last executing test programs:

2.891965257s ago: executing program 1 (id=2762):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x6, 0x1, 0x0, 0x1, 0xfffffffd}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000016c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x840e, &(0x7f0000001080)={[{@init_itable_val}, {@quota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@bsdgroups}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")

2.644857321s ago: executing program 1 (id=2764):
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

2.130140121s ago: executing program 3 (id=2773):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000180), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4975e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x10008, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x3ff, 0x20, &(0x7f0000000080)={0x80, 0x1, 0x0, 0x3, 0xe}, 0x60, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x204010, &(0x7f0000000100), 0xfe, 0x46e, &(0x7f00000007c0)="$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")
close(r5)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{0x0}, {0x0}], 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="200800000000000084000000020000000a000400280000100b000002", @ANYRES32=r7], 0x20, 0x2400e044}, 0x0)

1.671635609s ago: executing program 1 (id=2781):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000180), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4975e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x10008, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x3ff, 0x20, &(0x7f0000000080)={0x80, 0x1, 0x0, 0x3, 0xe}, 0x60, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x204010, &(0x7f0000000100), 0xfe, 0x46e, &(0x7f00000007c0)="$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")
close(0xffffffffffffffff)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="200800000000000084000000020000000a000400280000100b000002", @ANYRES32=r6], 0x20, 0x2400e044}, 0x0)

1.435842634s ago: executing program 1 (id=2784):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b0101edbf6dd6d111d6132f1821a4e4cbec8438c571a70e7ca7b0451a6cc55c", 0x98})
ptrace$setregset(0x4205, r0, 0x1, &(0x7f00000001c0)={&(0x7f0000000000)="c9459d22eb6a3f6de5f13f1f14050000", 0x10})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000170000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000009b00000095"], 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700), 0x3, 0x4e2, &(0x7f0000001c80)="$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")
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2000)
chown(&(0x7f0000000040)='./file1\x00', r1, r2)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@discard}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@discard}]}, 0x1, 0x609, &(0x7f0000000f80)="$eJzs3c9rHGUfAPDvzCZ5kzbvm/bl5cUWxYCHFqTbpBarXmzrwR4KFuxBxENDk9TQ7Q+aFGwtNAUPCgoiXkV68R/wLr17E0G9eRaqSEVBS1dmd7bdbHbTNc3uppnPByY7zzOz+zzfnX12npnJsxNAYU1mf9KIXRH3TiURE03LxqO+cDJf786v105nUxLV6uu/JJHkeY31k/xxe54YjYhvjkb8t7S63MUrV8/OVKp11yP2L527uH/xytV9C+dmzsydmTs/feCFg4emXpw+OL0hcW7PH48df+3Jj957+/n5byv7kjgcJ4ffnY2WODbKZEzGvTzE5vyhiDiUzbR5Xx43WyCEQivln8fhiPh/TESplqqbiIUPB1o5oKeqpYgqUFCJ9g8F1egHNI7tuzsOPtnjXkn/3D5SPwBaHf9Q/dxIjNaOjbbdSZqOjOrnNnZsQPlZGXev7f4sm2LFeYg/7m+doQ0op5PlGxHxRLv4k1rddtQizeJPV9QjiYipiBjJ6/fKI9QhaZrvxXmYtaw3/jQiDuePWf7RdZY/2ZLud/wAFNOtI/mOfDlLPdj/ZX2PRv8n2vR/xtvsu9Zj0Pu/zv2/xv5+tHaOPG3ph2V9lhPtX3K4NePHD4590qn85v5fNmXlN/qC/XD7RsTulvjfz4LN+z9Z/Emb7Z+tcupwd2W8+t3PxzotG3T81ZsRe9oe/zzolWZza1yf3D+/UJmbqv9tW8ZXX7/1Rafym+IfHdT239Yh/qbtn7Y+L3tPLnZZxpcnbp7rtCz7Hrlbvb7G9k9/Gknqx5sjec47M0tLl6YjRpLj+SpN+QfWrktjncZrZPHvfaZ9+1/x+b+x8nXGGl+ZXbj4xtk7nZat5/PfdDH5XrXLOnSSxT/78O2/qv1neR93Wcbvb15+qtOyteIfe5TAAAAAAAAAoIDS2jXYJC3fn0/Tcrk+XvZ/sS2tXFhcenb+wuXzsxF7a/8POZw2rnRP1NNJlp7O/x+2kT7Qkn4uInZGxKelsVq6fPpCZXbQwQMAAAAAAAAAAAAAAAAAAMAmsT0f/9+4T/Vvpfr4f6AgenmDOWBz67r9l3pbD6D/au1/1S2egCLQ/4fi0v6huLR/KC7tH4pL+4fi0v6huLR/KC7tHwAAAAC2pJ1P3/ohiYjll8ZqU2YkX2ZEEGxtw4OuADAwRvRDcd2/9K+zD4XTVf//z/zHAXtfHWAAknaZtc5Bde3Gf6vtMwEAAAAAAAAAAACAHtizq/P4f2ODYWsz7A+K6xHG//vpAHjM+el/KC7H+MDDRvGPdlpg/D8AAAAAAAAAAAAA9M14bUrScj4WeDzStFyO+HdE7IjhZH6hMjcVEf+JiO9Lw//K0tODrjQAAAAAAAAAAAAAAAAAAABsMYtXrp6dqVTmLjXP/LUqZ2vPNO6C2oeyXo5/+KxI+v+2jEXEwDdKz2aGmnKSiOVsy2+Kil1ajM1RjdrMgL+YAAAAAAAAAAAAAAAAAACggJrGHre3+/M+1wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+u/B/f97NzPoGAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAx9PfAQAA//+BdkCC")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0xd9726125b1f0997, &(0x7f0000000c00)={[{@inlinecrypt}, {@nomblk_io_submit}, {@lazytime}, {@grpquota}, {@grpjquota}, {@minixdf}, {@journal_async_commit}, {}, {@test_dummy_encryption}], [{@appraise}, {@fsmagic={'fsmagic', 0x3d, 0xe}}, {@appraise}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@obj_role={'obj_role', 0x3d, '\xba\xb2\xd2\xb6[\xfe6&\xec\xde[\x97E\x97\xc5\xcb\t\xedCQ\x05\xd6\xe2\x04\xc8\xf4\xb9W\x8b\x1bX5\xa7\xdb\xb7\xd5\xe1\xb2\fd{\xb9\xc5\x9c\xe1s\xe6E.%\x97\xc6\xfe:\xbde\xea\xba6A\xd0.\xce\\\x88\xc1\xf2bq\xb8\xaf\x82P\x1f\x1d#\v<>q\xc9\x84^!#NA#$5E\xd9Cxs\xac\xcf\xff\xf0\x8a\xd9\x05\x00\x00\x00\xa7\x06$\x8fd\x92\xbb6\xc3\x90\xbd\x937n4\\\x8e\x85\x02F\xa6V\xab\x04\xb7\xf3\xd4\x9f\x18\x8f\xb6\x84\xf6?\xde\xa8\xd4\x0e%`\a\"\x1fT\xf8\xde\xe5\xb1n\\\xb3\xc8\'3\x90R\xa9\xaa\x19\xd87\xe7d?\xa4\x91)\xf1`\x8cE\x90\xc4\'}x\xdc\x9c\fGs\r\xa6\xc6\xbc\xc7/?V\x95\x14\xfd\x94\x1a\xc2\"c/\x91\xd3\xd8\xd9\x16Z\vq\xe7WI\x9d\xf4(\xd5=\xa2\xe6\"a\xa7\x93\xf2\x19\xe2P\xd0\x89_ay\x91\x13\xf6<yw\xca'}}, {@audit}, {@hash}, {@obj_role={'obj_role', 0x3d, 'discard'}}, {@smackfshat={'smackfshat', 0x3d, '*/.'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'GPL\x00'}}]}, 0x66, 0x51c, &(0x7f0000001740)="$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")
syz_usb_disconnect(0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000440)='mr_alloc\x00', r4, 0x0, 0x4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d0800fd007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{}, &(0x7f0000000480), &(0x7f00000004c0)}, 0x20)
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="021300000200000000000000000000005274397444bac91ed587d3decfbc88658e0f128db10bec1c738dfd35f251456a4ffd89a877779e90ef7e2dcb73242afd2d15790f1da20c0b7d5124f4896b8d624590b00480e9df798c0a63339d7b5b275eaf51317f9d35afe70812065a0b4eb01b11dec75b08174af0e81afcd2d6d81d93ac69e184eab93fff474239691cb380277c12ec092c9230c5dcb324459b70165b1b28a7f5e8d210343f3b91b843df2d689bbad7a6cb21cf074098a0b472079f789aa105ead4a94274f93d408795ffa24b29c1baa9dcf2a2e1cb96ed48"], 0x10}}, 0x0)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYRESHEX], 0x10}}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
capget(&(0x7f0000000340)={0x19980330}, 0x0)

1.239510037s ago: executing program 3 (id=2786):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fsync(0xffffffffffffffff)

1.218607457s ago: executing program 3 (id=2787):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000180), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4975e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x10008, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x3ff, 0x20, &(0x7f0000000080)={0x80, 0x1, 0x0, 0x3, 0xe}, 0x60, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x204010, &(0x7f0000000100), 0xfe, 0x46e, &(0x7f00000007c0)="$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")
close(r5)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)}, {0x0}], 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="200800000000000084000000020000000a000400280000100b000002", @ANYRES32=r7], 0x20, 0x2400e044}, 0x0)

1.046684771s ago: executing program 0 (id=2791):
prlimit64(0x0, 0x8, &(0x7f0000000000)={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x0)
getrlimit(0x5, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newsa={0x10c, 0x10, 0x413, 0x70bd28, 0x0, {{@in=@multicast1, @in6=@loopback, 0x4e21, 0x0, 0x4e24, 0x0, 0x2, 0x20, 0x20}, {@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x3c}, @in=@private=0xa010100, {0x4, 0x6, 0x2, 0x40000000000004, 0xffffffffffffffff, 0x3, 0x7f}, {0x0, 0x8, 0xcc}, {0xf6}, 0x70bd2a, 0x0, 0x2, 0x1, 0x1}, [@encap={0x1c, 0x4, {0x2, 0x4e21, 0x27, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}]}, 0x10c}}, 0x804)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x2, 0x0, 0x2, 0x0, 0x8000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x804000, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000380)={[{@errors_remount}, {@discard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@data_err_ignore}]}, 0x1, 0x476, &(0x7f0000000540)="$eJzs3M1vFOUfAPDvzLblx2v7Q3wBUavE2PjS0oLKwYtGEw8YTfSAN2tbCKFQQ2sihEg1Bi8mhkTP6tHEv8CbF6OeTLzq3ZAQ5QJ6qpnZmbK7dLctLLuF/XySZZ9n5pl9nm9nnp1n5pklgJ41nP2TRGyLiN8jYrCarS8wXH27duXc1D9Xzk0lsbT05l9JXu7qlXNTZdFyu61FZiSNSD9JikrqzZ85e2JydnbmdJEfWzj53tj8mbPPHD85eWzm2MypiUOHDh4Yf/65iWfbEmcW19U9H87t3f3q2xdfmzpy8d2fv8vau61YXxtHg00N72s2nAX+91JueWFafXt83RFsbNtr0klfFxvCulQiIttd/Xn/H4xKXN95g/HKx11tHHBbZeemFie2xSXgLpZEt1sAdEd5os+uf8tXh4YeG8LlF6sXQFnc14pXdU1feameXxttv031D0fEkcV/v8pe0fo+BABAW3w29eXheHql8V8a99WU21HMoQxFxP8jYmdE3BMRuyLi3oi87P0R8cDqVaa1mcapoRvHP+mlmw5uDbLx3wvF3Fb9+G+5mUOVIrc9j78/OXp8dmZ/8TcZif5NWX68RR0/vPzb583W1Y7/sldWfzkWLNpxqa/hBt305MJkPihtg8sfRezpWyn+ZHkmIImI3RGxZ30fvaNMHH/y273NCq0efwttmGda+ibiier+X4yG+EtJ6/nJsf/F7Mz+sfKouNEvv154o1n9txR/G2T7f0v98d9YZCipna+dX38dF/74tOk1zc0e/wPJW/m2A8WyDyYXFk6PRwwkh/N83fKJ69uW+bJ8Fv/IvpX7/85imyz+ByMiO4gfioiHI+KRou2PRsRjEbGvRfw/vdR8XX38m7d1Y/9PN3z/bc7XLB//Dft//YnKiR+/X7n2r99Z2/4/mKdGiiX5998q1trAW/zzAQAAwB0hzZ+BT9LR5XSajo5Wn+HfFVvS2bn5haeOzr1/arr6rPxQ9Kflna7Bmvuh48li8YnV/ERxr7hcf6C4b/xFZXOeH52am53ucuzQ67Y26f+ZPyvdbh1w2600jzYx0IWGAB3X2P/T+uz51zvZGKCjmj5Hs6Wz7QA6b5Xn6NJOtQPoPP9fC/Sulfr/+Ya8uQC4Ozn/Q+/S/6F36f/Qu/R/6Emr/Ui+cou//Ze44xLJ2gpH2v2mboxEf0S05QMHNkQ4RaLb30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADt8V8AAAD//5qI6jE=")

800.916375ms ago: executing program 0 (id=2793):
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000011c0), 0x2401, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x1, @buffer={0x300, 0x49, &(0x7f0000000440)=""/73}, &(0x7f0000000380)="259374c96ee3", 0x0, 0xffffffff, 0x30, 0x0, 0x0})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r3 = getpid()
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
write$P9_RWRITE(r0, &(0x7f0000000340)={0xb, 0x77, 0x2, 0x5}, 0xb)
getsockopt$IP_SET_OP_VERSION(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000003c0)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001000000b7050000020000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c7d376238975d43a4505f80fc88943c4f0cf08e467b592f868ee30a0e8c1bf176db2a6b2feb4b6fd3d5707bfd2d84aaa3b1d4e984c46ea7e2a447a36f5662403e1b2be4cc7c2683908a0d411a9872971c7c56f0979bd10b97163c1d6d0e196bf02f46e8953ab1abda45cbe8d0d26b5069f8a98f7dc8f76b74635fc9f9de9ca3c00cb9bf4e418d07fa22f0610a70f2bdf4000000000000b0c2940dd8e263aa743f7555193161f45346b1004006000000e1ffff8816326d7d35c32aac1c7d5b5be399f6609876b5887437a172fbc02a74067529194e533583412dff048f0000000000000000b2728a04816cfb851cd364ff19ffcafe3e64be033c9d2f002cc93c1c13caec04a347383420336bec88c24a9fb6a6991ddb737d527d6acb15426415b6e8b14fdfa2c6e94bd0339454c13ad30000000000000003626165866c154e2514890000b515a1000000000000000eb2e9c15b6c8f6198282d0086fa0000c2ccf3f6d69cfcf1e15ea7a9e57aee78e12ace55736fa42811654e19a7e9b531636794a718b4766d744263b6681da2b2204d848619a3eb62e77460c048df8e72bfe31438163ec4270439b350274e5aa941bfc32ce08e3790dfb0c59bbe45cd27264669c187eed6d67b3be191137814bcb226b2078a1bc45502705d538d8723113445b08b0ac8dc2dfa17fd79ed5fd33b14b0adabf72df024dcde1ef330b927ce1a80474ce4f99a292c71456ec1abbfbb61dc9f0f71395a1751d35fa1"], &(0x7f0000000340)='GPL\x00'}, 0x48)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000001000000850000000c000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5, <r7=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f00000003c0)=r6}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r7}, &(0x7f0000000340), &(0x7f0000000580)=r6}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0xffff0000, 0xb00, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8510, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa5f, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0x800b, 0x0, 0x3, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
lseek(r0, 0x81, 0x3)
bind$inet(r8, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
sendmmsg$inet(r8, &(0x7f0000003cc0)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="14000000000000000000000007"], 0x18}}], 0x1, 0x44008004)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000000)=r4, 0x4)
r9 = socket$inet6(0xa, 0x805, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r9, 0x89f1, &(0x7f0000000300)={'ip6_vti0\x00', &(0x7f0000000140)={'syztnl2\x00', 0x0, 0x29, 0x0, 0xfc, 0x0, 0x2, @mcast1, @loopback={0x300, 0xffff888101827518}, 0x8, 0x10, 0xfffffffc}})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000400), r10)

763.215476ms ago: executing program 4 (id=2794):
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xaa)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x900, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="15c60163736563000044fe028008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000340)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x400, 0x30, 0x30, 0x0, @in={0x2, 0x4e20, @broadcast}, @ib={0x1b, 0x3, 0xffb, {"50916300"}, 0x8000000000000001, 0x8, 0x3}}}, 0x118)

627.711268ms ago: executing program 2 (id=2797):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fsync(0xffffffffffffffff)

616.418738ms ago: executing program 4 (id=2798):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014003900b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)={0x1c, r3, 0x1b, 0x0, 0x3, {}, [@ETHTOOL_A_LINKMODES_OURS={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x1c}}, 0x0)

591.987089ms ago: executing program 4 (id=2799):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095", @ANYBLOB="10974ff6800d066fa15a747b0bc52b59f56eea8ae7e6590a44ce14ad93fd9be5f5e874e0771b64298e86cc5894679219f56aa3e94e0172b9f84b722603c6892ea86d2dc2ddc3534e2f00c59e87e1ffe077fc93863b7c01386556bd3b"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106}}, 0x20)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r2, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0x0, @local}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}}}}, 0x118)
socket$inet_sctp(0x2, 0x5, 0x84)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYRES8=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$getregset(0x4204, r4, 0x201, &(0x7f0000000080)={0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xe, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
ptrace(0x4207, r4)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x2c0081, 0x0)
pipe(&(0x7f0000000080))
pipe(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="01002cbd7010040000000500000006000100053f0003080009000200000008000b000000000008000c"], 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x30)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000c80)='./file0\x00', 0x1004491, &(0x7f0000000f00)=ANY=[], 0xfe, 0x875, &(0x7f0000001000)="$eJzs3V1sHNW9APD/GDt2HJGL7r3KjaIQJglXSnSDWTtgri8P3L3rsTNg71q766tEFYIIHBrFAQRCQFSV5gXaqh/qUx8pfUS88NRWlVqpD22fKpWHvvQBCYmXVrRqpapVVdXVzuzGduy18+EkLf39Vt4zPnPOmf+ZHe/xrH1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIpDZdqYwnMZfXF0+n/dWmm435TdeMRESa9tr74bpki+1GJJ2vGBmJ/WXW/n9fXb2v83QkDpbfHYzORmIkLu3Zd8+j/zY40Ku/RcA36nCf/JU0HVr7fRLxhU5QF84uLy+9dAsCuY2+/P3uwsg1V/nTSud5NqvnrUY+X53N0rzVSKcmJysPnppppTP5XNY602pn82mtmVVf+5+VlWO14+n41NTJNBs701isz05X57K0m/nIAxOVymT6+NhCVm22GvUHHx9r1U7lc3N5fbYoM1F5NTplHukciE/k7bSdVefTdDiWl05uF+q588tL4+tyhtcdOAfvv+fjVz76/fmlzgHZr5Gke2BOjI9PTIxPPjz18COV8gCIuJJRGaxcJSYqE2WVGIiISmXwlhy03Fl7Nskb7B4xG1ZErPzLDrxzw80bGOkuzEUe9ViM05FGGgPFc/H42u5IYyhqMR3NaMR8J+8XQ6vru4+u3vj/nw/+5mdbbXft+N8b5fdfWVe+2x6JQ2XGoX7j/4YoduAx2K/V+ntlNGvzXo7X41JciLOxHMuxFC9dXWvX1TU2eVxLmZt+DJfpwM62OhtZ1COPViSRx3xUi5y0yGlEGlMxGZNRiafiVMxEK9KYiTzmIotWnIlWtCMrjqhaNCOLarSjEc1I41jU4nikMR5TMRUnI40sxuJMNGIx6jEb01EtWjm3Unrjqrj2ff7p7z3384/f7izHuThfvDjjW3Qk6Yzlez6M+N0Wha4M5r3hfkPG5uP/QJQlBroH+G0Zk7hNRq7zVd2Jt23YESvF+f/ghvyROxINAAAAcCskxafvSUQMxb3F0kw+l32mt3rozkYHAAAA7ITiP+0OdpLiVP/eSDrn/5VNSn4QMXzbwwMAAAB2QFLMsUsiYjTuK5d606U2+xAAAAAA+AdU/P3/UCcZjXijyHD+DwAAAJ8yX+x3jf2PdhXX2B2N1sJw8oPfRrM5lFxeOH1/crHaKVe9eFdZr5v8/5UW2zMHkr3dRopkcvDSniQiBmvZwaR39cu/dOcSfFI8H1i9AGG/a/0n2wQQWwdQfBdficNlmcPPlumzvTXlVkZn8rlsrNaYe3Q86X440n7l+fOvRdH9L9Xn9yZx7vzy0tgzLywXLVy83Hm+fLF7efikVyu6107YIpaV3myKezfv8VAxEaO73dFyu5W1/e9eTXZg6/4na7f5ZhwpyxwZLdPR9f0f6WxzfOzR8ahW9w60s9PtV1bW9L4bxXgRRdHz4V5vk2t6FQa6URwtyxw9drRMNoliYl0Uz2+MYmI1isvXuC/2rd8X/aN4+/Abp//w40aSndwuipM3GQXAnXKuuOrP6ii0uxiF/lxeVf3b3ynXrR13d/dqXs+73LnV3zJ69deMdYOxYXRPb2R0fzOOlWWOlb9PDB7YZFypbPKO/uL5F3/SfUd/6N1vfuvJQz99/6px/TqieDeOl2W6Sfzrj/qMsZ0+f/WqUfWdTo13+m63NTeRvJrEUNK998ylB85fPPvc0nNLz09MnJysPFSpPDwRQ8WvCt1ks0g37FQA/tlsd4+d9z93pWi/u/AkD21zVp0M9v6lYCyeiRdiOZ6NE8Vsg4i4b/NWR9f8G8KJDWetyfqz9jV3eDmxzbnlatmJq8sOH02iT9mTa/bYf3yjSP54i14QALgNjmwzDidxT3nZn1fv7ta4UmKl+PD3riQ5sfa8+7MRcaDfmNsZy4+XN87tnR1Hv7Lj6+L8VTf979uxUwDgUy5rfpKMtt9Kms184anxqanxavtUljYbtSfSZj49m6V5vZ01a6eq9dksXWg22o1a74+W01krbS0uLDSa7XSm0UwXGq38dHHn97R76/dWNl+tt/Naa2Euq7aytNaot6u1djqdt2rpUETkrVNZs6jcWshq+Uxeq7bzRj1tNRabtWwsTVtZli4s/t9cWTCfzurtfCbPhtK8ni408/lq83JEzC3OZ+l01qo184V2o2yw3FYnzpm9zfmi2bHY8AeFX9+BXQ4Ad9zLr1+6cHZ5eemlG1v45bUUvtN9BADWM0oDAAAAAAAAAAAAAMDfv43T9Tq51zURcChuePrgy8PRWdh9o9U7C0+WHeldV/impjNuXBjc6Qa3Xviv93auFxvbGerl3L3dvM/d617TXd19u7NdHug7/fSvm9bqRH/d23r6sccuXLocEUVOMri6ezud2n/qwyx6vduinc1/Ujab6vrW3ohd3/16mfO/fQongzt82HzQ7WDvp7pf4YH1OSvJFj/4t+XtBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuy98CAAD//0pDPbQ=")

591.641509ms ago: executing program 2 (id=2800):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xd, 0x0, &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffff001}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[])

541.81802ms ago: executing program 4 (id=2801):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fsopen(&(0x7f0000000100)='configfs\x00', 0x0)

539.9925ms ago: executing program 2 (id=2802):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
socket(0x10, 0x80002, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000500)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0xfffffffffffffe73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='spmi_write_begin\x00', r1, 0x0, 0xfffffffffffffffc}, 0x13)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x2404d}, 0x40000)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x8}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0xc}}}}]}, 0x78}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001400)=ANY=[@ANYBLOB="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", @ANYRESDEC=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="580000000206010800000000000000000000fff21400078008001140000000000500150000000000080005000a000000050001000700000005000400000000000900020073797a31000000000c000300686173683a697000"], 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)

528.83439ms ago: executing program 0 (id=2803):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
ptrace$cont(0x1f, r2, 0x80000001, 0xb1a)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7}, 0x18)
setxattr$incfs_id(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000140), 0x0, 0x0, 0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x202, 0xc4)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@usrquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x513, &(0x7f0000000440)="$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")
bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x3)

469.414991ms ago: executing program 2 (id=2804):
r0 = inotify_init()
r1 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x400008bf)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
close(r1)
r3 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r3, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(r3)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

469.013782ms ago: executing program 4 (id=2805):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000880)={&(0x7f00000006c0)=@ipv6_delrule={0x58, 0x21, 0x5c7950f9132a66e3, 0x70bd2b, 0x25dfdbfe, {0xa, 0x14, 0x0, 0xfe, 0x6, 0x0, 0x0, 0x2, 0x2}, [@FRA_DST={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}, @FRA_DST={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0x21}}, @FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'vlan1\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x3})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000040)={0xfffffffe, 0x4, 0x0, 'queue1\x00'})
close_range(r2, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x15, 0x2, 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r5}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
sendto(0xffffffffffffffff, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/110, 0x14b}, {&(0x7f0000000280)=""/85, 0x53}, {&(0x7f0000000fc0)=""/4096, 0x564}, {&(0x7f0000000400)=""/106, 0x14}, {&(0x7f0000000740)=""/73, 0x60}, {&(0x7f0000000200)=""/77, 0x630}, {&(0x7f00000007c0)=""/154, 0x4a}, {&(0x7f0000000100)=""/16, 0x158}], 0x8, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x2, &(0x7f0000003700)={0x77359400})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x15, 0x5, 0x0)
getsockopt(r6, 0x200000000114, 0x2716, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)

449.886372ms ago: executing program 4 (id=2806):
prlimit64(0x0, 0x8, &(0x7f0000000000)={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x0)
getrlimit(0x5, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newsa={0x10c, 0x10, 0x413, 0x70bd28, 0x0, {{@in=@multicast1, @in6=@loopback, 0x4e21, 0x0, 0x4e24, 0x0, 0x2, 0x20, 0x20}, {@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x3c}, @in=@private=0xa010100, {0x4, 0x6, 0x2, 0x40000000000004, 0xffffffffffffffff, 0x3, 0x7f}, {0x0, 0x8, 0xcc}, {0xf6}, 0x70bd2a, 0x0, 0x2, 0x1, 0x1}, [@encap={0x1c, 0x4, {0x2, 0x4e21, 0x27, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}]}, 0x10c}}, 0x804)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x2, 0x0, 0x2, 0x0, 0x8000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x804000, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000380)={[{@errors_remount}, {@discard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@data_err_ignore}]}, 0x1, 0x476, &(0x7f0000000540)="$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")

374.362183ms ago: executing program 2 (id=2807):
syz_mount_image$ext4(&(0x7f0000000680)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
fallocate(r0, 0x3, 0x40000, 0x8000c62)

298.731895ms ago: executing program 0 (id=2808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xd, &(0x7f0000000680)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffff001}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

239.860186ms ago: executing program 2 (id=2809):
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xaa)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x900, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="15c60163736563000044fe028008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000340)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x400, 0x30, 0x30, 0x0, @in={0x2, 0x4e20, @broadcast}, @ib={0x1b, 0x3, 0xffb, {"50916300"}, 0x8000000000000001, 0x8, 0x3}}}, 0x118)

232.975775ms ago: executing program 0 (id=2810):
r0 = inotify_init()
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
inotify_add_watch(r0, 0x0, 0x400008bf)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r4, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)

218.417486ms ago: executing program 3 (id=2811):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x30)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r3, 0x402, 0x40000029)
fcntl$notify(r2, 0x402, 0x1c)
open(&(0x7f0000000140)='./bus\x00', 0x141bc2, 0x1c0)

163.834447ms ago: executing program 1 (id=2812):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xd, 0x0, &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffff001}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[])

157.919687ms ago: executing program 3 (id=2813):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
quotactl$Q_SETQUOTA(0xffffffff80000802, &(0x7f0000000340)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000540)={0x3, 0x3b, 0x400, 0x7, 0x800, 0xfe1, 0x1, 0x4e, 0x5})

135.100167ms ago: executing program 3 (id=2814):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000c80)='./file0\x00', 0x1004491, &(0x7f0000000f00)=ANY=[], 0xfe, 0x875, &(0x7f0000001000)="$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")
pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfhno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])

131.386257ms ago: executing program 0 (id=2815):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
socket(0x10, 0x80002, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000500)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0xfffffffffffffe73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='spmi_write_begin\x00', r1, 0x0, 0xfffffffffffffffc}, 0x13)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x2404d}, 0x40000)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x8}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0xc}}}}]}, 0x78}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001400)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e", @ANYRESDEC=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="580000000206010800000000000000000000fff21400078008001140000000000500150000000000080005000a000000050001000700000005000400000000000900020073797a31000000000c000300686173683a697000"], 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$eJzs3E1rE10UwPGTNEnTlHayeHhEQXrRjW6GNu7FIC2IAUttxBcQp81EQ8akZEIlIrZduXEhfggXpcvuCtov0I07V27cdSO4sAtxJDOTl7aJrWnSWPv/QZlD7j0z9+Y24dyBzPbdN0/zWVvPGmUJRpUERER2ROISlJqAfwy6cUSaLcvl4W+fzt++d/9mMpWanFFqKjl7JaGUGh17/+zFkN9tY1C24g+3vya+bP2/dXb75+yTnK1ytioUy8pQc8XPZWPOMlUmZ+d1paYt07BNlSvYZslrd5ZELFNlreLCQkUZhcxIbKFk2rYyChWVNyuqXFTlUkUZj41cQem6rkZigoOkV2dmjGSHyfNdHgx6pFRKGgMiMrSvJb3alwEBAIC+8uv/erUfrJb0ndT/oZb1/9qFzfLwnfVRv/7fiFTrf5Gm+v9R41ymygTr9X9URBr1f9HbH3S7/t9fEZ1sr3cvjjhOPYy06n+k+h8nRLX+j/mfX9fKg7VxN6D+BwAAAAAAAAAAAAAAAAAAAADgJNhxHM1xHM07DvivOtqgiETdX5B47X0eJnpk9/o3/lj/06Hx4I7QqIj1ajG9mPaOfodNEbHElHHR5If7/+CrxpFl5XZSVXH5YC35+UuLae+7JJmVnJs/IZrE9+Y7ztSN1OSE8uzOD0usOT8hmvzXOj+xNz9cPUbk0sWmfF00+TgvRbEk4/8yrpb/ckKp67dSe64/5PYDAAAAAOBfoKu6+v59sLld39/u7Y+9dm9/HZLW9we8/fV4y/19SM6F+jVrAAAAAABOF7vyPG9YllnqUbAiIj2+RJugNsPDZtUekNumT0AC7Zq6ENQu3ll6dWxdG0/4UO9YsKOhjkX+cFFaBrXbRu36yHQnZ3Y0kaO+h2fevvv++z7enTGRw5zw6nr0gJl2GkQOmmn42L6AAAAAABybRtFfe+VafwcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMApdByP4uv3HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC/xa8AAAD//46ZAFE=")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r5, &(0x7f0000004200)='t', 0x1)

0s ago: executing program 1 (id=2816):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
close(0xffffffffffffffff)
r3 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r3, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(r3)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

kernel console output (not intermixed with test programs):

netlink: '+}[@': attribute type 5 has an invalid length.
[  186.091913][ T9924] loop3: detected capacity change from 0 to 128
[  186.127608][ T9922] EXT4-fs: Ignoring removed orlov option
[  186.133467][ T9922] EXT4-fs: Ignoring removed nomblk_io_submit option
[  186.181575][ T9922] EXT4-fs mount: 60 callbacks suppressed
[  186.181592][ T9922] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.209369][ T9922] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  186.223567][ T9947] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2206'.
[  186.292044][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.377895][ T9972] loop4: detected capacity change from 0 to 512
[  186.391825][ T9962] netlink: 'syz.3.2207': attribute type 10 has an invalid length.
[  186.399831][ T9962] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2207'.
[  186.427819][ T9958] loop2: detected capacity change from 0 to 8192
[  186.434737][ T9972] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  186.460729][ T3295]  loop2: p1 p2 p3 p4
[  186.466110][ T3295] loop2: p1 size 3523149824 extends beyond EOD, truncated
[  186.483866][ T9972] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  186.493201][ T3295] loop2: p2 start 4278190080 is beyond EOD, truncated
[  186.500048][ T3295] loop2: p3 start 150994944 is beyond EOD, truncated
[  186.506763][ T3295] loop2: p4 start 1048578 is beyond EOD, truncated
[  186.514868][ T9972] System zones: 0-2, 18-18, 34-34
[  186.522787][ T9958]  loop2: p1 p2 p3 p4
[  186.527144][ T9958] loop2: p1 size 3523149824 extends beyond EOD, truncated
[  186.536532][ T9972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.539219][ T9987] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  186.550709][ T9972] ext4 filesystem being mounted at /432/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.556932][ T9958] loop2: p2 start 4278190080 is beyond EOD, truncated
[  186.573543][ T9958] loop2: p3 start 150994944 is beyond EOD, truncated
[  186.580297][ T9958] loop2: p4 start 1048578 is beyond EOD, truncated
[  186.596444][ T9987] loop0: detected capacity change from 0 to 512
[  186.615838][ T9972] netlink: 'syz.4.2208': attribute type 10 has an invalid length.
[  186.617842][ T9987] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2212: bg 0: block 288: padding at end of block bitmap is not set
[  186.638343][ T9972] bond0: (slave dummy0): Releasing backup interface
[  186.650309][ T9972] team0: Failed to send options change via netlink (err -105)
[  186.657805][ T9972] team0: Port device dummy0 added
[  186.663699][ T9987] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  186.676772][ T9972] netlink: 'syz.4.2208': attribute type 10 has an invalid length.
[  186.680258][ T9987] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.2212: attempt to clear invalid blocks 1024 len 1
[  186.699617][ T9987] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2212: invalid indirect mapped block 1819239214 (level 0)
[  186.701754][ T9972] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  186.723788][ T9987] EXT4-fs (loop0): 1 truncate cleaned up
[  186.730250][ T9987] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.730583][ T9972] team0: Failed to send options change via netlink (err -105)
[  186.744513][ T9987] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.765031][ T9972] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  186.774991][ T9972] team0: Port device dummy0 removed
[  186.802585][ T9972] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  186.834925][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.921236][   T29] kauditd_printk_skb: 227 callbacks suppressed
[  186.921250][   T29] audit: type=1326 audit(2000000141.680:3563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  186.956298][T10014] netlink: '+}[@': attribute type 5 has an invalid length.
[  186.956564][   T29] audit: type=1326 audit(2000000141.710:3564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  186.965700][T10014] loop4: detected capacity change from 0 to 128
[  186.987351][   T29] audit: type=1326 audit(2000000141.710:3565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.017128][   T29] audit: type=1326 audit(2000000141.710:3566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.040797][   T29] audit: type=1326 audit(2000000141.710:3567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.064538][   T29] audit: type=1326 audit(2000000141.710:3568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.088088][   T29] audit: type=1326 audit(2000000141.710:3569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="syz.4.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.111806][   T29] audit: type=1326 audit(2000000141.710:3570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.134992][   T29] audit: type=1326 audit(2000000141.710:3571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.157947][   T29] audit: type=1326 audit(2000000141.710:3572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10013 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  187.171988][T10020] loop1: detected capacity change from 0 to 512
[  187.209737][T10020] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  187.222696][T10022] FAULT_INJECTION: forcing a failure.
[  187.222696][T10022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.235792][T10022] CPU: 1 UID: 0 PID: 10022 Comm: syz.3.2219 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  187.235821][T10022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  187.235834][T10022] Call Trace:
[  187.235841][T10022]  <TASK>
[  187.235850][T10022]  __dump_stack+0x1d/0x30
[  187.235873][T10022]  dump_stack_lvl+0xe8/0x140
[  187.235894][T10022]  dump_stack+0x15/0x1b
[  187.235952][T10012] loop0: detected capacity change from 0 to 1024
[  187.235908][T10022]  should_fail_ex+0x265/0x280
[  187.235979][T10022]  should_fail+0xb/0x20
[  187.235998][T10022]  should_fail_usercopy+0x1a/0x20
[  187.236038][T10022]  _copy_from_user+0x1c/0xb0
[  187.236067][T10022]  memdup_user+0x5e/0xd0
[  187.236091][T10022]  strndup_user+0x68/0xb0
[  187.236139][T10022]  __se_sys_mount+0x4d/0x2e0
[  187.236161][T10022]  ? fput+0x8f/0xc0
[  187.236188][T10022]  ? ksys_write+0x192/0x1a0
[  187.236210][T10022]  __x64_sys_mount+0x67/0x80
[  187.236261][T10022]  x64_sys_call+0x2b4d/0x2ff0
[  187.236282][T10022]  do_syscall_64+0xd2/0x200
[  187.236311][T10022]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  187.236353][T10022]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  187.236380][T10022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.236401][T10022] RIP: 0033:0x7f0703f7eba9
[  187.236443][T10022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.236476][T10022] RSP: 002b:00007f07029e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  187.236497][T10022] RAX: ffffffffffffffda RBX: 00007f07041c5fa0 RCX: 00007f0703f7eba9
[  187.236539][T10022] RDX: 0000200000001440 RSI: 0000200000001400 RDI: 00002000000013c0
[  187.236551][T10022] RBP: 00007f07029e7090 R08: 0000200000000080 R09: 0000000000000000
[  187.236563][T10022] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  187.236575][T10022] R13: 00007f07041c6038 R14: 00007f07041c5fa0 R15: 00007fffbe485bf8
[  187.236594][T10022]  </TASK>
[  187.269330][T10020] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c0a8, mo2=0002]
[  187.296342][T10012] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  187.310902][T10020] System zones: 
[  187.313802][T10012] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  187.317588][T10020] 1-12
[  187.347007][T10012] JBD2: no valid journal superblock found
[  187.347677][T10020] 
[  187.353588][T10012] EXT4-fs (loop0): Could not load journal inode
[  187.370812][T10012] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  187.463958][T10026] loop4: detected capacity change from 0 to 512
[  187.470285][T10020] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.2218: iget: bogus i_mode (700)
[  187.509488][T10026] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  187.519823][T10020] EXT4-fs (loop1): Remounting filesystem read-only
[  187.529935][T10020] EXT4-fs (loop1): 1 orphan inode deleted
[  187.542564][T10020] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.546388][T10026] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  187.580772][T10036] 9pnet_fd: Insufficient options for proto=fd
[  187.585596][T10026] System zones: 0-2, 18-18, 34-34
[  187.622604][T10026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.643549][T10026] ext4 filesystem being mounted at /435/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.655848][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.659319][T10026] netlink: 'syz.4.2220': attribute type 10 has an invalid length.
[  187.680037][T10026] bond0: (slave dummy0): Releasing backup interface
[  187.696063][T10026] team0: Failed to send options change via netlink (err -105)
[  187.703651][T10026] team0: Port device dummy0 added
[  187.711651][T10045] netlink: 'syz.4.2220': attribute type 10 has an invalid length.
[  187.745342][T10045] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  187.773947][T10047] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  187.775075][T10045] team0: Failed to send options change via netlink (err -105)
[  187.788883][T10047] loop1: detected capacity change from 0 to 512
[  187.799020][T10047] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2226: bg 0: block 288: padding at end of block bitmap is not set
[  187.813502][T10045] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  187.824788][T10045] team0: Port device dummy0 removed
[  187.833425][T10045] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  187.851262][T10052] netlink: '+}[@': attribute type 5 has an invalid length.
[  187.859894][T10047] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  187.869004][T10052] loop2: detected capacity change from 0 to 128
[  187.893239][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.916637][T10054] loop0: detected capacity change from 0 to 512
[  187.923448][T10047] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2226: attempt to clear invalid blocks 1024 len 1
[  187.951989][T10047] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2226: invalid indirect mapped block 1819239214 (level 0)
[  187.967461][T10047] EXT4-fs (loop1): 1 truncate cleaned up
[  187.969195][T10054] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  187.974196][T10047] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.995075][T10054] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  188.004136][T10047] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.024629][T10054] System zones: 0-2, 18-18, 34-34
[  188.034286][T10060] loop4: detected capacity change from 0 to 512
[  188.041469][T10054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.055372][T10062] loop2: detected capacity change from 0 to 512
[  188.062669][T10054] ext4 filesystem being mounted at /466/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.079222][T10060] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2232: bg 0: block 288: padding at end of block bitmap is not set
[  188.101171][T10054] netlink: 'syz.0.2231': attribute type 10 has an invalid length.
[  188.110852][T10062] EXT4-fs error (device loop2): ext4_quota_enable:7128: inode #4: comm syz.2.2234: iget: bogus i_mode (4200)
[  188.110931][T10054] bond0: (slave dummy0): Releasing backup interface
[  188.133212][T10054] team0: Failed to send options change via netlink (err -105)
[  188.139447][T10062] EXT4-fs error (device loop2): ext4_quota_enable:7131: comm syz.2.2234: Bad quota inode: 4, type: 1
[  188.140736][T10054] team0: Port device dummy0 added
[  188.140834][T10060] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  188.154637][T10062] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  188.173267][T10060] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.2232: attempt to clear invalid blocks 1024 len 1
[  188.180858][T10054] netlink: 'syz.0.2231': attribute type 10 has an invalid length.
[  188.194171][T10060] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2232: invalid indirect mapped block 1819239214 (level 0)
[  188.201677][T10062] EXT4-fs (loop2): mount failed
[  188.217535][T10054] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  188.220763][T10060] EXT4-fs (loop4): 1 truncate cleaned up
[  188.234593][T10054] team0: Failed to send options change via netlink (err -105)
[  188.242385][T10054] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  188.251420][T10054] team0: Port device dummy0 removed
[  188.259505][T10060] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.270067][T10054] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  188.304606][T10062] loop2: detected capacity change from 0 to 1024
[  188.311989][T10060] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.326720][T10062] EXT4-fs: Ignoring removed bh option
[  188.354480][T10062] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  188.367371][T10062] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  188.376006][T10062] System zones: 0-1, 3-12
[  188.381458][T10062] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.2234: lblock 1 mapped to illegal pblock 1 (length 1)
[  188.395933][T10062] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2234: Failed to acquire dquot type 0
[  188.410313][T10062] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2234: Freeing blocks not in datazone - block = 0, count = 4096
[  188.424356][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.434433][T10062] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2234: Invalid inode bitmap blk 0 in block_group 0
[  188.451170][   T12] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  188.466300][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  188.478127][T10062] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  188.493793][T10082] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  188.501281][T10062] EXT4-fs (loop2): 1 orphan inode deleted
[  188.507478][T10062] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.520154][T10082] loop4: detected capacity change from 0 to 512
[  188.565448][T10082] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2241: bg 0: block 288: padding at end of block bitmap is not set
[  188.616985][T10082] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  188.630946][T10082] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.2241: attempt to clear invalid blocks 1024 len 1
[  188.664934][T10082] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2241: invalid indirect mapped block 1819239214 (level 0)
[  188.687807][T10082] EXT4-fs (loop4): 1 truncate cleaned up
[  188.700286][T10082] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.727043][T10105] __nla_validate_parse: 1 callbacks suppressed
[  188.727061][T10105] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2252'.
[  188.743905][T10082] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.758058][T10062] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2234'.
[  188.767249][T10062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2234'.
[  188.791921][T10062] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  188.807708][T10111] 9pnet_fd: Insufficient options for proto=fd
[  188.866303][T10118] veth3: left allmulticast mode
[  188.871340][T10118] geneve2: left allmulticast mode
[  188.876742][T10118] veth5: left allmulticast mode
[  188.882076][T10118] veth7: left allmulticast mode
[  188.979775][T10128] loop3: detected capacity change from 0 to 128
[  188.991694][T10130] lo speed is unknown, defaulting to 1000
[  189.023776][T10132] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2264'.
[  189.065352][T10135] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2265'.
[  189.096299][T10130] loop0: detected capacity change from 0 to 512
[  189.102601][T10138] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2266'.
[  189.114314][T10130] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.2263: error while reading EA inode 32 err=-116
[  189.131007][T10130] EXT4-fs (loop0): Remounting filesystem read-only
[  189.137607][T10130] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  189.147496][T10141] lo speed is unknown, defaulting to 1000
[  189.149012][T10130] EXT4-fs (loop0): 1 orphan inode deleted
[  189.160666][T10130] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.178693][T10130] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.208164][T10142] bond0: (slave dummy0): Releasing backup interface
[  189.217071][T10142] team0: Port device geneve1 removed
[  189.282135][T10147] loop3: detected capacity change from 0 to 512
[  189.298719][T10147] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.2269: iget: bogus i_mode (4200)
[  189.313472][T10147] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2269: Bad quota inode: 4, type: 1
[  189.325645][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.335480][T10147] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  189.351006][T10147] EXT4-fs (loop3): mount failed
[  189.369614][T10147] loop3: detected capacity change from 0 to 1024
[  189.385863][T10147] EXT4-fs: Ignoring removed bh option
[  189.413073][T10147] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  189.433670][T10147] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  189.448327][T10147] System zones: 0-1, 3-12
[  189.454348][T10147] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.2269: lblock 1 mapped to illegal pblock 1 (length 1)
[  189.469197][T10147] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2269: Failed to acquire dquot type 0
[  189.502974][T10161] loop2: detected capacity change from 0 to 512
[  189.507951][T10166] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2276'.
[  189.518410][T10147] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2269: Freeing blocks not in datazone - block = 0, count = 4096
[  189.541070][T10161] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  189.550062][T10147] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2269: Invalid inode bitmap blk 0 in block_group 0
[  189.575731][T10170] loop1: detected capacity change from 0 to 512
[  189.582950][T10147] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  189.591959][ T1921] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  189.607505][T10147] EXT4-fs (loop3): 1 orphan inode deleted
[  189.607606][T10161] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  189.613779][T10147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.622672][ T1921] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 0
[  189.635015][T10161] System zones: 0-2, 18-18, 34-34
[  189.659893][T10170] EXT4-fs (loop1): orphan cleanup on readonly fs
[  189.670152][T10161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.683403][T10170] EXT4-fs error (device loop1): ext4_quota_enable:7128: comm syz.1.2277: inode #218103808: comm syz.1.2277: iget: illegal inode #
[  189.697129][T10161] ext4 filesystem being mounted at /465/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.733521][T10170] EXT4-fs error (device loop1): ext4_quota_enable:7131: comm syz.1.2277: Bad quota inode: 218103808, type: 2
[  189.746730][T10161] bond0: (slave dummy0): Releasing backup interface
[  189.758117][T10170] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  189.759769][T10161] team0: Failed to send options change via netlink (err -105)
[  189.781051][T10161] team0: Port device dummy0 added
[  189.797672][T10176] lo speed is unknown, defaulting to 1000
[  189.804571][T10161] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  189.814273][T10161] team0: Failed to send options change via netlink (err -105)
[  189.821122][T10170] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  189.821896][T10161] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  189.837527][T10161] team0: Port device dummy0 removed
[  189.837792][T10170] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  189.844272][T10161] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  189.874108][T10170] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  189.883834][T10177] bond0: (slave dummy0): Releasing backup interface
[  189.909326][T10170] EXT4-fs error (device loop1): ext4_quota_enable:7128: comm syz.1.2277: inode #218103808: comm syz.1.2277: iget: illegal inode #
[  189.923105][T10170] EXT4-fs error (device loop1): ext4_quota_enable:7131: comm syz.1.2277: Bad quota inode: 218103808, type: 2
[  189.923459][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.937272][T10170] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  189.945357][T10177] team0: Port device geneve1 removed
[  189.991761][T10147] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2269'.
[  190.000861][T10147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2269'.
[  190.011602][T10147] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  190.120564][T10190] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  190.131913][T10190] loop4: detected capacity change from 0 to 512
[  190.143735][T10190] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2283: bg 0: block 288: padding at end of block bitmap is not set
[  190.144289][T10192] 9pnet_fd: Insufficient options for proto=fd
[  190.159047][T10190] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  190.175019][T10190] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.2283: attempt to clear invalid blocks 1024 len 1
[  190.189155][T10190] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2283: invalid indirect mapped block 1819239214 (level 0)
[  190.209274][T10190] EXT4-fs (loop4): 1 truncate cleaned up
[  190.215459][T10190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.228453][T10190] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.294748][T10197] loop2: detected capacity change from 0 to 512
[  190.301563][T10197] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  190.312454][T10197] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c0a8, mo2=0002]
[  190.320536][T10197] System zones: 1-12
[  190.324756][T10197] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.2286: iget: bogus i_mode (700)
[  190.336873][T10197] EXT4-fs (loop2): Remounting filesystem read-only
[  190.344605][T10197] EXT4-fs (loop2): 1 orphan inode deleted
[  190.350752][T10197] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.380687][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.404514][T10202] loop2: detected capacity change from 0 to 512
[  190.411480][T10202] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  190.430746][T10202] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  190.438888][T10202] System zones: 0-2, 18-18, 34-34
[  190.444913][T10202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.457539][T10202] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.474553][T10202] bond0: (slave dummy0): Releasing backup interface
[  190.481580][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.492443][T10202] team0: Failed to send options change via netlink (err -105)
[  190.500053][T10202] team0: Port device dummy0 added
[  190.509199][T10202] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  190.520004][T10202] team0: Failed to send options change via netlink (err -105)
[  190.527572][T10202] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  190.536945][T10202] team0: Port device dummy0 removed
[  190.544054][T10202] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  190.554003][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.576780][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.645108][T10212] lo speed is unknown, defaulting to 1000
[  190.676722][T10218] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2294'.
[  190.693464][   T41] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 6081 - 0
[  190.707522][   T41] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 6081 - 0
[  190.718595][   T41] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 6081 - 0
[  190.733656][   T41] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 6081 - 0
[  190.756221][T10221] loop3: detected capacity change from 0 to 512
[  190.767540][T10223] lo speed is unknown, defaulting to 1000
[  190.768165][T10221] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.2291: error while reading EA inode 32 err=-116
[  190.792355][T10221] EXT4-fs (loop3): Remounting filesystem read-only
[  190.798922][T10221] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  190.827602][T10221] EXT4-fs (loop3): 1 orphan inode deleted
[  190.833868][T10221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.850794][T10226] bond0: (slave dummy0): Releasing backup interface
[  190.850929][T10221] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.880150][T10226] team0: Port device geneve1 removed
[  190.893525][T10228] loop0: detected capacity change from 0 to 128
[  191.082683][T10238] loop3: detected capacity change from 0 to 512
[  191.097624][T10238] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  191.128044][T10238] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  191.143294][T10238] System zones: 0-2, 18-18, 34-34
[  191.151078][T10246] loop4: detected capacity change from 0 to 512
[  191.158399][T10238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.158576][T10246] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  191.171417][T10238] ext4 filesystem being mounted at /465/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.205354][T10246] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c0a8, mo2=0002]
[  191.220580][T10246] System zones: 1-12
[  191.226784][T10246] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.2302: iget: bogus i_mode (700)
[  191.239352][T10246] EXT4-fs (loop4): Remounting filesystem read-only
[  191.253014][T10238] validate_nla: 10 callbacks suppressed
[  191.253033][T10238] netlink: 'syz.3.2299': attribute type 10 has an invalid length.
[  191.258149][T10246] EXT4-fs (loop4): 1 orphan inode deleted
[  191.265683][T10253] loop2: detected capacity change from 0 to 512
[  191.268841][T10246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.280897][T10255] loop0: detected capacity change from 0 to 512
[  191.291626][T10238] team0: Port device dummy0 added
[  191.310104][T10238] netlink: 'syz.3.2299': attribute type 10 has an invalid length.
[  191.318497][T10238] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.328889][T10238] team0: Failed to send options change via netlink (err -105)
[  191.337873][T10253] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  191.347176][T10238] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.353932][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.356160][T10238] team0: Port device dummy0 removed
[  191.373776][T10238] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  191.382569][T10255] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  191.385163][T10253] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  191.409291][T10253] System zones: 0-2, 18-18, 34-34
[  191.417349][T10255] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  191.426325][T10255] System zones: 0-2, 18-18
[  191.426381][T10253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.426362][T10255] , 34-34
[  191.426449][T10253] ext4 filesystem being mounted at /477/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.430868][T10255] 
[  191.445056][T10255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.458331][T10253] netlink: 'syz.2.2305': attribute type 10 has an invalid length.
[  191.460928][T10255] ext4 filesystem being mounted at /485/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.480954][T10253] team0: Port device dummy0 added
[  191.498473][T10253] netlink: 'syz.2.2305': attribute type 10 has an invalid length.
[  191.506830][T10253] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.528913][T10253] team0: Failed to send options change via netlink (err -105)
[  191.537860][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.538840][T10255] netlink: 'syz.0.2306': attribute type 10 has an invalid length.
[  191.554179][T10253] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.564641][T10253] team0: Port device dummy0 removed
[  191.566300][T10253] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  191.572377][T10255] bond0: (slave dummy0): Releasing backup interface
[  191.597483][T10267] netlink: 'syz.1.2309': attribute type 10 has an invalid length.
[  191.612062][T10255] team0: Failed to send options change via netlink (err -105)
[  191.619161][T10274] netlink: 'syz.0.2306': attribute type 10 has an invalid length.
[  191.619629][T10255] team0: Port device dummy0 added
[  191.634358][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.649612][T10274] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.678940][T10274] team0: Failed to send options change via netlink (err -105)
[  191.737629][T10274] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  191.758546][T10274] team0: Port device dummy0 removed
[  191.767825][T10274] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  191.799991][T10287] netlink: 'syz.4.2317': attribute type 5 has an invalid length.
[  191.801646][T10292] loop2: detected capacity change from 0 to 512
[  191.826643][T10297] lo speed is unknown, defaulting to 1000
[  191.840441][T10292] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  191.849823][T10287] loop4: detected capacity change from 0 to 128
[  191.857053][T10298] bond0: (slave dummy0): Releasing backup interface
[  191.857235][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.881895][T10292] EXT4-fs (loop2): 1 truncate cleaned up
[  191.888021][T10292] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.900888][T10298] team0: Port device geneve1 removed
[  191.937589][   T29] kauditd_printk_skb: 265 callbacks suppressed
[  191.937607][   T29] audit: type=1326 audit(2000000146.690:3832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.004550][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.021478][   T29] audit: type=1326 audit(2000000146.690:3833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.045106][   T29] audit: type=1326 audit(2000000146.690:3834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.068523][   T29] audit: type=1326 audit(2000000146.690:3835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.092211][   T29] audit: type=1326 audit(2000000146.690:3836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.115782][   T29] audit: type=1326 audit(2000000146.690:3837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.139404][   T29] audit: type=1326 audit(2000000146.690:3838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.162930][   T29] audit: type=1326 audit(2000000146.690:3839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.186483][   T29] audit: type=1326 audit(2000000146.690:3840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.209986][   T29] audit: type=1326 audit(2000000146.690:3841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10304 comm="syz.0.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  192.307464][T10311] netlink: 'syz.3.2327': attribute type 10 has an invalid length.
[  192.316781][T10311] team0: Port device geneve1 added
[  192.322874][  T154] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  192.333680][  T154] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  192.346252][T10308] loop0: detected capacity change from 0 to 512
[  192.373676][  T154] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  192.413418][  T154] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  192.452392][T10318] loop4: detected capacity change from 0 to 512
[  192.493402][T10318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.506017][T10318] ext4 filesystem being mounted at /457/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.548626][T10324] netlink: 'syz.2.2328': attribute type 10 has an invalid length.
[  192.585378][T10323] loop3: detected capacity change from 0 to 512
[  192.656483][T10323] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  192.723900][T10324] team0: Port device geneve1 added
[  192.772326][T10323] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  192.782131][  T154] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 6081 - 0
[  192.826838][T10323] System zones: 0-2, 18-18, 34-34
[  192.839654][  T154] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 6081 - 0
[  192.879233][T10323] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.939592][  T154] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 6081 - 0
[  193.000759][T10323] ext4 filesystem being mounted at /469/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.036219][  T154] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 6081 - 0
[  193.113039][T10337] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  193.142379][T10323] bond0: (slave dummy0): Releasing backup interface
[  193.162376][T10337] loop1: detected capacity change from 0 to 512
[  193.176702][T10323] team0: Failed to send options change via netlink (err -105)
[  193.184251][T10323] team0: Port device dummy0 added
[  193.196396][T10341] program syz.2.2336 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.214072][T10337] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2334: bg 0: block 288: padding at end of block bitmap is not set
[  193.235763][T10343] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  193.251325][T10341] FAULT_INJECTION: forcing a failure.
[  193.251325][T10341] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.264553][T10341] CPU: 0 UID: 0 PID: 10341 Comm: syz.2.2336 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  193.264586][T10341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  193.264600][T10341] Call Trace:
[  193.264645][T10341]  <TASK>
[  193.264653][T10341]  __dump_stack+0x1d/0x30
[  193.264673][T10341]  dump_stack_lvl+0xe8/0x140
[  193.264692][T10341]  dump_stack+0x15/0x1b
[  193.264743][T10341]  should_fail_ex+0x265/0x280
[  193.264770][T10341]  should_fail+0xb/0x20
[  193.264793][T10341]  should_fail_usercopy+0x1a/0x20
[  193.264821][T10341]  _copy_to_user+0x20/0xa0
[  193.264932][T10341]  simple_read_from_buffer+0xb5/0x130
[  193.264989][T10341]  proc_fail_nth_read+0x10e/0x150
[  193.265058][T10341]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.265089][T10341]  vfs_read+0x1a5/0x770
[  193.265113][T10341]  ? __rcu_read_unlock+0x4f/0x70
[  193.265136][T10341]  ? __fget_files+0x184/0x1c0
[  193.265159][T10341]  ksys_read+0xda/0x1a0
[  193.265241][T10341]  __x64_sys_read+0x40/0x50
[  193.265274][T10341]  x64_sys_call+0x27bc/0x2ff0
[  193.265323][T10341]  do_syscall_64+0xd2/0x200
[  193.265408][T10341]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  193.265434][T10341]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  193.265487][T10341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.265507][T10341] RIP: 0033:0x7f981358d5bc
[  193.265522][T10341] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  193.265539][T10341] RSP: 002b:00007f9811ff7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  193.265563][T10341] RAX: ffffffffffffffda RBX: 00007f98137d5fa0 RCX: 00007f981358d5bc
[  193.265578][T10341] RDX: 000000000000000f RSI: 00007f9811ff70a0 RDI: 0000000000000007
[  193.265594][T10341] RBP: 00007f9811ff7090 R08: 0000000000000000 R09: 0000000000000000
[  193.265605][T10341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.265666][T10341] R13: 00007f98137d6038 R14: 00007f98137d5fa0 R15: 00007ffc3a3ffec8
[  193.265686][T10341]  </TASK>
[  193.268119][T10337] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  193.501947][T10343] team0: Failed to send options change via netlink (err -105)
[  193.518915][T10343] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  193.544932][T10343] team0: Port device dummy0 removed
[  193.553642][T10343] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  193.571587][T10308] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.584121][T10308] ext4 filesystem being mounted at /486/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.681556][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.695320][T10337] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2334: attempt to clear invalid blocks 1024 len 1
[  193.760195][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.783739][T10337] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2334: invalid indirect mapped block 1819239214 (level 0)
[  193.798863][T10337] EXT4-fs (loop1): 1 truncate cleaned up
[  193.805195][T10337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.819149][T10337] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.025088][T10359] lo speed is unknown, defaulting to 1000
[  194.183106][T10366] loop3: detected capacity change from 0 to 512
[  194.238934][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.255353][T10366] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.2340: error while reading EA inode 32 err=-116
[  194.306517][T10366] EXT4-fs (loop3): Remounting filesystem read-only
[  194.313222][T10366] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  194.325749][T10377] __nla_validate_parse: 4 callbacks suppressed
[  194.325766][T10377] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2349'.
[  194.403179][T10366] EXT4-fs (loop3): 1 orphan inode deleted
[  194.412520][T10366] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.429434][T10366] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.465088][T10382] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2351'.
[  194.508671][T10382] team0: Port device geneve1 added
[  194.513262][T10389] loop0: detected capacity change from 0 to 764
[  194.715280][T10396] loop4: detected capacity change from 0 to 512
[  194.725250][T10396] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  194.747232][T10396] EXT4-fs (loop4): 1 truncate cleaned up
[  195.899770][T10409] loop0: detected capacity change from 0 to 512
[  196.009868][T10410] loop1: detected capacity change from 0 to 512
[  196.699213][T10404] loop2: detected capacity change from 0 to 512
[  196.721156][T10404] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  197.719403][T10396] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.704860][T10404] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  198.704914][T10404] EXT4-fs: failed to create workqueue
[  198.720077][T10404] EXT4-fs (loop2): mount failed
[  200.739730][T10409] EXT4-fs warning (device loop0): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop0.
[  201.800392][T10410] EXT4-fs warning (device loop1): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop1.
[  202.442303][T10418] loop3: detected capacity change from 0 to 512
[  202.492077][T10418] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.2360: iget: bogus i_mode (4200)
[  202.505670][T10422] validate_nla: 3 callbacks suppressed
[  202.505717][T10422] netlink: 'syz.2.2361': attribute type 10 has an invalid length.
[  202.519048][T10422] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2361'.
[  202.530557][T10418] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2360: Bad quota inode: 4, type: 1
[  202.541992][T10418] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  202.560472][T10418] EXT4-fs (loop3): mount failed
[  202.589096][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.607634][T10431] FAULT_INJECTION: forcing a failure.
[  202.607634][T10431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.620839][T10431] CPU: 0 UID: 0 PID: 10431 Comm: syz.1.2364 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  202.620919][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  202.620930][T10431] Call Trace:
[  202.620935][T10431]  <TASK>
[  202.620943][T10431]  __dump_stack+0x1d/0x30
[  202.621019][T10431]  dump_stack_lvl+0xe8/0x140
[  202.621070][T10431]  dump_stack+0x15/0x1b
[  202.621089][T10431]  should_fail_ex+0x265/0x280
[  202.621171][T10431]  should_fail+0xb/0x20
[  202.621218][T10431]  should_fail_usercopy+0x1a/0x20
[  202.621240][T10431]  _copy_from_user+0x1c/0xb0
[  202.621266][T10431]  __sys_sendto+0x19e/0x330
[  202.621304][T10431]  __x64_sys_sendto+0x76/0x90
[  202.621329][T10431]  x64_sys_call+0x2d05/0x2ff0
[  202.621351][T10431]  do_syscall_64+0xd2/0x200
[  202.621434][T10431]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  202.621468][T10431]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  202.621562][T10431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.621586][T10431] RIP: 0033:0x7f96d0ebeba9
[  202.621602][T10431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.621620][T10431] RSP: 002b:00007f96cf927038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  202.621643][T10431] RAX: ffffffffffffffda RBX: 00007f96d1105fa0 RCX: 00007f96d0ebeba9
[  202.621657][T10431] RDX: 0000000000000011 RSI: 0000200000000180 RDI: 0000000000000003
[  202.621688][T10431] RBP: 00007f96cf927090 R08: 0000200000000140 R09: 0000000000000014
[  202.621702][T10431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.621715][T10431] R13: 00007f96d1106038 R14: 00007f96d1105fa0 R15: 00007ffeca936338
[  202.621856][T10431]  </TASK>
[  202.629327][  T994] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.655721][T10418] loop3: detected capacity change from 0 to 1024
[  202.663277][  T994] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.666930][T10433] 9pnet_fd: Insufficient options for proto=fd
[  202.668999][  T994] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.698485][T10418] EXT4-fs: Ignoring removed bh option
[  202.706650][  T994] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.717809][T10418] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  202.871180][T10441] 9pnet: Could not find request transport: fd0x0000000000000007
[  202.878980][T10418] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  202.891090][T10418] System zones: 0-1, 3-12
[  202.901364][T10418] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.2360: lblock 1 mapped to illegal pblock 1 (length 1)
[  202.929720][T10418] __quota_error: 145 callbacks suppressed
[  202.929737][T10418] Quota error (device loop3): write_blk: dquota write failed
[  202.942966][T10418] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  202.959039][T10418] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.2360: Failed to acquire dquot type 0
[  202.972251][T10418] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2360: Freeing blocks not in datazone - block = 0, count = 4096
[  202.990466][T10418] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2360: Invalid inode bitmap blk 0 in block_group 0
[  203.009850][  T994] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  203.029353][   T29] audit: type=1326 audit(2000000157.780:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10447 comm="syz.2.2370" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f981358eba9 code=0x0
[  203.034741][T10418] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  203.070044][  T994] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  203.073405][   T29] audit: type=1400 audit(2000000157.820:3988): avc:  denied  { ioctl } for  pid=10452 comm="syz.0.2372" path="socket:[28029]" dev="sockfs" ino=28029 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  203.078498][  T994] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 0
[  203.119063][T10418] EXT4-fs (loop3): 1 orphan inode deleted
[  203.125665][T10418] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.176898][T10455] wg2: left promiscuous mode
[  203.181651][T10455] wg2: left allmulticast mode
[  203.192674][T10455] veth0_to_team: left promiscuous mode
[  203.227689][T10455] vlan0: left allmulticast mode
[  203.232661][T10455] dummy0: left allmulticast mode
[  203.238501][T10455] veth3: left allmulticast mode
[  203.255029][  T154] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.267196][  T154] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.277203][  T154] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.287169][  T154] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.316426][T10467] 9pnet_fd: Insufficient options for proto=fd
[  203.330930][   T29] audit: type=1326 audit(2000000158.080:3989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10468 comm="syz.0.2378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  203.354571][   T29] audit: type=1326 audit(2000000158.080:3990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10468 comm="syz.0.2378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  203.378251][   T29] audit: type=1326 audit(2000000158.080:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10468 comm="syz.0.2378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  203.401702][   T29] audit: type=1326 audit(2000000158.080:3992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10468 comm="syz.0.2378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  203.446641][T10418] netlink: 'syz.3.2360': attribute type 21 has an invalid length.
[  203.458988][T10477] lo speed is unknown, defaulting to 1000
[  203.462220][T10418] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2360'.
[  203.473857][T10418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2360'.
[  203.497432][T10418] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  203.506043][T10471] loop1: detected capacity change from 0 to 512
[  203.516871][T10478] team0: Port device geneve1 removed
[  203.531284][T10471] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  203.552611][T10471] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  203.579014][T10471] System zones: 0-2, 18-18, 34-34
[  203.585235][T10471] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.598184][T10471] ext4 filesystem being mounted at /442/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.617783][T10471] netlink: 'syz.1.2379': attribute type 10 has an invalid length.
[  203.627742][T10471] team0: Port device dummy0 added
[  203.633814][T10471] netlink: 'syz.1.2379': attribute type 10 has an invalid length.
[  203.642135][T10471] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  203.651962][T10471] team0: Failed to send options change via netlink (err -105)
[  203.659515][T10471] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  203.668634][T10471] team0: Port device dummy0 removed
[  203.679101][T10471] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  203.712096][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.748012][T10492] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  203.759453][T10492] loop1: detected capacity change from 0 to 512
[  203.772650][T10492] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2386: bg 0: block 288: padding at end of block bitmap is not set
[  203.787944][T10492] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  203.798444][T10492] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2386: attempt to clear invalid blocks 1024 len 1
[  203.825348][T10492] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2386: invalid indirect mapped block 1819239214 (level 0)
[  203.850256][T10492] EXT4-fs (loop1): 1 truncate cleaned up
[  203.853839][T10499] 9pnet_fd: Insufficient options for proto=fd
[  203.872057][T10492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.876656][   T29] audit: type=1326 audit(2000000158.630:3993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.0.2391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  203.909183][T10492] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.943916][T10503] netlink: '+}[@': attribute type 5 has an invalid length.
[  203.953637][T10503] loop4: detected capacity change from 0 to 128
[  203.988304][T10507] netlink: '+}[@': attribute type 5 has an invalid length.
[  203.999815][T10507] loop0: detected capacity change from 0 to 128
[  204.008854][T10509] loop2: detected capacity change from 0 to 512
[  204.026991][T10509] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  204.058238][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.083292][T10509] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  204.109800][T10509] System zones: 0-2, 18-18, 34-34
[  204.118323][T10509] ext4 filesystem being mounted at /497/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.139932][T10520] loop3: detected capacity change from 0 to 512
[  204.156378][T10520] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  204.168698][T10509] netlink: 'syz.2.2394': attribute type 10 has an invalid length.
[  204.181405][T10520] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  204.190034][T10520] System zones: 0-2, 18-18, 34-34
[  204.190112][T10509] bond0: (slave dummy0): Releasing backup interface
[  204.201841][T10520] 
[  204.219131][T10520] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.223422][T10509] team0: Failed to send options change via netlink (err -105)
[  204.229892][T10529] netlink: 'syz.2.2394': attribute type 10 has an invalid length.
[  204.237139][T10509] team0: Port device dummy0 added
[  204.251317][T10529] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.260955][T10526] loop4: detected capacity change from 0 to 512
[  204.261283][T10529] team0: Failed to send options change via netlink (err -105)
[  204.276635][T10529] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.290789][T10526] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  204.294170][T10529] team0: Port device dummy0 removed
[  204.303252][T10520] netlink: 'syz.3.2396': attribute type 10 has an invalid length.
[  204.306561][T10529] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  204.315773][T10526] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  204.329463][T10526] System zones: 0-2, 18-18, 34-34
[  204.329670][T10520] bond0: (slave dummy0): Releasing backup interface
[  204.341080][T10526] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.353505][T10520] team0: Failed to send options change via netlink (err -105)
[  204.361172][T10520] team0: Port device dummy0 added
[  204.365003][T10535] netlink: 'syz.3.2396': attribute type 10 has an invalid length.
[  204.378716][T10535] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.394148][T10535] team0: Failed to send options change via netlink (err -105)
[  204.402026][T10535] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.411840][T10535] team0: Port device dummy0 removed
[  204.419224][T10535] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  204.448512][T10526] team0: Port device dummy0 added
[  204.476136][T10546] loop3: detected capacity change from 0 to 512
[  204.484964][T10546] EXT4-fs: Ignoring removed oldalloc option
[  204.493973][T10546] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  204.522764][T10546] EXT4-fs (loop3): 1 truncate cleaned up
[  204.581330][T10541] veth3: left allmulticast mode
[  204.586680][T10541] geneve2: left promiscuous mode
[  204.591952][T10541] geneve2: left allmulticast mode
[  204.598627][T10541] veth5: left allmulticast mode
[  204.604224][T10542] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.615339][T10542] team0: Failed to send options change via netlink (err -105)
[  204.655018][T10542] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  204.671519][T10542] team0: Port device dummy0 removed
[  204.685942][T10542] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  204.696253][  T154] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.705249][  T154] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  204.722617][  T154] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.731623][  T154] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  204.749885][  T154] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.758803][  T154] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  204.826763][  T154] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.835719][  T154] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  204.855460][T10566] loop2: detected capacity change from 0 to 512
[  204.862998][T10566] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  204.895512][T10566] EXT4-fs (loop2): 1 truncate cleaned up
[  204.934330][T10575] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  204.940625][T10572] loop4: detected capacity change from 0 to 128
[  204.945528][T10575] loop0: detected capacity change from 0 to 512
[  204.963421][T10575] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2420: bg 0: block 288: padding at end of block bitmap is not set
[  204.983669][T10578] veth0_vlan: left allmulticast mode
[  204.993060][T10578] veth3: left allmulticast mode
[  204.998075][T10578] veth5: left allmulticast mode
[  205.003185][T10578] veth7: left allmulticast mode
[  205.008867][T10575] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  205.033481][T10575] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.2420: attempt to clear invalid blocks 1024 len 1
[  205.037707][T10576] loop3: detected capacity change from 0 to 512
[  205.053848][T10578] geneve2: left promiscuous mode
[  205.058856][T10578] geneve2: left allmulticast mode
[  205.071500][T10575] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2420: invalid indirect mapped block 1819239214 (level 0)
[  205.076422][  T154] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  205.086061][T10575] EXT4-fs (loop0): 1 truncate cleaned up
[  205.105389][  T154] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  205.114675][  T154] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  205.115114][T10576] EXT4-fs (loop3): orphan cleanup on readonly fs
[  205.124119][  T154] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  205.149781][T10576] EXT4-fs error (device loop3): ext4_quota_enable:7128: comm syz.3.2418: inode #218103808: comm syz.3.2418: iget: illegal inode #
[  205.161170][T10589] 9pnet_fd: Insufficient options for proto=fd
[  205.174068][T10576] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2418: Bad quota inode: 218103808, type: 2
[  205.209213][T10576] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  205.226425][T10576] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  205.261635][T10596] lo speed is unknown, defaulting to 1000
[  205.269958][T10576] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  205.302876][T10576] EXT4-fs error (device loop3): ext4_quota_enable:7128: comm syz.3.2418: inode #218103808: comm syz.3.2418: iget: illegal inode #
[  205.320157][T10576] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2418: Bad quota inode: 218103808, type: 2
[  205.332354][T10576] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  205.343527][T10598] loop4: detected capacity change from 0 to 512
[  205.383274][T10598] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.2427: error while reading EA inode 32 err=-116
[  205.402701][T10598] EXT4-fs (loop4): Remounting filesystem read-only
[  205.409335][T10598] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  205.421061][T10598] EXT4-fs (loop4): 1 orphan inode deleted
[  205.446185][T10609] lo speed is unknown, defaulting to 1000
[  205.479926][T10610] bond0: (slave dummy0): Releasing backup interface
[  205.494908][T10610] team0: Port device geneve1 removed
[  205.534193][T10614] loop4: detected capacity change from 0 to 512
[  205.545321][T10614] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  205.573103][T10614] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  205.585784][T10614] System zones: 0-2, 18-18, 34-34
[  205.597556][T10614] ext4 filesystem being mounted at /484/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.633132][T10614] bond0: (slave dummy0): Releasing backup interface
[  205.646432][T10623] 9pnet_fd: Insufficient options for proto=fd
[  205.649936][T10614] team0: Failed to send options change via netlink (err -105)
[  205.660043][T10614] team0: Port device dummy0 added
[  205.681616][T10614] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  205.693901][T10614] team0: Failed to send options change via netlink (err -105)
[  205.701554][T10614] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  205.711001][T10614] team0: Port device dummy0 removed
[  205.718415][T10614] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  205.825604][T10635] lo speed is unknown, defaulting to 1000
[  205.878022][T10646] bond0: (slave dummy0): Releasing backup interface
[  205.892676][T10647] loop2: detected capacity change from 0 to 512
[  205.904890][T10649] 9pnet_fd: Insufficient options for proto=fd
[  205.929643][T10647] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.2445: error while reading EA inode 32 err=-116
[  205.961706][T10641] lo speed is unknown, defaulting to 1000
[  206.022983][T10645] lo speed is unknown, defaulting to 1000
[  206.029060][T10654] bond0: (slave dummy0): Releasing backup interface
[  206.066227][T10647] EXT4-fs (loop2): Remounting filesystem read-only
[  206.072835][T10647] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  206.108362][T10647] EXT4-fs (loop2): 1 orphan inode deleted
[  206.190665][T10665] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2453'.
[  206.209021][  T994] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.236075][T10671] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  206.240995][  T994] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.256617][T10671] loop0: detected capacity change from 0 to 512
[  206.273123][T10671] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2455: bg 0: block 288: padding at end of block bitmap is not set
[  206.276384][  T994] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.308713][T10671] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  206.320946][  T994] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.326918][T10671] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.2455: attempt to clear invalid blocks 1024 len 1
[  206.360247][T10671] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2455: invalid indirect mapped block 1819239214 (level 0)
[  206.374732][T10671] EXT4-fs (loop0): 1 truncate cleaned up
[  206.389821][T10674] loop3: detected capacity change from 0 to 512
[  206.417922][T10682] 9pnet_fd: Insufficient options for proto=fd
[  206.426936][T10674] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  206.446812][T10674] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  206.460937][T10674] System zones: 0-2, 18-18, 34-34
[  206.470441][T10674] ext4 filesystem being mounted at /483/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.564298][T10674] bond0: (slave dummy0): Releasing backup interface
[  206.574770][T10674] team0: Port device dummy0 added
[  206.582538][T10700] team0: Port device dummy0 removed
[  206.589226][T10700] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  206.606094][T10699] loop1: detected capacity change from 0 to 512
[  206.621179][T10699] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  206.659192][T10699] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  206.685180][T10699] System zones: 0-2, 18-18, 34-34
[  206.704963][T10699] ext4 filesystem being mounted at /455/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.730751][T10699] bond0: (slave dummy0): Releasing backup interface
[  206.741923][T10699] team0: Failed to send options change via netlink (err -105)
[  206.749521][T10699] team0: Port device dummy0 added
[  206.757480][T10699] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  206.767738][T10699] team0: Failed to send options change via netlink (err -105)
[  206.775308][T10699] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  206.784679][T10699] team0: Port device dummy0 removed
[  206.791663][T10699] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  206.834897][T10714] loop2: detected capacity change from 0 to 128
[  207.016780][T10737] lo speed is unknown, defaulting to 1000
[  207.123971][T10745] loop1: detected capacity change from 0 to 512
[  207.136497][T10745] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.2481: error while reading EA inode 32 err=-116
[  207.152664][T10745] EXT4-fs (loop1): Remounting filesystem read-only
[  207.159299][T10745] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  207.176094][T10745] EXT4-fs (loop1): 1 orphan inode deleted
[  207.214838][T10750] lo speed is unknown, defaulting to 1000
[  207.247492][T10747] bond0: (slave dummy0): Releasing backup interface
[  207.280466][T10747] team0: Port device geneve1 removed
[  207.307749][T10752] loop0: detected capacity change from 0 to 128
[  207.530077][T10779] validate_nla: 12 callbacks suppressed
[  207.530094][T10779] netlink: '+}[@': attribute type 5 has an invalid length.
[  207.615833][T10779] loop4: detected capacity change from 0 to 128
[  207.762358][T10796] netlink: '+}[@': attribute type 5 has an invalid length.
[  207.787016][T10796] loop4: detected capacity change from 0 to 128
[  207.908253][T10803] lo speed is unknown, defaulting to 1000
[  208.009200][   T29] kauditd_printk_skb: 630 callbacks suppressed
[  208.009216][   T29] audit: type=1326 audit(2000000162.760:4624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.039060][   T29] audit: type=1326 audit(2000000162.760:4625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.055391][   T29] audit: type=1326 audit(2000000162.800:4626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.095722][   T29] audit: type=1326 audit(2000000162.800:4627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.119380][   T29] audit: type=1326 audit(2000000162.800:4628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.142942][   T29] audit: type=1326 audit(2000000162.800:4629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10808 comm="syz.2.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f981358eba9 code=0x7ffc0000
[  208.150459][T10807] netlink: 'syz.3.2508': attribute type 10 has an invalid length.
[  208.174502][T10807] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2508'.
[  208.208979][T10807] team0: Port device geneve1 added
[  208.243019][T10817] loop2: detected capacity change from 0 to 512
[  208.269844][   T41] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  208.306143][   T41] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  208.472631][T10817] ext4 filesystem being mounted at /532/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  208.553217][   T41] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  208.613607][   T29] audit: type=1326 audit(2000000163.320:4630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.0.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  208.637237][   T29] audit: type=1326 audit(2000000163.320:4631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.0.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  208.661034][   T29] audit: type=1326 audit(2000000163.320:4632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.0.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  208.684701][   T29] audit: type=1326 audit(2000000163.320:4633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.0.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ee56eba9 code=0x7ffc0000
[  208.795635][   T41] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.871587][T10842] loop1: detected capacity change from 0 to 512
[  208.904429][T10845] netlink: 'syz.0.2517': attribute type 5 has an invalid length.
[  208.932009][T10842] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  208.962693][T10845] loop0: detected capacity change from 0 to 128
[  208.992458][T10847] loop3: detected capacity change from 0 to 512
[  209.032472][T10847] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  209.083501][T10842] EXT4-fs (loop1): 1 truncate cleaned up
[  209.101909][T10847] EXT4-fs (loop3): 1 truncate cleaned up
[  209.117747][T10852] lo speed is unknown, defaulting to 1000
[  209.173268][T10855] loop0: detected capacity change from 0 to 512
[  209.192447][T10855] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.2521: error while reading EA inode 32 err=-116
[  209.265599][T10858] netlink: '+}[@': attribute type 5 has an invalid length.
[  209.285220][T10855] EXT4-fs (loop0): Remounting filesystem read-only
[  209.291943][T10855] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  209.314484][T10858] loop3: detected capacity change from 0 to 128
[  209.435795][T10855] EXT4-fs (loop0): 1 orphan inode deleted
[  209.563596][T10873] loop1: detected capacity change from 0 to 512
[  209.621567][T10873] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  209.673173][T10873] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  209.709748][T10873] System zones: 0-2, 18-18, 34-34
[  209.726117][T10873] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.740842][T10879] netlink: 'syz.3.2531': attribute type 10 has an invalid length.
[  209.748718][T10879] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2531'.
[  209.785806][T10873] netlink: 'syz.1.2529': attribute type 10 has an invalid length.
[  209.810594][T10873] bond0: (slave dummy0): Releasing backup interface
[  209.823602][T10873] team0: Failed to send options change via netlink (err -105)
[  209.831151][T10873] team0: Port device dummy0 added
[  209.838554][ T1921] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.847919][ T1921] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.864681][T10873] netlink: 'syz.1.2529': attribute type 10 has an invalid length.
[  209.872768][ T1921] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.890349][T10873] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  209.916483][T10873] team0: Failed to send options change via netlink (err -105)
[  209.927528][T10873] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  209.937206][T10873] team0: Port device dummy0 removed
[  209.945387][T10873] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  209.954604][ T1921] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  210.133938][T10891] lo speed is unknown, defaulting to 1000
[  210.223608][T10912] loop4: detected capacity change from 0 to 512
[  210.282885][T10912] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.2537: error while reading EA inode 32 err=-116
[  210.327269][T10912] EXT4-fs (loop4): Remounting filesystem read-only
[  210.333858][T10912] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  210.353196][T10912] EXT4-fs (loop4): 1 orphan inode deleted
[  210.416646][T10924] netlink: '+}[@': attribute type 5 has an invalid length.
[  210.427127][T10924] loop0: detected capacity change from 0 to 128
[  210.718545][T10959] Process accounting resumed
[  210.761952][T10964] netlink: '+}[@': attribute type 5 has an invalid length.
[  210.777478][T10969] loop3: detected capacity change from 0 to 512
[  210.791747][T10964] loop4: detected capacity change from 0 to 128
[  210.841640][T10969] EXT4-fs (loop3): orphan cleanup on readonly fs
[  210.850131][T10969] EXT4-fs error (device loop3): ext4_quota_enable:7128: comm syz.3.2569: inode #218103808: comm syz.3.2569: iget: illegal inode #
[  210.914010][T10969] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2569: Bad quota inode: 218103808, type: 2
[  210.960556][T10969] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  211.003055][T10969] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  211.031258][T10969] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  211.050974][T10969] EXT4-fs error (device loop3): ext4_quota_enable:7128: comm syz.3.2569: inode #218103808: comm syz.3.2569: iget: illegal inode #
[  211.099438][T10969] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.2569: Bad quota inode: 218103808, type: 2
[  211.142742][T11004] loop4: detected capacity change from 0 to 128
[  211.157558][T10969] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  211.276847][T11017] loop1: detected capacity change from 0 to 128
[  211.459612][T11046] 9pnet_fd: Insufficient options for proto=fd
[  211.738322][T11079] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2618'.
[  211.756127][T11079] team0: Port device geneve1 added
[  211.796772][   T51] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.814783][T11091] loop2: detected capacity change from 0 to 256
[  211.821436][   T51] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.841398][   T51] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.849956][T11091] vfat: Unknown parameter '00000000000000000000000'
[  211.857674][   T41] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.883534][T11097] loop1: detected capacity change from 0 to 256
[  211.919201][T11101] FAULT_INJECTION: forcing a failure.
[  211.919201][T11101] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  211.932348][T11101] CPU: 1 UID: 0 PID: 11101 Comm: syz.3.2627 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  211.932376][T11101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.932443][T11101] Call Trace:
[  211.932452][T11101]  <TASK>
[  211.932460][T11101]  __dump_stack+0x1d/0x30
[  211.932484][T11101]  dump_stack_lvl+0xe8/0x140
[  211.932505][T11101]  dump_stack+0x15/0x1b
[  211.932521][T11101]  should_fail_ex+0x265/0x280
[  211.932547][T11101]  should_fail+0xb/0x20
[  211.932605][T11101]  should_fail_usercopy+0x1a/0x20
[  211.932632][T11101]  _copy_from_iter+0xd2/0xe80
[  211.932662][T11101]  ? __build_skb_around+0x1a0/0x200
[  211.932747][T11101]  ? __alloc_skb+0x223/0x320
[  211.932771][T11101]  netlink_sendmsg+0x471/0x6b0
[  211.932867][T11101]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.932896][T11101]  __sock_sendmsg+0x142/0x180
[  211.932930][T11101]  ____sys_sendmsg+0x31e/0x4e0
[  211.933031][T11101]  ___sys_sendmsg+0x17b/0x1d0
[  211.933067][T11101]  __x64_sys_sendmsg+0xd4/0x160
[  211.933165][T11101]  x64_sys_call+0x191e/0x2ff0
[  211.933241][T11101]  do_syscall_64+0xd2/0x200
[  211.933330][T11101]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  211.933358][T11101]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  211.933384][T11101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.933454][T11101] RIP: 0033:0x7f0703f7eba9
[  211.933471][T11101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.933491][T11101] RSP: 002b:00007f07029e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  211.933514][T11101] RAX: ffffffffffffffda RBX: 00007f07041c5fa0 RCX: 00007f0703f7eba9
[  211.933529][T11101] RDX: 0000000000000000 RSI: 00002000000010c0 RDI: 0000000000000004
[  211.933562][T11101] RBP: 00007f07029e7090 R08: 0000000000000000 R09: 0000000000000000
[  211.933602][T11101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.933616][T11101] R13: 00007f07041c6038 R14: 00007f07041c5fa0 R15: 00007fffbe485bf8
[  211.933635][T11101]  </TASK>
[  211.939597][T11097] FAULT_INJECTION: forcing a failure.
[  211.939597][T11097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.029565][T11107] loop2: detected capacity change from 0 to 512
[  212.031586][T11097] CPU: 1 UID: 0 PID: 11097 Comm: syz.1.2626 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  212.031615][T11097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  212.031661][T11097] Call Trace:
[  212.031669][T11097]  <TASK>
[  212.031677][T11097]  __dump_stack+0x1d/0x30
[  212.031699][T11097]  dump_stack_lvl+0xe8/0x140
[  212.031719][T11097]  dump_stack+0x15/0x1b
[  212.031736][T11097]  should_fail_ex+0x265/0x280
[  212.031849][T11097]  should_fail+0xb/0x20
[  212.031869][T11097]  should_fail_usercopy+0x1a/0x20
[  212.031892][T11097]  _copy_to_user+0x20/0xa0
[  212.031979][T11097]  simple_read_from_buffer+0xb5/0x130
[  212.032001][T11097]  proc_fail_nth_read+0x10e/0x150
[  212.032027][T11097]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  212.032076][T11097]  vfs_read+0x1a5/0x770
[  212.032096][T11097]  ? __rcu_read_unlock+0x4f/0x70
[  212.032123][T11097]  ? __fget_files+0x184/0x1c0
[  212.032149][T11097]  ksys_read+0xda/0x1a0
[  212.032192][T11097]  __x64_sys_read+0x40/0x50
[  212.032213][T11097]  x64_sys_call+0x27bc/0x2ff0
[  212.032234][T11097]  do_syscall_64+0xd2/0x200
[  212.032263][T11097]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  212.032286][T11097]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  212.032428][T11097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.032449][T11097] RIP: 0033:0x7f96d0ebd5bc
[  212.032465][T11097] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  212.032482][T11097] RSP: 002b:00007f96cf927030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  212.032534][T11097] RAX: ffffffffffffffda RBX: 00007f96d1105fa0 RCX: 00007f96d0ebd5bc
[  212.032547][T11097] RDX: 000000000000000f RSI: 00007f96cf9270a0 RDI: 0000000000000005
[  212.032559][T11097] RBP: 00007f96cf927090 R08: 0000000000000000 R09: 0000000000000000
[  212.032572][T11097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.032596][T11097] R13: 00007f96d1106038 R14: 00007f96d1105fa0 R15: 00007ffeca936338
[  212.032614][T11097]  </TASK>
[  212.054975][T11109] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2631'.
[  212.105539][T11107] EXT4-fs (loop2): orphan cleanup on readonly fs
[  212.286703][T11118] loop3: detected capacity change from 0 to 128
[  212.316526][T11107] EXT4-fs error (device loop2): ext4_quota_enable:7128: comm syz.2.2630: inode #218103808: comm syz.2.2630: iget: illegal inode #
[  212.396561][T11107] EXT4-fs error (device loop2): ext4_quota_enable:7131: comm syz.2.2630: Bad quota inode: 218103808, type: 2
[  212.412803][T11122] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2636'.
[  212.423218][T11107] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  212.440881][T11122] team0: Port device geneve1 added
[  212.468489][T11107] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  212.549123][  T154] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.557921][  T154] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.567016][   T51] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.602926][   T51] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.620059][T11107] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  212.645466][T11139] loop1: detected capacity change from 0 to 512
[  212.655007][T11130] validate_nla: 5 callbacks suppressed
[  212.655021][T11130] netlink: 'syz.4.2640': attribute type 10 has an invalid length.
[  212.668475][T11130] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2640'.
[  212.712609][T11139] ext4 filesystem being mounted at /501/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  212.724212][T11107] EXT4-fs error (device loop2): ext4_quota_enable:7128: comm syz.2.2630: inode #218103808: comm syz.2.2630: iget: illegal inode #
[  212.745648][T11130] team0: Port device geneve1 added
[  212.759281][   T51] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.771349][   T51] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.803967][T11107] EXT4-fs error (device loop2): ext4_quota_enable:7131: comm syz.2.2630: Bad quota inode: 218103808, type: 2
[  212.816962][   T51] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.855115][   T51] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.896337][T11107] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  213.021288][   T29] kauditd_printk_skb: 624 callbacks suppressed
[  213.021303][   T29] audit: type=1326 audit(2000000167.780:5258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.050615][   T29] audit: type=1326 audit(2000000167.780:5259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.073601][   T29] audit: type=1326 audit(2000000167.780:5260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.098550][T11160] netlink: '+}[@': attribute type 5 has an invalid length.
[  213.125246][T11160] loop4: detected capacity change from 0 to 128
[  213.351871][T11176] netlink: 'syz.0.2654': attribute type 5 has an invalid length.
[  213.361368][T11176] loop0: detected capacity change from 0 to 128
[  213.405018][   T29] audit: type=1326 audit(2000000167.850:5261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.428203][   T29] audit: type=1326 audit(2000000167.850:5262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.451401][   T29] audit: type=1326 audit(2000000167.850:5263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.474382][   T29] audit: type=1326 audit(2000000167.870:5264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.497424][   T29] audit: type=1326 audit(2000000167.870:5265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.520439][   T29] audit: type=1326 audit(2000000167.870:5266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb04c31eba9 code=0x7ffc0000
[  213.543407][   T29] audit: type=1326 audit(2000000167.870:5267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb04c31ebe3 code=0x7ffc0000
[  213.645266][T11180] loop4: detected capacity change from 0 to 1024
[  213.652999][T11180] EXT4-fs: Ignoring removed orlov option
[  213.658660][T11180] EXT4-fs: Ignoring removed nomblk_io_submit option
[  213.743519][T11188] netlink: 'syz.4.2660': attribute type 10 has an invalid length.
[  213.751423][T11188] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2660'.
[  213.770821][T11192] FAULT_INJECTION: forcing a failure.
[  213.770821][T11192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.784188][T11192] CPU: 0 UID: 0 PID: 11192 Comm: syz.3.2665 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  213.784219][T11192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  213.784233][T11192] Call Trace:
[  213.784239][T11192]  <TASK>
[  213.784321][T11192]  __dump_stack+0x1d/0x30
[  213.784345][T11192]  dump_stack_lvl+0xe8/0x140
[  213.784364][T11192]  dump_stack+0x15/0x1b
[  213.784383][T11192]  should_fail_ex+0x265/0x280
[  213.784410][T11192]  should_fail+0xb/0x20
[  213.784433][T11192]  should_fail_usercopy+0x1a/0x20
[  213.784544][T11192]  _copy_from_user+0x1c/0xb0
[  213.784578][T11192]  ucma_resolve_addr+0x52/0x2d0
[  213.784614][T11192]  ucma_write+0x1b0/0x250
[  213.784730][T11192]  ? __pfx_ucma_write+0x10/0x10
[  213.784757][T11192]  vfs_write+0x266/0x960
[  213.784779][T11192]  ? __rcu_read_unlock+0x4f/0x70
[  213.784903][T11192]  ? __fget_files+0x184/0x1c0
[  213.784950][T11192]  ksys_write+0xda/0x1a0
[  213.784971][T11192]  __x64_sys_write+0x40/0x50
[  213.784997][T11192]  x64_sys_call+0x27fe/0x2ff0
[  213.785078][T11192]  do_syscall_64+0xd2/0x200
[  213.785110][T11192]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  213.785143][T11192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.785167][T11192] RIP: 0033:0x7f0703f7eba9
[  213.785185][T11192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.785265][T11192] RSP: 002b:00007f07029e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  213.785339][T11192] RAX: ffffffffffffffda RBX: 00007f07041c5fa0 RCX: 00007f0703f7eba9
[  213.785427][T11192] RDX: 0000000000000118 RSI: 0000200000000280 RDI: 0000000000000005
[  213.785441][T11192] RBP: 00007f07029e7090 R08: 0000000000000000 R09: 0000000000000000
[  213.785455][T11192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.785469][T11192] R13: 00007f07041c6038 R14: 00007f07041c5fa0 R15: 00007fffbe485bf8
[  213.785504][T11192]  </TASK>
[  213.980899][T11183] netlink: 'syz.4.2660': attribute type 10 has an invalid length.
[  213.988773][T11183] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2660'.
[  214.033796][T11194] netlink: '+}[@': attribute type 5 has an invalid length.
[  214.046320][T11194] loop3: detected capacity change from 0 to 128
[  214.110709][T11196] lo speed is unknown, defaulting to 1000
[  214.220881][T11203] loop3: detected capacity change from 0 to 512
[  214.268790][T11203] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.2667: error while reading EA inode 32 err=-116
[  214.282115][T11205] loop0: detected capacity change from 0 to 512
[  214.289977][T11205] EXT4-fs (loop0): orphan cleanup on readonly fs
[  214.330043][T11205] EXT4-fs error (device loop0): ext4_quota_enable:7128: comm syz.0.2671: inode #218103808: comm syz.0.2671: iget: illegal inode #
[  214.366023][T11203] EXT4-fs (loop3): Remounting filesystem read-only
[  214.372774][T11203] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  214.384100][T11205] EXT4-fs error (device loop0): ext4_quota_enable:7131: comm syz.0.2671: Bad quota inode: 218103808, type: 2
[  214.395850][T11205] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  214.411466][T11203] EXT4-fs (loop3): 1 orphan inode deleted
[  214.430737][T11210] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  214.443316][T11210] loop2: detected capacity change from 0 to 512
[  214.450585][T11205] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  214.480462][T11210] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2664: bg 0: block 288: padding at end of block bitmap is not set
[  214.498919][T11205] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  214.533182][T11205] EXT4-fs error (device loop0): ext4_quota_enable:7128: comm syz.0.2671: inode #218103808: comm syz.0.2671: iget: illegal inode #
[  214.568374][T11210] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  214.579495][T11205] EXT4-fs error (device loop0): ext4_quota_enable:7131: comm syz.0.2671: Bad quota inode: 218103808, type: 2
[  214.596937][T11210] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.2664: attempt to clear invalid blocks 1024 len 1
[  214.621070][T11205] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=218103808). Please run e2fsck to fix.
[  214.645575][T11227] lo speed is unknown, defaulting to 1000
[  214.665885][T11232] team0: Port device geneve1 removed
[  214.671694][T11210] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.2664: invalid indirect mapped block 1819239214 (level 0)
[  214.692877][T11210] EXT4-fs (loop2): 1 truncate cleaned up
[  214.878602][T11246] loop3: detected capacity change from 0 to 512
[  214.888480][T11246] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  214.910321][T11246] EXT4-fs (loop3): 1 truncate cleaned up
[  214.954557][T11249] loop1: detected capacity change from 0 to 512
[  214.980424][T11249] ext4 filesystem being mounted at /506/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.420455][T11255] netlink: '+}[@': attribute type 5 has an invalid length.
[  215.429387][T11255] loop2: detected capacity change from 0 to 128
[  215.562260][T11260] netlink: 'syz.3.2684': attribute type 10 has an invalid length.
[  215.570205][T11260] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2684'.
[  215.588210][T11260] team0: Port device geneve1 added
[  215.601058][   T41] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.609554][   T41] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.773497][T11265] loop4: detected capacity change from 0 to 512
[  215.819279][T11265] EXT4-fs: Ignoring removed oldalloc option
[  215.867550][T11265] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  215.919389][T11265] EXT4-fs (loop4): 1 truncate cleaned up
[  216.034056][T11276] lo speed is unknown, defaulting to 1000
[  216.046842][T11278] loop3: detected capacity change from 0 to 764
[  216.064881][T11280] team0: Port device geneve1 removed
[  216.082307][T11278] 9pnet_fd: Insufficient options for proto=fd
[  216.182347][T11282] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  216.216724][T11282] loop3: detected capacity change from 0 to 512
[  216.252340][T11282] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2696: bg 0: block 288: padding at end of block bitmap is not set
[  216.340582][T11282] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  216.350187][T11282] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2696: attempt to clear invalid blocks 1024 len 1
[  216.364047][T11282] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2696: invalid indirect mapped block 1819239214 (level 0)
[  216.378505][T11282] EXT4-fs (loop3): 1 truncate cleaned up
[  216.385017][T11282] EXT4-fs mount: 59 callbacks suppressed
[  216.385033][T11282] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.404552][T11282] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.425402][   T41] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  216.465681][   T41] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  216.512600][   T41] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.562848][   T41] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.604641][   T41] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.640872][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.670779][   T41] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  216.835698][T11305] 9pnet_fd: Insufficient options for proto=fd
[  216.941169][T11311] netlink: '+}[@': attribute type 5 has an invalid length.
[  216.954663][T11311] loop0: detected capacity change from 0 to 128
[  216.971356][T11322] loop4: detected capacity change from 0 to 512
[  217.005714][T11322] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  217.041952][T11322] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  217.055880][T11322] System zones: 0-2, 18-18, 34-34
[  217.059190][T11326] netlink: '+}[@': attribute type 5 has an invalid length.
[  217.062619][T11322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.081108][T11322] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.099419][T11332] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  217.101907][T11322] team0: Port device dummy0 added
[  217.110628][T11332] loop2: detected capacity change from 0 to 512
[  217.114295][T11322] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  217.129773][T11322] team0: Failed to send options change via netlink (err -105)
[  217.137702][T11326] loop0: detected capacity change from 0 to 128
[  217.152905][T11322] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  217.158205][T11332] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2713: bg 0: block 288: padding at end of block bitmap is not set
[  217.162514][T11322] team0: Port device dummy0 removed
[  217.184684][T11322] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  217.237174][T11332] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  217.255203][T11332] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.2713: attempt to clear invalid blocks 1024 len 1
[  217.264624][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.268948][T11332] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.2713: invalid indirect mapped block 1819239214 (level 0)
[  217.299489][T11332] EXT4-fs (loop2): 1 truncate cleaned up
[  217.309446][T11344] 9pnet_fd: Insufficient options for proto=fd
[  217.319430][T11332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.341608][T11332] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.360919][T11347] loop0: detected capacity change from 0 to 128
[  217.372541][T11349] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2720'.
[  217.417658][ T1921] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  217.427106][ T1921] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  217.441234][ T1921] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  217.467067][ T1921] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  217.483267][T11355] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  217.497302][T11355] loop2: detected capacity change from 0 to 512
[  217.519001][T11355] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2724: bg 0: block 288: padding at end of block bitmap is not set
[  217.561981][T11355] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  217.572046][T11355] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.2724: attempt to clear invalid blocks 1024 len 1
[  217.585779][T11355] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.2724: invalid indirect mapped block 1819239214 (level 0)
[  217.594659][T11367] lo speed is unknown, defaulting to 1000
[  217.600314][T11355] EXT4-fs (loop2): 1 truncate cleaned up
[  217.612839][T11355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.629376][T11355] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.675253][T11375] loop0: detected capacity change from 0 to 512
[  217.698280][T11375] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.2727: error while reading EA inode 32 err=-116
[  217.731391][T11375] EXT4-fs (loop0): Remounting filesystem read-only
[  217.737943][T11375] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  217.748926][T11375] EXT4-fs (loop0): 1 orphan inode deleted
[  217.755473][T11375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.771233][T11375] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.778743][T11386] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  217.819947][T11386] loop1: detected capacity change from 0 to 512
[  217.861427][T11386] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2735: bg 0: block 288: padding at end of block bitmap is not set
[  217.883487][T11386] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  217.897683][T11395] loop3: detected capacity change from 0 to 512
[  217.902843][T11386] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2735: attempt to clear invalid blocks 1024 len 1
[  217.922256][T11386] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2735: invalid indirect mapped block 1819239214 (level 0)
[  217.936509][T11395] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  217.946059][T11386] EXT4-fs (loop1): 1 truncate cleaned up
[  217.953787][T11395] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  217.962235][T11395] System zones: 0-2, 18-18, 34-34
[  217.967629][T11386] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.977984][T11395] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.988030][T11386] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.000455][T11395] ext4 filesystem being mounted at /544/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.026098][T11395] validate_nla: 4 callbacks suppressed
[  218.026139][T11395] netlink: 'syz.3.2739': attribute type 10 has an invalid length.
[  218.047866][   T29] kauditd_printk_skb: 316 callbacks suppressed
[  218.047885][   T29] audit: type=1326 audit(2000000172.800:5584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.091943][T11404] netlink: 'syz.3.2739': attribute type 10 has an invalid length.
[  218.122706][T11395] team0: Port device dummy0 added
[  218.125373][   T29] audit: type=1326 audit(2000000172.800:5585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.148262][T11412] loop1: detected capacity change from 0 to 512
[  218.151472][   T29] audit: type=1326 audit(2000000172.800:5586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.161363][T11412] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  218.181194][   T29] audit: type=1326 audit(2000000172.800:5587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.2741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.195316][T11404] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  218.240587][T11412] EXT4-fs (loop1): 1 truncate cleaned up
[  218.247641][T11404] team0: Failed to send options change via netlink (err -105)
[  218.259340][T11404] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  218.268535][T11404] team0: Port device dummy0 removed
[  218.279634][T11404] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  218.289358][T11412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.353028][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.401512][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.669662][T11447] 9pnet_fd: Insufficient options for proto=fd
[  218.695857][   T29] audit: type=1326 audit(2000000173.450:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.719477][   T29] audit: type=1326 audit(2000000173.450:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.743040][   T29] audit: type=1326 audit(2000000173.450:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.766527][   T29] audit: type=1326 audit(2000000173.450:5591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.790065][   T29] audit: type=1326 audit(2000000173.450:5592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.813607][   T29] audit: type=1326 audit(2000000173.450:5593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11448 comm="syz.1.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96d0ebeba9 code=0x7ffc0000
[  218.825051][T11453] loop1: detected capacity change from 0 to 512
[  218.880762][T11452] lo speed is unknown, defaulting to 1000
[  218.899222][T11453] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  218.950790][T11453] EXT4-fs (loop1): 1 truncate cleaned up
[  218.956925][T11453] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.991351][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.088562][T11452] loop2: detected capacity change from 0 to 512
[  219.130846][T11468] loop0: detected capacity change from 0 to 512
[  219.131904][T11452] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.2763: error while reading EA inode 32 err=-116
[  219.157336][T11452] EXT4-fs (loop2): Remounting filesystem read-only
[  219.163975][T11452] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  219.166921][T11468] EXT4-fs error (device loop0): ext4_quota_enable:7128: inode #4: comm syz.0.2765: iget: bogus i_mode (4200)
[  219.177040][T11452] EXT4-fs (loop2): 1 orphan inode deleted
[  219.192278][T11452] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.204666][T11468] EXT4-fs error (device loop0): ext4_quota_enable:7131: comm syz.0.2765: Bad quota inode: 4, type: 1
[  219.216244][T11468] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  219.223360][T11452] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.245000][T11475] netlink: '+}[@': attribute type 5 has an invalid length.
[  219.246429][T11468] EXT4-fs (loop0): mount failed
[  219.257255][T11475] loop3: detected capacity change from 0 to 128
[  219.334196][T11468] loop0: detected capacity change from 0 to 1024
[  219.346062][T11468] EXT4-fs: Ignoring removed bh option
[  219.368036][T11468] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  219.396736][T11468] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  219.406043][T11468] System zones: 0-1, 3-12
[  219.413036][T11468] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #3: block 1: comm syz.0.2765: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.439109][T11468] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.2765: Failed to acquire dquot type 0
[  219.451154][T11468] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.2765: Freeing blocks not in datazone - block = 0, count = 4096
[  219.465006][T11468] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2765: Invalid inode bitmap blk 0 in block_group 0
[  219.477745][   T12] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.478087][T11468] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  219.501493][T11468] EXT4-fs (loop0): 1 orphan inode deleted
[  219.507610][T11468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.521515][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[  219.553832][T11492] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  219.570235][T11492] loop3: detected capacity change from 0 to 512
[  219.573214][T11494] loop2: detected capacity change from 0 to 512
[  219.592472][T11494] EXT4-fs error (device loop2): ext4_quota_enable:7128: inode #4: comm syz.2.2774: iget: bogus i_mode (4200)
[  219.604581][T11494] EXT4-fs error (device loop2): ext4_quota_enable:7131: comm syz.2.2774: Bad quota inode: 4, type: 1
[  219.617045][T11494] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  219.633452][T11494] EXT4-fs (loop2): mount failed
[  219.640066][T11492] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2773: bg 0: block 288: padding at end of block bitmap is not set
[  219.666252][T11494] loop2: detected capacity change from 0 to 1024
[  219.674171][T11494] EXT4-fs: Ignoring removed bh option
[  219.680610][T11492] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  219.688664][T11494] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  219.691327][T11492] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2773: attempt to clear invalid blocks 1024 len 1
[  219.716858][T11494] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  219.717844][T11492] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2773: invalid indirect mapped block 1819239214 (level 0)
[  219.739290][T11492] EXT4-fs (loop3): 1 truncate cleaned up
[  219.740083][T11494] System zones: 0-1, 3-12
[  219.746690][T11492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.750292][T11468] netlink: 'syz.0.2765': attribute type 21 has an invalid length.
[  219.769909][T11468] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2765'.
[  219.771102][T11492] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.778965][T11468] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2765'.
[  219.794754][T11494] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.2774: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.819635][T11468] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  219.829972][T11494] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.2774: Failed to acquire dquot type 0
[  219.851267][T11494] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2774: Freeing blocks not in datazone - block = 0, count = 4096
[  219.865299][T11494] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2774: Invalid inode bitmap blk 0 in block_group 0
[  219.878062][  T154] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  219.884889][T11494] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  219.902002][T11494] EXT4-fs (loop2): 1 orphan inode deleted
[  219.909045][  T154] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 0
[  219.921045][T11494] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.942419][T11512] loop4: detected capacity change from 0 to 764
[  219.970588][T11515] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  219.983605][T11515] loop1: detected capacity change from 0 to 512
[  219.993253][T11515] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2781: bg 0: block 288: padding at end of block bitmap is not set
[  220.028509][T11521] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  220.030931][T11515] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  220.039207][T11521] loop4: detected capacity change from 0 to 512
[  220.045832][T11515] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2781: attempt to clear invalid blocks 1024 len 1
[  220.059307][T11521] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2783: bg 0: block 288: padding at end of block bitmap is not set
[  220.065103][T11515] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2781: invalid indirect mapped block 1819239214 (level 0)
[  220.078636][T11521] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  220.092639][T11515] EXT4-fs (loop1): 1 truncate cleaned up
[  220.101892][T11521] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.2783: attempt to clear invalid blocks 1024 len 1
[  220.119924][T11521] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2783: invalid indirect mapped block 1819239214 (level 0)
[  220.121202][T11515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.134469][T11521] EXT4-fs (loop4): 1 truncate cleaned up
[  220.147072][T11515] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.153213][T11521] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.174047][T11494] netlink: 'syz.2.2774': attribute type 21 has an invalid length.
[  220.189135][T11494] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2774'.
[  220.192987][T11521] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.198244][T11494] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2774'.
[  220.216712][T11494] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  220.235864][T11524] loop1: detected capacity change from 0 to 512
[  220.251602][T11524] EXT4-fs error (device loop1): ext4_quota_enable:7128: inode #4: comm syz.1.2784: iget: bogus i_mode (4200)
[  220.263646][T11524] EXT4-fs error (device loop1): ext4_quota_enable:7131: comm syz.1.2784: Bad quota inode: 4, type: 1
[  220.274987][T11524] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  220.289958][T11524] EXT4-fs (loop1): mount failed
[  220.304539][T11524] loop1: detected capacity change from 0 to 1024
[  220.312911][T11524] EXT4-fs: Ignoring removed bh option
[  220.321671][T11524] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  220.332508][T11524] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  220.340982][T11524] System zones: 0-1, 3-12
[  220.346170][T11524] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.2784: lblock 1 mapped to illegal pblock 1 (length 1)
[  220.360293][T11524] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.2784: Failed to acquire dquot type 0
[  220.380093][T11524] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2784: Freeing blocks not in datazone - block = 0, count = 4096
[  220.394302][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.403715][T11524] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2784: Invalid inode bitmap blk 0 in block_group 0
[  220.419759][T11524] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  220.429297][   T41] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  220.457707][T11524] EXT4-fs (loop1): 1 orphan inode deleted
[  220.468545][T11535] vhci_hcd: default hub control req: 8001 v0000 i0003 l14
[  220.482625][T11524] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.493849][   T41] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  220.507015][T11535] loop3: detected capacity change from 0 to 512
[  220.523037][T11535] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2787: bg 0: block 288: padding at end of block bitmap is not set
[  220.544446][T11535] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  220.560545][T11535] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2787: attempt to clear invalid blocks 1024 len 1
[  220.574487][T11535] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2787: invalid indirect mapped block 1819239214 (level 0)
[  220.592929][T11535] EXT4-fs (loop3): 1 truncate cleaned up
[  220.599928][T11535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.602697][T11545] lo speed is unknown, defaulting to 1000
[  220.613401][T11535] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.697196][T11545] loop0: detected capacity change from 0 to 512
[  220.709667][T11545] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.2791: error while reading EA inode 32 err=-116
[  220.722422][T11545] EXT4-fs (loop0): Remounting filesystem read-only
[  220.728962][T11545] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  220.739203][T11545] EXT4-fs (loop0): 1 orphan inode deleted
[  220.745512][T11545] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.758149][T11545] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.759774][T11524] netlink: 'syz.1.2784': attribute type 21 has an invalid length.
[  220.787813][T11524] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2784'.
[  220.796916][T11524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2784'.
[  220.808365][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.822047][T11524] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  221.074570][T11568] loop4: detected capacity change from 0 to 764
[  221.112996][T11573] netlink: '+}[@': attribute type 5 has an invalid length.
[  221.123019][T11573] loop2: detected capacity change from 0 to 128
[  221.215416][T11581] lo speed is unknown, defaulting to 1000
[  221.237040][T11577] loop0: detected capacity change from 0 to 512
[  221.263560][T11577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.276257][T11577] ext4 filesystem being mounted at /582/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  221.281530][T11589] loop2: detected capacity change from 0 to 512
[  221.296307][T11589] EXT4-fs: Ignoring removed oldalloc option
[  221.319351][T11589] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  221.337149][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.348886][T11589] EXT4-fs (loop2): 1 truncate cleaned up
[  221.360566][T11589] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.386734][T11590] loop4: detected capacity change from 0 to 512
[  221.400575][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.425126][T11590] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.2806: error while reading EA inode 32 err=-116
[  221.444025][T11590] EXT4-fs (loop4): Remounting filesystem read-only
[  221.450600][T11590] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  221.482035][T11590] EXT4-fs (loop4): 1 orphan inode deleted
[  221.510198][T11590] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.513877][T11607] netlink: '+}[@': attribute type 5 has an invalid length.
[  221.527619][T11605] loop3: detected capacity change from 0 to 764
[  221.533198][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.555525][T11590] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.567564][T11609] loop0: detected capacity change from 0 to 128
[  221.585694][T11605] 9pnet_fd: Insufficient options for proto=fd
[  221.604560][ T3690] ==================================================================
[  221.612678][ T3690] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_mknod
[  221.619650][ T3690] 
[  221.621989][ T3690] write to 0xffff8881036c9264 of 4 bytes by task 5406 on cpu 0:
[  221.629666][ T3690]  shmem_mknod+0x137/0x180
[  221.634102][ T3690]  shmem_create+0x34/0x50
[  221.638456][ T3690]  path_openat+0x1102/0x2170
[  221.643055][ T3690]  do_filp_open+0x109/0x230
[  221.647572][ T3690]  do_sys_openat2+0xa6/0x110
[  221.652194][ T3690]  __x64_sys_openat+0xf2/0x120
[  221.656992][ T3690]  x64_sys_call+0x2e9c/0x2ff0
[  221.661688][ T3690]  do_syscall_64+0xd2/0x200
[  221.666213][ T3690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.672166][ T3690] 
[  221.674505][ T3690] read to 0xffff8881036c9264 of 4 bytes by task 3690 on cpu 1:
[  221.682056][ T3690]  fill_mg_cmtime+0x5b/0x260
[  221.686657][ T3690]  generic_fillattr+0x24a/0x340
[  221.691509][ T3690]  shmem_getattr+0x181/0x200
[  221.696096][ T3690]  vfs_getattr_nosec+0x146/0x1e0
[  221.701042][ T3690]  vfs_statx+0x113/0x390
[  221.705289][ T3690]  vfs_fstatat+0x115/0x170
[  221.709708][ T3690]  __se_sys_newfstatat+0x55/0x260
[  221.714734][ T3690]  __x64_sys_newfstatat+0x55/0x70
[  221.719762][ T3690]  x64_sys_call+0x135a/0x2ff0
[  221.724436][ T3690]  do_syscall_64+0xd2/0x200
[  221.728947][ T3690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.734838][ T3690] 
[  221.737154][ T3690] value changed: 0x15e14551 -> 0x15e6ef16
[  221.742863][ T3690] 
[  221.745182][ T3690] Reported by Kernel Concurrency Sanitizer on:
[  221.751327][ T3690] CPU: 1 UID: 0 PID: 3690 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  221.760608][ T3690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  221.770661][ T3690] ==================================================================