c847e2f2312d6b9db45bad354fc1a3f20407ffe406483a0524937ee7559e4bf70136746b37fdfbbb152758d37ed8bcac41fb7243bdcd536249c7996e898b61927eaa5a8790054ba13d3ade593220f96027090a34aaf7ea92f41aab73e7a85eef87e956bb7c5c76a347264fd99359f4e57b0dcc2bcc188ea880a4b11a8bb81eb22b0ddfc689e3218cf310dcc61cab354149d9107d8a88b0aa5b5661555f00443aee5e714009e52cee5e88f008148ddbc0fa81bf938bed4a1ac778d5337cc0311d0772eeac3eab38426e8d1472ff514aa5379ed21551790cc10148410b4fc27582fd7106a8887a9a0b613dfe10aee77542d887208f5534f5dce4d43f258fc9ef975834e1917666e2aff1cebfc3ce2c1e8ff66bba1d9050000000000000078db7024bf321636bede8651e672ed4f01ba5da2c3f9042a8552bd3f2c9ad546ad0ea20b4d35fb0a15c6239f67c7747a40fe26a88adf727fd1b801b4e56fbffcad99ce68fe2af0d94fdc78d27268de435021dca51acaa7a9e0944bdf579c170db6405944b6791a7713ee54f650fdf71b57c3629fb185efce700620ef5744623be08ec935dd563e6ba0b461bda98b364acf3dcdafa9b0e68c21ea509212c2938aa09cc31aa4ee5bfb8e507181909f5854b13997af4888cd61c8aab5fdfd701a16d546e5a533cd9b985dcc582b67979551dcc750fc51f2c9b6814edeffc76a86ea9f58b7c66fa24540daf14c2163d064f8cf0b4878f81e6b8bc4dabc10dac82b39e033963a6d02434cb783a198829d1373790a85c0e01a362d89e80165d280283af3c2060000000000000034b12a73b0c53bfae5d2f6e55728052247adfe0966c6c5eca57918c4540c979a70a281ba00e408c9fe1b20fa208976dd6a56f9bd9a74d81447c9b265d8c23f0e983e0b1d2d62d1e57c9188e4882634476e62ab1b7415a58208eaaf166d14720092f79a6197fe8b4ea7d5485cc6b3630afed8d3403cfa4d7bf48efb371706e0e65901eea3743c98261cbb7a246cf62f99bbc918741d32539ec0754e7d7f08dd45aaf49623342eabf466e54d8da4346e73da54ba2e4b5e2ae2823864d4147b490e55c9509f75c8828500ac32cab11b0262e75fa9e39e3792d01e0b210fdfb686bfffdc677432f6332c1a27502b43997060acdf7784c79fed0325e06f6b64b6434ebf4730509bcf95b9a1d0ba7c469d55351cc1dce6c90f5872e7ad5eed5f850d9d1f928b4e0263b241e8fe03e5e66252c8a3bd320e8deee5b91c653b8f22f58cff36c2ba4d6774f14229939595d2beb998c9312212de00468fc488591aca07ab75fba4a318d3ee4581711927b77a7f14dbcd639892f8cb0000000000000080411736eb1ee86eec338197a56293c9cdb72e84155681553b896d58b62a96852320e74dc4c9b41d6f90d2353dc573a94a092a84209c12da57f8c78e161b0899eb1c8b694d26c5fbf7f65fefacdbf39151f335dddc3b179a13f6de93ffb338e94738c86e35e9fcc654e4d6618dc1201cbd16e1281df911e6c699da16fbbb7a2e5c77966c98d3e7edd58cabfe6bf1bb7f6329084e3e4a2a36da07bbac3ebc00472f55b7966f250109fcce0ad5d4526d20ef74d1a634d724"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r6, 0x20, &(0x7f0000000100)={0x0, 0x0, <r7=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1c, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="18027a0000000000000000003b00000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x1000, &(0x7f0000001c80)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r7, r5}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095", @ANYRES64=r0, @ANYRES16=r0, @ANYRES8, @ANYRESDEC=r2, @ANYRESHEX=r1, @ANYRES16=r0, @ANYRES64=r0, @ANYBLOB="314162580e1d623111a83c4b0b90492c461e470bd3506b0f7badde3a57df53d328c55e9e79614607a78fc458a670e9c9fea9acb433708b5ef5728879c971c7363e602796718ff3acbe8eb28a8bc4f6976c0def82bff0b8f6454070ff73cf75413b200fd0aa92dd02b4ee0c27c06f4516fdadb2b5c1990bc244808455a62cc7f3059b873c6aea565742b0a4975666f6162882083699d05d830e6a4a1863b430341387066afe4de485827069447a9f09"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r8}, 0x10)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r9)

2.031529721s ago: executing program 3 (id=2117):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="050000000600000008000000ad00000000000000", @ANYRES32, @ANYBLOB="0000000400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd, 0x8000000}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r5}, 0x10)
r6 = signalfd(0xffffffffffffffff, &(0x7f00000003c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r6)
r7 = inotify_init1(0x800)
fcntl$setstatus(r6, 0x4, 0x2c00)
r8 = gettid()
fcntl$setown(r6, 0x8, r8)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r7, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')
r9 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x60, 0x30, 0x829, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x0, 0x10000000, 0x0, 0x3}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}}, 0x0)
io_setup(0x8f0, &(0x7f0000002400)=<r10=>0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
io_submit(r10, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])
socket$kcm(0x10, 0x2, 0x0)

2.013948691s ago: executing program 2 (id=2118):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000400)={0x7, &(0x7f00000003c0)=[{0x2b, 0x4, 0x6}, {0x3, 0x9, 0x1, 0x4}, {0x9, 0x21, 0x5, 0x80}, {0x2, 0x7, 0x7, 0x3}, {0x7f, 0x0, 0x1, 0x1}, {0x0, 0x60, 0x2, 0x7fff}, {0xc, 0xd3, 0x10, 0xfffffc01}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1c, 0x9, 0xffffffff, 0x0, 0x10000, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x4}, 0x50)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x400000, 0x0, r0, 0x0, '\x00', 0x0, r1, 0x3, 0x1}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup\x00', 0x0, 0x1d4)
r3 = socket$xdp(0x2c, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r5, 0x0, 0x4}, 0x18)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x200000, 0x1000}, 0x20)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000340)=0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000b00)='kmem_cache_free\x00', r2, 0x0, 0x1034}, 0x18)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r7, 0x0, 0xd1, &(0x7f0000000500)=0xf, 0x4)
setsockopt$MRT_INIT(r7, 0x0, 0xc8, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@dellink={0x20, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, 0x1480, 0x2104}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

1.703825317s ago: executing program 2 (id=2121):
socket$inet6(0xa, 0x2, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = accept(r0, &(0x7f0000001780)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, &(0x7f00000006c0)=0x80)
sendmsg$TIPC_CMD_SHOW_PORTS(r2, &(0x7f00000018c0)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x1c, 0x0, 0x2, 0x70bd28, 0x25dfdbfb, {}, [""]}, 0x1c}}, 0x4000)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x180)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$TOKEN_CREATE(0x24, &(0x7f00000005c0)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000730000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x330}}, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
close_range(r5, r1, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
fdatasync(r6)

1.670779218s ago: executing program 2 (id=2123):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000a40)={{}, "2c6d3bfa84ecea42eb3503ce9f02dec3ae10acc6c946829dedb8e6a63d6ef959de2aae9ce778e016b9cfcd272de964dd3089d955d496e317bd1635f17661f7c4c06a7ee14031249ece72eafcd4e4d510641ef49155fb9c4fee06d00927d265c7a464ce6914d2a52fc967add6f6329416348664c3f3fe55f0cd0798b814309388cf4a1fdba4fcb3e789914e2a351311baa7b69666e19ab4553c24a8e9eeccd9c7964f880258e7188454afbd19697f86f7bd48c5baf8ca11119a938e0549fb2e707b37eedadefba105622a892dc1209dea42c7774203930f84046ea5841470a368fe60a2bf6c8cca696db095b72bf8d10c36bee631573f94d74f89cb109faf04fed84910a246ba4cb8b0daecfe5b0aac60a3b42482018723490c208b385c15ef9972494fe1af5404b4a8d833b31cb587f5baa9e641996790a749da05f48c4033f91da775524f0a86bbfa6492a23583232093607742af5f46de075aee32976cbe1c4d4423db0555ffb393d04d1765cbc9597900664516c613c71d4d489d9d19c1059f5679915c4cfd3bd80cea6d29facafe9dccb0177f6c477d882ed16c4f7229bf4dfe67ec35d9996ba3d26101e580eba4c06ec69b1209bc963451da8e4df536f4db062c726f854ae901410a47bcc384fb0aef76cbb3872fcfd2f358b81a95ffb5783c7815384aa1d2c52c4cb92efeaa819687857144cb8cab85aa73d811634724b036d1041e5ca922422b6930a8f5a7efc72204d0209ab41e1405219dcbba3e38452993527c36cc79f64d58f4b6d1b9a703eb81881bfc32fd5b59660bf6baf99fd48a25a0f6b1a160fc659caa42540cea6b79652bc4c4aeb508227be84fa3cf508dcf5bfb2e99a231140a288d3476306d2dfa0aec2288f3ed6b79768b855e25a784289d4ebdf6ddcc96eb75758702f6f18f78ab4e283f63bb520efd60ce21be8a681badf148a40a16ef732ba65024838edd4190bce7d228877274dc89d44b488f088fd7db6db83886fee228d1c0e10b6a7a3fca1f70c47518f199f91e78504c54462aca1bc8666eb860201d8ecc2b50a76b0fa25aafeca0def76e163a8608c641d01e89de585d50e15b43c4dc58975a056c75f1c9ce306d44b6d131b22bd6662226b6fde3ccc29f16499e32e3bd69a580ffbd6c97e58bbbd1e89bd16c64593ab707a6abee15e5659faef1109104c8c72f5dbbbb7ce08b89f0e9c7763c5a4653e5337b1bace5107c5e8ff521d7f3fb047304b2515c8351e3ae529f4285a32410a2b67cdcba41263d9bc59e2c93400c54df506b6a36b54e9e26a79ce002b6bbfb149805cbfa58aefb5e20e4b032e4f24152ebe05d5c518f821170dea5c2130e41d1d2001c9612e785bb57bf8b41549da4c2906fd4eea2817f55d3477fc5ea82e7aac1f4d1276b6e004e24db072319424ee921f6414a870fe4f6e6328d6c00f6eb9da6d3fbd734485844b0596ffbbb71ac87b097ba9ce714f4843335d211d28f8c360c98e8604f191a6e85c018ed76b0d271119d82b06afb91720aa1574c79bd1e1dbd78d2a4e1865e80fd3455ff6b0fdad13e8d17efb9a291eb4a21ca22f44cec78662fbfdad98aaecb1b53f81e3101361a07384c3c469a2f9163b193ed9231334a9c9804ce9350cbd9fcab93f9575ccb138d3805f8b6732399f42caa234e39ab286a750b60e756ae9a8c44462257c3a5678dfd3090be066304819bcdffd5b442cf2246db8cf6f3c0971c996bd938447b6ecbddec3f1e05d4f035ce4a109f794529ea2dbd92e57f4e164149bd06c8e17377236c42f967cf29525c213cd544d8cdb705cee889ee9226d36911d9dd918484c8df3690e2aa5cd0cab88de244460301b516887227541f9af2665b0793f3def90775d7b85825c4310b087fde903dc204189bdcb84a17d8b4f293272f2378c9658a2c5fd38291826555ee136fdb083151abefc86b704c0983ec2e0efe22b94f5158ee57f98e0a46ce649d4d0623f598235dd1041b18ffe6b1782f9594515637b23307092fea594e21b474cd17f8539113d2b939261add1b13d18a05bdaeeb156909e326f2ecec704698620281a069aaa8d9e3a9a916a13b64f3f9a372c0fbd927478173a35edddaa213365f1e0ffd48e632eba8972d655ba19a8f61618a1df3599594546372e083a6f6b3214c73c1c4f50b7cef679ba7622e49370c5421c8852ab997622b391971a397b20ed4ececd35557c8fbcca2ca3018278944ce37e1ebc59224eb7614a9d4756e3ae521f215db89bbfb46fe24c7251256e710a2f8d28cac250fdc263f5afbce9b242094301963670b5d273707cbeac616ae5e0f2a4db4b90143a9655284418eb622011fd1b145855ef1d6b848a724b55325b53a7cd3c70a35fa53b585149058bb1a87e20e0e74546facdaae1171b8cf1ee9cacd83082d625260d128e0bc6f075df35427b2fad78dcf39a300cc769a3c62ec5a21b2a29fc5b0112fe6f0b0d0ccc8a48c9004f12f24c4e0864236aea9b39ebeca58756bc95c746bf0a04da188f496c63985afc4c91cc40ba0b54bc98f1d323bfa43a336672b8309ad7f25a10b66b0e4050c29d50b554cff73ee222cd908bf301ee80c3068412135b53beba89e204df5d3556db12714afbfe27e5b94f7ebb7b8f7ece9d38852ad273e4065f4f0786f7724e5e6d0a043b1f4f76614d180cf38adfdfe26b59e2b4642ed0ae2649bb47ea391a2552d4f69d089b6d1ba721f34f412299413afab4cfb35aa2fde0dd930bed20445783fd8e0a511b29dcc5ec883ebe34aaa5ad773fe81cf7f5c3f93d60dbd3258a5d5b559d9521bcb4175ea405b366cf177e1024c307c2732310b1345ffd9aff27d164bc5fc96b42c47e5d66249fc5d39dde63ba4632bcd0f719b84d05d286cd6c3ab077f9c15ad910b7e69b45a7f9b84e770c52dd300ebfe8ca2bb0f288035bc9bad4edf400f2cb3c4206006fe605357c50803fd52d7c0a3d1ccfccfed3f1e4e2de655179b2dcacce3a0474939b0af575e72610bbda90422555fde3bed9fd8046baeadc894cf9c8fd9e7c72339b07ccb45ae6cfb59da1420307f867518814781eaeaf90bf6f4420e90d4127cc33ec271c88441f2e18ebbffcb7a8ee88e6eda331ba9ee3966484233cef603202f17ce74fc1804ebfdef8238f2f7c72d64a80c777bc4bd3e7f5ba90786282a59ecbc1c4182f28a6e5b1dfc801ec5b678f77e378cc2282788aa2152df7bd930c899248fea6f51de55fbf6e96ab25c762f1d63833f47ec5b90130f057b20e25453ee46f23a59ccd96ad2fce7d671c8ee70114dd3c337e24853fc0da4ecca033cf87214da576f3d4c138f523e13a374f02dcea2ece35bb73727c1335d02d98076b06dac0a77c498b0b18c061e6a1a84293bdfffe93507223c7ecfc949ba6d1eeefc6e29991ca8a215d94b9d7c1bb47bf32ed31eb588f51bb9c147594d02425d598e35489f308e1b533b2c2ba97dfa397333cab91218df7aac55a2a0703a5b5f727a9f4665c71cee3140e68e868299c3e67c8fa63bb45bccb8479df2e7e94dc378966511a60a9e3063e985c149b3e9ebc3ded88f4dbf97b041f43ee4d3ce3a91e5ea6c0aa7cb9f72d47484e0cb82bd88b260876b28d562ae29bffb0da986371125f91b00ae2e9a1e605911e28e62bbb4b86211219f980f0f25b2bcedc8284c5b0949a67e3e4aa5392e79cf233fd5f7de483cd12206586dba0349a9447e86f879d7392a2cdccaca975b9a538f42ce9e5e50d3d9da82cd22cb184cc73a9829e9843883bb7b84d1a5cc4f107fbac7d65d292d167da4e535c9f68156e87851403b1581f28e26767b90f9180c9808fc1fcf3e2c47ce5497cc17e432ef68f6f88c1d4182ace37a10708b408569ffa7c3c5993a9b6019774bd075cab7c60f821d606a61e6202d0b728162c7c81222b1121769d3399017ad9390f5973b59dec7d0da88fb67861d9b011644d8a32282fae49e49c9797359473dc3748dab3abcc6139a78c1a8e17855e025ed679a27af7d459b7efe3e89a1277829f2585ddfb5bbe9158ae60da51e2d62228b9a7d81d0b96de7ee03d401c7de0a0173ccc2d99a2103bbae27a6e260600c75aa4c10fe4093ae31e26fa9f49dad6c23b625286faa590b63b1f2b13f1acb14dc99fc35ea49ae100af2d7f54ad08e3fbbb3ee1f4c1d23a692d99a21a02a58fb5472160910a8278bf4b52c4350957b0ad233c821da3ff60bd5a045ee9af3d8cb5c65c796bff586611211467d62acccaf1893c7bf5532486231e487370989b393f3728ba403638c9ed2db5d8fb93fe394689c1b89106b6fb35475c3626ed9b7dd22ac49d268858844ca13fb2e323f2fb3e091f02e46c3f33440febb4319babe0e5ab2a6ce92c94348ad5d5f3e3887b40a3bf2a6ae371a9667935ff795a49b4732165a5641e2a0ff6ed3004ec4e6356cedf9d2cc8ebc66a387a878d3ee410b6fa9a974474046b966a4c04360882e4d89356f24d30b0b0ce91ae5420768c4f54bdc0641167f3a5238bbc7176a55c360b96324ebbfaef2d712d65d65fb219cc80fd9e4f4e167ef6f5df89e7022d6f3c231b0680f755fb35427ad846e8c656d7c7145d4698f63746981c4a933f119c77576a6ee277d135df98db04b9749c938de309d55e4e2d83e0ffa1ebf5a129eb4ad6ee85de9f4e28d7bb4cddae75d4f1ee0b55f2461b4272118678f8393a20a31c37183f406de383b5f7d15620c95a711ad509f3e2116592dee86b9ce7a991b5d90058f8424696cde14e6a4b30e44806b43fa356c03bab8d1e92cadd0669887ad522ed827ad96b020aa70d9f7ce68d5e181368231d176ef11b64a41d171f247478848321e372082fd0ccd011c82ec4101832eae23d6befbba89528599e481900aeb6d75ce5e9ff534f53c4e46ad250f73f1c2dbefbe69407eac45f9c4603afce97ad2114db1b6bb02117218a7c617053754cfa75ab51f74a046035990f31781031be894fbfa92fe0dce75e5759ce5303393895240ea5d675d0c0998a2238c949ac71deb5043042ef561b68df8597cb2c80ca8c35b73f3048ab407a983062bade499ea8792ed838f6717233d2fc8823cfd0a8ecde9bc9c9d2dc1c19026a889f854de5c683306e06b8c7551b79d55b1a3a51124f8020fc96cd06ab3b87f119efdbf4fd762d2888cca24419d812293c90761642f51847080ff35a8ef3becf2fc9b151134171321ffbdb305eb8a408cb50b010697a2e5c405b24b41557a5f7cc024c9b58e6aa0ca85f61550f0e5e4907a252c521e83d025a0829633640f4f95720b45dfdebcaebb4d25a72233ed71984e7b0859237c8594f1fd7468b5335c084e4552c08a3ecb2ec12b808961e99c985cdc764ef7eed61279cc51468a3cfddff1a891ecf7ae3e0099503f6fe366fd9d45285ca9a102df32aaf39e535a54fe1b307075fabd11d2d1d2a659b2628c170f6c992a55dfbff12250f8f8e8dccd7020e14ab273b07df566d0fa97bb710c277072c2d6847bb24d15de1e7b86941012aff3655013fa81e1f6f156e885388da0dc60bcde75aefcc487b0aee28bd02014c59dfacad2e8245763a9bb5eb3bd5147829a0e4866b172382a7b2dab39bfb905d9a8139c06951bc74e31e3c732e50988a3fc2b68c3ebfb6d5a8356df42fec14c7d1728775b2a463166d5c02d060d5bddb76a548d7c620f8d24ab5fdcf164045e64df9504518b41b3a516ef0a416ad2b5484a4fc9816fae148a2a7bb4d20fface1d2966c8e3c4c64d7508adc28d94d0e923ef659a54c8e66ca74118fc8468a8c7389a2ea22fbb"})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$pptp(0x18, 0x1, 0x2)
r3 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
io_uring_setup(0x1de0, &(0x7f0000000940)={0x0, 0x3605, 0x1000, 0xfffffffc})
ioctl$MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
connect$rds(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
sendto$unix(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioprio_get$pid(0x2, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x2, 0x6, 0x80000000, 0xa18c, 0x8}, &(0x7f00000001c0)=0x14)
setsockopt$MRT_TABLE(0xffffffffffffffff, 0x0, 0xcf, &(0x7f00000001c0)=0x1, 0x4)
pipe(&(0x7f0000000640))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getpgid(0x0)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000040)={0x78, 0x6}, 0x4)
setsockopt$packet_fanout_data(r7, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000002040)=[{0x4, 0x8, 0x8, 0x6}]}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
syz_emit_ethernet(0x3e, &(0x7f0000001600)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x2, 0x30, 0x0, 0x0, 0xfd, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x5, 0x0, 0x0, 0x5, 0x1, {0x5, 0x4, 0x0, 0x9, 0x686, 0x67, 0xfff9, 0x7, 0x2f, 0x1000, @multicast1, @rand_addr=0x64010102}}}}}}, 0x0)

1.642844228s ago: executing program 3 (id=2124):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain)
keyctl$link(0x8, 0x0, r3)
request_key(&(0x7f0000000280)='cifs.idmap\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)='kfree\x00', r3)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_setup(0x18d6, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x0, 0xad}, &(0x7f0000000440), &(0x7f0000ffe000))
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r4, 0x2, &(0x7f0000000180), 0xfe)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x6, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000004, &(0x7f0000000c00)={[{@jqfmt_vfsold}, {@grpid}, {@debug}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@debug}, {@usrjquota}, {@nolazytime}, {@norecovery}]}, 0xfe, 0x477, &(0x7f0000000780)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x80)
open_by_handle_at(r7, &(0x7f0000000240)=@reiserfs_2={0x4b, 0x2, {0xb}}, 0x36f0516f)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000700)=@generic={&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18)

1.642372058s ago: executing program 0 (id=2125):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x4, 0x4, 0x4, 0x0, 0x1}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x3, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x32600)
getsockopt$inet_mreqsrc(r2, 0x0, 0x26, &(0x7f0000000280)={@multicast2, @rand_addr, @broadcast}, &(0x7f00000003c0)=0xc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@map, 0x5, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r3, &(0x7f0000000580)={0x16, 0x98, 0xfa00, {0x0, 0x2, 0xffffffffffffffff, 0x30, 0x1, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2e}}}}, 0xa0)

1.584003679s ago: executing program 4 (id=2126):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x5a3, &(0x7f00000005c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

1.56441399s ago: executing program 0 (id=2127):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x5a3, &(0x7f00000005c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

1.241032416s ago: executing program 0 (id=2129):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180040008003950323030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, 0x0, 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r4, 0x0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r3, &(0x7f0000000580)={0x16, 0x98, 0xfa00, {0x0, 0x2, 0xffffffffffffffff, 0x30, 0x1, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2e}}}}, 0xa0)

1.160002948s ago: executing program 0 (id=2130):
syz_open_procfs(0x0, &(0x7f0000000000)='net/anycast6\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x45, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844) (fail_nth: 4)

1.137827698s ago: executing program 4 (id=2131):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r7, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r6, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000000040)={0xc, r6, 0x0, 0x0, 0x0, 0xfffffffffdffffff})
ioctl$BTRFS_IOC_SPACE_INFO(r3, 0xc0109414, &(0x7f0000000f00)={0x2de, 0x3, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
flistxattr(r0, 0x0, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0, 0x4000908}, 0x40400c0)

978.395011ms ago: executing program 2 (id=2132):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x200000000000002f, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
execve(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r4}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000400000014000500fc01000000000000000000000000080008000200050000000a0006"], 0x4c}}, 0x0)

891.607073ms ago: executing program 1 (id=2133):
socket$inet6(0xa, 0x2, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = accept(r0, &(0x7f0000001780)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, &(0x7f00000006c0)=0x80)
sendmsg$TIPC_CMD_SHOW_PORTS(r2, &(0x7f00000018c0)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x1c, 0x0, 0x2, 0x70bd28, 0x25dfdbfb, {}, [""]}, 0x1c}}, 0x4000)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x180)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$TOKEN_CREATE(0x24, &(0x7f00000005c0)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000730000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x330}}, 0x0)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
close_range(r5, r1, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
fdatasync(r6)

842.295144ms ago: executing program 1 (id=2134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000000)=0x100000b3, 0x4)
bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e20, @multicast1}, 0x10) (async)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x6, 0x4) (async)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x6, 0x4, 0x8, 0xa}]}, 0x10) (async)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@newlink={0x64, 0x10, 0x401, 0x70bd28, 0x0, {0x0, 0x3, 0x0, 0x0, 0x0, 0x400}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GENEVE_ID={0x8, 0x1, 0x1}, @IFLA_GENEVE_REMOTE6={0x14, 0x7, @loopback}]}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve1\x00'}]}, 0x64}}, 0x0)

791.991005ms ago: executing program 3 (id=2135):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mm_page_free\x00', r0, 0x0, 0xfff}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x200000000000000)

791.676825ms ago: executing program 1 (id=2136):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b000000000000000000000000200000000000008d1ff95b426e1d0bca8b22cbcf3b44cb00000000f4a86843a02435e3f267fd7c6237c576472a329ad8e02f2c094b506826e6b1160e12a835fc3e52348374f6351d56a5cb75c43c0b81b13782c079fbcf4b0227fe8df49f62197268c888dd12d0543c98c0b12bf575a136", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000040000000000000c7af000000000000f4bc770000c7e5c08c1beb0206a0d6545e50e237554c8688ebdfbe42f4eb92f0aedb96cd1fb0835fd0e2cbe7eea22114f83cfc0c4356c20345745093c35f3237399013d322e7bab91a3cfa28a61ff8ef18f27b3cec6fd90bf2a2facb625d3bdb82fb93d75190d86362b2b72ae05ccd051729604bf0b4d1a9c11f131a241949866e031ccb5cf6e94f3445298142556c0a2b5d6da190ef3af4abd47eea0f4d7a"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r5 = creat(&(0x7f0000000280)='./file1\x00', 0x68)
write$binfmt_elf32(r5, &(0x7f0000000a00)=ANY=[], 0x58)
close(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
r7 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r8 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r8, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r9 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r8, 0x0, 0x0})
io_uring_enter(r9, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r7, r8, 0x0)

791.488664ms ago: executing program 2 (id=2137):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000240)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback={0x40000f5}, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)

779.947665ms ago: executing program 4 (id=2138):
close(0xffffffffffffffff)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x18, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xc1d689c1}, [@ringbuf_query, @btf_id={0x18, 0x3, 0x3, 0x0, 0x2}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0xfffffffffffffff9}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb4}}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = dup(r1)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_CREATE2(r5, &(0x7f0000000fc0)={0xb, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x7a, 0x5, 0x3, 0x29}}, 0x118)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
lstat(&(0x7f0000000440)='./file0\x00', 0x0)

750.177785ms ago: executing program 2 (id=2139):
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000f80)={0x7, &(0x7f0000000640)=[{0xfffc, 0x10, 0x9, 0x6}, {0x8, 0x7, 0x10, 0xb}, {0x7fff, 0x8, 0x2, 0x1}, {0x2, 0x10, 0x3, 0x4}, {0x6, 0xff, 0x9, 0x6}, {0x5, 0x4, 0x2, 0xffffffff}, {0x10, 0xd8, 0x3, 0x8}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0eff9a095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f00000007c0)="$eJzs3d9rW2UfAPDvSX93e9/2hRd0XhUELYyldtZNwYuJFyI4GOi1W0mzMps2o0nHWgpuiOCNoOKFoDe79se889Yft/pfeCEbU7vhxAupnDRZszXpkq1J5vb5wGme5zwnfZ5vnnOe8yTnkATwyJpI/2QiDkTEB0nEWHV9EhEDlVR/xLGt7W5urOfSJYnNzdd/Syrb3NhYz0Xdc1L7qpnHI+L7dyMOZnbWW1pdW5gtFPLL1fxUefHsVGl17dCZxdn5/Hx+6cj0zMzho88dPbJ3sf7x09r+qx++8vRXx/5657HL7/+QxLHYXy2rj2OvTMRE9TUZSF/C27y815X1WLJ7cYM9gAdB2jF9W0d5HIix6KukmhjpZssAgE55OyI2m+lrWgIA/Kslzc//AMBDqfY5wI2N9Vxt6e0nEt117aWIGN6Kv3Z9c6ukv3rNbrhyHXT0RnLblZEkIsb3oP6JiPjsmze/SJfo0HVIgEYuXIyIU+MTO8f/ZMc9C+16poVtJu7IG/+ge75N5z/PN5r/ZW7Nf6LB/GeowbF7L+5+/Geu7EE1TaXzvxfr7m27WRd/1XhfNfefypxvIDl9ppBPx7b/RsRkDAyl+eld6pi8/vf1ZmX187/fP3rr87T+9HF7i8yV/qHbnzM3W569n5jrXbsY8UR/o/iTW/2fNJn/nmixjldfeO/TZmVp/Gm8tWVn/J21eSniqYb9v31HW7Lr/YlTld1hqrZTNPD1z5+MNqu/vv/TJa2/9l6gG9L+H909/vGk/n7NUvt1/Hhp7LtmZXePv/H+P5i8UUkPVtedny2Xl6cjBpPXdq4/vP3cWr62fRr/5JONj//d9v/0PeGpFuPvv/rrl/cef2el8c+11f/tJy7fXOhrVn9r/T9TSU1W17Qy/rXawPt57QAAAAAAAAAAAAAAAAAAAAAAAACgVZmI2B9JJnsrnclks1u/4f3/GM0UiqXywdPFlaW5qPxW9ngMZGpfdTlW932o09Xvw6/lD9+RfzYi/hcRHw+NVPLZXLEw1+vgAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBqX5Pf/0/9MtTr1gEAHTPc1+sWAADdNtzf6xYAAN023NbWIx1rBwDQPe2d/wGAh4HzPwA8epz/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6LATx4+ny+afG+u5ND93bnVloXju0Fy+tJBdXMllc8Xls9n5YnG+kM/miotN/9GFrYdCsXh2JpZWzk+V86XyVGl17eRicWWpfPLM4ux8/mR+oGuRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDrSqtrC7OFQn5ZQkKi7URc2DqOHpT27F0iBrdHiZGejU8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD7p/AgAA//+mAybn")
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), r1)
sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000600)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000580)={&(0x7f0000000fc0)=ANY=[@ANYBLOB="14010000", @ANYRES16=r2, @ANYBLOB="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"], 0x114}, 0x1, 0x0, 0x0, 0x4000004}, 0x4c000)
r3 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x100)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
pidfd_send_signal(r5, 0x0, &(0x7f0000000000)={0x0, 0x0, 0xfff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
preadv2(r3, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0)

486.52865ms ago: executing program 4 (id=2140):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180040008003950323030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, 0x0, 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r4, 0x0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r3, &(0x7f0000000580)={0x16, 0x98, 0xfa00, {0x0, 0x2, 0xffffffffffffffff, 0x30, 0x1, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2e}}}}, 0xa0)

446.829571ms ago: executing program 1 (id=2141):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x5a3, &(0x7f00000005c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

379.911253ms ago: executing program 0 (id=2142):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000040000000000000c7af000000000000f4bc770000c7e5c08c1beb0206a0d6545e50e237554c8688ebdfbe42f4eb92f0aedb96cd1fb0835fd0e2cbe7eea22114f83cfc0c4356c20345745093c35f3237399013d322e7bab91a3cfa28a61ff8ef18f27b3cec6fd90bf2a2facb625d3bdb82fb93d75190d86362b2b72ae05ccd051729604bf0b4d1a9c11f131a241949866e031ccb5cf6e94f3445298142556c0a2b5d6da190ef3af4abd47eea0f4d7a"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r3 = creat(&(0x7f0000000280)='./file1\x00', 0x68)
write$binfmt_elf32(r3, &(0x7f0000000a00)=ANY=[], 0x58)
close(r3)

369.653413ms ago: executing program 4 (id=2143):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x1c, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4840)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000640)='kfree\x00', r4, 0x0, 0x2}, 0x18)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x3202, 0x0)
close(r5)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$SIOCSIFHWADDR(r5, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
dup3(r1, r0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r6, 0x0, 0x3}, 0x18)

258.191485ms ago: executing program 1 (id=2144):
close(0xffffffffffffffff)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x18, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xc1d689c1}, [@ringbuf_query, @btf_id={0x18, 0x3, 0x3, 0x0, 0x2}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0xfffffffffffffff9}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb4}}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = dup(r1)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_CREATE2(r5, &(0x7f0000000fc0)={0xb, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x7a, 0x5, 0x3, 0x29}}, 0x118)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
lstat(&(0x7f0000000440)='./file0\x00', 0x0)

119.244687ms ago: executing program 1 (id=2145):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000300)={[{@dioread_lock}, {@jqfmt_vfsv1}, {@nouid32}, {@grpquota}]}, 0xfc, 0x580, &(0x7f0000000f80)="$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")
statfs(&(0x7f0000000000)='./file1\x00', 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_COMPRESS_FILE(r0, 0xf518, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000020000000900010073797a30000000000900030073797a32000000003a000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xa0}}, 0x8040)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0185879, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680))
r4 = syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x818018, &(0x7f0000000300)={[{@minixdf}, {@grpjquota}]}, 0x1, 0x72d, &(0x7f00000014c0)="$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")
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x15, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r6}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1b00000000020000000000004000001800000000", @ANYRES32=r5, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0200"/28], 0x50)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = dup(r7)
setsockopt$inet_opts(r8, 0x0, 0x4, 0x0, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRESDEC=r4], 0x64}}, 0x0)

76.752929ms ago: executing program 3 (id=2146):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000040000000000000c7af000000000000f4bc770000c7e5c08c1beb0206a0d6545e50e237554c8688ebdfbe42f4eb92f0aedb96cd1fb0835fd0e2cbe7eea22114f83cfc0c4356c20345745093c35f3237399013d322e7bab91a3cfa28a61ff8ef18f27b3cec6fd90bf2a2facb625d3bdb82fb93d75190d86362b2b72ae05ccd051729604bf0b4d1a9c11f131a241949866e031ccb5cf6e94f3445298142556c0a2b5d6da190ef3af4abd47eea0f4d7a"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r3 = creat(&(0x7f0000000280)='./file1\x00', 0x68)
write$binfmt_elf32(r3, &(0x7f0000000a00)=ANY=[], 0x58)
close(r3)

76.245839ms ago: executing program 4 (id=2147):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0xc, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x1d, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @snprintf={{}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x6a}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r4}, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000880)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000013c0)="d0", 0x1}], 0x1}, 0x20000801)
recvmsg(r7, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x500000000000000)
pipe(&(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
write(r9, &(0x7f0000000140)="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"/297, 0x3accf8d5)
close(r8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@generic={&(0x7f0000000040)='./file0\x00'}, 0x18)
signalfd(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023896)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 0 (id=2148):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, 0x0, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000001900)={'wg2\x00', <r5=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e0100000", @ANYRES16=r4, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="240003"], 0x10e0}}, 0x0)

kernel console output (not intermixed with test programs):

#0 PREEMPT(voluntary) 
[  136.127675][ T9222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  136.127685][ T9222] Call Trace:
[  136.127692][ T9222]  <TASK>
[  136.127699][ T9222]  __dump_stack+0x1d/0x30
[  136.127718][ T9222]  dump_stack_lvl+0xe8/0x140
[  136.127735][ T9222]  dump_stack+0x15/0x1b
[  136.127749][ T9222]  should_fail_ex+0x265/0x280
[  136.127770][ T9222]  should_failslab+0x8c/0xb0
[  136.127792][ T9222]  kmem_cache_alloc_noprof+0x50/0x310
[  136.127814][ T9222]  ? mas_alloc_nodes+0x265/0x520
[  136.127840][ T9222]  mas_alloc_nodes+0x265/0x520
[  136.127867][ T9222]  mas_preallocate+0x33e/0x520
[  136.127895][ T9222]  mmap_region+0xbdd/0x1630
[  136.127933][ T9222]  do_mmap+0x9b3/0xbe0
[  136.127963][ T9222]  vm_mmap_pgoff+0x17a/0x2e0
[  136.127990][ T9222]  ksys_mmap_pgoff+0xc2/0x310
[  136.128003][ T9222]  ? __x64_sys_mmap+0x49/0x70
[  136.128021][ T9222]  x64_sys_call+0x14a3/0x2ff0
[  136.128037][ T9222]  do_syscall_64+0xd2/0x200
[  136.128060][ T9222]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  136.128081][ T9222]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  136.128106][ T9222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.128124][ T9222] RIP: 0033:0x7fbedcc6ebe3
[  136.128138][ T9222] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  136.128152][ T9222] RSP: 002b:00007fbedb6d6e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  136.128169][ T9222] RAX: ffffffffffffffda RBX: 0000000000000520 RCX: 00007fbedcc6ebe3
[  136.128179][ T9222] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  136.128189][ T9222] RBP: 00002000000007c2 R08: 00000000ffffffff R09: 0000000000000000
[  136.128199][ T9222] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  136.128209][ T9222] R13: 00007fbedb6d6ef0 R14: 00007fbedb6d6eb0 R15: 0000200000000100
[  136.128224][ T9222]  </TASK>
[  136.327037][ T9213] EXT4-fs (loop4): 1 truncate cleaned up
[  136.346980][ T9216] loop1: detected capacity change from 0 to 1024
[  136.400321][ T9226] loop4: detected capacity change from 0 to 2048
[  136.438225][ T9227] syzkaller0: refused to change device tx_queue_len
[  136.439376][ T9216] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.459796][ T9216] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1859: Freeing blocks not in datazone - block = 0, count = 16
[  136.476481][ T9216] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  136.491497][ T9216] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  136.503744][ T9216] EXT4-fs (loop1): This should not happen!! Data will be lost
[  136.503744][ T9216] 
[  136.513484][ T9216] EXT4-fs (loop1): Total free blocks count 0
[  136.519476][ T9216] EXT4-fs (loop1): Free/Dirty block details
[  136.525359][ T9216] EXT4-fs (loop1): free_blocks=4293918720
[  136.531111][ T9216] EXT4-fs (loop1): dirty_blocks=16
[  136.536213][ T9216] EXT4-fs (loop1): Block reservation details
[  136.540297][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  136.542311][ T9216] EXT4-fs (loop1): i_reserved_data_blocks=1
[  136.571852][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  136.644708][ T9235] 9pnet_fd: Insufficient options for proto=fd
[  136.764688][ T9247] loop0: detected capacity change from 0 to 1024
[  136.782009][ T9243] bridge_slave_0: left allmulticast mode
[  136.782371][ T9247] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.787714][ T9243] bridge_slave_0: left promiscuous mode
[  136.803982][ T9243] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.820339][ T9241] loop1: detected capacity change from 0 to 2048
[  136.826394][   T29] kauditd_printk_skb: 419 callbacks suppressed
[  136.826406][   T29] audit: type=1326 audit(1757557527.509:4604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.856431][   T29] audit: type=1326 audit(1757557527.549:4605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.879853][   T29] audit: type=1326 audit(1757557527.549:4606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.903733][   T29] audit: type=1326 audit(1757557527.549:4607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.927610][   T29] audit: type=1326 audit(1757557527.549:4608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.951114][   T29] audit: type=1326 audit(1757557527.549:4609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9236 comm="syz.0.1866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  136.974928][   T29] audit: type=1400 audit(1757557527.589:4610): avc:  denied  { create } for  pid=9250 comm="syz.3.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  136.979937][ T9243] bridge_slave_1: left allmulticast mode
[  136.994373][   T29] audit: type=1400 audit(1757557527.589:4611): avc:  denied  { setopt } for  pid=9250 comm="syz.3.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  136.994526][   T29] audit: type=1400 audit(1757557527.589:4612): avc:  denied  { write } for  pid=9250 comm="syz.3.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  137.005352][   T29] audit: type=1400 audit(1757557527.689:4613): avc:  denied  { create } for  pid=9250 comm="syz.3.1870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  137.019682][ T9243] bridge_slave_1: left promiscuous mode
[  137.065776][ T9243] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.097083][ T9243] bond0: (slave bond_slave_0): Releasing backup interface
[  137.117942][ T9243] bond0: (slave bond_slave_1): Releasing backup interface
[  137.145146][ T9260] loop3: detected capacity change from 0 to 512
[  137.153699][ T9260] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  137.163346][ T9256] loop0: detected capacity change from 0 to 2048
[  137.176530][ T9260] EXT4-fs (loop3): orphan cleanup on readonly fs
[  137.210257][ T9260] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1873: bg 0: block 248: padding at end of block bitmap is not set
[  137.219957][ T9268] loop4: detected capacity change from 0 to 2048
[  137.246385][ T3311] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  137.261972][ T9260] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1873: Failed to acquire dquot type 1
[  137.278446][ T9260] EXT4-fs (loop3): 1 truncate cleaned up
[  137.284298][ T3311] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  137.299813][ T9274] 9pnet_fd: Insufficient options for proto=fd
[  137.339095][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  137.363312][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  137.383331][ T9279] loop0: detected capacity change from 0 to 1024
[  137.403920][ T9279] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1876'.
[  137.454264][ T9287] syzkaller0: refused to change device tx_queue_len
[  137.537470][ T9282] loop3: detected capacity change from 0 to 1024
[  137.570025][ T9282] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.702574][ T9294] loop1: detected capacity change from 0 to 1024
[  137.748222][ T9294] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.810015][ T9302] loop4: detected capacity change from 0 to 1024
[  137.821707][ T9304] loop3: detected capacity change from 0 to 1024
[  137.872416][ T9294] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  137.882287][ T9304] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.894546][ T9302] ext4 filesystem being mounted at /376/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.947725][ T9304] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  137.989785][ T9302] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  138.061551][ T9315] loop3: detected capacity change from 0 to 512
[  138.097852][ T9315] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  138.125646][ T9319] 9pnet_fd: Insufficient options for proto=fd
[  138.156498][ T9315] EXT4-fs (loop3): orphan cleanup on readonly fs
[  138.178389][ T9315] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1888: bg 0: block 248: padding at end of block bitmap is not set
[  138.217149][ T9315] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1888: Failed to acquire dquot type 1
[  138.247610][ T9315] EXT4-fs (loop3): 1 truncate cleaned up
[  138.374749][ T9333] FAULT_INJECTION: forcing a failure.
[  138.374749][ T9333] name failslab, interval 1, probability 0, space 0, times 0
[  138.387464][ T9333] CPU: 1 UID: 0 PID: 9333 Comm: syz.3.1894 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  138.387490][ T9333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  138.387501][ T9333] Call Trace:
[  138.387508][ T9333]  <TASK>
[  138.387515][ T9333]  __dump_stack+0x1d/0x30
[  138.387536][ T9333]  dump_stack_lvl+0xe8/0x140
[  138.387556][ T9333]  dump_stack+0x15/0x1b
[  138.387581][ T9333]  should_fail_ex+0x265/0x280
[  138.387602][ T9333]  should_failslab+0x8c/0xb0
[  138.387623][ T9333]  kmem_cache_alloc_node_noprof+0x57/0x320
[  138.387705][ T9333]  ? __alloc_skb+0x101/0x320
[  138.387724][ T9333]  __alloc_skb+0x101/0x320
[  138.387780][ T9333]  ? audit_log_start+0x365/0x6c0
[  138.387809][ T9333]  audit_log_start+0x380/0x6c0
[  138.387836][ T9333]  audit_seccomp+0x48/0x100
[  138.387860][ T9333]  ? __seccomp_filter+0x68c/0x10d0
[  138.387887][ T9333]  __seccomp_filter+0x69d/0x10d0
[  138.387977][ T9333]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  138.388003][ T9333]  ? vfs_write+0x7e8/0x960
[  138.388029][ T9333]  __secure_computing+0x82/0x150
[  138.388049][ T9333]  syscall_trace_enter+0xcf/0x1e0
[  138.388150][ T9333]  do_syscall_64+0xac/0x200
[  138.388175][ T9333]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.388195][ T9333]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  138.388282][ T9333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.388300][ T9333] RIP: 0033:0x7fbedcc6eba9
[  138.388312][ T9333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.388326][ T9333] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000138
[  138.388418][ T9333] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  138.388434][ T9333] RDX: 0000000000000002 RSI: 0000000000000374 RDI: 0000000000000376
[  138.388447][ T9333] RBP: 00007fbedb6d7090 R08: ffffffffffffffff R09: 0000000000000000
[  138.388460][ T9333] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  138.388473][ T9333] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  138.388533][ T9333]  </TASK>
[  138.654577][ T3318] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  138.702164][ T3318] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  138.832124][ T9347] loop3: detected capacity change from 0 to 512
[  138.861766][ T9347] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.904141][ T9355] 9pnet_fd: Insufficient options for proto=fd
[  138.947614][ T9360] loop2: detected capacity change from 0 to 512
[  138.955418][ T9360] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  138.968492][ T9360] EXT4-fs (loop2): orphan cleanup on readonly fs
[  138.975745][ T9360] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1903: bg 0: block 248: padding at end of block bitmap is not set
[  138.990419][ T9364] loop1: detected capacity change from 0 to 2048
[  139.001468][ T9360] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1903: Failed to acquire dquot type 1
[  139.014090][ T9360] EXT4-fs (loop2): 1 truncate cleaned up
[  139.021956][ T9365] loop4: detected capacity change from 0 to 2048
[  139.038494][ T3304] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  139.054934][ T3304] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  139.104839][ T9376] capability: warning: `syz.2.1908' uses deprecated v2 capabilities in a way that may be insecure
[  139.188208][ T9381] loop3: detected capacity change from 0 to 1024
[  139.202329][ T9383] loop2: detected capacity change from 0 to 512
[  139.231831][ T9383] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.257123][ T9381] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1907'.
[  139.810834][ T9395] loop0: detected capacity change from 0 to 512
[  139.857856][ T9395] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  139.930846][ T9395] EXT4-fs (loop0): 1 truncate cleaned up
[  139.963109][ T9395] EXT4-fs error (device loop0): ext4_ext_precache:632: inode #15: comm syz.0.1911: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964)
[  140.190494][ T6906] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  140.509326][ T9408] syzkaller0: refused to change device tx_queue_len
[  140.543876][ T9409] ref_ctr increment failed for inode: 0x86f offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88810c366d40
[  140.588603][ T9407] uprobe: syz.1.1915:9407 failed to unregister, leaking uprobe
[  140.762934][ T9411] loop1: detected capacity change from 0 to 512
[  140.809327][ T9411] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.871269][ T9411] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.908047][ T9411] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1916: bg 0: block 248: padding at end of block bitmap is not set
[  140.922639][ T9411] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1916: Failed to acquire dquot type 1
[  140.939132][ T9411] EXT4-fs (loop1): 1 truncate cleaned up
[  141.069699][ T9414] loop2: detected capacity change from 0 to 1024
[  141.115460][ T9414] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.140221][ T9414] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1917: Freeing blocks not in datazone - block = 0, count = 16
[  141.161333][ T9414] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  141.196454][ T9414] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  141.196481][ T9414] EXT4-fs (loop2): This should not happen!! Data will be lost
[  141.196481][ T9414] 
[  141.196578][ T9414] EXT4-fs (loop2): Total free blocks count 0
[  141.196591][ T9414] EXT4-fs (loop2): Free/Dirty block details
[  141.230337][ T9414] EXT4-fs (loop2): free_blocks=4293918720
[  141.236124][ T9414] EXT4-fs (loop2): dirty_blocks=16
[  141.241269][ T9414] EXT4-fs (loop2): Block reservation details
[  141.247248][ T9414] EXT4-fs (loop2): i_reserved_data_blocks=1
[  141.330228][ T9427] loop0: detected capacity change from 0 to 1024
[  141.348001][ T9427] ext4 filesystem being mounted at /365/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.386764][ T9427] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  141.470009][ T9436] FAULT_INJECTION: forcing a failure.
[  141.470009][ T9436] name failslab, interval 1, probability 0, space 0, times 0
[  141.482744][ T9436] CPU: 0 UID: 0 PID: 9436 Comm: syz.0.1923 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  141.482770][ T9436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  141.482866][ T9436] Call Trace:
[  141.482915][ T9436]  <TASK>
[  141.482921][ T9436]  __dump_stack+0x1d/0x30
[  141.482939][ T9436]  dump_stack_lvl+0xe8/0x140
[  141.482956][ T9436]  dump_stack+0x15/0x1b
[  141.483015][ T9436]  should_fail_ex+0x265/0x280
[  141.483037][ T9436]  should_failslab+0x8c/0xb0
[  141.483061][ T9436]  kmem_cache_alloc_node_noprof+0x57/0x320
[  141.483134][ T9436]  ? __alloc_skb+0x101/0x320
[  141.483154][ T9436]  __alloc_skb+0x101/0x320
[  141.483175][ T9436]  netlink_alloc_large_skb+0xba/0xf0
[  141.483197][ T9436]  netlink_sendmsg+0x3cf/0x6b0
[  141.483267][ T9436]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.483303][ T9436]  __sock_sendmsg+0x142/0x180
[  141.483383][ T9436]  ____sys_sendmsg+0x31e/0x4e0
[  141.483434][ T9436]  ___sys_sendmsg+0x17b/0x1d0
[  141.483465][ T9436]  __x64_sys_sendmsg+0xd4/0x160
[  141.483491][ T9436]  x64_sys_call+0x191e/0x2ff0
[  141.483511][ T9436]  do_syscall_64+0xd2/0x200
[  141.483586][ T9436]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  141.483629][ T9436]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  141.483653][ T9436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.483672][ T9436] RIP: 0033:0x7f58efb8eba9
[  141.483696][ T9436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.483712][ T9436] RSP: 002b:00007f58ee5f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.483730][ T9436] RAX: ffffffffffffffda RBX: 00007f58efdd5fa0 RCX: 00007f58efb8eba9
[  141.483742][ T9436] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000006
[  141.483800][ T9436] RBP: 00007f58ee5f7090 R08: 0000000000000000 R09: 0000000000000000
[  141.483811][ T9436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.483821][ T9436] R13: 00007f58efdd6038 R14: 00007f58efdd5fa0 R15: 00007ffda65db308
[  141.483837][ T9436]  </TASK>
[  141.696694][ T9437] openvswitch: netlink: Message has 6 unknown bytes.
[  141.710331][ T9440] loop3: detected capacity change from 0 to 512
[  141.724165][ T9440] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  141.746717][ T9440] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1922: invalid indirect mapped block 4294967295 (level 1)
[  141.763829][ T9442] loop0: detected capacity change from 0 to 2048
[  141.780743][ T9440] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1922: invalid indirect mapped block 4294967295 (level 1)
[  141.798850][ T9440] EXT4-fs (loop3): 2 truncates cleaned up
[  141.812806][ T9449] loop2: detected capacity change from 0 to 512
[  141.830556][ T3311] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  141.836267][ T9451] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  141.857754][ T9449] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  141.869798][ T3311] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  141.880706][ T9449] EXT4-fs (loop2): orphan cleanup on readonly fs
[  141.902569][ T9454] loop3: detected capacity change from 0 to 512
[  141.912364][ T9449] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1929: bg 0: block 248: padding at end of block bitmap is not set
[  141.931362][ T9449] __quota_error: 214 callbacks suppressed
[  141.931468][ T9449] Quota error (device loop2): write_blk: dquota write failed
[  141.944643][ T9449] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  141.954731][ T9449] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1929: Failed to acquire dquot type 1
[  141.967549][ T9449] EXT4-fs (loop2): 1 truncate cleaned up
[  141.976010][   T29] audit: type=1326 audit(141.960:4816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9448 comm="syz.2.1929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.008384][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  142.030044][ T9462] loop0: detected capacity change from 0 to 1024
[  142.040918][   T29] audit: type=1326 audit(141.980:4817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9448 comm="syz.2.1929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.063892][   T29] audit: type=1326 audit(141.980:4818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9448 comm="syz.2.1929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.086764][   T29] audit: type=1326 audit(141.980:4819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9448 comm="syz.2.1929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.109615][   T29] audit: type=1400 audit(141.980:4820): avc:  denied  { create } for  pid=9453 comm="syz.3.1930" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  142.134051][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  142.147714][   T29] audit: type=1326 audit(142.120:4821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9464 comm="syz.2.1934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.170717][   T29] audit: type=1326 audit(142.120:4822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9464 comm="syz.2.1934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.193706][   T29] audit: type=1326 audit(142.120:4823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9464 comm="syz.2.1934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  142.234255][ T9462] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1932'.
[  142.349561][ T9476] loop2: detected capacity change from 0 to 1024
[  142.358099][ T9471] FAULT_INJECTION: forcing a failure.
[  142.358099][ T9471] name failslab, interval 1, probability 0, space 0, times 0
[  142.370838][ T9471] CPU: 0 UID: 0 PID: 9471 Comm: syz.3.1936 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  142.370869][ T9471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  142.370882][ T9471] Call Trace:
[  142.370889][ T9471]  <TASK>
[  142.370903][ T9471]  __dump_stack+0x1d/0x30
[  142.370924][ T9471]  dump_stack_lvl+0xe8/0x140
[  142.370942][ T9471]  dump_stack+0x15/0x1b
[  142.370975][ T9471]  should_fail_ex+0x265/0x280
[  142.370999][ T9471]  should_failslab+0x8c/0xb0
[  142.371022][ T9471]  __kmalloc_noprof+0xa5/0x3e0
[  142.371044][ T9471]  ? genl_family_rcv_msg_attrs_parse+0x75/0x190
[  142.371109][ T9471]  genl_family_rcv_msg_attrs_parse+0x75/0x190
[  142.371143][ T9471]  genl_family_rcv_msg_doit+0x48/0x1b0
[  142.371203][ T9471]  ? selinux_capable+0x31/0x40
[  142.371228][ T9471]  ? security_capable+0x83/0x90
[  142.371247][ T9471]  ? ns_capable+0x7d/0xb0
[  142.371264][ T9471]  genl_rcv_msg+0x422/0x460
[  142.371366][ T9471]  ? __pfx_nfc_genl_dev_up+0x10/0x10
[  142.371384][ T9471]  netlink_rcv_skb+0x123/0x220
[  142.371403][ T9471]  ? __pfx_genl_rcv_msg+0x10/0x10
[  142.371437][ T9471]  genl_rcv+0x28/0x40
[  142.371521][ T9471]  netlink_unicast+0x5bd/0x690
[  142.371545][ T9471]  netlink_sendmsg+0x58b/0x6b0
[  142.371572][ T9471]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.371598][ T9471]  __sock_sendmsg+0x142/0x180
[  142.371670][ T9471]  ____sys_sendmsg+0x31e/0x4e0
[  142.371694][ T9471]  ___sys_sendmsg+0x17b/0x1d0
[  142.371784][ T9471]  __x64_sys_sendmsg+0xd4/0x160
[  142.371813][ T9471]  x64_sys_call+0x191e/0x2ff0
[  142.371835][ T9471]  do_syscall_64+0xd2/0x200
[  142.371861][ T9471]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.371917][ T9471]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  142.371946][ T9471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.371968][ T9471] RIP: 0033:0x7fbedcc6eba9
[  142.372001][ T9471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.372018][ T9471] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.372071][ T9471] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  142.372085][ T9471] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000006
[  142.372095][ T9471] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  142.372106][ T9471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.372115][ T9471] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  142.372132][ T9471]  </TASK>
[  142.768513][ T9465] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1934: Freeing blocks not in datazone - block = 0, count = 16
[  142.857431][ T9489] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[  142.857431][ T9489]    program syz.1.1939 not setting count and/or reply_len properly
[  142.928714][ T6906] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  143.001766][ T9493] serio: Serial port ptm0
[  143.046201][ T9504] loop1: detected capacity change from 0 to 512
[  143.079264][ T9506] capability: warning: `syz.2.1943' uses 32-bit capabilities (legacy support in use)
[  143.091077][ T9495] loop3: detected capacity change from 0 to 1024
[  143.097542][ T9504] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  143.128555][ T9495] EXT4-fs (loop3): can't read group descriptor 0
[  143.148981][ T9504] EXT4-fs (loop1): orphan cleanup on readonly fs
[  143.168609][ T9504] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1944: bg 0: block 248: padding at end of block bitmap is not set
[  143.197767][ T9504] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1944: Failed to acquire dquot type 1
[  143.211358][ T9495] vhci_hcd: invalid port number 96
[  143.216470][ T9495] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  143.225044][ T9504] EXT4-fs (loop1): 1 truncate cleaned up
[  143.231492][ T9495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1942'.
[  143.336026][ T9513] loop1: detected capacity change from 0 to 1024
[  143.426373][ T9513] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  143.478530][ T9515] loop3: detected capacity change from 0 to 1024
[  143.534660][ T9515] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.1947: Freeing blocks not in datazone - block = 0, count = 16
[  143.564381][ T9515] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  143.576541][ T9522] loop1: detected capacity change from 0 to 1024
[  143.591471][ T9515] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  143.603692][ T9515] EXT4-fs (loop3): This should not happen!! Data will be lost
[  143.603692][ T9515] 
[  143.613425][ T9515] EXT4-fs (loop3): Total free blocks count 0
[  143.619494][ T9515] EXT4-fs (loop3): Free/Dirty block details
[  143.625394][ T9515] EXT4-fs (loop3): free_blocks=4293918720
[  143.631239][ T9515] EXT4-fs (loop3): dirty_blocks=16
[  143.636348][ T9515] EXT4-fs (loop3): Block reservation details
[  143.642451][ T9515] EXT4-fs (loop3): i_reserved_data_blocks=1
[  143.677314][ T9519] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1948: Freeing blocks not in datazone - block = 0, count = 16
[  143.700667][ T9519] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  143.717930][ T9519] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  143.730402][ T9519] EXT4-fs (loop1): This should not happen!! Data will be lost
[  143.730402][ T9519] 
[  143.740547][ T9519] EXT4-fs (loop1): Total free blocks count 0
[  143.746523][ T9519] EXT4-fs (loop1): Free/Dirty block details
[  143.752444][ T9519] EXT4-fs (loop1): free_blocks=4293918720
[  143.758225][ T9519] EXT4-fs (loop1): dirty_blocks=16
[  143.763383][ T9519] EXT4-fs (loop1): Block reservation details
[  143.769483][ T9519] EXT4-fs (loop1): i_reserved_data_blocks=1
[  143.796108][ T9530] FAULT_INJECTION: forcing a failure.
[  143.796108][ T9530] name failslab, interval 1, probability 0, space 0, times 0
[  143.808906][ T9530] CPU: 0 UID: 0 PID: 9530 Comm: syz.3.1949 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  143.808932][ T9530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  143.808952][ T9530] Call Trace:
[  143.808960][ T9530]  <TASK>
[  143.808968][ T9530]  __dump_stack+0x1d/0x30
[  143.808990][ T9530]  dump_stack_lvl+0xe8/0x140
[  143.809009][ T9530]  dump_stack+0x15/0x1b
[  143.809049][ T9530]  should_fail_ex+0x265/0x280
[  143.809074][ T9530]  should_failslab+0x8c/0xb0
[  143.809099][ T9530]  __kmalloc_node_noprof+0xa9/0x410
[  143.809122][ T9530]  ? __vmalloc_node_range_noprof+0x3f9/0xe00
[  143.809157][ T9530]  __vmalloc_node_range_noprof+0x3f9/0xe00
[  143.809195][ T9530]  ? tty_ldisc_reinit+0x144/0x310
[  143.809216][ T9530]  ? n_tty_open+0x1b/0xf0
[  143.809239][ T9530]  vzalloc_noprof+0x82/0xc0
[  143.809320][ T9530]  ? n_tty_open+0x1b/0xf0
[  143.809342][ T9530]  n_tty_open+0x1b/0xf0
[  143.809428][ T9530]  tty_ldisc_reinit+0x208/0x310
[  143.809449][ T9530]  tty_ldisc_hangup+0x2d0/0x370
[  143.809497][ T9530]  __tty_hangup+0x3c2/0x540
[  143.809643][ T9530]  tty_ioctl+0x601/0xb80
[  143.809662][ T9530]  ? __pfx_tty_ioctl+0x10/0x10
[  143.809681][ T9530]  __se_sys_ioctl+0xce/0x140
[  143.809699][ T9530]  __x64_sys_ioctl+0x43/0x50
[  143.809718][ T9530]  x64_sys_call+0x1816/0x2ff0
[  143.809810][ T9530]  do_syscall_64+0xd2/0x200
[  143.809848][ T9530]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  143.809872][ T9530]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  143.809901][ T9530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.810009][ T9530] RIP: 0033:0x7fbedcc6eba9
[  143.810025][ T9530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.810042][ T9530] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.810111][ T9530] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  143.810124][ T9530] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000006
[  143.810136][ T9530] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  143.810148][ T9530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.810160][ T9530] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  143.810179][ T9530]  </TASK>
[  143.810185][ T9530] syz.3.1949: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  144.050464][ T9530] CPU: 0 UID: 0 PID: 9530 Comm: syz.3.1949 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  144.050535][ T9530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  144.050544][ T9530] Call Trace:
[  144.050551][ T9530]  <TASK>
[  144.050558][ T9530]  __dump_stack+0x1d/0x30
[  144.050577][ T9530]  dump_stack_lvl+0xe8/0x140
[  144.050593][ T9530]  dump_stack+0x15/0x1b
[  144.050684][ T9530]  warn_alloc+0x12b/0x1a0
[  144.050715][ T9530]  ? should_failslab+0x8c/0xb0
[  144.050742][ T9530]  __vmalloc_node_range_noprof+0x497/0xe00
[  144.050823][ T9530]  ? tty_ldisc_reinit+0x144/0x310
[  144.050841][ T9530]  ? n_tty_open+0x1b/0xf0
[  144.050860][ T9530]  vzalloc_noprof+0x82/0xc0
[  144.050883][ T9530]  ? n_tty_open+0x1b/0xf0
[  144.051047][ T9530]  n_tty_open+0x1b/0xf0
[  144.051065][ T9530]  tty_ldisc_reinit+0x208/0x310
[  144.051081][ T9530]  tty_ldisc_hangup+0x2d0/0x370
[  144.051097][ T9530]  __tty_hangup+0x3c2/0x540
[  144.051127][ T9530]  tty_ioctl+0x601/0xb80
[  144.051166][ T9530]  ? __pfx_tty_ioctl+0x10/0x10
[  144.051184][ T9530]  __se_sys_ioctl+0xce/0x140
[  144.051203][ T9530]  __x64_sys_ioctl+0x43/0x50
[  144.051286][ T9530]  x64_sys_call+0x1816/0x2ff0
[  144.051306][ T9530]  do_syscall_64+0xd2/0x200
[  144.051337][ T9530]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  144.051362][ T9530]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  144.051456][ T9530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.051477][ T9530] RIP: 0033:0x7fbedcc6eba9
[  144.051493][ T9530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.051589][ T9530] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.051608][ T9530] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  144.051619][ T9530] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000006
[  144.051658][ T9530] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  144.051671][ T9530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.051683][ T9530] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  144.051744][ T9530]  </TASK>
[  144.051760][ T9530] Mem-Info:
[  144.265094][ T9530] active_anon:7822 inactive_anon:2 isolated_anon:0
[  144.265094][ T9530]  active_file:8607 inactive_file:2544 isolated_file:0
[  144.265094][ T9530]  unevictable:2060 dirty:15 writeback:0
[  144.265094][ T9530]  slab_reclaimable:3321 slab_unreclaimable:14849
[  144.265094][ T9530]  mapped:30505 shmem:305 pagetables:1264
[  144.265094][ T9530]  sec_pagetables:0 bounce:0
[  144.265094][ T9530]  kernel_misc_reclaimable:0
[  144.265094][ T9530]  free:1851651 free_pcp:49108 free_cma:0
[  144.310009][ T9530] Node 0 active_anon:31288kB inactive_anon:8kB active_file:34428kB inactive_file:10176kB unevictable:8240kB isolated(anon):0kB isolated(file):0kB mapped:122020kB dirty:60kB writeback:0kB shmem:1220kB kernel_stack:3600kB pagetables:5056kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  144.337478][ T9530] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  144.366061][ T9530] lowmem_reserve[]: 0 2883 7862 7862
[  144.371385][ T9530] Node 0 DMA32 free:2949192kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952824kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  144.401657][ T9530] lowmem_reserve[]: 0 0 4978 4978
[  144.406714][ T9530] Node 0 Normal free:4442052kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31288kB inactive_anon:8kB active_file:34428kB inactive_file:10176kB unevictable:8240kB writepending:84kB present:5242880kB managed:5098240kB mlocked:8264kB bounce:0kB free_pcp:192800kB local_pcp:49848kB free_cma:0kB
[  144.439212][ T9530] lowmem_reserve[]: 0 0 0 0
[  144.443731][ T9530] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  144.456536][ T9530] Node 0 DMA32: 4*4kB (M) 1*8kB (M) 3*16kB (M) 2*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949192kB
[  144.472743][ T9530] Node 0 Normal: 2407*4kB (UME) 1499*8kB (UME) 1182*16kB (UME) 927*32kB (UME) 893*64kB (UME) 588*128kB (UME) 468*256kB (UME) 352*512kB (UME) 313*1024kB (UME) 83*2048kB (UME) 842*4096kB (UM) = 4441972kB
[  144.492698][ T9530] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  144.501977][ T9530] 11378 total pagecache pages
[  144.506641][ T9530] 29 pages in swap cache
[  144.510948][ T9530] Free swap  = 124260kB
[  144.515083][ T9530] Total swap = 124996kB
[  144.519225][ T9530] 2097051 pages RAM
[  144.523011][ T9530] 0 pages HighMem/MovableOnly
[  144.527657][ T9530] 80445 pages reserved
[  144.618130][ T9546] loop2: detected capacity change from 0 to 512
[  144.632552][ T9546] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.656933][ T9540] loop3: detected capacity change from 0 to 1024
[  144.664328][ T9546] EXT4-fs (loop2): orphan cleanup on readonly fs
[  144.672906][ T9546] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1956: bg 0: block 248: padding at end of block bitmap is not set
[  144.691701][ T9540] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.1953: Freeing blocks not in datazone - block = 0, count = 16
[  144.706102][ T9546] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1956: Failed to acquire dquot type 1
[  144.720921][ T9540] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  144.736522][ T9546] EXT4-fs (loop2): 1 truncate cleaned up
[  144.743678][ T9554] FAULT_INJECTION: forcing a failure.
[  144.743678][ T9554] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.754525][ T9540] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  144.756867][ T9554] CPU: 1 UID: 0 PID: 9554 Comm: syz.0.1958 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  144.756890][ T9554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  144.756912][ T9554] Call Trace:
[  144.756920][ T9554]  <TASK>
[  144.756928][ T9554]  __dump_stack+0x1d/0x30
[  144.756949][ T9554]  dump_stack_lvl+0xe8/0x140
[  144.756970][ T9554]  dump_stack+0x15/0x1b
[  144.756986][ T9554]  should_fail_ex+0x265/0x280
[  144.757034][ T9554]  should_fail+0xb/0x20
[  144.757053][ T9554]  should_fail_usercopy+0x1a/0x20
[  144.757077][ T9554]  _copy_to_user+0x20/0xa0
[  144.757106][ T9554]  simple_read_from_buffer+0xb5/0x130
[  144.757206][ T9554]  proc_fail_nth_read+0x10e/0x150
[  144.757232][ T9554]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.757256][ T9554]  vfs_read+0x1a8/0x770
[  144.757296][ T9554]  ? __rcu_read_unlock+0x4f/0x70
[  144.757317][ T9554]  ? __fget_files+0x184/0x1c0
[  144.757342][ T9554]  ksys_read+0xda/0x1a0
[  144.757421][ T9554]  __x64_sys_read+0x40/0x50
[  144.757443][ T9554]  x64_sys_call+0x27bc/0x2ff0
[  144.757463][ T9554]  do_syscall_64+0xd2/0x200
[  144.757492][ T9554]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  144.757547][ T9554]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  144.757574][ T9554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.757595][ T9554] RIP: 0033:0x7f58efb8d5bc
[  144.757647][ T9554] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  144.757664][ T9554] RSP: 002b:00007f58ee5f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  144.757683][ T9554] RAX: ffffffffffffffda RBX: 00007f58efdd5fa0 RCX: 00007f58efb8d5bc
[  144.757695][ T9554] RDX: 000000000000000f RSI: 00007f58ee5f70a0 RDI: 0000000000000004
[  144.757706][ T9554] RBP: 00007f58ee5f7090 R08: 0000000000000000 R09: 0000000000000000
[  144.757718][ T9554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.757730][ T9554] R13: 00007f58efdd6038 R14: 00007f58efdd5fa0 R15: 00007ffda65db308
[  144.757748][ T9554]  </TASK>
[  144.816765][ T9558] SELinux:  Context system_u:object_r:hald_acl_exec_t:s0 is not valid (left unmapped).
[  144.817585][ T9540] EXT4-fs (loop3): This should not happen!! Data will be lost
[  144.817585][ T9540] 
[  144.872567][ T9561] loop0: detected capacity change from 0 to 1024
[  144.874658][ T9540] EXT4-fs (loop3): Total free blocks count 0
[  144.955901][ T9556] loop1: detected capacity change from 0 to 1024
[  144.956924][ T9540] EXT4-fs (loop3): Free/Dirty block details
[  144.999953][ T9566] loop4: detected capacity change from 0 to 2048
[  145.005789][ T9540] EXT4-fs (loop3): free_blocks=4293918720
[  145.005806][ T9540] EXT4-fs (loop3): dirty_blocks=16
[  145.005819][ T9540] EXT4-fs (loop3): Block reservation details
[  145.020002][ T9561] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1962'.
[  145.023772][ T9540] EXT4-fs (loop3): i_reserved_data_blocks=1
[  145.032138][ T9556] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1959: Freeing blocks not in datazone - block = 0, count = 16
[  145.093368][ T9566]  loop4: p3 p4 < >
[  145.097326][ T9566] loop4: p3 start 11362048 is beyond EOD, truncated
[  145.170532][ T2995]  loop4: p3 p4 < >
[  145.174555][ T2995] loop4: p3 start 11362048 is beyond EOD, truncated
[  145.355721][ T9589] loop1: detected capacity change from 0 to 2048
[  145.383503][ T9585] loop4: detected capacity change from 0 to 2048
[  145.450430][ T3750]  loop1: p1 < > p4
[  145.462383][ T3750] loop1: p4 size 8388608 extends beyond EOD, truncated
[  145.469031][ T3295]  loop4: p1 < > p4
[  145.478430][ T3295] loop4: p4 size 8388608 extends beyond EOD, truncated
[  145.504915][ T9589]  loop1: p1 < > p4
[  145.519087][ T9585]  loop4: p1 < > p4
[  145.526492][ T9589] loop1: p4 size 8388608 extends beyond EOD, truncated
[  145.555782][ T9585] loop4: p4 size 8388608 extends beyond EOD, truncated
[  145.577642][ T9597] loop3: detected capacity change from 0 to 512
[  145.596434][ T2995]  loop1: p1 < > p4
[  145.622890][ T2995] loop1: p4 size 8388608 extends beyond EOD, truncated
[  145.635245][ T9597] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.674737][ T3750] udevd[3750]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  145.674852][ T3297] udevd[3297]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  145.706054][ T9597] EXT4-fs (loop3): orphan cleanup on readonly fs
[  145.706122][ T2995]  loop4: p1 < > p4
[  145.722871][ T2995] loop4: p4 size 8388608 extends beyond EOD, truncated
[  145.748876][ T3750] udevd[3750]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  145.765909][ T9597] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1971: bg 0: block 248: padding at end of block bitmap is not set
[  145.780487][ T9602] loop1: detected capacity change from 0 to 2048
[  145.815097][ T3750] udevd[3750]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  145.826330][ T3295] udevd[3295]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  145.866248][ T9597] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1971: Failed to acquire dquot type 1
[  145.920425][ T3295] udevd[3295]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  145.927447][ T3750] udevd[3750]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  145.949277][ T9597] EXT4-fs (loop3): 1 truncate cleaned up
[  145.984713][ T9611] loop4: detected capacity change from 0 to 2048
[  146.049791][ T3297]  loop4: p1 < > p4
[  146.064073][ T3297] loop4: p4 size 8388608 extends beyond EOD, truncated
[  146.095004][ T9611] loop_reread_partitions: partition scan of loop4 () failed (rc=-16)
[  146.129312][ T2995]  loop4: p1 < > p4
[  146.141491][ T2995] loop4: p4 size 8388608 extends beyond EOD, truncated
[  146.182103][ T9614] loop1: detected capacity change from 0 to 1024
[  146.216209][ T9614] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1975: Freeing blocks not in datazone - block = 0, count = 16
[  146.240023][ T9614] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  146.264332][ T9614] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  146.276574][ T9614] EXT4-fs (loop1): This should not happen!! Data will be lost
[  146.276574][ T9614] 
[  146.286246][ T9614] EXT4-fs (loop1): Total free blocks count 0
[  146.292375][ T9614] EXT4-fs (loop1): Free/Dirty block details
[  146.298267][ T9614] EXT4-fs (loop1): free_blocks=4293918720
[  146.304149][ T9614] EXT4-fs (loop1): dirty_blocks=16
[  146.309295][ T9614] EXT4-fs (loop1): Block reservation details
[  146.315289][ T9614] EXT4-fs (loop1): i_reserved_data_blocks=1
[  146.380415][ T9631] loop0: detected capacity change from 0 to 1024
[  146.421440][ T9624] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.1978: Freeing blocks not in datazone - block = 0, count = 16
[  146.481927][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  146.489591][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.497114][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.504587][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.512075][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.519562][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.540693][ T9641] FAULT_INJECTION: forcing a failure.
[  146.540693][ T9641] name failslab, interval 1, probability 0, space 0, times 0
[  146.553374][ T9641] CPU: 0 UID: 0 PID: 9641 Comm: syz.2.1983 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.553459][ T9641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  146.553469][ T9641] Call Trace:
[  146.553475][ T9641]  <TASK>
[  146.553483][ T9641]  __dump_stack+0x1d/0x30
[  146.553501][ T9641]  dump_stack_lvl+0xe8/0x140
[  146.553521][ T9641]  dump_stack+0x15/0x1b
[  146.553544][ T9641]  should_fail_ex+0x265/0x280
[  146.553568][ T9641]  should_failslab+0x8c/0xb0
[  146.553594][ T9641]  kmem_cache_alloc_noprof+0x50/0x310
[  146.553624][ T9641]  ? audit_log_start+0x365/0x6c0
[  146.553661][ T9641]  audit_log_start+0x365/0x6c0
[  146.553693][ T9641]  audit_seccomp+0x48/0x100
[  146.553798][ T9641]  ? __seccomp_filter+0x68c/0x10d0
[  146.553821][ T9641]  __seccomp_filter+0x69d/0x10d0
[  146.553844][ T9641]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  146.553866][ T9641]  ? vfs_write+0x7e8/0x960
[  146.553998][ T9641]  ? putname+0xda/0x100
[  146.554019][ T9641]  ? __rcu_read_unlock+0x4f/0x70
[  146.554037][ T9641]  ? __fget_files+0x184/0x1c0
[  146.554089][ T9641]  __secure_computing+0x82/0x150
[  146.554107][ T9641]  syscall_trace_enter+0xcf/0x1e0
[  146.554203][ T9641]  do_syscall_64+0xac/0x200
[  146.554301][ T9641]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  146.554319][ T9641]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  146.554420][ T9641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.554437][ T9641] RIP: 0033:0x7f04393aeba9
[  146.554450][ T9641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.554463][ T9641] RSP: 002b:00007f0437e17038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  146.554479][ T9641] RAX: ffffffffffffffda RBX: 00007f04395f5fa0 RCX: 00007f04393aeba9
[  146.554489][ T9641] RDX: 0000000000000008 RSI: 0000200000000300 RDI: ffffffffffffffff
[  146.554499][ T9641] RBP: 00007f0437e17090 R08: 0000000000000000 R09: 0000000000000000
[  146.554574][ T9641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.554662][ T9641] R13: 00007f04395f6038 R14: 00007f04395f5fa0 R15: 00007ffc05abd848
[  146.554677][ T9641]  </TASK>
[  146.575378][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.630908][ T2995]  loop4: p1 < > p4
[  146.633326][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.658417][ T2995] loop4: p4 size 8388608 extends beyond EOD, 
[  146.662047][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2
[  146.667039][ T2995] truncated
[  146.799785][ T3415] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  146.810235][ T3415] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  146.876015][ T9647] fido_id[9647]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  146.881759][ T9651] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1988'.
[  146.922576][ T9651] loop1: detected capacity change from 0 to 512
[  146.938413][ T9651] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent
[  146.952731][   T29] kauditd_printk_skb: 603 callbacks suppressed
[  146.952744][   T29] audit: type=1326 audit(146.930:5417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  146.981848][   T29] audit: type=1326 audit(146.930:5418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  146.987559][ T9657] loop4: detected capacity change from 0 to 512
[  147.004648][   T29] audit: type=1326 audit(146.930:5419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.038489][ T9657] EXT4-fs: test_dummy_encryption option not supported
[  147.041144][   T29] audit: type=1326 audit(147.010:5420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.068133][   T29] audit: type=1326 audit(147.010:5421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.068547][ T9659] FAULT_INJECTION: forcing a failure.
[  147.068547][ T9659] name failslab, interval 1, probability 0, space 0, times 0
[  147.090984][   T29] audit: type=1326 audit(147.010:5422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.091006][   T29] audit: type=1326 audit(147.010:5423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.103626][ T9659] CPU: 1 UID: 0 PID: 9659 Comm: syz.3.1987 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  147.103650][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.103660][ T9659] Call Trace:
[  147.103666][ T9659]  <TASK>
[  147.103673][ T9659]  __dump_stack+0x1d/0x30
[  147.103771][ T9659]  dump_stack_lvl+0xe8/0x140
[  147.103792][ T9659]  dump_stack+0x15/0x1b
[  147.103808][ T9659]  should_fail_ex+0x265/0x280
[  147.103907][ T9659]  should_failslab+0x8c/0xb0
[  147.103931][ T9659]  __kmalloc_noprof+0xa5/0x3e0
[  147.103957][ T9659]  ? do_sys_poll+0x19b/0xbd0
[  147.103981][ T9659]  do_sys_poll+0x19b/0xbd0
[  147.104016][ T9659]  ? selinux_file_open+0x2df/0x330
[  147.104066][ T9659]  __se_sys_poll+0xdd/0x200
[  147.104088][ T9659]  __x64_sys_poll+0x43/0x50
[  147.104133][ T9659]  x64_sys_call+0x27d2/0x2ff0
[  147.104154][ T9659]  do_syscall_64+0xd2/0x200
[  147.104188][ T9659]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.104211][ T9659]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  147.104306][ T9659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.104345][ T9659] RIP: 0033:0x7fbedcc6eba9
[  147.104360][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.104426][ T9659] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  147.104448][ T9659] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  147.104461][ T9659] RDX: ffffffffffbffff8 RSI: 000000000000002c RDI: 0000200000b2c000
[  147.104474][ T9659] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  147.104486][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.104498][ T9659] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  147.104515][ T9659]  </TASK>
[  147.148516][ T9651] 9pnet_virtio: no channels available for device 
[  147.149223][   T29] audit: type=1326 audit(147.010:5424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.357475][   T29] audit: type=1326 audit(147.010:5425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.380371][   T29] audit: type=1326 audit(147.010:5426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9648 comm="syz.0.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f58efb8eba9 code=0x7ffc0000
[  147.411877][ T9663] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9663 comm=syz.4.1993
[  147.437752][ T9667] netlink: 'syz.4.1993': attribute type 1 has an invalid length.
[  147.458820][ T9667] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  147.473999][ T9673] loop2: detected capacity change from 0 to 1024
[  147.511705][ T9672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1995'.
[  147.544637][ T9661] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1992: Freeing blocks not in datazone - block = 0, count = 16
[  147.568055][ T9661] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  147.590607][ T9661] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  147.602897][ T9661] EXT4-fs (loop2): This should not happen!! Data will be lost
[  147.602897][ T9661] 
[  147.612598][ T9661] EXT4-fs (loop2): Total free blocks count 0
[  147.618612][ T9661] EXT4-fs (loop2): Free/Dirty block details
[  147.624637][ T9661] EXT4-fs (loop2): free_blocks=4293918720
[  147.630417][ T9661] EXT4-fs (loop2): dirty_blocks=16
[  147.635530][ T9661] EXT4-fs (loop2): Block reservation details
[  147.641601][ T9661] EXT4-fs (loop2): i_reserved_data_blocks=1
[  147.711511][ T9697] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1999'.
[  147.723638][ T9700] FAULT_INJECTION: forcing a failure.
[  147.723638][ T9700] name failslab, interval 1, probability 0, space 0, times 0
[  147.736277][ T9700] CPU: 1 UID: 0 PID: 9700 Comm: syz.0.2000 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  147.736301][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.736311][ T9700] Call Trace:
[  147.736317][ T9700]  <TASK>
[  147.736323][ T9700]  __dump_stack+0x1d/0x30
[  147.736344][ T9700]  dump_stack_lvl+0xe8/0x140
[  147.736364][ T9700]  dump_stack+0x15/0x1b
[  147.736378][ T9700]  should_fail_ex+0x265/0x280
[  147.736401][ T9700]  should_failslab+0x8c/0xb0
[  147.736425][ T9700]  kmem_cache_alloc_noprof+0x50/0x310
[  147.736451][ T9700]  ? mas_alloc_nodes+0x265/0x520
[  147.736478][ T9700]  mas_alloc_nodes+0x265/0x520
[  147.736504][ T9700]  mas_preallocate+0x33e/0x520
[  147.736531][ T9700]  mmap_region+0xbdd/0x1630
[  147.736573][ T9700]  do_mmap+0x9b3/0xbe0
[  147.736606][ T9700]  vm_mmap_pgoff+0x17a/0x2e0
[  147.736633][ T9700]  ksys_mmap_pgoff+0xc2/0x310
[  147.736647][ T9700]  ? __x64_sys_mmap+0x49/0x70
[  147.736669][ T9700]  x64_sys_call+0x14a3/0x2ff0
[  147.736686][ T9700]  do_syscall_64+0xd2/0x200
[  147.736712][ T9700]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.736736][ T9700]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  147.736762][ T9700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.736782][ T9700] RIP: 0033:0x7f58efb8ebe3
[  147.736798][ T9700] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  147.736817][ T9700] RSP: 002b:00007f58ee5f6e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  147.736832][ T9700] RAX: ffffffffffffffda RBX: 000000000000059a RCX: 00007f58efb8ebe3
[  147.736842][ T9700] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  147.736852][ T9700] RBP: 0000200000000342 R08: 00000000ffffffff R09: 0000000000000000
[  147.736864][ T9700] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000005
[  147.736876][ T9700] R13: 00007f58ee5f6ef0 R14: 00007f58ee5f6eb0 R15: 00002000000002c0
[  147.736894][ T9700]  </TASK>
[  148.099578][ T9722] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[  148.142790][ T9730] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2005'.
[  148.156765][ T9730] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  148.302135][ T9745] loop4: detected capacity change from 0 to 1024
[  148.324717][ T9745] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2009: Freeing blocks not in datazone - block = 0, count = 16
[  148.339071][ T9745] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  148.354056][ T9745] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  148.366243][ T9745] EXT4-fs (loop4): This should not happen!! Data will be lost
[  148.366243][ T9745] 
[  148.375914][ T9745] EXT4-fs (loop4): Total free blocks count 0
[  148.381908][ T9745] EXT4-fs (loop4): Free/Dirty block details
[  148.387807][ T9745] EXT4-fs (loop4): free_blocks=4293918720
[  148.393575][ T9745] EXT4-fs (loop4): dirty_blocks=16
[  148.398688][ T9745] EXT4-fs (loop4): Block reservation details
[  148.404659][ T9745] EXT4-fs (loop4): i_reserved_data_blocks=1
[  148.472972][ T9752] FAULT_INJECTION: forcing a failure.
[  148.472972][ T9752] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.486132][ T9752] CPU: 0 UID: 0 PID: 9752 Comm: syz.4.2011 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  148.486227][ T9752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  148.486240][ T9752] Call Trace:
[  148.486308][ T9752]  <TASK>
[  148.486316][ T9752]  __dump_stack+0x1d/0x30
[  148.486337][ T9752]  dump_stack_lvl+0xe8/0x140
[  148.486373][ T9752]  dump_stack+0x15/0x1b
[  148.486386][ T9752]  should_fail_ex+0x265/0x280
[  148.486437][ T9752]  should_fail+0xb/0x20
[  148.486501][ T9752]  should_fail_usercopy+0x1a/0x20
[  148.486522][ T9752]  _copy_from_user+0x1c/0xb0
[  148.486547][ T9752]  ___sys_sendmsg+0xc1/0x1d0
[  148.486708][ T9752]  __x64_sys_sendmsg+0xd4/0x160
[  148.486788][ T9752]  x64_sys_call+0x191e/0x2ff0
[  148.486806][ T9752]  do_syscall_64+0xd2/0x200
[  148.486832][ T9752]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.486857][ T9752]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  148.486955][ T9752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.486973][ T9752] RIP: 0033:0x7f7641a7eba9
[  148.487015][ T9752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.487030][ T9752] RSP: 002b:00007f76404df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  148.487050][ T9752] RAX: ffffffffffffffda RBX: 00007f7641cc5fa0 RCX: 00007f7641a7eba9
[  148.487064][ T9752] RDX: 0000000020008030 RSI: 00002000000004c0 RDI: 0000000000000003
[  148.487077][ T9752] RBP: 00007f76404df090 R08: 0000000000000000 R09: 0000000000000000
[  148.487090][ T9752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.487101][ T9752] R13: 00007f7641cc6038 R14: 00007f7641cc5fa0 R15: 00007ffe9eb16258
[  148.487116][ T9752]  </TASK>
[  148.679694][ T9756] FAULT_INJECTION: forcing a failure.
[  148.679694][ T9756] name failslab, interval 1, probability 0, space 0, times 0
[  148.692369][ T9756] CPU: 1 UID: 0 PID: 9756 Comm: syz.1.2012 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  148.692397][ T9756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  148.692471][ T9756] Call Trace:
[  148.692478][ T9756]  <TASK>
[  148.692486][ T9756]  __dump_stack+0x1d/0x30
[  148.692520][ T9756]  dump_stack_lvl+0xe8/0x140
[  148.692541][ T9756]  dump_stack+0x15/0x1b
[  148.692558][ T9756]  should_fail_ex+0x265/0x280
[  148.692641][ T9756]  ? j1939_ecu_create_locked+0x59/0x160
[  148.692664][ T9756]  should_failslab+0x8c/0xb0
[  148.692765][ T9756]  __kmalloc_cache_noprof+0x4c/0x320
[  148.692792][ T9756]  j1939_ecu_create_locked+0x59/0x160
[  148.692902][ T9756]  j1939_local_ecu_get+0x102/0x1f0
[  148.693020][ T9756]  j1939_sk_bind+0x477/0x6d0
[  148.693044][ T9756]  __sys_bind+0x1d1/0x2a0
[  148.693070][ T9756]  __x64_sys_bind+0x3f/0x50
[  148.693166][ T9756]  x64_sys_call+0x2b6e/0x2ff0
[  148.693188][ T9756]  do_syscall_64+0xd2/0x200
[  148.693221][ T9756]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.693288][ T9756]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  148.693341][ T9756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.693363][ T9756] RIP: 0033:0x7ff8f350eba9
[  148.693378][ T9756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.693395][ T9756] RSP: 002b:00007ff8f1f6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  148.693454][ T9756] RAX: ffffffffffffffda RBX: 00007ff8f3755fa0 RCX: 00007ff8f350eba9
[  148.693466][ T9756] RDX: 0000000000000018 RSI: 0000200000000240 RDI: 0000000000000003
[  148.693531][ T9756] RBP: 00007ff8f1f6f090 R08: 0000000000000000 R09: 0000000000000000
[  148.693544][ T9756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.693557][ T9756] R13: 00007ff8f3756038 R14: 00007ff8f3755fa0 R15: 00007fff80aa8898
[  148.693642][ T9756]  </TASK>
[  148.893186][ T9764] FAULT_INJECTION: forcing a failure.
[  148.893186][ T9764] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.906327][ T9764] CPU: 0 UID: 0 PID: 9764 Comm: syz.4.2015 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  148.906351][ T9764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  148.906361][ T9764] Call Trace:
[  148.906366][ T9764]  <TASK>
[  148.906373][ T9764]  __dump_stack+0x1d/0x30
[  148.906392][ T9764]  dump_stack_lvl+0xe8/0x140
[  148.906554][ T9764]  dump_stack+0x15/0x1b
[  148.906569][ T9764]  should_fail_ex+0x265/0x280
[  148.906636][ T9764]  should_fail+0xb/0x20
[  148.906652][ T9764]  should_fail_usercopy+0x1a/0x20
[  148.906674][ T9764]  _copy_from_user+0x1c/0xb0
[  148.906700][ T9764]  __sys_sendto+0x19e/0x330
[  148.906828][ T9764]  __x64_sys_sendto+0x76/0x90
[  148.906851][ T9764]  x64_sys_call+0x2d05/0x2ff0
[  148.906942][ T9764]  do_syscall_64+0xd2/0x200
[  148.907036][ T9764]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.907056][ T9764]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  148.907148][ T9764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.907232][ T9764] RIP: 0033:0x7f7641a7eba9
[  148.907246][ T9764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.907261][ T9764] RSP: 002b:00007f76404be038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  148.907279][ T9764] RAX: ffffffffffffffda RBX: 00007f7641cc6090 RCX: 00007f7641a7eba9
[  148.907293][ T9764] RDX: 000000000000000e RSI: 0000200000000100 RDI: 0000000000000003
[  148.907305][ T9764] RBP: 00007f76404be090 R08: 00002000000002c0 R09: 0000000000000014
[  148.907316][ T9764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.907405][ T9764] R13: 00007f7641cc6128 R14: 00007f7641cc6090 R15: 00007ffe9eb16258
[  148.907422][ T9764]  </TASK>
[  148.957318][ T9772] netlink: 'syz.0.2016': attribute type 1 has an invalid length.
[  149.085338][ T9772] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2016'.
[  149.165184][ T9786] FAULT_INJECTION: forcing a failure.
[  149.165184][ T9786] name failslab, interval 1, probability 0, space 0, times 0
[  149.177834][ T9786] CPU: 0 UID: 0 PID: 9786 Comm: syz.2.2021 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  149.177915][ T9786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.177927][ T9786] Call Trace:
[  149.177934][ T9786]  <TASK>
[  149.177942][ T9786]  __dump_stack+0x1d/0x30
[  149.177963][ T9786]  dump_stack_lvl+0xe8/0x140
[  149.178042][ T9786]  dump_stack+0x15/0x1b
[  149.178059][ T9786]  should_fail_ex+0x265/0x280
[  149.178079][ T9786]  ? rxrpc_preparse+0x221/0x860
[  149.178098][ T9786]  should_failslab+0x8c/0xb0
[  149.178152][ T9786]  __kmalloc_cache_noprof+0x4c/0x320
[  149.178183][ T9786]  rxrpc_preparse+0x221/0x860
[  149.178244][ T9786]  ? selinux_key_permission+0x161/0x190
[  149.178290][ T9786]  __key_create_or_update+0x288/0x750
[  149.178338][ T9786]  ? key_validate+0xad/0xd0
[  149.178367][ T9786]  key_create_or_update+0x42/0x60
[  149.178457][ T9786]  __se_sys_add_key+0x296/0x350
[  149.178478][ T9786]  __x64_sys_add_key+0x67/0x80
[  149.178503][ T9786]  x64_sys_call+0x28c4/0x2ff0
[  149.178525][ T9786]  do_syscall_64+0xd2/0x200
[  149.178632][ T9786]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.178655][ T9786]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  149.178681][ T9786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.178766][ T9786] RIP: 0033:0x7f04393aeba9
[  149.178780][ T9786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.178794][ T9786] RSP: 002b:00007f0437e17038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  149.178813][ T9786] RAX: ffffffffffffffda RBX: 00007f04395f5fa0 RCX: 00007f04393aeba9
[  149.178824][ T9786] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000200000000280
[  149.178837][ T9786] RBP: 00007f0437e17090 R08: ffffffffffffffff R09: 0000000000000000
[  149.178889][ T9786] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  149.178900][ T9786] R13: 00007f04395f6038 R14: 00007f04395f5fa0 R15: 00007ffc05abd848
[  149.178917][ T9786]  </TASK>
[  149.377403][ T9788] SELinux: failed to load policy
[  149.560795][ T9801] FAULT_INJECTION: forcing a failure.
[  149.560795][ T9801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.573909][ T9801] CPU: 0 UID: 0 PID: 9801 Comm: syz.0.2027 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  149.573933][ T9801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.574000][ T9801] Call Trace:
[  149.574083][ T9801]  <TASK>
[  149.574089][ T9801]  __dump_stack+0x1d/0x30
[  149.574108][ T9801]  dump_stack_lvl+0xe8/0x140
[  149.574127][ T9801]  dump_stack+0x15/0x1b
[  149.574142][ T9801]  should_fail_ex+0x265/0x280
[  149.574165][ T9801]  should_fail+0xb/0x20
[  149.574203][ T9801]  should_fail_usercopy+0x1a/0x20
[  149.574224][ T9801]  _copy_from_user+0x1c/0xb0
[  149.574341][ T9801]  tipc_setsockopt+0x388/0x620
[  149.574363][ T9801]  ? __pfx_tipc_setsockopt+0x10/0x10
[  149.574417][ T9801]  __sys_setsockopt+0x181/0x200
[  149.574443][ T9801]  __x64_sys_setsockopt+0x64/0x80
[  149.574475][ T9801]  x64_sys_call+0x20ec/0x2ff0
[  149.574494][ T9801]  do_syscall_64+0xd2/0x200
[  149.574581][ T9801]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.574658][ T9801]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  149.574682][ T9801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.574699][ T9801] RIP: 0033:0x7f58efb8eba9
[  149.574728][ T9801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.574744][ T9801] RSP: 002b:00007f58ee5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  149.574764][ T9801] RAX: ffffffffffffffda RBX: 00007f58efdd5fa0 RCX: 00007f58efb8eba9
[  149.574777][ T9801] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000007
[  149.574840][ T9801] RBP: 00007f58ee5f7090 R08: 0000000000000010 R09: 0000000000000000
[  149.574850][ T9801] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  149.574919][ T9801] R13: 00007f58efdd6038 R14: 00007f58efdd5fa0 R15: 00007ffda65db308
[  149.574937][ T9801]  </TASK>
[  149.766252][ T9803] program syz.4.2028 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  149.812471][ T9812] FAULT_INJECTION: forcing a failure.
[  149.812471][ T9812] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.825655][ T9812] CPU: 1 UID: 0 PID: 9812 Comm: syz.4.2030 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  149.825676][ T9812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.825730][ T9812] Call Trace:
[  149.825733][ T9812]  <TASK>
[  149.825737][ T9812]  __dump_stack+0x1d/0x30
[  149.825750][ T9812]  dump_stack_lvl+0xe8/0x140
[  149.825761][ T9812]  dump_stack+0x15/0x1b
[  149.825770][ T9812]  should_fail_ex+0x265/0x280
[  149.825783][ T9812]  should_fail+0xb/0x20
[  149.825912][ T9812]  should_fail_usercopy+0x1a/0x20
[  149.825926][ T9812]  _copy_from_user+0x1c/0xb0
[  149.825942][ T9812]  copy_from_sockptr+0x5e/0xa0
[  149.825954][ T9812]  do_ip_setsockopt+0x1a90/0x2240
[  149.825975][ T9812]  ip_setsockopt+0x58/0x110
[  149.825986][ T9812]  udp_setsockopt+0x99/0xb0
[  149.826004][ T9812]  sock_common_setsockopt+0x69/0x80
[  149.826022][ T9812]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  149.826046][ T9812]  __sys_setsockopt+0x181/0x200
[  149.826060][ T9812]  __x64_sys_setsockopt+0x64/0x80
[  149.826144][ T9812]  x64_sys_call+0x20ec/0x2ff0
[  149.826155][ T9812]  do_syscall_64+0xd2/0x200
[  149.826172][ T9812]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.826185][ T9812]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  149.826249][ T9812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.826261][ T9812] RIP: 0033:0x7f7641a7eba9
[  149.826269][ T9812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.826279][ T9812] RSP: 002b:00007f76404df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  149.826291][ T9812] RAX: ffffffffffffffda RBX: 00007f7641cc5fa0 RCX: 00007f7641a7eba9
[  149.826360][ T9812] RDX: 0000000000000023 RSI: 0000000000000000 RDI: 0000000000000007
[  149.826367][ T9812] RBP: 00007f76404df090 R08: 0000000000000040 R09: 0000000000000000
[  149.826374][ T9812] R10: 0000200000000740 R11: 0000000000000246 R12: 0000000000000001
[  149.826380][ T9812] R13: 00007f7641cc6038 R14: 00007f7641cc5fa0 R15: 00007ffe9eb16258
[  149.826391][ T9812]  </TASK>
[  150.040857][ T9795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  150.050199][ T9795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  150.058719][ T9809] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2024'.
[  150.069929][ T9818] FAULT_INJECTION: forcing a failure.
[  150.069929][ T9818] name failslab, interval 1, probability 0, space 0, times 0
[  150.071168][ T9809] hsr0: entered promiscuous mode
[  150.082666][ T9818] CPU: 0 UID: 0 PID: 9818 Comm: syz.0.2033 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  150.082691][ T9818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  150.082703][ T9818] Call Trace:
[  150.082708][ T9818]  <TASK>
[  150.082715][ T9818]  __dump_stack+0x1d/0x30
[  150.082734][ T9818]  dump_stack_lvl+0xe8/0x140
[  150.082752][ T9818]  dump_stack+0x15/0x1b
[  150.082766][ T9818]  should_fail_ex+0x265/0x280
[  150.082788][ T9818]  should_failslab+0x8c/0xb0
[  150.082810][ T9818]  kmem_cache_alloc_noprof+0x50/0x310
[  150.082834][ T9818]  ? __anon_vma_prepare+0x70/0x2f0
[  150.082850][ T9818]  ? __rcu_read_lock+0x37/0x50
[  150.082868][ T9818]  __anon_vma_prepare+0x70/0x2f0
[  150.082883][ T9818]  handle_mm_fault+0x1e86/0x2c20
[  150.082903][ T9818]  ? __rcu_read_lock+0x37/0x50
[  150.082921][ T9818]  ? __pte_offset_map_lock+0x1d4/0x230
[  150.082953][ T9818]  __get_user_pages+0x102e/0x1fa0
[  150.082981][ T9818]  get_user_pages_remote+0x1d5/0x6d0
[  150.083001][ T9818]  ? __rcu_read_unlock+0x4f/0x70
[  150.083017][ T9818]  ? __memcg_slab_free_hook+0xbc/0x230
[  150.083042][ T9818]  __update_ref_ctr+0x8e/0x3a0
[  150.083065][ T9818]  uprobe_mmap+0x2de/0xc30
[  150.083091][ T9818]  mmap_region+0x13c2/0x1630
[  150.083130][ T9818]  do_mmap+0x9b3/0xbe0
[  150.083160][ T9818]  vm_mmap_pgoff+0x17a/0x2e0
[  150.083189][ T9818]  ksys_mmap_pgoff+0x268/0x310
[  150.083207][ T9818]  x64_sys_call+0x14a3/0x2ff0
[  150.083225][ T9818]  do_syscall_64+0xd2/0x200
[  150.083252][ T9818]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.083273][ T9818]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  150.083298][ T9818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.083318][ T9818] RIP: 0033:0x7f58efb8eba9
[  150.083332][ T9818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.083347][ T9818] RSP: 002b:00007f58ee5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  150.083364][ T9818] RAX: ffffffffffffffda RBX: 00007f58efdd5fa0 RCX: 00007f58efb8eba9
[  150.083376][ T9818] RDX: 000000000000001e RSI: 0000000000003000 RDI: 0000200000002000
[  150.083394][ T9818] RBP: 00007f58ee5f7090 R08: 0000000000000009 R09: 0000000000000000
[  150.083405][ T9818] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[  150.083416][ T9818] R13: 00007f58efdd6038 R14: 00007f58efdd5fa0 R15: 00007ffda65db308
[  150.083433][ T9818]  </TASK>
[  150.083559][ T9818] ref_ctr increment failed for inode: 0x84e offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88810c365640
[  150.087848][ T9809] macsec1: entered promiscuous mode
[  150.146409][ T9817] uprobe: syz.0.2033:9817 failed to unregister, leaking uprobe
[  150.151275][ T9809] macsec1: entered allmulticast mode
[  150.151287][ T9809] hsr0: entered allmulticast mode
[  150.304516][ T9826] loop4: detected capacity change from 0 to 2048
[  150.310416][ T9809] hsr_slave_0: entered allmulticast mode
[  150.367465][ T9809] hsr_slave_1: entered allmulticast mode
[  150.380129][ T9809] hsr0: left allmulticast mode
[  150.384921][ T9809] hsr_slave_0: left allmulticast mode
[  150.386611][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  150.390426][ T9809] hsr_slave_1: left allmulticast mode
[  150.412014][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  150.422515][ T9825] FAULT_INJECTION: forcing a failure.
[  150.422515][ T9825] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.422655][ T9830] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  150.435593][ T9825] CPU: 1 UID: 0 PID: 9825 Comm: syz.3.2035 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  150.435624][ T9825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  150.435637][ T9825] Call Trace:
[  150.435742][ T9825]  <TASK>
[  150.435750][ T9825]  __dump_stack+0x1d/0x30
[  150.435770][ T9825]  dump_stack_lvl+0xe8/0x140
[  150.435789][ T9825]  dump_stack+0x15/0x1b
[  150.435848][ T9825]  should_fail_ex+0x265/0x280
[  150.435872][ T9825]  should_fail+0xb/0x20
[  150.435947][ T9825]  should_fail_usercopy+0x1a/0x20
[  150.435971][ T9825]  _copy_to_user+0x20/0xa0
[  150.436054][ T9825]  simple_read_from_buffer+0xb5/0x130
[  150.436076][ T9825]  proc_fail_nth_read+0x10e/0x150
[  150.436107][ T9825]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  150.436131][ T9825]  vfs_read+0x1a8/0x770
[  150.436217][ T9825]  ? __rcu_read_unlock+0x4f/0x70
[  150.436319][ T9825]  ? __fget_files+0x184/0x1c0
[  150.436343][ T9825]  ksys_read+0xda/0x1a0
[  150.436362][ T9825]  __x64_sys_read+0x40/0x50
[  150.436379][ T9825]  x64_sys_call+0x27bc/0x2ff0
[  150.436399][ T9825]  do_syscall_64+0xd2/0x200
[  150.436459][ T9825]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.436482][ T9825]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  150.436509][ T9825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.436531][ T9825] RIP: 0033:0x7fbedcc6d5bc
[  150.436622][ T9825] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  150.436639][ T9825] RSP: 002b:00007fbedb6d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  150.436657][ T9825] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6d5bc
[  150.436669][ T9825] RDX: 000000000000000f RSI: 00007fbedb6d70a0 RDI: 0000000000000004
[  150.436724][ T9825] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  150.436736][ T9825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.436804][ T9825] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  150.436892][ T9825]  </TASK>
[  150.477860][ T3415] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  150.653810][ T9833] veth0_to_team: entered promiscuous mode
[  150.722506][ T9838] loop0: detected capacity change from 0 to 512
[  150.730223][ T9838] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.749817][ T9838] EXT4-fs (loop0): orphan cleanup on readonly fs
[  150.767257][ T9838] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2039: bg 0: block 248: padding at end of block bitmap is not set
[  150.782153][ T9844] loop4: detected capacity change from 0 to 1024
[  150.791195][ T9838] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2039: Failed to acquire dquot type 1
[  150.810685][ T9848] loop1: detected capacity change from 0 to 1024
[  150.818457][ T9848] EXT4-fs: Ignoring removed nobh option
[  150.826652][ T9848] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.836136][ T9838] EXT4-fs (loop0): 1 truncate cleaned up
[  150.858115][ T9836] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2037: Freeing blocks not in datazone - block = 0, count = 16
[  150.896817][ T9836] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  150.912374][ T9836] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  150.924628][ T9836] EXT4-fs (loop4): This should not happen!! Data will be lost
[  150.924628][ T9836] 
[  150.933970][ T9857] loop3: detected capacity change from 0 to 512
[  150.934289][ T9836] EXT4-fs (loop4): Total free blocks count 0
[  150.946464][ T9836] EXT4-fs (loop4): Free/Dirty block details
[  150.952416][ T9836] EXT4-fs (loop4): free_blocks=4293918720
[  150.958170][ T9836] EXT4-fs (loop4): dirty_blocks=16
[  150.963304][ T9836] EXT4-fs (loop4): Block reservation details
[  150.969372][ T9836] EXT4-fs (loop4): i_reserved_data_blocks=1
[  150.997743][ T9861] loop2: detected capacity change from 0 to 512
[  151.015627][ T9865] loop1: detected capacity change from 0 to 128
[  151.103254][ T9876] netlink: 'syz.1.2050': attribute type 2 has an invalid length.
[  151.111170][ T9876] netlink: 'syz.1.2050': attribute type 8 has an invalid length.
[  151.118902][ T9876] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2050'.
[  151.134137][ T9878] FAULT_INJECTION: forcing a failure.
[  151.134137][ T9878] name failslab, interval 1, probability 0, space 0, times 0
[  151.146855][ T9878] CPU: 0 UID: 0 PID: 9878 Comm: syz.2.2048 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  151.146881][ T9878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  151.146891][ T9878] Call Trace:
[  151.146897][ T9878]  <TASK>
[  151.146905][ T9878]  __dump_stack+0x1d/0x30
[  151.146942][ T9878]  dump_stack_lvl+0xe8/0x140
[  151.146963][ T9878]  dump_stack+0x15/0x1b
[  151.146980][ T9878]  should_fail_ex+0x265/0x280
[  151.147085][ T9878]  should_failslab+0x8c/0xb0
[  151.147108][ T9878]  kmem_cache_alloc_noprof+0x50/0x310
[  151.147134][ T9878]  ? ext4_init_io_end+0x31/0xb0
[  151.147200][ T9878]  ext4_init_io_end+0x31/0xb0
[  151.147226][ T9878]  ext4_do_writepages+0x6e3/0x2750
[  151.147257][ T9878]  ? xas_load+0x413/0x430
[  151.147346][ T9878]  ? xa_load+0xb1/0xe0
[  151.147372][ T9878]  ? obj_cgroup_charge_account+0x122/0x1a0
[  151.147399][ T9878]  ? should_fail_ex+0x30/0x280
[  151.147450][ T9878]  ? __rcu_read_unlock+0x4f/0x70
[  151.147472][ T9878]  ? avc_has_perm_noaudit+0x1b1/0x200
[  151.147501][ T9878]  ext4_writepages+0x176/0x300
[  151.147523][ T9878]  ? __pfx_ext4_writepages+0x10/0x10
[  151.147603][ T9878]  do_writepages+0x1c3/0x310
[  151.147625][ T9878]  ? mntput+0x4b/0x80
[  151.147649][ T9878]  ? _raw_spin_unlock+0x26/0x50
[  151.147674][ T9878]  ? wbc_attach_and_unlock_inode+0x91/0x2b0
[  151.147697][ T9878]  filemap_write_and_wait_range+0x144/0x340
[  151.147761][ T9878]  ext4_insert_range+0x1c1/0x650
[  151.147789][ T9878]  ext4_fallocate+0x2bc/0x2f0
[  151.147815][ T9878]  vfs_fallocate+0x3b6/0x400
[  151.147907][ T9878]  __x64_sys_fallocate+0x7a/0xd0
[  151.147934][ T9878]  x64_sys_call+0x2514/0x2ff0
[  151.147956][ T9878]  do_syscall_64+0xd2/0x200
[  151.148033][ T9878]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  151.148104][ T9878]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  151.148127][ T9878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.148144][ T9878] RIP: 0033:0x7f04393aeba9
[  151.148159][ T9878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.148185][ T9878] RSP: 002b:00007f0437df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  151.148203][ T9878] RAX: ffffffffffffffda RBX: 00007f04395f6090 RCX: 00007f04393aeba9
[  151.148215][ T9878] RDX: 0000000000002000 RSI: 0000000000000020 RDI: 0000000000000008
[  151.148225][ T9878] RBP: 00007f0437df6090 R08: 0000000000000000 R09: 0000000000000000
[  151.148237][ T9878] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001
[  151.148250][ T9878] R13: 00007f04395f6128 R14: 00007f04395f6090 R15: 00007ffc05abd848
[  151.148281][ T9878]  </TASK>
[  151.475552][ T9895] FAULT_INJECTION: forcing a failure.
[  151.475552][ T9895] name failslab, interval 1, probability 0, space 0, times 0
[  151.488255][ T9895] CPU: 1 UID: 0 PID: 9895 Comm: syz.2.2054 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  151.488277][ T9895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  151.488295][ T9895] Call Trace:
[  151.488301][ T9895]  <TASK>
[  151.488307][ T9895]  __dump_stack+0x1d/0x30
[  151.488329][ T9895]  dump_stack_lvl+0xe8/0x140
[  151.488347][ T9895]  dump_stack+0x15/0x1b
[  151.488363][ T9895]  should_fail_ex+0x265/0x280
[  151.488386][ T9895]  should_failslab+0x8c/0xb0
[  151.488410][ T9895]  kmem_cache_alloc_noprof+0x50/0x310
[  151.488436][ T9895]  ? vm_area_dup+0x33/0x2c0
[  151.488464][ T9895]  vm_area_dup+0x33/0x2c0
[  151.488490][ T9895]  __split_vma+0xe9/0x650
[  151.488514][ T9895]  ? mntput+0x4b/0x80
[  151.488542][ T9895]  vma_modify+0x21e/0xc80
[  151.488566][ T9895]  vma_modify_flags+0x101/0x130
[  151.488592][ T9895]  mlock_fixup+0x11d/0x210
[  151.488619][ T9895]  apply_vma_lock_flags+0x193/0x250
[  151.488652][ T9895]  do_mlock+0x3c6/0x520
[  151.488677][ T9895]  ? __bpf_trace_sys_enter+0x10/0x30
[  151.488695][ T9895]  ? trace_sys_enter+0xd0/0xf0
[  151.488713][ T9895]  __x64_sys_mlock2+0x71/0x90
[  151.488735][ T9895]  x64_sys_call+0x197c/0x2ff0
[  151.488751][ T9895]  do_syscall_64+0xd2/0x200
[  151.488777][ T9895]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  151.488799][ T9895]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  151.488827][ T9895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.488845][ T9895] RIP: 0033:0x7f04393aeba9
[  151.488859][ T9895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.488875][ T9895] RSP: 002b:00007f0437e17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000145
[  151.488894][ T9895] RAX: ffffffffffffffda RBX: 00007f04395f5fa0 RCX: 00007f04393aeba9
[  151.488906][ T9895] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000200000ff5000
[  151.488918][ T9895] RBP: 00007f0437e17090 R08: 0000000000000000 R09: 0000000000000000
[  151.488930][ T9895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.488942][ T9895] R13: 00007f04395f6038 R14: 00007f04395f5fa0 R15: 00007ffc05abd848
[  151.488959][ T9895]  </TASK>
[  151.758437][ T9918] loop0: detected capacity change from 0 to 512
[  151.774552][ T9922] loop4: detected capacity change from 0 to 1024
[  151.790503][ T9918] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  151.812623][ T9927] loop3: detected capacity change from 0 to 2048
[  151.821407][ T9918] EXT4-fs (loop0): orphan cleanup on readonly fs
[  151.836979][ T9918] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2059: bg 0: block 248: padding at end of block bitmap is not set
[  151.857487][ T9918] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2059: Failed to acquire dquot type 1
[  151.869959][ T9922] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2057'.
[  151.870588][ T9918] EXT4-fs (loop0): 1 truncate cleaned up
[  151.937046][ T9922] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm syz.4.2057: lblock 0 mapped to illegal pblock 0 (length 1)
[  151.960739][   T29] kauditd_printk_skb: 292 callbacks suppressed
[  151.960753][   T29] audit: type=1326 audit(151.940:5715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  151.990274][ T9922] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  152.002608][ T9922] EXT4-fs (loop4): This should not happen!! Data will be lost
[  152.002608][ T9922] 
[  152.013305][   T29] audit: type=1326 audit(151.990:5716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.031870][ T9955] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[  152.038262][ T9922] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.2057: lblock 3 mapped to illegal pblock 3 (length 3)
[  152.046757][ T3309] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  152.073346][   T29] audit: type=1326 audit(152.060:5717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.076222][ T3309] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  152.096239][   T29] audit: type=1326 audit(152.060:5718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.114633][ T9947] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  152.128043][ T9922] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  152.148777][ T9922] EXT4-fs (loop4): This should not happen!! Data will be lost
[  152.148777][ T9922] 
[  152.160143][   T29] audit: type=1326 audit(152.090:5719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.183036][   T29] audit: type=1326 audit(152.090:5720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.192520][ T9935] loop1: detected capacity change from 0 to 1024
[  152.205826][   T29] audit: type=1326 audit(152.090:5721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.234967][   T29] audit: type=1326 audit(152.130:5722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.244918][ T9935] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2062: Freeing blocks not in datazone - block = 0, count = 16
[  152.257771][   T29] audit: type=1326 audit(152.140:5723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.276863][ T9935] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  152.293735][   T29] audit: type=1326 audit(152.140:5724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9934 comm="syz.1.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8f350eba9 code=0x7ffc0000
[  152.309807][ T9935] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  152.343255][ T9935] EXT4-fs (loop1): This should not happen!! Data will be lost
[  152.343255][ T9935] 
[  152.352986][ T9935] EXT4-fs (loop1): Total free blocks count 0
[  152.359069][ T9935] EXT4-fs (loop1): Free/Dirty block details
[  152.364946][ T9935] EXT4-fs (loop1): free_blocks=4293918720
[  152.370736][ T9935] EXT4-fs (loop1): dirty_blocks=16
[  152.375828][ T9935] EXT4-fs (loop1): Block reservation details
[  152.381828][ T9935] EXT4-fs (loop1): i_reserved_data_blocks=1
[  152.405797][   T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 1)
[  152.425557][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  152.437900][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[  152.437900][   T12] 
[  152.475922][   T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8)
[  152.482937][ T9970] loop1: detected capacity change from 0 to 512
[  152.497981][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  152.510348][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[  152.510348][   T12] 
[  152.520604][ T9966] FAULT_INJECTION: forcing a failure.
[  152.520604][ T9966] name failslab, interval 1, probability 0, space 0, times 0
[  152.524046][ T9970] EXT4-fs: Ignoring removed mblk_io_submit option
[  152.533352][ T9966] CPU: 1 UID: 0 PID: 9966 Comm: syz.3.2070 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  152.533428][ T9966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  152.533440][ T9966] Call Trace:
[  152.533445][ T9966]  <TASK>
[  152.533452][ T9966]  __dump_stack+0x1d/0x30
[  152.533472][ T9966]  dump_stack_lvl+0xe8/0x140
[  152.533491][ T9966]  dump_stack+0x15/0x1b
[  152.533507][ T9966]  should_fail_ex+0x265/0x280
[  152.533579][ T9966]  should_failslab+0x8c/0xb0
[  152.533603][ T9966]  kmem_cache_alloc_noprof+0x50/0x310
[  152.533704][ T9966]  ? security_file_alloc+0x32/0x100
[  152.533746][ T9966]  security_file_alloc+0x32/0x100
[  152.533801][ T9966]  init_file+0x5c/0x1d0
[  152.533830][ T9966]  alloc_empty_file+0x8b/0x200
[  152.533929][ T9966]  alloc_file_pseudo+0xc6/0x160
[  152.533959][ T9966]  __shmem_file_setup+0x1de/0x210
[  152.533991][ T9966]  shmem_file_setup+0x3b/0x50
[  152.534019][ T9966]  __se_sys_memfd_create+0x2c3/0x590
[  152.534111][ T9966]  __x64_sys_memfd_create+0x31/0x40
[  152.534131][ T9966]  x64_sys_call+0x2abe/0x2ff0
[  152.534152][ T9966]  do_syscall_64+0xd2/0x200
[  152.534179][ T9966]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  152.534223][ T9966]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  152.534250][ T9966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.534289][ T9966] RIP: 0033:0x7fbedcc6eba9
[  152.534304][ T9966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.534320][ T9966] RSP: 002b:00007fbedb6d6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  152.534371][ T9966] RAX: ffffffffffffffda RBX: 0000000000000564 RCX: 00007fbedcc6eba9
[  152.534461][ T9966] RDX: 00007fbedb6d6ef0 RSI: 0000000000000000 RDI: 00007fbedccf27e8
[  152.534473][ T9966] RBP: 00002000000010c0 R08: 00007fbedb6d6bb7 R09: 00007fbedb6d6e40
[  152.534485][ T9966] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  152.534574][ T9966] R13: 00007fbedb6d6ef0 R14: 00007fbedb6d6eb0 R15: 0000200000000540
[  152.534657][ T9966]  </TASK>
[  152.680773][ T9974] loop3: detected capacity change from 0 to 512
[  152.689721][ T9970] ext3: Unknown parameter 'subj_role'
[  152.762788][ T9974] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.780092][ T9978] FAULT_INJECTION: forcing a failure.
[  152.780092][ T9978] name failslab, interval 1, probability 0, space 0, times 0
[  152.792757][ T9978] CPU: 0 UID: 0 PID: 9978 Comm: syz.1.2075 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  152.792824][ T9978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  152.792836][ T9978] Call Trace:
[  152.792843][ T9978]  <TASK>
[  152.792850][ T9978]  __dump_stack+0x1d/0x30
[  152.792872][ T9978]  dump_stack_lvl+0xe8/0x140
[  152.792913][ T9978]  dump_stack+0x15/0x1b
[  152.792926][ T9978]  should_fail_ex+0x265/0x280
[  152.792949][ T9978]  should_failslab+0x8c/0xb0
[  152.792974][ T9978]  kmem_cache_alloc_node_noprof+0x57/0x320
[  152.793016][ T9978]  ? __alloc_skb+0x101/0x320
[  152.793073][ T9978]  __alloc_skb+0x101/0x320
[  152.793092][ T9978]  ? audit_log_start+0x365/0x6c0
[  152.793121][ T9978]  audit_log_start+0x380/0x6c0
[  152.793257][ T9978]  audit_seccomp+0x48/0x100
[  152.793279][ T9978]  ? __seccomp_filter+0x68c/0x10d0
[  152.793296][ T9978]  __seccomp_filter+0x69d/0x10d0
[  152.793314][ T9978]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  152.793345][ T9978]  ? vfs_write+0x7e8/0x960
[  152.793381][ T9978]  __secure_computing+0x82/0x150
[  152.793400][ T9978]  syscall_trace_enter+0xcf/0x1e0
[  152.793420][ T9978]  do_syscall_64+0xac/0x200
[  152.793467][ T9978]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  152.793491][ T9978]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  152.793591][ T9978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.793641][ T9978] RIP: 0033:0x7ff8f350eba9
[  152.793654][ T9978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.793668][ T9978] RSP: 002b:00007ff8f1f6f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b6
[  152.793684][ T9978] RAX: ffffffffffffffda RBX: 00007ff8f3755fa0 RCX: 00007ff8f350eba9
[  152.793695][ T9978] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  152.793706][ T9978] RBP: 00007ff8f1f6f090 R08: 0000000000000000 R09: 0000000000000000
[  152.793784][ T9978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.793796][ T9978] R13: 00007ff8f3756038 R14: 00007ff8f3755fa0 R15: 00007fff80aa8898
[  152.793815][ T9978]  </TASK>
[  153.006318][ T9974] EXT4-fs (loop3): orphan cleanup on readonly fs
[  153.016607][ T9974] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2074: bg 0: block 248: padding at end of block bitmap is not set
[  153.038028][ T9986] loop1: detected capacity change from 0 to 2048
[  153.042740][ T9974] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2074: Failed to acquire dquot type 1
[  153.080710][ T9974] EXT4-fs (loop3): 1 truncate cleaned up
[  153.107264][ T9991] loop2: detected capacity change from 0 to 1024
[  153.121929][ T3304] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  153.165326][ T3304] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  153.212841][ T9991] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2079: Allocating blocks 449-513 which overlap fs metadata
[  153.237998][ T9989] EXT4-fs (loop2): pa ffff888106fd8460: logic 48, phys. 177, len 21
[  153.246039][ T9989] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  153.263596][   T47] I/O error, dev loop1, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  153.285252][T10008] loop1: detected capacity change from 0 to 1024
[  153.292076][T10009] loop3: detected capacity change from 0 to 1024
[  153.312198][T10013] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2088'.
[  153.358821][T10002] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2084: Freeing blocks not in datazone - block = 0, count = 16
[  153.361916][T10023] loop0: detected capacity change from 0 to 1024
[  153.380963][T10006] syz.4.2086 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  153.392364][T10008] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2081'.
[  153.401203][T10002] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  153.420586][T10016] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2087'.
[  153.436305][T10006] FAULT_INJECTION: forcing a failure.
[  153.436305][T10006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.440865][T10002] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  153.449485][T10006] CPU: 1 UID: 0 PID: 10006 Comm: syz.4.2086 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  153.449511][T10006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  153.449523][T10006] Call Trace:
[  153.449546][T10006]  <TASK>
[  153.449554][T10006]  __dump_stack+0x1d/0x30
[  153.449589][T10006]  dump_stack_lvl+0xe8/0x140
[  153.449608][T10006]  dump_stack+0x15/0x1b
[  153.449625][T10006]  should_fail_ex+0x265/0x280
[  153.449649][T10006]  should_fail+0xb/0x20
[  153.449728][T10006]  should_fail_usercopy+0x1a/0x20
[  153.449752][T10006]  _copy_from_iter+0xd2/0xe80
[  153.449778][T10006]  ? __build_skb_around+0x1a0/0x200
[  153.449801][T10006]  ? __alloc_skb+0x223/0x320
[  153.449849][T10006]  netlink_sendmsg+0x471/0x6b0
[  153.449885][T10006]  ? __pfx_netlink_sendmsg+0x10/0x10
[  153.449909][T10006]  __sock_sendmsg+0x142/0x180
[  153.449938][T10006]  ____sys_sendmsg+0x31e/0x4e0
[  153.449971][T10006]  ___sys_sendmsg+0x17b/0x1d0
[  153.450056][T10006]  __x64_sys_sendmsg+0xd4/0x160
[  153.450079][T10006]  x64_sys_call+0x191e/0x2ff0
[  153.450098][T10006]  do_syscall_64+0xd2/0x200
[  153.450160][T10006]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  153.450188][T10006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.450290][T10006] RIP: 0033:0x7f7641a7eba9
[  153.450305][T10006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.450351][T10006] RSP: 002b:00007f76404df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.450398][T10006] RAX: ffffffffffffffda RBX: 00007f7641cc5fa0 RCX: 00007f7641a7eba9
[  153.450418][T10006] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 000000000000000a
[  153.450430][T10006] RBP: 00007f76404df090 R08: 0000000000000000 R09: 0000000000000000
[  153.450442][T10006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.450454][T10006] R13: 00007f7641cc6038 R14: 00007f7641cc5fa0 R15: 00007ffe9eb16258
[  153.450473][T10006]  </TASK>
[  153.456752][T10016] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.462067][T10002] EXT4-fs (loop3): This should not happen!! Data will be lost
[  153.462067][T10002] 
[  153.471435][T10016] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.488375][T10023] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2089'.
[  153.492421][T10002] EXT4-fs (loop3): Total free blocks count 0
[  153.693664][T10002] EXT4-fs (loop3): Free/Dirty block details
[  153.699590][T10002] EXT4-fs (loop3): free_blocks=4293918720
[  153.705303][T10002] EXT4-fs (loop3): dirty_blocks=16
[  153.710498][T10002] EXT4-fs (loop3): Block reservation details
[  153.716505][T10002] EXT4-fs (loop3): i_reserved_data_blocks=1
[  153.749838][T10016] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.757256][T10016] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.765106][T10031] loop1: detected capacity change from 0 to 1024
[  153.826802][T10031] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2090'.
[  153.872486][T10035] loop4: detected capacity change from 0 to 2048
[  153.884004][T10037] FAULT_INJECTION: forcing a failure.
[  153.884004][T10037] name failslab, interval 1, probability 0, space 0, times 0
[  153.896843][T10037] CPU: 1 UID: 0 PID: 10037 Comm: syz.3.2092 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  153.896938][T10037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  153.896948][T10037] Call Trace:
[  153.896954][T10037]  <TASK>
[  153.896961][T10037]  __dump_stack+0x1d/0x30
[  153.896998][T10037]  dump_stack_lvl+0xe8/0x140
[  153.897018][T10037]  dump_stack+0x15/0x1b
[  153.897067][T10037]  should_fail_ex+0x265/0x280
[  153.897166][T10037]  should_failslab+0x8c/0xb0
[  153.897185][T10037]  kmem_cache_alloc_node_noprof+0x57/0x320
[  153.897208][T10037]  ? __alloc_skb+0x101/0x320
[  153.897272][T10037]  __alloc_skb+0x101/0x320
[  153.897288][T10037]  ? audit_log_start+0x365/0x6c0
[  153.897337][T10037]  audit_log_start+0x380/0x6c0
[  153.897361][T10037]  audit_seccomp+0x48/0x100
[  153.897381][T10037]  ? __seccomp_filter+0x68c/0x10d0
[  153.897399][T10037]  __seccomp_filter+0x69d/0x10d0
[  153.897456][T10037]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  153.897477][T10037]  ? vfs_write+0x7e8/0x960
[  153.897499][T10037]  __secure_computing+0x82/0x150
[  153.897516][T10037]  syscall_trace_enter+0xcf/0x1e0
[  153.897542][T10037]  do_syscall_64+0xac/0x200
[  153.897566][T10037]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  153.897655][T10037]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  153.897741][T10037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.897758][T10037] RIP: 0033:0x7fbedcc6eba9
[  153.897770][T10037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.897863][T10037] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000026
[  153.897878][T10037] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  153.897933][T10037] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  153.897943][T10037] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  153.897953][T10037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.897963][T10037] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  153.897978][T10037]  </TASK>
[  154.187882][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  154.232551][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  154.328734][ T6906] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  154.330878][T10047] loop4: detected capacity change from 0 to 512
[  154.392839][T10047] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.414358][T10047] EXT4-fs (loop4): orphan cleanup on readonly fs
[  154.430361][T10047] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2094: bg 0: block 248: padding at end of block bitmap is not set
[  154.462214][T10057] FAULT_INJECTION: forcing a failure.
[  154.462214][T10057] name failslab, interval 1, probability 0, space 0, times 0
[  154.475115][T10057] CPU: 0 UID: 0 PID: 10057 Comm: syz.3.2099 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  154.475139][T10057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  154.475212][T10057] Call Trace:
[  154.475219][T10057]  <TASK>
[  154.475227][T10057]  __dump_stack+0x1d/0x30
[  154.475248][T10057]  dump_stack_lvl+0xe8/0x140
[  154.475268][T10057]  dump_stack+0x15/0x1b
[  154.475285][T10057]  should_fail_ex+0x265/0x280
[  154.475387][T10057]  ? sctp_stream_init_ext+0x39/0x130
[  154.475411][T10057]  should_failslab+0x8c/0xb0
[  154.475493][T10057]  __kmalloc_cache_noprof+0x4c/0x320
[  154.475520][T10057]  sctp_stream_init_ext+0x39/0x130
[  154.475603][T10057]  sctp_sendmsg_to_asoc+0xe7a/0xf20
[  154.475624][T10057]  ? sctp_assoc_add_peer+0xa39/0xb20
[  154.475650][T10057]  ? sctp_connect_new_asoc+0x29c/0x3a0
[  154.475675][T10057]  sctp_sendmsg+0x1263/0x18d0
[  154.475750][T10057]  ? selinux_socket_sendmsg+0x81/0x1b0
[  154.475777][T10057]  ? __pfx_sctp_sendmsg+0x10/0x10
[  154.475796][T10057]  inet_sendmsg+0xc5/0xd0
[  154.475823][T10057]  __sock_sendmsg+0x102/0x180
[  154.475857][T10057]  __sys_sendto+0x268/0x330
[  154.475882][T10057]  __x64_sys_sendto+0x76/0x90
[  154.475900][T10057]  x64_sys_call+0x2d05/0x2ff0
[  154.475918][T10057]  do_syscall_64+0xd2/0x200
[  154.475983][T10057]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  154.476057][T10057]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  154.476084][T10057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.476106][T10057] RIP: 0033:0x7fbedcc6eba9
[  154.476122][T10057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.476139][T10057] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  154.476220][T10057] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  154.476233][T10057] RDX: 0000000000034000 RSI: 0000200000847fff RDI: 0000000000000005
[  154.476246][T10057] RBP: 00007fbedb6d7090 R08: 000020000005ffe4 R09: 000000000000001c
[  154.476256][T10057] R10: 00000000000000e0 R11: 0000000000000246 R12: 0000000000000001
[  154.476266][T10057] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  154.476284][T10057]  </TASK>
[  154.746534][T10047] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2094: Failed to acquire dquot type 1
[  154.758423][T10047] EXT4-fs (loop4): 1 truncate cleaned up
[  154.818276][T10067] FAULT_INJECTION: forcing a failure.
[  154.818276][T10067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.831420][T10067] CPU: 1 UID: 0 PID: 10067 Comm: syz.4.2104 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  154.831499][T10067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  154.831509][T10067] Call Trace:
[  154.831516][T10067]  <TASK>
[  154.831524][T10067]  __dump_stack+0x1d/0x30
[  154.831544][T10067]  dump_stack_lvl+0xe8/0x140
[  154.831562][T10067]  dump_stack+0x15/0x1b
[  154.831577][T10067]  should_fail_ex+0x265/0x280
[  154.831612][T10067]  should_fail+0xb/0x20
[  154.831631][T10067]  should_fail_usercopy+0x1a/0x20
[  154.831705][T10067]  _copy_from_iter+0xd2/0xe80
[  154.831732][T10067]  ? alloc_pages_mpol+0x201/0x250
[  154.831851][T10067]  copy_page_from_iter+0x178/0x2a0
[  154.831931][T10067]  tun_get_user+0x679/0x2680
[  154.831953][T10067]  ? ref_tracker_alloc+0x1f2/0x2f0
[  154.831978][T10067]  tun_chr_write_iter+0x15e/0x210
[  154.831996][T10067]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  154.832013][T10067]  vfs_write+0x52a/0x960
[  154.832062][T10067]  ksys_write+0xda/0x1a0
[  154.832081][T10067]  __x64_sys_write+0x40/0x50
[  154.832100][T10067]  x64_sys_call+0x27fe/0x2ff0
[  154.832137][T10067]  do_syscall_64+0xd2/0x200
[  154.832164][T10067]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  154.832256][T10067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.832273][T10067] RIP: 0033:0x7f7641a7d65f
[  154.832287][T10067] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  154.832303][T10067] RSP: 002b:00007f76404df000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  154.832326][T10067] RAX: ffffffffffffffda RBX: 00007f7641cc5fa0 RCX: 00007f7641a7d65f
[  154.832371][T10067] RDX: 000000000000003e RSI: 0000200000001600 RDI: 00000000000000c8
[  154.832382][T10067] RBP: 00007f76404df090 R08: 0000000000000000 R09: 0000000000000000
[  154.832394][T10067] R10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001
[  154.832406][T10067] R13: 00007f7641cc6038 R14: 00007f7641cc5fa0 R15: 00007ffe9eb16258
[  154.832421][T10067]  </TASK>
[  154.940974][T10065] FAULT_INJECTION: forcing a failure.
[  154.940974][T10065] name failslab, interval 1, probability 0, space 0, times 0
[  155.049041][T10065] CPU: 0 UID: 0 PID: 10065 Comm: syz.3.2103 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  155.049096][T10065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  155.049108][T10065] Call Trace:
[  155.049116][T10065]  <TASK>
[  155.049122][T10065]  __dump_stack+0x1d/0x30
[  155.049174][T10065]  dump_stack_lvl+0xe8/0x140
[  155.049193][T10065]  dump_stack+0x15/0x1b
[  155.049210][T10065]  should_fail_ex+0x265/0x280
[  155.049305][T10065]  should_failslab+0x8c/0xb0
[  155.049330][T10065]  __kmalloc_noprof+0xa5/0x3e0
[  155.049356][T10065]  ? do_sys_poll+0x19b/0xbd0
[  155.049441][T10065]  do_sys_poll+0x19b/0xbd0
[  155.049461][T10065]  ? rcu_segcblist_enqueue+0x92/0xb0
[  155.049489][T10065]  ? call_rcu+0x2d1/0x3f0
[  155.049567][T10065]  do_restart_poll+0xb3/0x140
[  155.049645][T10065]  __ia32_sys_restart_syscall+0x38/0x50
[  155.049663][T10065]  x64_sys_call+0x2dcb/0x2ff0
[  155.049680][T10065]  do_syscall_64+0xd2/0x200
[  155.049708][T10065]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.049779][T10065]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  155.049808][T10065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.049825][T10065] RIP: 0033:0x7fbedcc6eba9
[  155.049838][T10065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.049851][T10065] RSP: 002b:00007fbedb6d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000db
[  155.049937][T10065] RAX: ffffffffffffffda RBX: 00007fbedceb5fa0 RCX: 00007fbedcc6eba9
[  155.049948][T10065] RDX: ffffffffffbffff8 RSI: 000000000000002c RDI: 0000200000b2c000
[  155.049958][T10065] RBP: 00007fbedb6d7090 R08: 0000000000000000 R09: 0000000000000000
[  155.049968][T10065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.049978][T10065] R13: 00007fbedceb6038 R14: 00007fbedceb5fa0 R15: 00007ffcdac7eb98
[  155.049993][T10065]  </TASK>
[  155.275322][T10070] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2105'.
[  155.330412][T10076] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.349480][T10076] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.361958][T10076] loop4: detected capacity change from 0 to 1024
[  155.492360][T10086] netlink: 240 bytes leftover after parsing attributes in process `syz.1.2109'.
[  155.516353][   T79] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  155.681815][T10097] FAULT_INJECTION: forcing a failure.
[  155.681815][T10097] name failslab, interval 1, probability 0, space 0, times 0
[  155.694454][T10097] CPU: 0 UID: 0 PID: 10097 Comm: syz.0.2112 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  155.694480][T10097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  155.694567][T10097] Call Trace:
[  155.694574][T10097]  <TASK>
[  155.694583][T10097]  __dump_stack+0x1d/0x30
[  155.694604][T10097]  dump_stack_lvl+0xe8/0x140
[  155.694622][T10097]  dump_stack+0x15/0x1b
[  155.694635][T10097]  should_fail_ex+0x265/0x280
[  155.694663][T10097]  should_failslab+0x8c/0xb0
[  155.694684][T10097]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  155.694737][T10097]  ? sidtab_sid2str_get+0xa0/0x130
[  155.694779][T10097]  kmemdup_noprof+0x2b/0x70
[  155.694800][T10097]  sidtab_sid2str_get+0xa0/0x130
[  155.694822][T10097]  security_sid_to_context_core+0x1eb/0x2e0
[  155.694911][T10097]  security_sid_to_context+0x27/0x40
[  155.694932][T10097]  selinux_lsmprop_to_secctx+0x67/0xf0
[  155.694950][T10097]  security_lsmprop_to_secctx+0x43/0x80
[  155.694973][T10097]  audit_log_task_context+0x77/0x190
[  155.695081][T10097]  audit_log_task+0xf4/0x250
[  155.695185][T10097]  audit_seccomp+0x61/0x100
[  155.695205][T10097]  ? __seccomp_filter+0x68c/0x10d0
[  155.695222][T10097]  __seccomp_filter+0x69d/0x10d0
[  155.695242][T10097]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  155.695351][T10097]  ? vfs_write+0x7e8/0x960
[  155.695369][T10097]  ? __rcu_read_unlock+0x4f/0x70
[  155.695447][T10097]  ? __fget_files+0x184/0x1c0
[  155.695545][T10097]  __secure_computing+0x82/0x150
[  155.695567][T10097]  syscall_trace_enter+0xcf/0x1e0
[  155.695592][T10097]  do_syscall_64+0xac/0x200
[  155.695673][T10097]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.695693][T10097]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  155.695719][T10097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.695737][T10097] RIP: 0033:0x7f58efb8d5bc
[  155.695752][T10097] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  155.695835][T10097] RSP: 002b:00007f58ee5f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  155.695851][T10097] RAX: ffffffffffffffda RBX: 00007f58efdd5fa0 RCX: 00007f58efb8d5bc
[  155.695862][T10097] RDX: 000000000000000f RSI: 00007f58ee5f70a0 RDI: 0000000000000006
[  155.695872][T10097] RBP: 00007f58ee5f7090 R08: 0000000000000000 R09: 0000000000000000
[  155.695883][T10097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.695959][T10097] R13: 00007f58efdd6038 R14: 00007f58efdd5fa0 R15: 00007ffda65db308
[  155.695974][T10097]  </TASK>
[  156.439730][T10103] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2113'.
[  156.489308][T10103] batadv1: entered promiscuous mode
[  156.494553][T10103] batadv1: entered allmulticast mode
[  156.850839][T10119] netlink: 240 bytes leftover after parsing attributes in process `syz.2.2121'.
[  156.861319][T10117] vhci_hcd: invalid port number 96
[  156.866431][T10117] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  156.976646][T10130] loop4: detected capacity change from 0 to 1024
[  156.985676][   T29] kauditd_printk_skb: 432 callbacks suppressed
[  156.985689][   T29] audit: type=1326 audit(156.970:6148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  156.990854][T10132] loop2: detected capacity change from 0 to 512
[  157.021919][   T29] audit: type=1326 audit(156.970:6149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.044921][   T29] audit: type=1326 audit(156.970:6150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.067812][   T29] audit: type=1326 audit(156.970:6151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.090654][   T29] audit: type=1326 audit(156.970:6152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.115400][   T29] audit: type=1326 audit(156.970:6153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.138789][   T29] audit: type=1326 audit(156.970:6154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.147807][T10135] loop0: detected capacity change from 0 to 1024
[  157.161721][   T29] audit: type=1326 audit(156.970:6155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.169152][T10130] EXT4-fs mount: 179 callbacks suppressed
[  157.169193][T10130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.190805][   T29] audit: type=1326 audit(156.970:6156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.231451][   T29] audit: type=1326 audit(156.970:6157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10122 comm="syz.2.2123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f04393aeba9 code=0x7ffc0000
[  157.273948][T10135] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.304105][T10132] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  157.312126][T10132] EXT4-fs (loop2): orphan cleanup on readonly fs
[  157.319923][T10135] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  157.328362][T10125] loop3: detected capacity change from 0 to 512
[  157.345203][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.345255][T10144] loop1: detected capacity change from 0 to 2048
[  157.363018][T10130] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  157.372020][T10132] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.2123: corrupted inode contents
[  157.392244][T10125] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  157.405649][T10132] EXT4-fs (loop2): Remounting filesystem read-only
[  157.409520][T10125] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[  157.418752][T10132] EXT4-fs (loop2): 1 truncate cleaned up
[  157.426095][   T31] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  157.436714][   T31] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  157.447617][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.449010][T10125] System zones: 1-12
[  157.460764][   T31] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  157.461443][T10144]  loop1: p3 p4 < >
[  157.475735][T10132] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  157.489153][T10125] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.2124: corrupted in-inode xattr: e_value size too large
[  157.498038][T10149] infiniband syz!: set down
[  157.507731][T10149] infiniband syz!: added team_slave_0
[  157.515347][T10144] loop1: p3 start 11362048 is beyond EOD, truncated
[  157.525167][T10149] RDS/IB: syz!: added
[  157.528304][T10125] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2124: couldn't read orphan inode 15 (err -117)
[  157.543824][T10125] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.544893][T10149] smc: adding ib device syz! with port count 1
[  157.562128][T10149] smc:    ib device syz! port 1 has pnetid 
[  157.593400][T10152] loop4: detected capacity change from 0 to 512
[  157.610950][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.640602][T10152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.643438][T10144] netlink: 256 bytes leftover after parsing attributes in process `syz.1.2128'.
[  157.702674][T10160] netlink: 240 bytes leftover after parsing attributes in process `syz.1.2133'.
[  157.746838][T10158] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2132'.
[  157.769796][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.807563][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.846338][T10174] loop1: detected capacity change from 0 to 1024
[  157.861894][T10174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  157.889427][T10167] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2136: Freeing blocks not in datazone - block = 0, count = 16
[  157.909325][   T10] hid_parser_main: 56 callbacks suppressed
[  157.909341][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x1
[  157.923188][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.930390][T10179] loop2: detected capacity change from 0 to 2048
[  157.930650][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.944410][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.951868][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.959436][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.980056][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.987504][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  157.994954][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x2
[  158.002361][   T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  158.022947][   T10] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  158.041772][T10179] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.099638][T10183] fido_id[10183]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  158.143917][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  158.209465][T10192] loop1: detected capacity change from 0 to 1024
[  158.230293][T10192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.260774][T10192] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  158.295434][T10190] loop0: detected capacity change from 0 to 1024
[  158.328873][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.344141][T10190] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  158.370229][T10190] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.2142: Freeing blocks not in datazone - block = 0, count = 16
[  158.416970][   T10] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  158.458775][T10205] fido_id[10205]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  158.539781][T10209] loop1: detected capacity change from 0 to 1024
[  158.546951][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  158.560822][T10207] loop3: detected capacity change from 0 to 1024
[  158.571374][T10209] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.595510][ T3297] ==================================================================
[  158.599364][T10207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  158.603600][ T3297] BUG: KCSAN: data-race in touch_atime / touch_atime
[  158.616878][T10209] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2145'.
[  158.622175][ T3297] 
[  158.622182][ T3297] write to 0xffff88811aab60e8 of 4 bytes by task 3295 on cpu 0:
[  158.622196][ T3297]  touch_atime+0x1e8/0x340
[  158.645403][ T3297]  do_readlinkat+0x134/0x320
[  158.649979][ T3297]  __x64_sys_readlink+0x47/0x60
[  158.654821][ T3297]  x64_sys_call+0x28da/0x2ff0
[  158.659484][ T3297]  do_syscall_64+0xd2/0x200
[  158.663978][ T3297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.669852][ T3297] 
[  158.672157][ T3297] write to 0xffff88811aab60e8 of 4 bytes by task 3297 on cpu 1:
[  158.679762][ T3297]  touch_atime+0x1e8/0x340
[  158.684168][ T3297]  do_readlinkat+0x134/0x320
[  158.688739][ T3297]  __x64_sys_readlink+0x47/0x60
[  158.693580][ T3297]  x64_sys_call+0x28da/0x2ff0
[  158.698241][ T3297]  do_syscall_64+0xd2/0x200
[  158.702736][ T3297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.708608][ T3297] 
[  158.710911][ T3297] value changed: 0x20388dd1 -> 0x22025151
[  158.716603][ T3297] 
[  158.718906][ T3297] Reported by Kernel Concurrency Sanitizer on:
[  158.725031][ T3297] CPU: 1 UID: 0 PID: 3297 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  158.734307][ T3297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  158.744351][ T3297] ==================================================================
[  158.759297][T10207] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2146: Freeing blocks not in datazone - block = 0, count = 16
[  158.780320][T10207] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  158.796259][T10207] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  158.808674][T10207] EXT4-fs (loop3): This should not happen!! Data will be lost
[  158.808674][T10207] 
[  158.818481][T10207] EXT4-fs (loop3): Total free blocks count 0
[  158.824633][T10207] EXT4-fs (loop3): Free/Dirty block details
[  158.830697][T10207] EXT4-fs (loop3): free_blocks=4293918720
[  158.836401][T10207] EXT4-fs (loop3): dirty_blocks=16
[  158.841558][T10207] EXT4-fs (loop3): Block reservation details
[  158.847524][T10207] EXT4-fs (loop3): i_reserved_data_blocks=1
[  158.892036][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  159.456269][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.852607][ T3318] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  160.867231][ T3318] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  160.879405][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.