last executing test programs:

1m2.934301847s ago: executing program 0 (id=643):
io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
socket$kcm(0x21, 0x2, 0x2)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x18}, 0x0)
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xff, 0x0, 0x0)
r1 = msgget$private(0x0, 0x2d5)
msgctl$IPC_STAT(r1, 0x2, &(0x7f00000003c0)=""/194)
clock_gettime(0x0, &(0x7f0000000100)={<r2=>0x0, <r3=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))
setitimer(0x2, &(0x7f0000000200)={{}, {r2, r3/1000+60000}}, &(0x7f0000000240))
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3, 0x18, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000002c0)=""/203, 0xfffffffffffffe5f)

1m2.889449727s ago: executing program 0 (id=646):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x549542, 0x40)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c020000190001000000000000000000fc020000000000000000000000000000000000000000000000000000000000000000000300000000020000005e00"], 0x23c}}, 0x20000000)

1m2.740715359s ago: executing program 0 (id=648):
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) (async)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) (async)
rename(&(0x7f0000000280)='./file0\x00', 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x880) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) (rerun: 64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x15, &(0x7f0000000880)=ANY=[@ANYRESHEX=0x0, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000018000000000000000000000001040000186500000800000000000000090000009500000000000000183b00000200"/80], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x9c) (async, rerun: 32)
r8 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'veth1_macvtap\x00'}) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="4000000010000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r7}, 0x10)

1m2.60782864s ago: executing program 0 (id=649):
r0 = gettid()
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_DEL_RULE(r1, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000014c0)=ANY=[], 0x420}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000000), &(0x7f0000000040))
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
read(r3, &(0x7f0000032440)=""/102364, 0x18fdc)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x88, &(0x7f0000000100)={[{@grpquota}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nouid32}, {@noinit_itable}, {@quota}]}, 0x3, 0x438, &(0x7f0000000d80)="$eJzs289rHFUcAPDv7GZT01+Jpf5oWjVaxeCPpElr7cGLouBBQdBDPcYkLbHbRpoItgSNIvUoBe/iUfAv8KQXUU8Fr3oXoUgurZ5WZncm2d1sfnaTrd3PByb5vpm3vPfNzNt9My8bQNcaSn8kEfsj4veI6K8VGysM1X7dXlqY/GdpYTKJSuXtv5NqvVtLC5N51fx1+/JCT0Th8ySOtmh37srVCxPl8vTlrDw6f/GD0bkrV5+fuThxfvr89KXxM2dOnRx78fT4C23JM83r1uDHs8eOvP7u9Tcnz15/75fvkjz/pjzaZGi9g09VKm1urrMO1MVJTwc7wpYUa8M0StXx3x/FWDl5/fHaZx3tHLCjKpVK5cG1Dy9WgHtYEp3uAdAZ+Qd9ev+bb7s09bgr3Hy5dgOU5n0722pHeqKQ1Sk13d+201BEnF389+t0i515DgEA0OCHdP7zXKv5XyHqnwsdzNZQBiLi/og4FBGnI+JwRDwQUa37UEQ8vMX2mxdJVs9/Dm4rr81K538vZWtbjfO/fPYXA8WsdKCafyk5N1OePpH1bDhKe9Ly2Dpt/Pjqb1+2PJA1kc//0i1tP58LZpX+6tnT+LKpifmJO8m53s1PIwZ7WuWfLK8EJBFxJCIGt9nGzDPfHlvr2NCG+a+jDetMlW8inq6d/8Voyj+XrL8+OXpflKdPjOZXxWq/3rj21lrt31H+bZCe/70tr//l/AeS+vXaua23ce2PL9a8p9k4/9bXf2/yTsO+jybm5y+PRfQmb9Q6Xb9/vKne+Er9NP/h463H/6FY+UscjYj0In4kIh6NiMeyvj8eEU9ExPHVqd3ozYKfX3ny/WpQ2k7+OyvNf2pL538l6I3mPa2D4oWfvm9odGAr+afn/1Q1Gs72bOb9bzP92t7VDAAAAP8/hYjYH0lhZDkuFEZGav/Dfzj2Fsqzc/PPnpv98NJU7TsCA1Eq5E+6+uueh45lt/V5ebypfDJ7bvxVsa9aHpmcLU91OnnocvvWGP+pP4ud7h2w43xfC7qX8Q/dy/iH7mX8Q/dqMf77OtEPYPe1+vz/pAP9AHZf0/i37AddxP0/dC/jH7qX8Q9daa4vNv6SvECwKojCXdENwQ4FnX5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI//AgAA//9Lr+a0")
sendmsg$RDMA_NLDEV_CMD_DELLINK(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="19002000041404002cbd7061514c5e253ea60100789a0000"], 0x18}, 0x1, 0x0, 0x0, 0x2}, 0x20008080)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x80)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_tgsigqueueinfo(r6, r6, 0x13, &(0x7f0000000200)={0x9, 0x0, 0x80000000})
truncate(&(0x7f0000000080)='./file1\x00', 0x4000)
ioctl$EXT4_IOC_MOVE_EXT(r5, 0x40305829, &(0x7f0000000b40)={0x17c04, r5, 0xb, 0x100004})
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
msgctl$IPC_SET(0x0, 0x1, 0x0)
pipe2$9p(&(0x7f0000000180)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r9 = dup(r8)
write$P9_RLERRORu(r9, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r9, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000300)='kfree\x00', r10}, 0x18)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001100)=@newlink={0x3c, 0x10, 0x1, 0x70bd2d, 0x2, {0x0, 0x0, 0x0, 0x0, 0x10104, 0x1}, [@IFLA_IFNAME={0x14, 0x3, 'macvtap0\x00'}, @IFLA_TXQLEN={0x8, 0xd, 0x6c790d25}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
write$binfmt_elf64(r9, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])
getsockopt$inet_buf(r9, 0x0, 0x11, &(0x7f00000000c0)=""/6, &(0x7f0000000180)=0x6)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x42, 0x1, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xc}, 0x1100, 0x5dd9, 0x2, 0x5, 0x0, 0x8, 0x4, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)

1m1.707994952s ago: executing program 0 (id=665):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000540)=ANY=[], 0xed)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00'}, 0x18)
setrlimit(0x6, &(0x7f0000000080)={0xfffffffffffffffd})
io_setup(0x2004, &(0x7f0000000680))
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400001d00000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r4, 0x0, 0x80000}, 0x18)
bpf$MAP_CREATE(0x8001000000000000, &(0x7f0000000840)=ANY=[@ANYBLOB="010000000500000002000000ffff000005000000", @ANYRES8=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00', @ANYRES16], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x8040)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r6}, 0x10)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)

1m0.506845277s ago: executing program 0 (id=683):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}}, 0x0)

1m0.491311347s ago: executing program 32 (id=683):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}}, 0x0)

3.291932879s ago: executing program 2 (id=1650):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000580)={'filter\x00', 0x7, 0x4, 0x3e8, 0x218, 0x130, 0x130, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@local, @remote, 0xffffffff, 0xff, 0xd, 0x7, {@mac=@broadcast, {[0x0, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0xff, 0xff, 0x0, 0xff]}}, 0x4, 0x97df, 0x2, 0x4, 0x1, 0x9, 'ip6gre0\x00', 'batadv0\x00', {0xff}, {}, 0x0, 0x100}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x9, 0x6, 0x100, 0x1, 0x0, "648cbfbaf3cad1bb678e630007cb414268d600e966901af90d3ca11228c7c7e35da35ef0854ed2d1739ceef0d6eb61ac434eb0e05b259fee466e8da6bced0b1a"}}}, {{@arp={@multicast2, @broadcast, 0xffffff00, 0x0, 0x8, 0x4, {@empty, {[0xff, 0x0, 0xff, 0xff, 0xff, 0xff]}}, {@mac, {[0x0, 0x0, 0xff, 0xff, 0xff, 0xff]}}, 0x200, 0x10, 0x401, 0x6, 0x6, 0x488, 'ip6erspan0\x00', 'team_slave_0\x00', {0xff}, {0xff}}, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x1000, 0xd, 0x1}}}, {{@arp={@rand_addr=0x64010100, @broadcast, 0xffffffff, 0xffffffff, 0x5, 0x0, {@empty, {[0xff, 0xff, 0xff, 0x0, 0xff]}}, {@empty, {[0xff, 0xff, 0xff]}}, 0x7fff, 0xfff8, 0x0, 0x3, 0x8001, 0x8001, 'macvtap0\x00', 'pimreg0\x00', {0xff}, {0xff}, 0x0, 0x100}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r1, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
r4 = syz_open_dev$loop(&(0x7f0000000100), 0x800, 0x800)
ioctl$BLKDISCARD(r4, 0x1277, &(0x7f0000000140)=0x8)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x7fe, @empty, 0x1}, {0xa, 0x4e20, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x1d}, 0x2}, r3, 0xb}}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r2, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000300), r3}}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r6, 0x0, r7, 0x0, 0x400000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000340)={'vxcan1\x00'})
io_cancel(0x0, 0x0, 0x0)

2.605755247s ago: executing program 4 (id=1659):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r1 = accept(0xffffffffffffffff, &(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private2}}}, &(0x7f00000002c0)=0x80)
splice(r0, &(0x7f0000000180)=0x6, r1, &(0x7f0000000300)=0xb, 0x6, 0x2)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0)

2.517971509s ago: executing program 4 (id=1660):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x123400, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r0, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000001c0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0], <r1=>0x0, 0x16, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0xb6, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000540)=r1, 0x4)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
r3 = signalfd(0xffffffffffffffff, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000640)='./binderfs/custom0\x00', 0x802, 0x0)
name_to_handle_at(r3, &(0x7f0000004740)='\x00', &(0x7f0000004780)=ANY=[@ANYBLOB='\f'], &(0x7f00000047c0), 0x1200)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r6, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r6, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1)

2.144417383s ago: executing program 1 (id=1662):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x1, 0x2000c851, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000540)=ANY=[], 0xed)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)

1.661637109s ago: executing program 4 (id=1667):
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x0, 0x100000, 0x0, 0xa, 0x10001, 0x0, 0x4, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x0, 0x121428, 0x5000000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000007a0000000000089500000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0x1d6225b, 0x0, 0x0, 0x14, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r5=>0x0})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r4, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r6=>0x0})
bind$packet(r3, &(0x7f0000000300)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @remote}, 0x14)
syz_emit_ethernet(0x36, &(0x7f0000000200)={@broadcast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "87fb89", 0x0, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2}}}}, 0x0)
io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
socket$kcm(0x21, 0x2, 0x2)

1.60732958s ago: executing program 1 (id=1669):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
pipe2$9p(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r5}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socket$inet6_udplite(0xa, 0x2, 0x88)
r7 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'veth0_macvtap\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x2804, 0x0, 0x0, 0x0, 0x400, 0x10001, 0x1, 0x0, 0x0, 0x0, 0x1c0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r10, 0x40042408, 0xffffffffffffffff)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000780)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xffee}, {0xfff1, 0xffff}, {0x0, 0xe}}}, 0x24}}, 0x40000)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
sendmsg$netlink(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="34000000110001000000000000000000100003400c000000000000000000000014ec300000000000800000000000000000000001"], 0x34}], 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.58822061s ago: executing program 4 (id=1670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000000), 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x7, 0x100}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0xf, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xc26}, 0x1c)

1.416970902s ago: executing program 1 (id=1674):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0)

1.306041554s ago: executing program 1 (id=1675):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
io_setup(0x81, &(0x7f0000001440)=<r0=>0x0)
r1 = syz_io_uring_setup(0x7b9c, &(0x7f0000000300)={0x0, 0x0, 0x40, 0x2, 0x2ee}, &(0x7f00000000c0), &(0x7f0000000080))
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000280)={0xa, 0x2, 0x2000000, @loopback, 0x9}, 0x1c)
sendto$inet6(r2, &(0x7f00000000c0)="04", 0x1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0xfffffffc}, 0x1c)
recvmsg(r2, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000380)=""/121, 0x79}], 0x1}, 0x40000112)
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0xfff}, 0x18)
sysinfo(&(0x7f0000000680)=""/26)

1.023294607s ago: executing program 3 (id=1678):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000000), 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0xf, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYRES8, @ANYRES32=0x0, @ANYRES32=r3], 0x28}}, 0x24000050)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='\x00', 0xc000, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r6, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xc26}, 0x1c)
sendto$inet6(r6, &(0x7f0000000080), 0x0, 0x4014, 0x0, 0x0)
shutdown(r6, 0x1)
splice(r6, 0x0, r5, 0x0, 0x8, 0x0)

883.824919ms ago: executing program 3 (id=1680):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
linkat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0xffffffffffffffff, 0x0, 0x400)

853.421629ms ago: executing program 3 (id=1681):
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x0, 0x100000, 0x0, 0xa, 0x10001, 0x0, 0x4, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x0, 0x121428, 0x5000000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000007a0000000000089500000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0x1d6225b, 0x0, 0x0, 0x14, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r5=>0x0})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r4, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r6=>0x0})
bind$packet(r3, &(0x7f0000000300)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @remote}, 0x14)
syz_emit_ethernet(0x36, &(0x7f0000000200)={@broadcast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "87fb89", 0x0, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2}}}}, 0x0)
io_uring_setup(0xaab, &(0x7f0000000340)={0x0, 0x2c97, 0x1000, 0xfffffffd, 0x17b})
socket$kcm(0x21, 0x2, 0x2)

733.629911ms ago: executing program 4 (id=1682):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xc00}}}]}, 0x38}}, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0)
r10 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r10, 0x40042408, r11)
recvmsg(r8, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/197, 0xc5}], 0x1}, 0x12000)
write$tun(r7, &(0x7f0000000100)={@val={0x2000, 0x88a2}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x2, 0x7, 0x3c, 0x65, 0x0, 0x5, 0x6, 0x0, @private=0xa010100, @initdev={0xac, 0x1e, 0x1, 0x0}}, @payload_named={{{{{0x28, 0x0, 0x1, 0x1, 0x0, 0xa, 0x3, 0x2, 0x8, 0x0, 0x2, 0x1, 0x2, 0x2, 0x9, 0x5, 0x0, 0x4e24, 0x4e21}, 0x1, 0x3}, 0x0, 0x3}}}}}}}}, 0x4e)
ioctl$SIOCGSKNS(r7, 0x894c, &(0x7f0000000140)={'ipvlan1\x00', 0x200})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)=@newtfilter={0x24, 0x2c, 0xd2b, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0xb, 0x3}, {}, {0x1, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x800)

731.878081ms ago: executing program 3 (id=1683):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)

582.731333ms ago: executing program 5 (id=1685):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0)

476.129724ms ago: executing program 5 (id=1686):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r0, 0xc0105500, &(0x7f0000000600)={0x20, 0x1, 0x8, 0x3, 0x0, 0x0, 0x0}) (fail_nth: 3)

450.332024ms ago: executing program 3 (id=1687):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xd, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000008000000000001000000180100002020000000000000002020207b1ae9ff00000000bfa108000000000047010000f6ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000100)='GPL\x00', 0x1, 0x1, &(0x7f0000000000)=""/1, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x21, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
r2 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa424e1aa2e0d408004500001402000001"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b0000000200000001000000008000000000000027f5031973040694a3501016931a537d7fd2902e5fc7cd7342db30b1e014d787f7cb4d92d5c3a6e6abc7af8773572af3ac3b4a7d35fd559cbcc2e07a03dca822206c880597dfbd82574964af67a37783f0482267fde53d6f0f1d523a10cfe495d398b795486faa03c85f9d28d03d3638c06f7c9449b214f8df6ab44bd8e1ef85d42299aa651c74319b56642785995dfad7ef3ed2bfecaa71c65c1db123a1b3eee91f508e5e860a2ba5f65298605152b131c1989955b61ec221a680f0207418bbdd69f96bbdd82ea593bb1f97b84d1e3fff594fe732cfe3d8b23a03d6bfd47a39a5cefff1766bb2d81d343bd64cc044d07a63d33632e1c16936714ca46c77f018f16b127e7684b7b49d0ad88a1f5d27e7b22c3b4d0cb71d139db3470fd4dfe5ab36be5044fa8cb8633bef6a3440e6ad91fe500ab1", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000300"/28], 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r3, 0x89e1, &(0x7f0000000140)={0x4})
syz_emit_ethernet(0x7e, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)

230.144917ms ago: executing program 5 (id=1688):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x2, 0x0, 0x5, 0x10024, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x18, 0x8, 0xfff9, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

229.164697ms ago: executing program 2 (id=1689):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x2, 0x0, 0x5, 0x10024, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x18, 0x8, 0xfff9, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @cgroup_sock_addr=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r1, 0xffffffffffffffff, 0x0)

227.947127ms ago: executing program 4 (id=1690):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
pipe2$9p(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'veth0_macvtap\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x2804, 0x0, 0x0, 0x0, 0x400, 0x10001, 0x1, 0x0, 0x0, 0x0, 0x1c0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, 0xffffffffffffffff)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000780)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0xffee}, {0xfff1, 0xffff}, {0x0, 0xe}}}, 0x24}}, 0x40000)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
sendmsg$netlink(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="34000000110001000000000000000000100003400c000000000000000000000014ec300000000000800000000000000000000001"], 0x34}], 0x1, 0x0, 0x0, 0x20000000}, 0x0)

202.429467ms ago: executing program 5 (id=1691):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x3, 0x10, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000005000000000000001807000018110000", @ANYRESDEC, @ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x47, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x2, 0x3}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000340)=[0x1, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffecc1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xf, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r3=>0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f0000000640)=ANY=[@ANYRES32=r1, @ANYRESDEC=r1, @ANYRES8=r1, @ANYRES32=r2, @ANYRES16=r0, @ANYRES64=r0, @ANYRES16], &(0x7f0000000140)='syzkaller\x00', 0x87, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000800))
getsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000000380)={@broadcast, @private}, &(0x7f00000003c0)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='xprtrdma_post_recvs_err\x00', r1, 0x0, 0xf5}, 0x18)
mount_setattr(0xffffffffffffff9c, 0x0, 0x1000, &(0x7f00000000c0)={0x8, 0x82, 0x100000}, 0x20)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x1ff, {0x0, 0x0, 0x0, r3, {0xfff2}, {}, {0x8, 0x10}}}, 0x24}}, 0x0)
futimesat(r4, &(0x7f0000000300)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000340)={{0x77359400}, {0x0, 0x2710}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="180100000009ad7a51c2796b88be7abc45e90000f6000000006debff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e9b34f9bd2c1117, 0x0, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
ioperm(0x1, 0x9, 0xfffffffffffffff8)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000400), 0x4)
epoll_create(0x7e4f3697)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='cachefiles_io_error\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6, 0x0, 0x7}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00'}, 0x10)
getrlimit(0x1, &(0x7f0000000440))
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000200)={@empty, @loopback, @broadcast}, 0xc)
shmctl$IPC_RMID(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)="d8000000320081054e0600000044b904021d080005000200e8fe55e1180015000600142603600e120900210007000401a8001600a40001fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f0000730d16a4683f5aec4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e970107f5d89c84c2f74b", 0xd8}], 0x1, 0x0, 0xffffff11}, 0x0)

200.555818ms ago: executing program 2 (id=1692):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000000), 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x7, 0x100}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0xf, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xc26}, 0x1c)

175.286638ms ago: executing program 2 (id=1693):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@rr={0x7, 0xf, 0x8, [@multicast2, @remote, @multicast2]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

155.565308ms ago: executing program 3 (id=1694):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x1, 0x2000c851, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000540)=ANY=[], 0xed)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)

154.765378ms ago: executing program 1 (id=1695):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18)

125.855399ms ago: executing program 5 (id=1696):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x3, 0x10, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000005000000000000001807000018110000", @ANYRESDEC, @ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x47, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x2, 0x3}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000340)=[0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffecc1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xf, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r3=>0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f0000000640)=ANY=[@ANYRES32=r1, @ANYRESDEC=r1, @ANYRES8=r1, @ANYRES32=r2, @ANYRES16=r0, @ANYRES64=r0, @ANYRES16], &(0x7f0000000140)='syzkaller\x00', 0x87, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000800))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='xprtrdma_post_recvs_err\x00', r1, 0x0, 0xf5}, 0x18)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x1000, &(0x7f00000000c0)={0x8, 0x82, 0x100000}, 0x20)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x1ff, {0x0, 0x0, 0x0, r3, {0xfff2}, {}, {0x8, 0x10}}}, 0x24}}, 0x0)
futimesat(r4, &(0x7f0000000300)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000340)={{0x77359400}, {0x0, 0x2710}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="180100000009ad7a51c2796b88be7abc45e90000f6000000006debff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e9b34f9bd2c1117, 0x0, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
ioperm(0x1, 0x9, 0xfffffffffffffff8)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000400), 0x4)
epoll_create(0x7e4f3697)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='cachefiles_io_error\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6, 0x0, 0x7}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00'}, 0x10)
getrlimit(0x1, &(0x7f0000000440))
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000200)={@empty, @loopback, @broadcast}, 0xc)
shmctl$IPC_RMID(0x0, 0x0)

56.106099ms ago: executing program 2 (id=1697):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0)

55.517859ms ago: executing program 1 (id=1698):
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000000), 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x7, 0x100}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x6, 0xf, 0x5, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r2], 0x4c}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='\x00', 0xc000, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xc26}, 0x1c)
sendto$inet6(r5, &(0x7f0000000080), 0x0, 0x4014, 0x0, 0x0)
shutdown(r5, 0x1)
splice(r5, 0x0, r4, 0x0, 0x8, 0x0)

49.35422ms ago: executing program 5 (id=1699):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000), 0x0)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x1, 0x2000c851, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000540)=ANY=[], 0xed)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00'}, 0x18)
setrlimit(0x6, &(0x7f0000000080)={0xfffffffffffffffd})
io_setup(0x2004, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400001d00000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$MAP_CREATE(0x8001000000000000, &(0x7f0000000840)=ANY=[@ANYBLOB="010000000500000002000000ffff000005000000", @ANYRES8=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00', @ANYRES16], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x8040)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)

0s ago: executing program 2 (id=1700):
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x7f, 0xfffffffe}}, 0x120) (async)
write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000001c0), 0x4) (async)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000140)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
readv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 64)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x4, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0xd15, 0x6, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x9) (async, rerun: 64)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
pipe(&(0x7f0000000040)) (async)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) (async)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe2}]}, 0x10) (async, rerun: 64)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async, rerun: 64)
unshare(0x22020400) (async)
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f00000001c0)=@abs={0x1}, 0x6e)
bind$unix(r5, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 32)
sendmmsg$inet(r4, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000180)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6fc40b5d175e86ac0b7a9fd7f1748af98902340eb3de6f89a6272ddc63ce532e270bc6cba3d229a96e108026bf64d48efc0435d52b40c578d3deb33677cf2ec5fadf9a784f2b2bdc8d978e9e1a788494631d094", 0xe3}, {&(0x7f0000000740)="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", 0x12e}, {&(0x7f0000000f00)}, {&(0x7f0000000480)="4068745fc217775e9fca3477d3c929c1231d710ed7bb68bf2f127cb83703392703f5", 0x22}], 0x4}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000900)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6bb306c7f77c8a00000000000000d037280699ca67e7143e46e026", 0x44}, {&(0x7f0000002700)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d767701", 0x1f}], 0x2}}], 0x2, 0x0) (async, rerun: 32)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3) (async, rerun: 64)
fsopen(&(0x7f0000000000)='sockfs\x00', 0x0) (async, rerun: 64)
sendmsg$FOU_CMD_ADD(r1, 0x0, 0x800)

kernel console output (not intermixed with test programs):

pped to illegal pblock 1 (length 1)
[  110.389217][ T6006] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  110.400760][ T6006] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  110.413842][ T6006] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  110.426367][ T6006] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  110.435319][   T51] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  110.436370][ T6006] EXT4-fs (loop2): 1 orphan inode deleted
[  110.455851][ T6006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.475345][   T51] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  110.499122][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.550841][ T6012] loop2: detected capacity change from 0 to 1024
[  110.584641][ T6015] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  110.591244][ T6012] EXT4-fs: Ignoring removed bh option
[  110.599465][ T6015] program syz.5.891 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  110.608347][ T6012] EXT4-fs: inline encryption not supported
[  110.614940][ T6012] EXT4-fs: Ignoring removed i_version option
[  110.641235][ T6012] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.651949][ T6017] FAULT_INJECTION: forcing a failure.
[  110.651949][ T6017] name failslab, interval 1, probability 0, space 0, times 0
[  110.664805][ T6017] CPU: 1 UID: 0 PID: 6017 Comm: syz.1.892 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  110.664839][ T6017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.664894][ T6017] Call Trace:
[  110.664903][ T6017]  <TASK>
[  110.664914][ T6017]  __dump_stack+0x1d/0x30
[  110.664942][ T6017]  dump_stack_lvl+0xe8/0x140
[  110.664968][ T6017]  dump_stack+0x15/0x1b
[  110.664984][ T6017]  should_fail_ex+0x265/0x280
[  110.665050][ T6017]  ? do_proc_control+0x1d6/0x8b0
[  110.665094][ T6017]  should_failslab+0x8c/0xb0
[  110.665206][ T6017]  __kmalloc_cache_noprof+0x4c/0x320
[  110.665238][ T6017]  do_proc_control+0x1d6/0x8b0
[  110.665283][ T6017]  ? should_fail_ex+0xdb/0x280
[  110.665318][ T6017]  proc_control+0x71/0xa0
[  110.665418][ T6017]  usbdev_ioctl+0x948/0x1710
[  110.665457][ T6017]  ? __pfx_usbdev_ioctl+0x10/0x10
[  110.665509][ T6017]  __se_sys_ioctl+0xcb/0x140
[  110.665532][ T6017]  __x64_sys_ioctl+0x43/0x50
[  110.665562][ T6017]  x64_sys_call+0x19a8/0x2fb0
[  110.665676][ T6017]  do_syscall_64+0xd0/0x1a0
[  110.665709][ T6017]  ? clear_bhb_loop+0x40/0x90
[  110.665745][ T6017]  ? clear_bhb_loop+0x40/0x90
[  110.665766][ T6017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.665787][ T6017] RIP: 0033:0x7f3e73b1e969
[  110.665806][ T6017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.665831][ T6017] RSP: 002b:00007f3e72187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.665879][ T6017] RAX: ffffffffffffffda RBX: 00007f3e73d45fa0 RCX: 00007f3e73b1e969
[  110.665891][ T6017] RDX: 00002000000000c0 RSI: 00000000c0185500 RDI: 0000000000000003
[  110.665912][ T6017] RBP: 00007f3e72187090 R08: 0000000000000000 R09: 0000000000000000
[  110.665929][ T6017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.665945][ T6017] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  110.665970][ T6017]  </TASK>
[  110.885065][ T6012] EXT4-fs error (device loop2): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  110.913097][ T6012] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  110.929951][ T6023] loop1: detected capacity change from 0 to 1024
[  110.934701][ T6012] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  110.950744][ T6012] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  110.964705][  T386] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  110.979861][  T386] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  110.993525][ T6012] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  111.002534][ T6012] EXT4-fs (loop2): 1 orphan inode deleted
[  111.009541][ T6012] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.019888][ T6023] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.055577][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.065820][ T6023] FAULT_INJECTION: forcing a failure.
[  111.065820][ T6023] name failslab, interval 1, probability 0, space 0, times 0
[  111.078543][ T6023] CPU: 0 UID: 0 PID: 6023 Comm: syz.1.894 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  111.078595][ T6023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  111.078613][ T6023] Call Trace:
[  111.078621][ T6023]  <TASK>
[  111.078630][ T6023]  __dump_stack+0x1d/0x30
[  111.078726][ T6023]  dump_stack_lvl+0xe8/0x140
[  111.078826][ T6023]  dump_stack+0x15/0x1b
[  111.078849][ T6023]  should_fail_ex+0x265/0x280
[  111.078894][ T6023]  should_failslab+0x8c/0xb0
[  111.078935][ T6023]  kmem_cache_alloc_noprof+0x50/0x310
[  111.078961][ T6023]  ? __es_insert_extent+0x508/0xee0
[  111.079083][ T6023]  __es_insert_extent+0x508/0xee0
[  111.079118][ T6023]  ? prep_new_page+0x54/0x200
[  111.079150][ T6023]  ? get_page_from_freelist+0x136b/0x13d0
[  111.079185][ T6023]  ? mod_objcg_state+0x40e/0x530
[  111.079225][ T6023]  ? _raw_spin_unlock+0x26/0x50
[  111.079264][ T6023]  ? __dquot_alloc_space+0x1f2/0x8a0
[  111.079304][ T6023]  ext4_es_insert_delayed_extent+0x322/0x8d0
[  111.079353][ T6023]  ext4_da_get_block_prep+0x7bb/0xbb0
[  111.079455][ T6023]  ext4_block_write_begin+0x303/0x970
[  111.079496][ T6023]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  111.079546][ T6023]  ext4_generic_write_inline_data+0x2c7/0x720
[  111.079662][ T6023]  ext4_da_write_begin+0x28d/0x580
[  111.079692][ T6023]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  111.079746][ T6023]  generic_perform_write+0x181/0x490
[  111.079860][ T6023]  ext4_buffered_write_iter+0x1ee/0x3c0
[  111.079894][ T6023]  ext4_file_write_iter+0x383/0xf00
[  111.079924][ T6023]  ? path_openat+0x1bf8/0x2170
[  111.079948][ T6023]  ? _parse_integer_limit+0x170/0x190
[  111.080026][ T6023]  do_iter_readv_writev+0x421/0x4c0
[  111.080075][ T6023]  vfs_writev+0x2c9/0x870
[  111.080102][ T6023]  __se_sys_pwritev2+0xfc/0x1c0
[  111.080136][ T6023]  __x64_sys_pwritev2+0x67/0x80
[  111.080189][ T6023]  x64_sys_call+0x1cea/0x2fb0
[  111.080212][ T6023]  do_syscall_64+0xd0/0x1a0
[  111.080237][ T6023]  ? clear_bhb_loop+0x40/0x90
[  111.080335][ T6023]  ? clear_bhb_loop+0x40/0x90
[  111.080357][ T6023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.080428][ T6023] RIP: 0033:0x7f3e73b1e969
[  111.080444][ T6023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.080463][ T6023] RSP: 002b:00007f3e72187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  111.080584][ T6023] RAX: ffffffffffffffda RBX: 00007f3e73d45fa0 RCX: 00007f3e73b1e969
[  111.080598][ T6023] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000004
[  111.080611][ T6023] RBP: 00007f3e72187090 R08: 0000000000000000 R09: 0000000000000000
[  111.080623][ T6023] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000001
[  111.080704][ T6023] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  111.080722][ T6023]  </TASK>
[  111.086870][ T6023] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  111.379766][ T6023] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 64 with error 28
[  111.392114][ T6023] EXT4-fs (loop1): This should not happen!! Data will be lost
[  111.392114][ T6023] 
[  111.401921][ T6023] EXT4-fs (loop1): Total free blocks count 0
[  111.408078][ T6023] EXT4-fs (loop1): Free/Dirty block details
[  111.414223][ T6023] EXT4-fs (loop1): free_blocks=68451041280
[  111.420073][ T6023] EXT4-fs (loop1): dirty_blocks=64
[  111.425256][ T6023] EXT4-fs (loop1): Block reservation details
[  111.431306][ T6023] EXT4-fs (loop1): i_reserved_data_blocks=4
[  111.456502][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.500071][ T6048] syz.1.900 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  111.701488][ T6062] loop5: detected capacity change from 0 to 128
[  111.718284][ T6062] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  111.745730][ T6062] __nla_validate_parse: 1 callbacks suppressed
[  111.745750][ T6062] netlink: 88 bytes leftover after parsing attributes in process `syz.5.907'.
[  111.850903][ T6068] loop5: detected capacity change from 0 to 2048
[  111.914253][ T6068]  loop5: p3 < > p4 < >
[  111.918498][ T6068] loop5: partition table partially beyond EOD, truncated
[  111.927395][ T6068] loop5: p3 start 4284289 is beyond EOD, truncated
[  112.283979][ T6084] netlink: 'syz.1.917': attribute type 6 has an invalid length.
[  112.342270][ T6092] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  112.349668][ T6092] IPv6: NLM_F_CREATE should be set when creating new route
[  112.389891][ T6095] loop4: detected capacity change from 0 to 2048
[  112.443043][ T6095]  loop4: p3 < > p4 < >
[  112.447282][ T6095] loop4: partition table partially beyond EOD, truncated
[  112.454426][ T6095] loop4: p3 start 4284289 is beyond EOD, truncated
[  112.557363][ T6097] netlink: 4 bytes leftover after parsing attributes in process `syz.4.923'.
[  112.566791][ T6097] netlink: 20 bytes leftover after parsing attributes in process `syz.4.923'.
[  112.692489][ T6106] loop4: detected capacity change from 0 to 512
[  112.821559][ T6109] loop1: detected capacity change from 0 to 1024
[  112.828492][ T6109] EXT4-fs: Ignoring removed orlov option
[  112.837125][ T6109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.864167][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.891312][ T6112] FAULT_INJECTION: forcing a failure.
[  112.891312][ T6112] name failslab, interval 1, probability 0, space 0, times 0
[  112.904178][ T6112] CPU: 0 UID: 0 PID: 6112 Comm: syz.1.928 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  112.904249][ T6112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  112.904262][ T6112] Call Trace:
[  112.904268][ T6112]  <TASK>
[  112.904277][ T6112]  __dump_stack+0x1d/0x30
[  112.904317][ T6112]  dump_stack_lvl+0xe8/0x140
[  112.904342][ T6112]  dump_stack+0x15/0x1b
[  112.904366][ T6112]  should_fail_ex+0x265/0x280
[  112.904412][ T6112]  should_failslab+0x8c/0xb0
[  112.904492][ T6112]  kmem_cache_alloc_node_noprof+0x57/0x320
[  112.904526][ T6112]  ? __alloc_skb+0x101/0x320
[  112.904602][ T6112]  __alloc_skb+0x101/0x320
[  112.904666][ T6112]  ? audit_log_start+0x365/0x6c0
[  112.904703][ T6112]  audit_log_start+0x380/0x6c0
[  112.904737][ T6112]  audit_seccomp+0x48/0x100
[  112.904843][ T6112]  ? __seccomp_filter+0x68c/0x10d0
[  112.904900][ T6112]  __seccomp_filter+0x69d/0x10d0
[  112.904923][ T6112]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  112.904952][ T6112]  ? vfs_write+0x75e/0x8d0
[  112.905056][ T6112]  __secure_computing+0x82/0x150
[  112.905077][ T6112]  syscall_trace_enter+0xcf/0x1e0
[  112.905104][ T6112]  do_syscall_64+0xaa/0x1a0
[  112.905132][ T6112]  ? clear_bhb_loop+0x40/0x90
[  112.905167][ T6112]  ? clear_bhb_loop+0x40/0x90
[  112.905195][ T6112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.905222][ T6112] RIP: 0033:0x7f3e73b1e969
[  112.905238][ T6112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.905257][ T6112] RSP: 002b:00007f3e72187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  112.905275][ T6112] RAX: ffffffffffffffda RBX: 00007f3e73d45fa0 RCX: 00007f3e73b1e969
[  112.905343][ T6112] RDX: 0000000000000002 RSI: 00002000000025c0 RDI: 0000000000000003
[  112.905396][ T6112] RBP: 00007f3e72187090 R08: 0000000000000000 R09: 0000000000000000
[  112.905412][ T6112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.905428][ T6112] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  112.905556][ T6112]  </TASK>
[  113.210582][ T6124] loop1: detected capacity change from 0 to 512
[  113.231770][ T6124] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  113.252916][ T6124] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.935: invalid block
[  113.266657][ T6124] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.935: invalid indirect mapped block 4294967295 (level 1)
[  113.287473][ T6124] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.935: invalid indirect mapped block 4294967295 (level 1)
[  113.312975][ T6124] EXT4-fs (loop1): 2 truncates cleaned up
[  113.319215][ T6124] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.336348][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.1.935'.
[  113.349262][ T6134] FAULT_INJECTION: forcing a failure.
[  113.349262][ T6134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.362482][ T6134] CPU: 1 UID: 0 PID: 6134 Comm: syz.2.939 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  113.362586][ T6134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  113.362602][ T6134] Call Trace:
[  113.362608][ T6134]  <TASK>
[  113.362616][ T6134]  __dump_stack+0x1d/0x30
[  113.362664][ T6134]  dump_stack_lvl+0xe8/0x140
[  113.362686][ T6134]  dump_stack+0x15/0x1b
[  113.362707][ T6134]  should_fail_ex+0x265/0x280
[  113.362774][ T6134]  should_fail+0xb/0x20
[  113.362849][ T6134]  should_fail_usercopy+0x1a/0x20
[  113.362875][ T6134]  _copy_from_user+0x1c/0xb0
[  113.362904][ T6134]  ucma_join_multicast+0x52/0xe0
[  113.363000][ T6134]  ucma_write+0x1b0/0x250
[  113.363026][ T6134]  ? __pfx_ucma_write+0x10/0x10
[  113.363114][ T6134]  vfs_write+0x266/0x8d0
[  113.363141][ T6134]  ? __rcu_read_unlock+0x4f/0x70
[  113.363233][ T6134]  ? __fget_files+0x184/0x1c0
[  113.363275][ T6134]  ksys_write+0xda/0x1a0
[  113.363382][ T6134]  __x64_sys_write+0x40/0x50
[  113.363481][ T6134]  x64_sys_call+0x2cdd/0x2fb0
[  113.363506][ T6134]  do_syscall_64+0xd0/0x1a0
[  113.363533][ T6134]  ? clear_bhb_loop+0x40/0x90
[  113.363595][ T6134]  ? clear_bhb_loop+0x40/0x90
[  113.363617][ T6134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.363637][ T6134] RIP: 0033:0x7fd6c6eee969
[  113.363656][ T6134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.363680][ T6134] RSP: 002b:00007fd6c5557038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.363713][ T6134] RAX: ffffffffffffffda RBX: 00007fd6c7115fa0 RCX: 00007fd6c6eee969
[  113.363727][ T6134] RDX: 00000000000000a0 RSI: 0000200000000980 RDI: 0000000000000006
[  113.363743][ T6134] RBP: 00007fd6c5557090 R08: 0000000000000000 R09: 0000000000000000
[  113.363759][ T6134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.363775][ T6134] R13: 0000000000000000 R14: 00007fd6c7115fa0 R15: 00007ffe1530c318
[  113.363863][ T6134]  </TASK>
[  113.388653][ T6137] netlink: 388 bytes leftover after parsing attributes in process `syz.5.940'.
[  113.414264][   T29] kauditd_printk_skb: 346 callbacks suppressed
[  113.414284][   T29] audit: type=1400 audit(1747895213.814:2847): avc:  denied  { create } for  pid=6135 comm="syz.4.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  113.599320][   T29] audit: type=1400 audit(1747895213.814:2848): avc:  denied  { getopt } for  pid=6135 comm="syz.4.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  113.621593][   T29] audit: type=1400 audit(1747895213.944:2849): avc:  denied  { open } for  pid=6135 comm="syz.4.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  113.640836][   T29] audit: type=1400 audit(1747895213.944:2850): avc:  denied  { kernel } for  pid=6135 comm="syz.4.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  113.671439][   T29] audit: type=1400 audit(1747895214.084:2851): avc:  denied  { unmount } for  pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  113.701822][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.760659][ T6146] openvswitch: netlink: Message has 6 unknown bytes.
[  113.819857][ T6157] loop1: detected capacity change from 0 to 512
[  113.831729][   T29] audit: type=1326 audit(1747895214.254:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.5.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  113.855400][   T29] audit: type=1326 audit(1747895214.254:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.5.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  113.869739][ T6163] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  113.881939][   T29] audit: type=1326 audit(1747895214.254:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.5.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  113.909449][   T29] audit: type=1326 audit(1747895214.254:2855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.5.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  113.933195][   T29] audit: type=1326 audit(1747895214.254:2856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.5.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  113.978121][ T6170] netlink: 388 bytes leftover after parsing attributes in process `syz.2.951'.
[  113.989645][ T6157] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.002398][ T6157] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.088252][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.149341][ T6180] loop1: detected capacity change from 0 to 1024
[  114.164035][ T6180] EXT4-fs: Ignoring removed orlov option
[  114.167298][ T6177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.955'.
[  114.181643][ T6183] loop2: detected capacity change from 0 to 512
[  114.290134][ T6180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.355632][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.378385][ T6191] loop3: detected capacity change from 0 to 512
[  114.385028][ T6191] ext4: Bad value for 'sb'
[  114.559290][ T6204] FAULT_INJECTION: forcing a failure.
[  114.559290][ T6204] name failslab, interval 1, probability 0, space 0, times 0
[  114.572079][ T6204] CPU: 1 UID: 0 PID: 6204 Comm: syz.1.966 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  114.572177][ T6204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.572225][ T6204] Call Trace:
[  114.572232][ T6204]  <TASK>
[  114.572240][ T6204]  __dump_stack+0x1d/0x30
[  114.572262][ T6204]  dump_stack_lvl+0xe8/0x140
[  114.572281][ T6204]  dump_stack+0x15/0x1b
[  114.572345][ T6204]  should_fail_ex+0x265/0x280
[  114.572391][ T6204]  should_failslab+0x8c/0xb0
[  114.572504][ T6204]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  114.572529][ T6204]  ? sidtab_sid2str_get+0xa0/0x130
[  114.572640][ T6204]  ? skb_put+0xa9/0xf0
[  114.572769][ T6204]  kmemdup_noprof+0x2b/0x70
[  114.572798][ T6204]  sidtab_sid2str_get+0xa0/0x130
[  114.572839][ T6204]  security_sid_to_context_core+0x1eb/0x2e0
[  114.572946][ T6204]  security_sid_to_context+0x27/0x40
[  114.572975][ T6204]  avc_audit_post_callback+0x9d/0x520
[  114.573021][ T6204]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  114.573117][ T6204]  common_lsm_audit+0x1b8/0x230
[  114.573150][ T6204]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  114.573196][ T6204]  ? avc_denied+0xe4/0x100
[  114.573249][ T6204]  slow_avc_audit+0x104/0x140
[  114.573297][ T6204]  avc_has_perm+0x128/0x150
[  114.573323][ T6204]  selinux_socket_sendmsg+0x175/0x1b0
[  114.573405][ T6204]  security_socket_sendmsg+0x48/0x80
[  114.573436][ T6204]  __sock_sendmsg+0x30/0x180
[  114.573482][ T6204]  __sys_sendto+0x268/0x330
[  114.573537][ T6204]  __x64_sys_sendto+0x76/0x90
[  114.573618][ T6204]  x64_sys_call+0x2eb6/0x2fb0
[  114.573646][ T6204]  do_syscall_64+0xd0/0x1a0
[  114.573684][ T6204]  ? clear_bhb_loop+0x40/0x90
[  114.573717][ T6204]  ? clear_bhb_loop+0x40/0x90
[  114.573746][ T6204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.573839][ T6204] RIP: 0033:0x7f3e73b1e969
[  114.573856][ T6204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.573877][ T6204] RSP: 002b:00007f3e72187038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  114.573911][ T6204] RAX: ffffffffffffffda RBX: 00007f3e73d45fa0 RCX: 00007f3e73b1e969
[  114.573993][ T6204] RDX: 0000000000000004 RSI: 0000200000000000 RDI: 0000000000000006
[  114.574005][ T6204] RBP: 00007f3e72187090 R08: 0000200000000040 R09: 0000000000000014
[  114.574017][ T6204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.574033][ T6204] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  114.574119][ T6204]  </TASK>
[  114.917105][ T6208] TCP: TCP_TX_DELAY enabled
[  115.360782][ T6239] loop2: detected capacity change from 0 to 512
[  115.759032][ T6250] FAULT_INJECTION: forcing a failure.
[  115.759032][ T6250] name failslab, interval 1, probability 0, space 0, times 0
[  115.771820][ T6250] CPU: 1 UID: 0 PID: 6250 Comm: +}[@ Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  115.771923][ T6250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.772010][ T6250] Call Trace:
[  115.772017][ T6250]  <TASK>
[  115.772065][ T6250]  __dump_stack+0x1d/0x30
[  115.772086][ T6250]  dump_stack_lvl+0xe8/0x140
[  115.772106][ T6250]  dump_stack+0x15/0x1b
[  115.772130][ T6250]  should_fail_ex+0x265/0x280
[  115.772186][ T6250]  should_failslab+0x8c/0xb0
[  115.772228][ T6250]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  115.772286][ T6250]  ? sidtab_sid2str_get+0xa0/0x130
[  115.772467][ T6250]  ? skb_put+0xa9/0xf0
[  115.772513][ T6250]  kmemdup_noprof+0x2b/0x70
[  115.772539][ T6250]  sidtab_sid2str_get+0xa0/0x130
[  115.772579][ T6250]  security_sid_to_context_core+0x1eb/0x2e0
[  115.772678][ T6250]  security_sid_to_context+0x27/0x40
[  115.772766][ T6250]  avc_audit_post_callback+0x9d/0x520
[  115.772810][ T6250]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  115.772912][ T6250]  common_lsm_audit+0x1b8/0x230
[  115.772939][ T6250]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  115.772981][ T6250]  slow_avc_audit+0x104/0x140
[  115.773136][ T6250]  avc_has_perm+0x128/0x150
[  115.773164][ T6250]  selinux_socket_sendmsg+0x175/0x1b0
[  115.773202][ T6250]  security_socket_sendmsg+0x48/0x80
[  115.773235][ T6250]  __sock_sendmsg+0x30/0x180
[  115.773371][ T6250]  ____sys_sendmsg+0x31e/0x4e0
[  115.773403][ T6250]  ___sys_sendmsg+0x17b/0x1d0
[  115.773479][ T6250]  __x64_sys_sendmsg+0xd4/0x160
[  115.773585][ T6250]  x64_sys_call+0x2999/0x2fb0
[  115.773612][ T6250]  do_syscall_64+0xd0/0x1a0
[  115.773644][ T6250]  ? clear_bhb_loop+0x40/0x90
[  115.773673][ T6250]  ? clear_bhb_loop+0x40/0x90
[  115.773700][ T6250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.773762][ T6250] RIP: 0033:0x7fd6c6eee969
[  115.773781][ T6250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.773806][ T6250] RSP: 002b:00007fd6c5557038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.773832][ T6250] RAX: ffffffffffffffda RBX: 00007fd6c7115fa0 RCX: 00007fd6c6eee969
[  115.773849][ T6250] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  115.773889][ T6250] RBP: 00007fd6c5557090 R08: 0000000000000000 R09: 0000000000000000
[  115.773952][ T6250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.773966][ T6250] R13: 0000000000000000 R14: 00007fd6c7115fa0 R15: 00007ffe1530c318
[  115.774026][ T6250]  </TASK>
[  116.108987][ T6256] FAULT_INJECTION: forcing a failure.
[  116.108987][ T6256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.122308][ T6256] CPU: 1 UID: 0 PID: 6256 Comm: syz.4.981 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  116.122341][ T6256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.122355][ T6256] Call Trace:
[  116.122362][ T6256]  <TASK>
[  116.122370][ T6256]  __dump_stack+0x1d/0x30
[  116.122391][ T6256]  dump_stack_lvl+0xe8/0x140
[  116.122483][ T6256]  dump_stack+0x15/0x1b
[  116.122502][ T6256]  should_fail_ex+0x265/0x280
[  116.122548][ T6256]  should_fail+0xb/0x20
[  116.122615][ T6256]  should_fail_usercopy+0x1a/0x20
[  116.122642][ T6256]  _copy_to_user+0x20/0xa0
[  116.122669][ T6256]  simple_read_from_buffer+0xb5/0x130
[  116.122700][ T6256]  proc_fail_nth_read+0x100/0x140
[  116.122801][ T6256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.122835][ T6256]  vfs_read+0x19d/0x6f0
[  116.122916][ T6256]  ? __rcu_read_unlock+0x4f/0x70
[  116.122945][ T6256]  ? __rcu_read_unlock+0x4f/0x70
[  116.122988][ T6256]  ? __fget_files+0x184/0x1c0
[  116.123032][ T6256]  ksys_read+0xda/0x1a0
[  116.123069][ T6256]  __x64_sys_read+0x40/0x50
[  116.123137][ T6256]  x64_sys_call+0x2d77/0x2fb0
[  116.123222][ T6256]  do_syscall_64+0xd0/0x1a0
[  116.123246][ T6256]  ? clear_bhb_loop+0x40/0x90
[  116.123315][ T6256]  ? clear_bhb_loop+0x40/0x90
[  116.123336][ T6256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.123359][ T6256] RIP: 0033:0x7f3f4c64d37c
[  116.123380][ T6256] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  116.123426][ T6256] RSP: 002b:00007f3f4acb7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  116.123451][ T6256] RAX: ffffffffffffffda RBX: 00007f3f4c875fa0 RCX: 00007f3f4c64d37c
[  116.123465][ T6256] RDX: 000000000000000f RSI: 00007f3f4acb70a0 RDI: 0000000000000004
[  116.123477][ T6256] RBP: 00007f3f4acb7090 R08: 0000000000000000 R09: 0000000000000000
[  116.123492][ T6256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.123509][ T6256] R13: 0000000000000000 R14: 00007f3f4c875fa0 R15: 00007fff1d071d68
[  116.123532][ T6256]  </TASK>
[  116.956980][ T6283] loop5: detected capacity change from 0 to 1024
[  116.993078][ T6283] EXT4-fs: Ignoring removed orlov option
[  117.044805][ T6283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.071554][ T5430] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.320247][ T6298] FAULT_INJECTION: forcing a failure.
[  117.320247][ T6298] name failslab, interval 1, probability 0, space 0, times 0
[  117.333024][ T6298] CPU: 1 UID: 0 PID: 6298 Comm: syz.2.995 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  117.333061][ T6298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.333079][ T6298] Call Trace:
[  117.333087][ T6298]  <TASK>
[  117.333175][ T6298]  __dump_stack+0x1d/0x30
[  117.333216][ T6298]  dump_stack_lvl+0xe8/0x140
[  117.333301][ T6298]  dump_stack+0x15/0x1b
[  117.333324][ T6298]  should_fail_ex+0x265/0x280
[  117.333368][ T6298]  should_failslab+0x8c/0xb0
[  117.333448][ T6298]  kmem_cache_alloc_node_noprof+0x57/0x320
[  117.333478][ T6298]  ? __alloc_skb+0x101/0x320
[  117.333585][ T6298]  __alloc_skb+0x101/0x320
[  117.333617][ T6298]  ? audit_log_start+0x365/0x6c0
[  117.333656][ T6298]  audit_log_start+0x380/0x6c0
[  117.333753][ T6298]  audit_seccomp+0x48/0x100
[  117.333788][ T6298]  ? __seccomp_filter+0x68c/0x10d0
[  117.333811][ T6298]  __seccomp_filter+0x69d/0x10d0
[  117.333835][ T6298]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  117.333929][ T6298]  ? vfs_write+0x75e/0x8d0
[  117.333964][ T6298]  ? __rcu_read_unlock+0x4f/0x70
[  117.333991][ T6298]  ? __fget_files+0x184/0x1c0
[  117.334127][ T6298]  __secure_computing+0x82/0x150
[  117.334149][ T6298]  syscall_trace_enter+0xcf/0x1e0
[  117.334254][ T6298]  do_syscall_64+0xaa/0x1a0
[  117.334280][ T6298]  ? clear_bhb_loop+0x40/0x90
[  117.334331][ T6298]  ? clear_bhb_loop+0x40/0x90
[  117.334360][ T6298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.334389][ T6298] RIP: 0033:0x7fd6c6eee969
[  117.334408][ T6298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.334430][ T6298] RSP: 002b:00007fd6c5557038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  117.334480][ T6298] RAX: ffffffffffffffda RBX: 00007fd6c7115fa0 RCX: 00007fd6c6eee969
[  117.334497][ T6298] RDX: 000000000000009d RSI: 0000200000000440 RDI: 0000000000000000
[  117.334513][ T6298] RBP: 00007fd6c5557090 R08: 0000000000000000 R09: 0000000000000000
[  117.334526][ T6298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.334610][ T6298] R13: 0000000000000000 R14: 00007fd6c7115fa0 R15: 00007ffe1530c318
[  117.334634][ T6298]  </TASK>
[  117.336955][ T6294] netlink: 4 bytes leftover after parsing attributes in process `syz.4.994'.
[  117.584338][ T6304] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  117.591596][ T6304] IPv6: NLM_F_CREATE should be set when creating new route
[  117.646016][ T6308] bridge0: entered promiscuous mode
[  117.656802][ T6308] netlink: 'syz.3.998': attribute type 18 has an invalid length.
[  117.756949][ T6314] loop3: detected capacity change from 0 to 2048
[  117.795273][ T6314] Alternate GPT is invalid, using primary GPT.
[  117.801708][ T6314]  loop3: p2 p3 p7
[  117.825783][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1000'.
[  117.859087][ T6314] syzkaller1: entered promiscuous mode
[  117.864774][ T6314] syzkaller1: entered allmulticast mode
[  117.875629][ T6324] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1004'.
[  117.899221][ T6314] IPv6: Can't replace route, no match found
[  118.015219][ T6335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1008'.
[  118.198666][ T6346] loop1: detected capacity change from 0 to 1024
[  118.217905][ T6346] EXT4-fs: Ignoring removed orlov option
[  118.235201][ T6346] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.284626][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.316761][ T6353] netlink: 'syz.1.1012': attribute type 6 has an invalid length.
[  118.423626][   T29] kauditd_printk_skb: 337 callbacks suppressed
[  118.423645][   T29] audit: type=1326 audit(1747895218.844:3192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc12812d41f code=0x7ffc0000
[  118.466341][   T29] audit: type=1326 audit(1747895218.844:3193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc12812e9f7 code=0x7ffc0000
[  118.471943][ T6369] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  118.489803][   T29] audit: type=1326 audit(1747895218.874:3194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc12812d2d0 code=0x7ffc0000
[  118.520602][   T29] audit: type=1326 audit(1747895218.874:3195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc12812d5ca code=0x7ffc0000
[  118.543978][   T29] audit: type=1326 audit(1747895218.874:3196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  118.567497][   T29] audit: type=1326 audit(1747895218.874:3197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6330 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  118.651878][   T29] audit: type=1400 audit(1747895219.054:3198): avc:  denied  { associate } for  pid=6365 comm="syz.4.1019" name="memory.events" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  118.716641][ T6374] netlink: 388 bytes leftover after parsing attributes in process `syz.2.1021'.
[  118.763026][ T6378] loop4: detected capacity change from 0 to 1024
[  118.769861][ T6378] EXT4-fs: Ignoring removed orlov option
[  118.789336][ T6378] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.806027][   T29] audit: type=1326 audit(1747895219.224:3199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6377 comm="syz.4.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  118.842380][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.877368][   T29] audit: type=1326 audit(1747895219.244:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6377 comm="syz.4.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  118.900910][   T29] audit: type=1326 audit(1747895219.244:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6377 comm="syz.4.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  118.932054][ T6380] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1022'.
[  118.954663][ T6376] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1022'.
[  118.995542][ T6395] openvswitch: netlink: Message has 6 unknown bytes.
[  119.142427][ T6413] loop1: detected capacity change from 0 to 512
[  119.154871][ T6413] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  119.185369][ T6413] tmpfs: Unknown parameter 'n'
[  119.191989][ T6408] openvswitch: netlink: Message has 6 unknown bytes.
[  119.324204][ T6415] loop3: detected capacity change from 0 to 2048
[  119.386335][ T6415]  loop3: p3 < > p4 < >
[  119.390714][ T6415] loop3: partition table partially beyond EOD, truncated
[  119.431564][ T6415] loop3: p3 start 4284289 is beyond EOD, truncated
[  119.520301][ T6425] loop1: detected capacity change from 0 to 2048
[  119.520660][ T6427] bridge0: entered promiscuous mode
[  119.568742][ T6425]  loop1: p3 < > p4 < >
[  119.572970][ T6425] loop1: partition table partially beyond EOD, truncated
[  119.597025][ T6430] loop3: detected capacity change from 0 to 512
[  119.602817][ T6425] loop1: p3 start 4284289 is beyond EOD, truncated
[  119.635517][ T6433] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1041'.
[  119.659016][ T6430] EXT4-fs: Ignoring removed bh option
[  119.707923][ T6430] ext3: Unknown parameter 'noacl'
[  119.797991][ T6449] loop3: detected capacity change from 0 to 512
[  120.004417][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1048'.
[  120.043861][ T6456] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1048'.
[  120.333941][ T6474] FAULT_INJECTION: forcing a failure.
[  120.333941][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  120.346688][ T6474] CPU: 0 UID: 0 PID: 6474 Comm: syz.5.1056 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  120.346719][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  120.346732][ T6474] Call Trace:
[  120.346738][ T6474]  <TASK>
[  120.346746][ T6474]  __dump_stack+0x1d/0x30
[  120.346837][ T6474]  dump_stack_lvl+0xe8/0x140
[  120.346863][ T6474]  dump_stack+0x15/0x1b
[  120.346882][ T6474]  should_fail_ex+0x265/0x280
[  120.346921][ T6474]  should_failslab+0x8c/0xb0
[  120.346994][ T6474]  kmem_cache_alloc_noprof+0x50/0x310
[  120.347014][ T6474]  ? create_new_namespaces+0x3c/0x410
[  120.347083][ T6474]  ? __rcu_read_unlock+0x4f/0x70
[  120.347108][ T6474]  create_new_namespaces+0x3c/0x410
[  120.347187][ T6474]  __se_sys_setns+0x1b8/0xf10
[  120.347303][ T6474]  __x64_sys_setns+0x31/0x40
[  120.347421][ T6474]  x64_sys_call+0x2e95/0x2fb0
[  120.347443][ T6474]  do_syscall_64+0xd0/0x1a0
[  120.347476][ T6474]  ? clear_bhb_loop+0x40/0x90
[  120.347504][ T6474]  ? clear_bhb_loop+0x40/0x90
[  120.347534][ T6474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.347638][ T6474] RIP: 0033:0x7f2b0732e969
[  120.347658][ T6474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.347682][ T6474] RSP: 002b:00007f2b05997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  120.347706][ T6474] RAX: ffffffffffffffda RBX: 00007f2b07555fa0 RCX: 00007f2b0732e969
[  120.347723][ T6474] RDX: 0000000000000000 RSI: 0000000024020000 RDI: 0000000000000006
[  120.347739][ T6474] RBP: 00007f2b05997090 R08: 0000000000000000 R09: 0000000000000000
[  120.347821][ T6474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.347838][ T6474] R13: 0000000000000000 R14: 00007f2b07555fa0 R15: 00007fff34ac64d8
[  120.347864][ T6474]  </TASK>
[  120.639215][ T6480] FAULT_INJECTION: forcing a failure.
[  120.639215][ T6480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.652666][ T6480] CPU: 1 UID: 0 PID: 6480 Comm: syz.4.1059 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  120.652704][ T6480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  120.652786][ T6480] Call Trace:
[  120.652794][ T6480]  <TASK>
[  120.652803][ T6480]  __dump_stack+0x1d/0x30
[  120.652830][ T6480]  dump_stack_lvl+0xe8/0x140
[  120.652865][ T6480]  dump_stack+0x15/0x1b
[  120.652917][ T6480]  should_fail_ex+0x265/0x280
[  120.652953][ T6480]  should_fail+0xb/0x20
[  120.652983][ T6480]  should_fail_usercopy+0x1a/0x20
[  120.653076][ T6480]  _copy_from_user+0x1c/0xb0
[  120.653213][ T6480]  ucma_join_multicast+0x52/0xe0
[  120.653263][ T6480]  ucma_write+0x1b0/0x250
[  120.653390][ T6480]  ? __pfx_ucma_write+0x10/0x10
[  120.653479][ T6480]  vfs_write+0x266/0x8d0
[  120.653506][ T6480]  ? __rcu_read_unlock+0x4f/0x70
[  120.653528][ T6480]  ? __fget_files+0x184/0x1c0
[  120.653562][ T6480]  ksys_write+0xda/0x1a0
[  120.653647][ T6480]  __x64_sys_write+0x40/0x50
[  120.653740][ T6480]  x64_sys_call+0x2cdd/0x2fb0
[  120.653767][ T6480]  do_syscall_64+0xd0/0x1a0
[  120.653791][ T6480]  ? clear_bhb_loop+0x40/0x90
[  120.653814][ T6480]  ? clear_bhb_loop+0x40/0x90
[  120.653844][ T6480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.653872][ T6480] RIP: 0033:0x7f3f4c64e969
[  120.653892][ T6480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.653917][ T6480] RSP: 002b:00007f3f4acb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  120.653942][ T6480] RAX: ffffffffffffffda RBX: 00007f3f4c875fa0 RCX: 00007f3f4c64e969
[  120.654036][ T6480] RDX: 00000000000000a0 RSI: 0000200000000980 RDI: 0000000000000005
[  120.654050][ T6480] RBP: 00007f3f4acb7090 R08: 0000000000000000 R09: 0000000000000000
[  120.654062][ T6480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.654074][ T6480] R13: 0000000000000000 R14: 00007f3f4c875fa0 R15: 00007fff1d071d68
[  120.654093][ T6480]  </TASK>
[  121.124362][ T6506] loop3: detected capacity change from 0 to 2048
[  121.171504][ T6506]  loop3: p3 < > p4 < >
[  121.175743][ T6506] loop3: partition table partially beyond EOD, truncated
[  121.183283][ T6506] loop3: p3 start 4284289 is beyond EOD, truncated
[  121.971415][ T6560] loop4: detected capacity change from 0 to 1024
[  121.979302][ T6560] EXT4-fs: Ignoring removed orlov option
[  121.992436][ T6560] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.074392][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.325423][ T6576] usb usb8: usbfs: process 6576 (syz.3.1092) did not claim interface 0 before use
[  122.559203][ T6586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.568400][ T6586] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.624210][ T6590] FAULT_INJECTION: forcing a failure.
[  122.624210][ T6590] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.637415][ T6590] CPU: 1 UID: 0 PID: 6590 Comm: syz.3.1096 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  122.637447][ T6590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  122.637459][ T6590] Call Trace:
[  122.637467][ T6590]  <TASK>
[  122.637532][ T6590]  __dump_stack+0x1d/0x30
[  122.637559][ T6590]  dump_stack_lvl+0xe8/0x140
[  122.637610][ T6590]  dump_stack+0x15/0x1b
[  122.637632][ T6590]  should_fail_ex+0x265/0x280
[  122.637697][ T6590]  should_fail+0xb/0x20
[  122.637732][ T6590]  should_fail_usercopy+0x1a/0x20
[  122.637751][ T6590]  _copy_from_iter+0xcf/0xdd0
[  122.637771][ T6590]  ? __build_skb_around+0x1a0/0x200
[  122.637863][ T6590]  ? __alloc_skb+0x223/0x320
[  122.637902][ T6590]  netlink_sendmsg+0x471/0x6b0
[  122.637924][ T6590]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.637944][ T6590]  __sock_sendmsg+0x145/0x180
[  122.638023][ T6590]  ____sys_sendmsg+0x31e/0x4e0
[  122.638050][ T6590]  ___sys_sendmsg+0x17b/0x1d0
[  122.638089][ T6590]  __x64_sys_sendmsg+0xd4/0x160
[  122.638145][ T6590]  x64_sys_call+0x2999/0x2fb0
[  122.638174][ T6590]  do_syscall_64+0xd0/0x1a0
[  122.638206][ T6590]  ? clear_bhb_loop+0x40/0x90
[  122.638260][ T6590]  ? clear_bhb_loop+0x40/0x90
[  122.638289][ T6590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.638310][ T6590] RIP: 0033:0x7fc12812e969
[  122.638325][ T6590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.638344][ T6590] RSP: 002b:00007fc126797038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.638436][ T6590] RAX: ffffffffffffffda RBX: 00007fc128355fa0 RCX: 00007fc12812e969
[  122.638464][ T6590] RDX: 0000000004004000 RSI: 0000200000000180 RDI: 0000000000000003
[  122.638477][ T6590] RBP: 00007fc126797090 R08: 0000000000000000 R09: 0000000000000000
[  122.638488][ T6590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.638500][ T6590] R13: 0000000000000000 R14: 00007fc128355fa0 R15: 00007ffcb10fa738
[  122.638522][ T6590]  </TASK>
[  123.120475][ T6599] loop4: detected capacity change from 0 to 1024
[  123.157691][ T6599] EXT4-fs: Ignoring removed bh option
[  123.183579][ T6599] EXT4-fs: inline encryption not supported
[  123.189614][ T6599] EXT4-fs: Ignoring removed i_version option
[  123.196804][ T6599] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  123.208577][ T6594] loop3: detected capacity change from 0 to 512
[  123.234043][ T6599] EXT4-fs error (device loop4): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  123.255147][ T6594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.282847][ T6594] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.326569][ T6599] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  123.354929][ T6597] smc: net device bond0 applied user defined pnetid SYZ0
[  123.363021][ T6597] smc: net device bond0 erased user defined pnetid SYZ0
[  123.373161][ T6599] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  123.386510][ T6599] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  123.398806][   T31] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  123.419079][ T6599] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  123.425579][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 0
[  123.440893][ T6599] EXT4-fs (loop4): 1 orphan inode deleted
[  123.453138][ T6599] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.508339][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.532346][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.557170][   T29] kauditd_printk_skb: 267 callbacks suppressed
[  123.557190][   T29] audit: type=1326 audit(1747895223.974:3466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.611820][   T29] audit: type=1326 audit(1747895223.974:3467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.635388][   T29] audit: type=1326 audit(1747895223.974:3468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.658944][   T29] audit: type=1326 audit(1747895223.974:3469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.682894][   T29] audit: type=1326 audit(1747895223.974:3470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.706400][   T29] audit: type=1326 audit(1747895223.974:3471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.730265][   T29] audit: type=1326 audit(1747895223.974:3472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.753782][   T29] audit: type=1326 audit(1747895223.974:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.777230][   T29] audit: type=1326 audit(1747895223.974:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.800683][   T29] audit: type=1326 audit(1747895223.974:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6613 comm="syz.3.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc12812e969 code=0x7ffc0000
[  123.845645][ T6617] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  123.855590][ T6617] bridge1: entered allmulticast mode
[  123.916581][ T6625] loop3: detected capacity change from 0 to 1024
[  123.942055][ T6625] EXT4-fs: Ignoring removed orlov option
[  123.953732][ T6625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.990289][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.159888][ T6650] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  124.170059][ T6650] bridge1: entered allmulticast mode
[  124.712250][ T6677] loop3: detected capacity change from 0 to 512
[  124.739764][ T6679] netlink: 'syz.4.1132': attribute type 6 has an invalid length.
[  124.960871][ T6688] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  124.970956][ T6688] bridge1: entered allmulticast mode
[  125.163718][ T6677] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1131: Failed to acquire dquot type 1
[  125.176779][ T6677] EXT4-fs (loop3): 1 truncate cleaned up
[  125.195693][ T6677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.222129][ T6696] bridge0: entered promiscuous mode
[  125.245604][ T6677] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.287399][ T6699] loop1: detected capacity change from 0 to 2048
[  125.352671][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.383442][ T6699]  loop1: p3 < > p4 < >
[  125.387637][ T6699] loop1: partition table partially beyond EOD, truncated
[  125.395799][ T6699] loop1: p3 start 4284289 is beyond EOD, truncated
[  125.451985][ T6703] loop3: detected capacity change from 0 to 1024
[  125.471691][ T6703] EXT4-fs: Ignoring removed bh option
[  125.483460][ T6703] EXT4-fs: inline encryption not supported
[  125.489303][ T6703] EXT4-fs: Ignoring removed i_version option
[  125.499277][ T6710] __nla_validate_parse: 5 callbacks suppressed
[  125.499291][ T6710] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1143'.
[  125.567701][ T6703] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  125.591311][ T6703] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  125.606542][ T6703] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  125.617940][ T6703] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  125.632031][ T6703] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  125.645472][   T51] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  125.660072][ T6703] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  125.691245][ T6703] EXT4-fs (loop3): 1 orphan inode deleted
[  125.699386][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  125.727079][ T6703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.790665][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.838462][ T6732] loop3: detected capacity change from 0 to 1024
[  125.854128][ T6732] EXT4-fs: Ignoring removed bh option
[  125.868245][ T6732] EXT4-fs: inline encryption not supported
[  125.874172][ T6732] EXT4-fs: Ignoring removed i_version option
[  125.896723][ T6732] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  125.912099][ T6732] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  125.927477][ T6732] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  125.938581][ T6732] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  125.953043][ T6732] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  125.966505][ T6732] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  125.975255][ T6732] EXT4-fs (loop3): 1 orphan inode deleted
[  125.981590][ T6732] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.987033][  T386] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  126.020241][  T386] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  126.044069][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.088159][ T6744] loop3: detected capacity change from 0 to 128
[  126.096503][ T6744] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  126.113414][ T6744] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1156'.
[  126.336446][ T6754] loop2: detected capacity change from 0 to 128
[  126.344587][ T6754] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  126.384115][ T1716] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  126.439700][ T6757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1160'.
[  126.543587][ T6770] loop1: detected capacity change from 0 to 512
[  126.686194][ T6779] netlink: 'syz.4.1170': attribute type 18 has an invalid length.
[  126.800690][ T6787] netlink: 'syz.4.1174': attribute type 6 has an invalid length.
[  126.896071][ T6796] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  126.906293][ T6796] bridge2: entered allmulticast mode
[  127.204131][ T6814] loop1: detected capacity change from 0 to 2048
[  127.264271][ T6814]  loop1: p1 < > p4
[  127.273312][ T6814] loop1: p4 size 8388608 extends beyond EOD, truncated
[  127.346779][ T6816] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  127.355092][ T6816] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  127.392089][ T6816] loop2: detected capacity change from 0 to 1024
[  127.398847][ T6816] EXT4-fs: Ignoring removed bh option
[  127.406512][ T6816] EXT4-fs: inline encryption not supported
[  127.412361][ T6816] EXT4-fs: Ignoring removed i_version option
[  127.433495][ T6816] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  127.455012][ T6824] loop5: detected capacity change from 0 to 128
[  127.496559][ T6824] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  127.496994][ T6816] EXT4-fs error (device loop2): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  127.531803][ T6824] ext4 filesystem being mounted at /113/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  127.564152][ T6816] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  127.577768][ T6816] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  127.601472][ T6816] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  127.614432][ T6831] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1191'.
[  127.623389][ T1716] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  127.639914][ T6831] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1191'.
[  127.647482][ T6816] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  127.649463][ T6834] loop1: detected capacity change from 0 to 128
[  127.668723][ T1716] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 0
[  127.669037][ T6834] FAT-fs (loop1): Directory bread(block 32) failed
[  127.689375][ T6816] EXT4-fs (loop2): 1 orphan inode deleted
[  127.695766][ T6834] FAT-fs (loop1): Directory bread(block 33) failed
[  127.696133][ T6816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.702408][ T6834] FAT-fs (loop1): Directory bread(block 34) failed
[  127.722518][ T6834] FAT-fs (loop1): Directory bread(block 35) failed
[  127.729240][ T6834] FAT-fs (loop1): Directory bread(block 36) failed
[  127.736079][ T6834] FAT-fs (loop1): Directory bread(block 37) failed
[  127.747047][ T6834] FAT-fs (loop1): Directory bread(block 38) failed
[  127.754071][ T6834] FAT-fs (loop1): Directory bread(block 39) failed
[  127.760796][ T6834] FAT-fs (loop1): Directory bread(block 40) failed
[  127.767231][ T6816] EXT4-fs error (device loop2): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  127.785300][ T6834] FAT-fs (loop1): Directory bread(block 41) failed
[  127.787724][ T5430] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  127.834473][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.892465][ T6842] netlink: 'syz.5.1194': attribute type 6 has an invalid length.
[  128.024276][ T6834] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  128.031885][ T6834] FAT-fs (loop1): Filesystem has been set read-only
[  128.574015][ T6875] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  128.595048][ T6875] program syz.1.1208 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  128.831432][   T29] kauditd_printk_skb: 286 callbacks suppressed
[  128.831450][   T29] audit: type=1400 audit(1747895229.244:3751): avc:  denied  { bind } for  pid=6885 comm="syz.4.1212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  128.857021][   T29] audit: type=1400 audit(1747895229.244:3752): avc:  denied  { name_bind } for  pid=6885 comm="syz.4.1212" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  128.878841][   T29] audit: type=1400 audit(1747895229.244:3753): avc:  denied  { node_bind } for  pid=6885 comm="syz.4.1212" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  128.958373][   T29] audit: type=1400 audit(1747895229.314:3755): avc:  denied  { connect } for  pid=6885 comm="syz.4.1212" lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  128.979171][   T29] audit: type=1400 audit(1747895229.314:3754): avc:  denied  { module_load } for  pid=6887 comm="syz.1.1213" path="/sys/power/wakeup_count" dev="sysfs" ino=217 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  129.003515][   T29] audit: type=1400 audit(1747895229.314:3756): avc:  denied  { name_connect } for  pid=6885 comm="syz.4.1212" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  129.572211][ T6900] netlink: 'syz.5.1216': attribute type 6 has an invalid length.
[  129.997384][ T6906] loop1: detected capacity change from 0 to 1024
[  130.013855][ T6908] loop2: detected capacity change from 0 to 2048
[  130.020780][ T6906] EXT4-fs: Ignoring removed orlov option
[  130.029860][ T6906] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.045474][   T29] audit: type=1326 audit(1747895230.464:3757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6905 comm="syz.1.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e73b1e969 code=0x7ffc0000
[  130.069147][   T29] audit: type=1326 audit(1747895230.464:3758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6905 comm="syz.1.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e73b1e969 code=0x7ffc0000
[  130.084130][ T6908]  loop2: p3 < > p4 < >
[  130.092636][   T29] audit: type=1326 audit(1747895230.494:3759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6905 comm="syz.1.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f3e73b1e969 code=0x7ffc0000
[  130.096832][ T6908] loop2: partition table partially beyond EOD, truncated
[  130.120259][   T29] audit: type=1326 audit(1747895230.494:3760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6905 comm="syz.1.1219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e73b1e969 code=0x7ffc0000
[  130.161317][ T6912] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  130.171381][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.189083][ T6912] program syz.4.1221 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  130.208522][ T6908] loop2: p3 start 4284289 is beyond EOD, truncated
[  130.247083][ T6918] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  130.551816][ T6939] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1231'.
[  130.562346][ T6939] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1231'.
[  130.780591][ T6943] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1232'.
[  131.050560][ T6949] loop5: detected capacity change from 0 to 2048
[  131.103188][ T6949]  loop5: p3 < > p4 < >
[  131.107418][ T6949] loop5: partition table partially beyond EOD, truncated
[  131.127819][ T6949] loop5: p3 start 4284289 is beyond EOD, truncated
[  131.307093][ T6963] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  131.453292][ T6969] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1245'.
[  131.995900][ T6993] netlink: 'syz.3.1254': attribute type 18 has an invalid length.
[  132.090138][ T6997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1256'.
[  132.143481][ T7003] loop2: detected capacity change from 0 to 512
[  132.303818][ T7020] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  132.420069][ T7028] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1271'.
[  132.485701][ T7036] loop2: detected capacity change from 0 to 1024
[  132.492389][ T7036] EXT4-fs: Ignoring removed orlov option
[  132.511022][ T7036] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.527343][ T7039] netlink: 'syz.3.1273': attribute type 6 has an invalid length.
[  132.550018][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.087650][ T7056] loop3: detected capacity change from 0 to 512
[  133.190214][ T7060] loop1: detected capacity change from 0 to 512
[  133.205376][ T7060] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.234038][ T7060] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.402049][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.513331][ T7070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1283'.
[  133.525052][ T7078] loop2: detected capacity change from 0 to 1024
[  133.539742][ T7078] EXT4-fs: Ignoring removed orlov option
[  133.558227][ T7078] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.637543][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.655156][ T7086] netlink: 'syz.3.1290': attribute type 6 has an invalid length.
[  133.714642][ T7090] loop2: detected capacity change from 0 to 1024
[  133.721380][ T7090] EXT4-fs: Ignoring removed bh option
[  133.729313][ T7090] EXT4-fs: inline encryption not supported
[  133.735229][ T7090] EXT4-fs: Ignoring removed i_version option
[  133.742171][ T7090] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  133.756075][ T7090] EXT4-fs error (device loop2): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  133.770122][ T7090] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  133.781501][ T7090] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  133.796388][ T7090] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  133.808988][ T7090] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  133.817755][ T3423] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  133.832148][ T7090] EXT4-fs (loop2): 1 orphan inode deleted
[  133.842631][ T7090] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.885538][ T3423] __quota_error: 286 callbacks suppressed
[  133.885554][ T3423] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  133.899874][ T3423] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 0
[  133.923640][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.026906][ T7102] loop2: detected capacity change from 0 to 512
[  134.064773][ T7102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.078700][ T7102] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.145181][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.178536][ T7106] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1298'.
[  134.189116][   T29] audit: type=1326 audit(1747895234.614:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.230922][   T29] audit: type=1326 audit(1747895234.634:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.254489][   T29] audit: type=1326 audit(1747895234.634:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.278035][   T29] audit: type=1326 audit(1747895234.634:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.301533][   T29] audit: type=1326 audit(1747895234.634:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.324971][   T29] audit: type=1326 audit(1747895234.634:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.348498][   T29] audit: type=1326 audit(1747895234.634:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.372002][   T29] audit: type=1326 audit(1747895234.634:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.395514][   T29] audit: type=1326 audit(1747895234.634:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7105 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  134.422008][ T7114] loop3: detected capacity change from 0 to 512
[  134.472230][ T7124] loop2: detected capacity change from 0 to 2048
[  134.523057][ T7124]  loop2: p3 < > p4 < >
[  134.527374][ T7124] loop2: partition table partially beyond EOD, truncated
[  134.535827][ T7124] loop2: p3 start 4284289 is beyond EOD, truncated
[  134.591246][ T7131] loop4: detected capacity change from 0 to 1024
[  134.597956][ T7131] EXT4-fs: Ignoring removed orlov option
[  134.622010][ T7131] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.649982][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.726830][ T7138] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1311'.
[  134.856530][ T7151] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  134.877078][ T7154] loop3: detected capacity change from 0 to 2048
[  134.889245][ T7156] loop1: detected capacity change from 0 to 512
[  134.924752][ T7154]  loop3: p3 < > p4 < >
[  134.929029][ T7154] loop3: partition table partially beyond EOD, truncated
[  134.946474][ T7154] loop3: p3 start 4284289 is beyond EOD, truncated
[  135.434111][ T7169] loop1: detected capacity change from 0 to 1024
[  135.493154][ T7169] EXT4-fs: Ignoring removed orlov option
[  135.524854][ T7169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.570764][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.521551][ T7203] loop2: detected capacity change from 0 to 512
[  136.588534][ T7203] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.621564][ T7203] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.765536][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.809569][ T7188] syz.1.1330 (7188) used greatest stack depth: 4968 bytes left
[  136.822125][ T7210] loop3: detected capacity change from 0 to 1024
[  136.850115][ T7210] EXT4-fs: Ignoring removed orlov option
[  136.881196][ T7210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.915294][ T7218] netlink: 'syz.2.1339': attribute type 6 has an invalid length.
[  136.929424][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.114701][ T7227] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  137.463612][ T7251] loop4: detected capacity change from 0 to 512
[  137.623643][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1355'.
[  137.731970][ T7266] loop5: detected capacity change from 0 to 2048
[  137.818155][ T7270] loop3: detected capacity change from 0 to 1024
[  137.825028][ T7266]  loop5: p3 < > p4 < >
[  137.829219][ T7266] loop5: partition table partially beyond EOD, truncated
[  137.830907][ T7267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1356'.
[  137.839583][ T7266] loop5: p3 start 4284289 is beyond EOD, truncated
[  137.898027][ T7264] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1356'.
[  137.909915][ T7270] EXT4-fs: Ignoring removed nobh option
[  137.973154][ T7270] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.067110][ T7281] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  138.484897][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.591555][ T7299] loop3: detected capacity change from 0 to 2048
[  138.653258][ T7299]  loop3: p3 < > p4 < >
[  138.657539][ T7299] loop3: partition table partially beyond EOD, truncated
[  138.680808][ T7299] loop3: p3 start 4284289 is beyond EOD, truncated
[  138.931036][ T7309] loop3: detected capacity change from 0 to 1024
[  138.940802][ T7309] EXT4-fs: Ignoring removed bh option
[  138.965912][ T7309] EXT4-fs: inline encryption not supported
[  138.971824][ T7309] EXT4-fs: Ignoring removed i_version option
[  139.030361][ T7309] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  139.084272][   T29] kauditd_printk_skb: 208 callbacks suppressed
[  139.084352][   T29] audit: type=1400 audit(1747895239.504:4262): avc:  denied  { associate } for  pid=7313 comm="syz.5.1372" name="memory.events" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  139.121898][ T7321] loop2: detected capacity change from 0 to 1024
[  139.156398][ T7309] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm syz.3.1370: lblock 1 mapped to illegal pblock 1 (length 1)
[  139.210993][ T7321] EXT4-fs: Ignoring removed orlov option
[  139.220228][ T7309] Quota error (device loop3): write_blk: dquota write failed
[  139.227739][ T7309] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  139.272823][ T7309] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1370: Failed to acquire dquot type 0
[  139.301219][ T7309] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.1370: Freeing blocks not in datazone - block = 0, count = 4096
[  139.319494][ T7321] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.342437][ T7309] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1370: Invalid inode bitmap blk 0 in block_group 0
[  139.363494][   T51] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  139.389889][   T29] audit: type=1326 audit(1747895239.794:4263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  139.413407][   T29] audit: type=1326 audit(1747895239.794:4264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  139.437234][   T29] audit: type=1326 audit(1747895239.794:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  139.460781][   T29] audit: type=1326 audit(1747895239.794:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  139.484392][   T29] audit: type=1326 audit(1747895239.794:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  139.508924][   T51] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  139.517454][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  139.520729][ T7309] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  139.538999][ T7309] EXT4-fs (loop3): 1 orphan inode deleted
[  139.545387][ T7309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.578414][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.592959][   T29] audit: type=1326 audit(1747895239.984:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7298 comm="syz.4.1360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  139.642050][ T7306] EXT4-fs error (device loop3): ext4_search_dir:1476: inode #2: block 16: comm syz.3.1370: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  139.688621][ T7331] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  139.696949][ T7331] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  139.722612][ T7335] loop5: detected capacity change from 0 to 1024
[  139.768102][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.778487][ T7335] EXT4-fs: Ignoring removed bh option
[  139.812867][ T7335] EXT4-fs: inline encryption not supported
[  139.818772][ T7335] EXT4-fs: Ignoring removed i_version option
[  139.860342][ T7335] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  139.934274][ T7335] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1379: lblock 1 mapped to illegal pblock 1 (length 1)
[  139.958673][ T7335] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1379: Failed to acquire dquot type 0
[  139.991032][ T7335] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1379: Freeing blocks not in datazone - block = 0, count = 4096
[  140.054766][ T7335] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1379: Invalid inode bitmap blk 0 in block_group 0
[  140.082837][ T3423] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  140.123466][ T7335] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  140.138633][ T3423] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 0
[  140.165164][ T7335] EXT4-fs (loop5): 1 orphan inode deleted
[  140.171349][ T7335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.195478][ T7351] loop3: detected capacity change from 0 to 2048
[  140.223054][ T7351]  loop3: p3 < > p4 < >
[  140.227299][ T7351] loop3: partition table partially beyond EOD, truncated
[  140.239454][ T7351] loop3: p3 start 4284289 is beyond EOD, truncated
[  140.242033][ T7331] EXT4-fs error (device loop5): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  140.359089][ T7360] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1389'.
[  140.377991][ T5430] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.431837][ T7364] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1390'.
[  140.506593][ T7375] loop2: detected capacity change from 0 to 512
[  140.544487][ T7375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.614284][ T7375] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.618913][ T7379] loop4: detected capacity change from 0 to 512
[  140.677787][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.796736][ T7387] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1397'.
[  140.835589][ T7379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.970390][ T7379] ext4 filesystem being mounted at /284/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.059371][ T7393] loop2: detected capacity change from 0 to 2048
[  141.137719][ T7393]  loop2: p3 < > p4 < >
[  141.141929][ T7393] loop2: partition table partially beyond EOD, truncated
[  141.178973][ T7393] loop2: p3 start 4284289 is beyond EOD, truncated
[  141.370807][ T7406] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  141.379070][ T7406] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  141.413794][ T7406] loop5: detected capacity change from 0 to 1024
[  141.453137][ T7406] EXT4-fs: Ignoring removed bh option
[  141.458694][ T7406] EXT4-fs: inline encryption not supported
[  141.464583][ T7406] EXT4-fs: Ignoring removed i_version option
[  141.491862][ T7406] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  141.541256][ T7406] EXT4-fs error (device loop5): ext4_map_blocks:709: inode #3: block 1: comm syz.5.1405: lblock 1 mapped to illegal pblock 1 (length 1)
[  141.603575][ T7406] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1405: Failed to acquire dquot type 0
[  141.618014][ T7418] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  141.628032][ T7418] bridge1: entered allmulticast mode
[  141.654442][ T7406] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1405: Freeing blocks not in datazone - block = 0, count = 4096
[  141.676079][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.687125][ T7406] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1405: Invalid inode bitmap blk 0 in block_group 0
[  141.714752][ T1716] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  141.752758][ T7406] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  141.765572][ T1716] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 0
[  141.770475][ T7423] loop3: detected capacity change from 0 to 2048
[  141.818819][ T7406] EXT4-fs (loop5): 1 orphan inode deleted
[  141.833418][ T7406] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.881861][ T7406] EXT4-fs error (device loop5): ext4_search_dir:1476: inode #2: block 16: comm syz.5.1405: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  141.916993][ T7423]  loop3: p3 < > p4 < >
[  141.921191][ T7423] loop3: partition table partially beyond EOD, truncated
[  141.937692][ T7434] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  141.938560][ T7423] loop3: p3 start 4284289 is beyond EOD, truncated
[  142.001677][ T5430] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.070617][ T7448] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  142.175342][ T7458] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  142.198926][ T7450] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1424'.
[  142.218781][ T7450] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1424'.
[  142.265899][ T7467] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  142.426591][ T7483] loop3: detected capacity change from 0 to 1024
[  142.460040][ T7481] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  142.482183][ T7483] EXT4-fs: Ignoring removed orlov option
[  142.563165][ T7483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.635811][ T7491] loop2: detected capacity change from 0 to 512
[  142.644790][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.696059][ T7491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.718668][ T7491] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.783541][ T7505] netlink: 'syz.1.1444': attribute type 6 has an invalid length.
[  142.793452][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.835681][ T7509] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1445'.
[  142.951075][ T7525] loop4: detected capacity change from 0 to 1024
[  142.960462][ T7525] EXT4-fs: Ignoring removed orlov option
[  142.968973][ T7525] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.020083][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.065830][ T7540] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1460'.
[  143.333913][ T7562] loop1: detected capacity change from 0 to 1024
[  143.340813][ T7562] EXT4-fs: Ignoring removed orlov option
[  143.351164][ T7562] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.379192][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.551926][ T7571] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  143.560187][ T7571] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  143.573911][ T7571] loop1: detected capacity change from 0 to 1024
[  143.580590][ T7571] EXT4-fs: Ignoring removed bh option
[  143.586176][ T7571] EXT4-fs: inline encryption not supported
[  143.592046][ T7571] EXT4-fs: Ignoring removed i_version option
[  143.598460][ T7571] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  143.612841][ T7571] EXT4-fs error (device loop1): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  143.628583][ T7571] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  143.639725][ T7571] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  143.654109][ T7571] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  143.666597][ T7571] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  143.675311][  T386] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  143.690868][  T386] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 0
[  143.702611][ T7571] EXT4-fs (loop1): 1 orphan inode deleted
[  143.710025][ T7571] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.726075][ T7571] EXT4-fs error (device loop1): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  143.760365][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.798257][ T7576] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1472'.
[  144.139081][ T7606] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1483'.
[  144.166696][   T29] kauditd_printk_skb: 263 callbacks suppressed
[  144.166714][   T29] audit: type=1326 audit(1747895244.584:4523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.217516][   T29] audit: type=1326 audit(1747895244.624:4524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.241120][   T29] audit: type=1326 audit(1747895244.624:4525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.264849][   T29] audit: type=1326 audit(1747895244.624:4526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.288309][   T29] audit: type=1326 audit(1747895244.624:4527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.311862][   T29] audit: type=1326 audit(1747895244.624:4528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.335466][   T29] audit: type=1326 audit(1747895244.624:4529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.358937][   T29] audit: type=1326 audit(1747895244.624:4530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.382536][   T29] audit: type=1326 audit(1747895244.624:4531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.406077][   T29] audit: type=1326 audit(1747895244.624:4532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7605 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f4c64e969 code=0x7ffc0000
[  144.457764][ T7580] loop1: detected capacity change from 0 to 1024
[  144.479552][ T7580] EXT4-fs: Ignoring removed nobh option
[  144.568459][ T7580] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.596536][ T7627] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1489'.
[  145.012035][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.054841][ T7647] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1497'.
[  145.065436][ T7647] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1497'.
[  145.284717][ T7664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1503'.
[  145.312874][ T7668] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1504'.
[  145.584602][ T7693] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1511'.
[  145.595404][ T7694] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  145.673766][ T7698] loop2: detected capacity change from 0 to 2048
[  145.723091][ T7698]  loop2: p3 < > p4 < >
[  145.727293][ T7698] loop2: partition table partially beyond EOD, truncated
[  145.743191][ T7698] loop2: p3 start 4284289 is beyond EOD, truncated
[  145.839224][ T7700] loop4: detected capacity change from 0 to 512
[  145.876022][ T7700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.893293][ T7700] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.944748][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.035682][ T7722] loop4: detected capacity change from 0 to 512
[  146.078754][ T7722] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.113079][ T7722] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.164808][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.534304][ T7764] loop4: detected capacity change from 0 to 2048
[  146.563229][ T7764]  loop4: p3 < > p4 < >
[  146.567444][ T7764] loop4: partition table partially beyond EOD, truncated
[  146.574673][ T7764] loop4: p3 start 4284289 is beyond EOD, truncated
[  146.653849][ T7772] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  147.264907][ T7825] loop3: detected capacity change from 0 to 1024
[  147.271631][ T7825] EXT4-fs: Ignoring removed bh option
[  147.312930][ T7825] EXT4-fs: inline encryption not supported
[  147.318857][ T7825] EXT4-fs: Ignoring removed i_version option
[  147.343788][ T7825] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  147.410098][ T7825] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm syz.3.1568: lblock 1 mapped to illegal pblock 1 (length 1)
[  147.468272][ T7825] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1568: Failed to acquire dquot type 0
[  147.515855][ T7840] loop1: detected capacity change from 0 to 512
[  147.537042][ T7825] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.1568: Freeing blocks not in datazone - block = 0, count = 4096
[  147.593560][ T7825] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1568: Invalid inode bitmap blk 0 in block_group 0
[  147.608587][ T7840] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.621357][   T51] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  147.653868][ T7825] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  147.654416][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  147.662520][ T7840] ext4 filesystem being mounted at /333/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.693679][ T7825] EXT4-fs (loop3): 1 orphan inode deleted
[  147.715585][ T7825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.787563][ T7819] EXT4-fs error (device loop3): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  147.819565][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.855977][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.921488][ T7821] loop5: detected capacity change from 0 to 1024
[  147.960064][ T7821] EXT4-fs: Ignoring removed nobh option
[  148.065911][ T7875] __nla_validate_parse: 5 callbacks suppressed
[  148.065931][ T7875] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1585'.
[  148.130010][ T7821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.335021][ T7887] loop1: detected capacity change from 0 to 2048
[  148.403111][ T7887]  loop1: p3 < > p4 < >
[  148.407428][ T7887] loop1: partition table partially beyond EOD, truncated
[  148.433088][ T7887] loop1: p3 start 4284289 is beyond EOD, truncated
[  148.587907][ T5430] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.978785][ T7914] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1597'.
[  149.017082][ T7916] loop5: detected capacity change from 0 to 2048
[  149.068193][ T7919] bridge3: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  149.078336][ T7919] bridge3: entered allmulticast mode
[  149.093030][ T7916]  loop5: p3 < > p4 < >
[  149.097292][ T7916] loop5: partition table partially beyond EOD, truncated
[  149.104589][ T7916] loop5: p3 start 4284289 is beyond EOD, truncated
[  149.258205][ T7930] loop5: detected capacity change from 0 to 512
[  149.442102][   T29] kauditd_printk_skb: 325 callbacks suppressed
[  149.442190][   T29] audit: type=1326 audit(1747895249.854:4855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.708939][   T29] audit: type=1326 audit(1747895249.894:4856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.732416][   T29] audit: type=1326 audit(1747895249.924:4857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.755888][   T29] audit: type=1326 audit(1747895249.924:4858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.779331][   T29] audit: type=1326 audit(1747895249.924:4859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.802828][   T29] audit: type=1326 audit(1747895249.924:4860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.826265][   T29] audit: type=1326 audit(1747895249.924:4861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.849789][   T29] audit: type=1326 audit(1747895249.924:4862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.873280][   T29] audit: type=1326 audit(1747895249.924:4863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.896705][   T29] audit: type=1326 audit(1747895249.924:4864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7912 comm="syz.2.1600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c6eee969 code=0x7ffc0000
[  149.934226][ T7934] FAULT_INJECTION: forcing a failure.
[  149.934226][ T7934] name failslab, interval 1, probability 0, space 0, times 0
[  149.946991][ T7934] CPU: 1 UID: 0 PID: 7934 Comm: syz.1.1608 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  149.947029][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.947046][ T7934] Call Trace:
[  149.947054][ T7934]  <TASK>
[  149.947065][ T7934]  __dump_stack+0x1d/0x30
[  149.947238][ T7934]  dump_stack_lvl+0xe8/0x140
[  149.947257][ T7934]  dump_stack+0x15/0x1b
[  149.947277][ T7934]  should_fail_ex+0x265/0x280
[  149.947322][ T7934]  should_failslab+0x8c/0xb0
[  149.947399][ T7934]  kmem_cache_alloc_noprof+0x50/0x310
[  149.947445][ T7934]  ? __anon_vma_prepare+0x70/0x2f0
[  149.947538][ T7934]  ? __rcu_read_lock+0x37/0x50
[  149.947561][ T7934]  __anon_vma_prepare+0x70/0x2f0
[  149.947593][ T7934]  handle_mm_fault+0x1f8c/0x2ae0
[  149.947690][ T7934]  ? mas_walk+0xf2/0x120
[  149.947725][ T7934]  do_user_addr_fault+0x636/0x1090
[  149.947780][ T7934]  exc_page_fault+0x54/0xc0
[  149.947851][ T7934]  asm_exc_page_fault+0x26/0x30
[  149.947877][ T7934] RIP: 0033:0x7f3e73ae66ab
[  149.947937][ T7934] Code: fa 10 73 2d 83 fa 08 73 46 83 fa 04 73 16 83 fa 01 7c 10 8a 0e 74 0a 0f b7 74 16 fe 66 89 74 17 fe 88 0f c3 8b 4c 16 fc 8b 36 <89> 4c 17 fc 89 37 c3 c5 fa 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5
[  149.947956][ T7934] RSP: 002b:00007f3e72187028 EFLAGS: 00010246
[  149.947976][ T7934] RAX: 000020000043b0c0 RBX: 00007f3e73d45fa0 RCX: 0000000000000007
[  149.947993][ T7934] RDX: 0000000000000004 RSI: 0000000000000007 RDI: 000020000043b0c0
[  149.948009][ T7934] RBP: 00007f3e72187090 R08: 0000000000000004 R09: 0000000000000000
[  149.948023][ T7934] R10: 000020000043b000 R11: 0000200000000340 R12: 0000000000000001
[  149.948035][ T7934] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  149.948103][ T7934]  </TASK>
[  149.948128][ T7934] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  150.673154][ T7959] netlink: 'syz.4.1614': attribute type 6 has an invalid length.
[  151.228145][ T7947] syz.1.1611 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  151.242334][ T7947] CPU: 1 UID: 0 PID: 7947 Comm: syz.1.1611 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  151.242364][ T7947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  151.242377][ T7947] Call Trace:
[  151.242385][ T7947]  <TASK>
[  151.242395][ T7947]  __dump_stack+0x1d/0x30
[  151.242502][ T7947]  dump_stack_lvl+0xe8/0x140
[  151.242526][ T7947]  dump_stack+0x15/0x1b
[  151.242543][ T7947]  dump_header+0x81/0x220
[  151.242605][ T7947]  oom_kill_process+0x334/0x3f0
[  151.242688][ T7947]  out_of_memory+0x979/0xb80
[  151.242723][ T7947]  ? css_next_descendant_pre+0x138/0x160
[  151.242789][ T7947]  mem_cgroup_out_of_memory+0x13d/0x190
[  151.242861][ T7947]  try_charge_memcg+0x5e2/0x870
[  151.242898][ T7947]  obj_cgroup_charge_pages+0xb7/0x1a0
[  151.242932][ T7947]  __memcg_kmem_charge_page+0x9f/0x170
[  151.242963][ T7947]  __alloc_frozen_pages_noprof+0x188/0x360
[  151.243016][ T7947]  alloc_pages_mpol+0xb3/0x250
[  151.243048][ T7947]  alloc_pages_noprof+0x90/0x130
[  151.243077][ T7947]  __vmalloc_node_range_noprof+0x6a4/0xdf0
[  151.243119][ T7947]  __kvmalloc_node_noprof+0x2f3/0x4d0
[  151.243152][ T7947]  ? ip_set_alloc+0x1f/0x30
[  151.243186][ T7947]  ? ip_set_alloc+0x1f/0x30
[  151.243227][ T7947]  ? __kmalloc_cache_noprof+0x189/0x320
[  151.243254][ T7947]  ip_set_alloc+0x1f/0x30
[  151.243281][ T7947]  hash_netiface_create+0x282/0x740
[  151.243371][ T7947]  ? __pfx_hash_netiface_create+0x10/0x10
[  151.243482][ T7947]  ip_set_create+0x3c9/0x960
[  151.243541][ T7947]  ? __nla_parse+0x40/0x60
[  151.243568][ T7947]  nfnetlink_rcv_msg+0x4c6/0x590
[  151.243622][ T7947]  netlink_rcv_skb+0x123/0x220
[  151.243722][ T7947]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  151.243764][ T7947]  nfnetlink_rcv+0x16b/0x1690
[  151.243799][ T7947]  ? __kfree_skb+0x109/0x150
[  151.243822][ T7947]  ? nlmon_xmit+0x4f/0x60
[  151.243851][ T7947]  ? consume_skb+0x49/0x150
[  151.244021][ T7947]  ? nlmon_xmit+0x4f/0x60
[  151.244050][ T7947]  ? dev_hard_start_xmit+0x39e/0x3d0
[  151.244158][ T7947]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  151.244182][ T7947]  ? __dev_queue_xmit+0x182/0x1fb0
[  151.244210][ T7947]  ? ref_tracker_free+0x37d/0x3e0
[  151.244256][ T7947]  ? __netlink_deliver_tap+0x4dc/0x500
[  151.244336][ T7947]  netlink_unicast+0x5a1/0x670
[  151.244379][ T7947]  netlink_sendmsg+0x58b/0x6b0
[  151.244403][ T7947]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.244427][ T7947]  __sock_sendmsg+0x145/0x180
[  151.244570][ T7947]  ____sys_sendmsg+0x31e/0x4e0
[  151.244604][ T7947]  ___sys_sendmsg+0x17b/0x1d0
[  151.244657][ T7947]  __x64_sys_sendmsg+0xd4/0x160
[  151.244693][ T7947]  x64_sys_call+0x2999/0x2fb0
[  151.244754][ T7947]  do_syscall_64+0xd0/0x1a0
[  151.244782][ T7947]  ? clear_bhb_loop+0x40/0x90
[  151.244812][ T7947]  ? clear_bhb_loop+0x40/0x90
[  151.244842][ T7947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.244926][ T7947] RIP: 0033:0x7f3e73b1e969
[  151.244958][ T7947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.245033][ T7947] RSP: 002b:00007f3e72187038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.245062][ T7947] RAX: ffffffffffffffda RBX: 00007f3e73d45fa0 RCX: 00007f3e73b1e969
[  151.245088][ T7947] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[  151.245107][ T7947] RBP: 00007f3e73ba0ab1 R08: 0000000000000000 R09: 0000000000000000
[  151.245123][ T7947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  151.245140][ T7947] R13: 0000000000000000 R14: 00007f3e73d45fa0 R15: 00007fffabf15c88
[  151.245166][ T7947]  </TASK>
[  151.590906][ T7947] memory: usage 307200kB, limit 307200kB, failcnt 294
[  151.598044][ T7947] memory+swap: usage 384048kB, limit 9007199254740988kB, failcnt 0
[  151.605988][ T7947] kmem: usage 306984kB, limit 9007199254740988kB, failcnt 0
[  151.613518][ T7947] Memory cgroup stats for /syz1:
[  151.617695][ T7947] cache 0
[  151.625773][ T7947] rss 221184
[  151.628979][ T7947] shmem 0
[  151.631973][ T7947] mapped_file 0
[  151.635479][ T7947] dirty 0
[  151.638426][ T7947] writeback 0
[  151.641757][ T7947] workingset_refault_anon 164
[  151.646496][ T7947] workingset_refault_file 2950
[  151.651273][ T7947] swap 78692352
[  151.654765][ T7947] swapcached 0
[  151.658152][ T7947] pgpgin 309295
[  151.661650][ T7947] pgpgout 309241
[  151.665278][ T7947] pgfault 190581
[  151.668833][ T7947] pgmajfault 147
[  151.672392][ T7947] inactive_anon 126976
[  151.676566][ T7947] active_anon 94208
[  151.680420][ T7947] inactive_file 0
[  151.684074][ T7947] active_file 0
[  151.687634][ T7947] unevictable 0
[  151.691195][ T7947] hierarchical_memory_limit 314572800
[  151.696627][ T7947] hierarchical_memsw_limit 9223372036854771712
[  151.702801][ T7947] total_cache 0
[  151.706268][ T7947] total_rss 221184
[  151.710010][ T7947] total_shmem 0
[  151.713507][ T7947] total_mapped_file 0
[  151.717494][ T7947] total_dirty 0
[  151.720956][ T7947] total_writeback 0
[  151.724804][ T7947] total_workingset_refault_anon 164
[  151.730022][ T7947] total_workingset_refault_file 2950
[  151.735361][ T7947] total_swap 78692352
[  151.739359][ T7947] total_swapcached 0
[  151.743276][ T7947] total_pgpgin 309295
[  151.747413][ T7947] total_pgpgout 309241
[  151.751587][ T7947] total_pgfault 190581
[  151.755727][ T7947] total_pgmajfault 147
[  151.759856][ T7947] total_inactive_anon 126976
[  151.764500][ T7947] total_active_anon 94208
[  151.768832][ T7947] total_inactive_file 0
[  151.773028][ T7947] total_active_file 0
[  151.777021][ T7947] total_unevictable 0
[  151.781028][ T7947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1611,pid=7946,uid=0
[  151.795856][ T7947] Memory cgroup out of memory: Killed process 7946 (syz.1.1611) total-vm:93880kB, anon-rss:1064kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  152.151348][ T7976] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  152.161287][ T7978] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  152.169581][ T7978] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  152.195977][ T7978] loop1: detected capacity change from 0 to 1024
[  152.202799][ T7978] EXT4-fs: Ignoring removed bh option
[  152.233807][ T7978] EXT4-fs: inline encryption not supported
[  152.239707][ T7978] EXT4-fs: Ignoring removed i_version option
[  152.304782][ T7978] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  152.353691][ T7978] EXT4-fs error (device loop1): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  152.395421][ T7978] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  152.503054][ T7978] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  152.540915][ T7978] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  152.562760][   T51] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  152.594430][ T7978] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  152.604999][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  152.632953][ T7978] EXT4-fs (loop1): 1 orphan inode deleted
[  152.649524][ T7978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.677057][ T7978] EXT4-fs error (device loop1): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  152.761178][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.516667][ T7941] syz.2.1600 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  153.526709][ T7941] CPU: 0 UID: 0 PID: 7941 Comm: syz.2.1600 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  153.526737][ T7941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.526776][ T7941] Call Trace:
[  153.526783][ T7941]  <TASK>
[  153.526793][ T7941]  __dump_stack+0x1d/0x30
[  153.526820][ T7941]  dump_stack_lvl+0xe8/0x140
[  153.526846][ T7941]  dump_stack+0x15/0x1b
[  153.526865][ T7941]  dump_header+0x81/0x220
[  153.526905][ T7941]  oom_kill_process+0x334/0x3f0
[  153.526941][ T7941]  out_of_memory+0x979/0xb80
[  153.526975][ T7941]  ? css_next_descendant_pre+0x138/0x160
[  153.527039][ T7941]  mem_cgroup_out_of_memory+0x13d/0x190
[  153.527082][ T7941]  try_charge_memcg+0x5e2/0x870
[  153.527130][ T7941]  charge_memcg+0x51/0xc0
[  153.527156][ T7941]  __mem_cgroup_charge+0x28/0xb0
[  153.527196][ T7941]  shmem_get_folio_gfp+0x470/0xd40
[  153.527241][ T7941]  shmem_write_begin+0xa8/0x190
[  153.527303][ T7941]  generic_perform_write+0x181/0x490
[  153.527349][ T7941]  shmem_file_write_iter+0xc5/0xf0
[  153.527423][ T7941]  __kernel_write_iter+0x253/0x4c0
[  153.527458][ T7941]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  153.527499][ T7941]  dump_user_range+0x5f4/0x8d0
[  153.527583][ T7941]  elf_core_dump+0x1dc2/0x1f80
[  153.527627][ T7941]  ? 0xffffffffff600000
[  153.527663][ T7941]  do_coredump+0x1836/0x1f40
[  153.527768][ T7941]  get_signal+0xd85/0xf70
[  153.527856][ T7941]  arch_do_signal_or_restart+0x97/0x480
[  153.527908][ T7941]  irqentry_exit_to_user_mode+0x5e/0xa0
[  153.528008][ T7941]  irqentry_exit+0x12/0x50
[  153.528033][ T7941]  asm_exc_page_fault+0x26/0x30
[  153.528062][ T7941] RIP: 0033:0x7fd6c6daf837
[  153.528082][ T7941] Code: 88 15 c2 5e e9 00 88 05 bf 5e e9 00 c3 50 48 8d 35 89 12 1c 00 48 8d 3d 8f 12 1c 00 31 c0 e8 30 f7 ff ff 53 89 fb 48 83 ec 10 <64> 8b 04 25 94 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8
[  153.528106][ T7941] RSP: 002b:00007fd6c54f6120 EFLAGS: 00010202
[  153.528175][ T7941] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007fd6c6eee969
[  153.528196][ T7941] RDX: 00007fd6c54f6140 RSI: 00007fd6c54f6270 RDI: 000000000000000b
[  153.528209][ T7941] RBP: 00007fd6c6f70ab1 R08: 0000000000000000 R09: 0000000000000000
[  153.528224][ T7941] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  153.528238][ T7941] R13: 0000000000000000 R14: 00007fd6c7116160 R15: 00007ffe1530c318
[  153.528258][ T7941]  </TASK>
[  153.528267][ T7941] memory: usage 307200kB, limit 307200kB, failcnt 2427
[  153.765704][ T7941] memory+swap: usage 189056kB, limit 9007199254740988kB, failcnt 0
[  153.773674][ T7941] kmem: usage 105312kB, limit 9007199254740988kB, failcnt 0
[  153.781034][ T7941] Memory cgroup stats for /syz2:
[  153.844149][ T7941] cache 70561792
[  153.852668][ T7941] rss 5570560
[  153.856010][ T7941] shmem 70430720
[  153.859567][ T7941] mapped_file 11821056
[  153.863674][ T7941] dirty 4096
[  153.866876][ T7941] writeback 0
[  153.870184][ T7941] workingset_refault_anon 14
[  153.874851][ T7941] workingset_refault_file 6256
[  153.879626][ T7941] swap 9506816
[  153.883047][ T7941] swapcached 0
[  153.886436][ T7941] pgpgin 454613
[  153.889908][ T7941] pgpgout 436026
[  153.893493][ T7941] pgfault 198379
[  153.897119][ T7941] pgmajfault 40
[  153.900579][ T7941] inactive_anon 1802240
[  153.904777][ T7941] active_anon 74199040
[  153.908936][ T7941] inactive_file 0
[  153.912572][ T7941] active_file 131072
[  153.916520][ T7941] unevictable 0
[  153.920036][ T7941] hierarchical_memory_limit 314572800
[  153.925441][ T7941] hierarchical_memsw_limit 9223372036854771712
[  153.931673][ T7941] total_cache 70561792
[  153.935869][ T7941] total_rss 5570560
[  153.939683][ T7941] total_shmem 70430720
[  153.943781][ T7941] total_mapped_file 11821056
[  153.948381][ T7941] total_dirty 4096
[  153.952130][ T7941] total_writeback 0
[  153.955974][ T7941] total_workingset_refault_anon 14
[  153.961094][ T7941] total_workingset_refault_file 6256
[  153.966429][ T7941] total_swap 9506816
[  153.970331][ T7941] total_swapcached 0
[  153.974262][ T7941] total_pgpgin 454613
[  153.978330][ T7941] total_pgpgout 436026
[  153.982483][ T7941] total_pgfault 198379
[  153.986584][ T7941] total_pgmajfault 40
[  153.990595][ T7941] total_inactive_anon 1802240
[  153.995380][ T7941] total_active_anon 74199040
[  153.999990][ T7941] total_inactive_file 0
[  154.004225][ T7941] total_active_file 131072
[  154.008661][ T7941] total_unevictable 0
[  154.012668][ T7941] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1600,pid=7941,uid=0
[  154.027395][ T7941] Memory cgroup out of memory: Killed process 7941 (syz.2.1600) total-vm:93880kB, anon-rss:1244kB, file-rss:53660kB, shmem-rss:11392kB, UID:0 pgtables:212kB oom_score_adj:1000
[  154.186336][ T8035] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1640'.
[  154.366432][ T8042] loop2: detected capacity change from 0 to 512
[  154.837372][ T8047] loop4: detected capacity change from 0 to 512
[  154.902466][ T8047] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.020946][ T8047] ext4 filesystem being mounted at /341/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.126094][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.149893][ T8056] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1647'.
[  155.159817][ T8056] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1647'.
[  155.229876][ T8066] loop4: detected capacity change from 0 to 512
[  155.300498][ T8066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.369585][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1652'.
[  155.380301][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  155.380382][   T29] audit: type=1326 audit(1747895255.804:4974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.446676][ T8066] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.469082][   T29] audit: type=1326 audit(1747895255.834:4975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.492677][   T29] audit: type=1326 audit(1747895255.834:4976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.516502][   T29] audit: type=1326 audit(1747895255.834:4977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.540004][   T29] audit: type=1326 audit(1747895255.834:4978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.563441][   T29] audit: type=1326 audit(1747895255.834:4979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.586889][   T29] audit: type=1326 audit(1747895255.834:4980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.610414][   T29] audit: type=1326 audit(1747895255.834:4981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.633950][   T29] audit: type=1326 audit(1747895255.834:4982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.657376][   T29] audit: type=1326 audit(1747895255.834:4983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8070 comm="syz.5.1652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b0732e969 code=0x7ffc0000
[  155.763552][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.903413][ T8095] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  156.317851][ T8104] loop1: detected capacity change from 0 to 164
[  156.326351][ T8104] Unable to read rock-ridge attributes
[  156.529919][ T8111] FAULT_INJECTION: forcing a failure.
[  156.529919][ T8111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.543059][ T8111] CPU: 1 UID: 0 PID: 8111 Comm: syz.5.1664 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  156.543087][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.543172][ T8111] Call Trace:
[  156.543181][ T8111]  <TASK>
[  156.543210][ T8111]  __dump_stack+0x1d/0x30
[  156.543238][ T8111]  dump_stack_lvl+0xe8/0x140
[  156.543264][ T8111]  dump_stack+0x15/0x1b
[  156.543333][ T8111]  should_fail_ex+0x265/0x280
[  156.543377][ T8111]  should_fail+0xb/0x20
[  156.543494][ T8111]  should_fail_usercopy+0x1a/0x20
[  156.543522][ T8111]  _copy_from_iter+0xcf/0xdd0
[  156.543548][ T8111]  ? __build_skb_around+0x1a0/0x200
[  156.543612][ T8111]  ? __alloc_skb+0x223/0x320
[  156.543649][ T8111]  netlink_sendmsg+0x471/0x6b0
[  156.543736][ T8111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  156.543760][ T8111]  __sock_sendmsg+0x145/0x180
[  156.543795][ T8111]  ____sys_sendmsg+0x31e/0x4e0
[  156.543827][ T8111]  ___sys_sendmsg+0x17b/0x1d0
[  156.543895][ T8111]  __x64_sys_sendmsg+0xd4/0x160
[  156.543954][ T8111]  x64_sys_call+0x2999/0x2fb0
[  156.543983][ T8111]  do_syscall_64+0xd0/0x1a0
[  156.544033][ T8111]  ? clear_bhb_loop+0x40/0x90
[  156.544061][ T8111]  ? clear_bhb_loop+0x40/0x90
[  156.544118][ T8111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.544154][ T8111] RIP: 0033:0x7f2b0732e969
[  156.544174][ T8111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.544199][ T8111] RSP: 002b:00007f2b05997038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  156.544225][ T8111] RAX: ffffffffffffffda RBX: 00007f2b07555fa0 RCX: 00007f2b0732e969
[  156.544242][ T8111] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  156.544259][ T8111] RBP: 00007f2b05997090 R08: 0000000000000000 R09: 0000000000000000
[  156.544289][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.544305][ T8111] R13: 0000000000000000 R14: 00007f2b07555fa0 R15: 00007fff34ac64d8
[  156.544326][ T8111]  </TASK>
[  156.944152][ T8121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1669'.
[  156.953642][ T8121] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1669'.
[  157.017422][ T8131] loop3: detected capacity change from 0 to 1024
[  157.024359][ T8131] EXT4-fs: Ignoring removed bh option
[  157.033897][ T8131] EXT4-fs: inline encryption not supported
[  157.039764][ T8131] EXT4-fs: Ignoring removed i_version option
[  157.053195][ T8131] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  157.080642][ T8131] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm +}[@: lblock 1 mapped to illegal pblock 1 (length 1)
[  157.096080][ T8131] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[  157.113961][ T8131] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[  157.133296][ T8131] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm +}[@: Invalid inode bitmap blk 0 in block_group 0
[  157.147869][ T8131] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  157.156708][  T152] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  157.196744][  T152] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 0
[  157.214958][ T8131] EXT4-fs (loop3): 1 orphan inode deleted
[  157.224428][ T8131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.238286][ T8131] EXT4-fs error (device loop3): ext4_search_dir:1476: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  157.283346][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.312607][ T8142] loop3: detected capacity change from 0 to 1024
[  157.319690][ T8142] EXT4-fs: Ignoring removed nomblk_io_submit option
[  157.354735][ T8142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.447085][ T8142] cgroup: Unknown subsys name 'fsmagic'
[  157.470792][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.025385][ T8171] FAULT_INJECTION: forcing a failure.
[  158.025385][ T8171] name failslab, interval 1, probability 0, space 0, times 0
[  158.038117][ T8171] CPU: 0 UID: 0 PID: 8171 Comm: syz.5.1686 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  158.038156][ T8171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.038173][ T8171] Call Trace:
[  158.038181][ T8171]  <TASK>
[  158.038191][ T8171]  __dump_stack+0x1d/0x30
[  158.038221][ T8171]  dump_stack_lvl+0xe8/0x140
[  158.038310][ T8171]  dump_stack+0x15/0x1b
[  158.038378][ T8171]  should_fail_ex+0x265/0x280
[  158.038424][ T8171]  should_failslab+0x8c/0xb0
[  158.038456][ T8171]  __kmalloc_noprof+0xa5/0x3e0
[  158.038480][ T8171]  ? usb_alloc_urb+0x42/0xc0
[  158.038522][ T8171]  usb_alloc_urb+0x42/0xc0
[  158.038551][ T8171]  do_proc_control+0x1a8/0x8b0
[  158.038590][ T8171]  ? should_fail_ex+0xdb/0x280
[  158.038688][ T8171]  proc_control_compat+0xae/0xe0
[  158.038718][ T8171]  usbdev_ioctl+0xee1/0x1710
[  158.038748][ T8171]  ? __pfx_usbdev_ioctl+0x10/0x10
[  158.038783][ T8171]  __se_sys_ioctl+0xcb/0x140
[  158.038818][ T8171]  __x64_sys_ioctl+0x43/0x50
[  158.038847][ T8171]  x64_sys_call+0x19a8/0x2fb0
[  158.038896][ T8171]  do_syscall_64+0xd0/0x1a0
[  158.038920][ T8171]  ? clear_bhb_loop+0x40/0x90
[  158.039015][ T8171]  ? clear_bhb_loop+0x40/0x90
[  158.039043][ T8171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.039069][ T8171] RIP: 0033:0x7f2b0732e969
[  158.039084][ T8171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.039109][ T8171] RSP: 002b:00007f2b05997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.039177][ T8171] RAX: ffffffffffffffda RBX: 00007f2b07555fa0 RCX: 00007f2b0732e969
[  158.039192][ T8171] RDX: 0000200000000600 RSI: 00000000c0105500 RDI: 0000000000000003
[  158.039204][ T8171] RBP: 00007f2b05997090 R08: 0000000000000000 R09: 0000000000000000
[  158.039217][ T8171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.039232][ T8171] R13: 0000000000000000 R14: 00007f2b07555fa0 R15: 00007fff34ac64d8
[  158.039263][ T8171]  </TASK>
[  158.316536][ T8181] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1691'.
[  158.383857][ T8197] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1690'.
[  158.402528][ T8195] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1696'.
[  158.412375][ T8175] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1690'.
[  158.497780][ T8208] ==================================================================
[  158.505926][ T8208] BUG: KCSAN: data-race in mas_state_walk / mas_wmb_replace
[  158.513268][ T8208] 
[  158.515612][ T8208] write to 0xffff888104411400 of 8 bytes by task 8206 on cpu 1:
[  158.523265][ T8208]  mas_wmb_replace+0x20e/0x14a0
[  158.528159][ T8208]  mas_wr_store_entry+0x17ae/0x2b60
[  158.533394][ T8208]  mas_store_prealloc+0x74d/0x9e0
[  158.538452][ T8208]  vma_iter_store_new+0x1c5/0x200
[  158.543508][ T8208]  vma_complete+0x125/0x570
[  158.548047][ T8208]  __split_vma+0x54c/0x610
[  158.552478][ T8208]  vma_modify+0x107/0x210
[  158.556831][ T8208]  vma_modify_flags+0x101/0x130
[  158.561701][ T8208]  mprotect_fixup+0x2cc/0x570
[  158.566384][ T8208]  do_mprotect_pkey+0x6d6/0x980
[  158.571243][ T8208]  __x64_sys_mprotect+0x48/0x60
[  158.576100][ T8208]  x64_sys_call+0x2794/0x2fb0
[  158.580788][ T8208]  do_syscall_64+0xd0/0x1a0
[  158.585303][ T8208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.591204][ T8208] 
[  158.593534][ T8208] read to 0xffff888104411400 of 8 bytes by task 8208 on cpu 0:
[  158.601081][ T8208]  mas_state_walk+0x485/0x650
[  158.605772][ T8208]  mas_walk+0x30/0x120
[  158.609850][ T8208]  lock_vma_under_rcu+0xa2/0x2f0
[  158.614807][ T8208]  do_user_addr_fault+0x233/0x1090
[  158.619939][ T8208]  exc_page_fault+0x54/0xc0
[  158.624638][ T8208]  asm_exc_page_fault+0x26/0x30
[  158.629521][ T8208] 
[  158.631848][ T8208] value changed: 0xffff8881035e3741 -> 0xffff888104411400
[  158.638956][ T8208] 
[  158.641284][ T8208] Reported by Kernel Concurrency Sanitizer on:
[  158.647438][ T8208] CPU: 0 UID: 0 PID: 8208 Comm: syz.2.1700 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  158.659889][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.669953][ T8208] ==================================================================