last executing test programs:

2.143852135s ago: executing program 2 (id=3073):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0xfffffffd)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
write$P9_RLERRORu(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="5300000007000046009ce6e7e68cce73c582dc6dfdbca736b02715df74ff5409f0233ef78972b9"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

2.039996525s ago: executing program 2 (id=3074):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0xfffffffd)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
write$P9_RLERRORu(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="5300000007000046009ce6e7e68cce73c582dc6dfdbca736b02715df74ff5409f0233ef78972b9"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

1.970176782s ago: executing program 2 (id=3075):
mkdir(0x0, 0x0)
open(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000000002}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB, @ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
creat(0x0, 0xecf86c37d53049cc)
unshare(0x62040200)

1.537072303s ago: executing program 0 (id=3082):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e6", 0xa1)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

1.522327784s ago: executing program 0 (id=3084):
unshare(0x6a040000)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x30}}], 0x1, 0x4008804)

1.481729828s ago: executing program 4 (id=3085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
link(&(0x7f0000000500)='./file0\x00', 0x0)

1.422246874s ago: executing program 4 (id=3086):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x800090, &(0x7f00000007c0)=ANY=[@ANYRESDEC=0x0, @ANYRES16, @ANYBLOB="00704a5ed53102c06f229ab7df8ebb0100a9bb08fcd95b2fe3708a2dec645fabf88d617119f4bafdabe8bd3890243a23231ef02a86733f0257c52e36a56d5058628c69018ffdbf08438b", @ANYRESDEC=0x0, @ANYRES64=0x0, @ANYRES8, @ANYBLOB="7670e851b5db2d6be8adbf8cc547eeeae75abe1a50751d0dbff635785d9db05113f82682739741c97f05a0670359f583f2ee92dae619a16707e85c1dadfa"], 0x6, 0x2e1, &(0x7f0000000d40)="$eJzs3T+LHGUYAPBndmd3Ry32CisRHNDCKuTS2uwhCYhXGbaIFnqYBOR2EXJw4h9crxI7v4BgLwh+EBs7S8FWsDNCYGRmZ27/ZG6zJ+yJye9XJM+98z7zPu/M7N0099wHL0+P7+Zx/+yL3yLLkuiMBhEPk9iLTjS+ihWjbwMA+D97WBTxZzHXcvjXb9YGzpbibMe1AQC78YSf/7W0+vdOOeOnq6sNANiN23feffvg8PDmO3mexa3p16fjJCLK/+fHD+7HRzGJe3E9hvEoonpR6EX1tlCGt4qimKV5aS9em85Ox2Xm9P2f6/Mf/BFR5e/HMPaqofO3jSr/rcOb+/ncUv6srOP5ev1RmX8jhvHiefJK/o2W/Bj34/VXl+q/FsP45cP4OCZxtypikf/lfp6/WXT/+vy9srwyP5mdjgfVvIWi2yw+u+J7BAAAAAAAAAAAAAAAAAAAAADA0+da3TtnEFX/nnKo7r/TfVR+0Yu8sbfan2eenzQnWvQHik5RFLMivmv661zP87yoJy7y03gprRsLAgAAAAAAAAAAAAAAAAAAwDPu5NPPjo8mk3sPtgy+r/Pa5zTdANKI+Pt2xGXOvByMlkZeuWCtJhjUax5NJp06XJ2TLo9Et5mTRGwso9zEvyp+KehuXqIJnnus5jr44cfWrHJHJ2m0HcqeXFivfa1LBp/05texdU7zdB0fJe3XcHBefFbeuFi/cf1oX70XayP97gUPZPMobredfuuh4aUvS/+FKphtmBPJps/FG7+vbCeJtcn9quNGa3qvDi78eGZbPc+RzdMf/16R6NYBAAAAAAAAAAAAAAAAAAA7tfjt35aDZxtTO8VgZ2UBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJVa/P3/bYJ0NXmLrH48OPmv9gYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCz458AAAD//1ynTfA=")
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = gettid()
readv(0xffffffffffffffff, &(0x7f0000001340)=[{&(0x7f0000001280)=""/151, 0x97}], 0x1)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x7e, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
process_mrelease(0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001240)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000020"], 0x50)
waitid(0x0, 0x0, &(0x7f0000002b80), 0x41000004, &(0x7f0000000040))

1.142083881s ago: executing program 0 (id=3089):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="02000000040000000400000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a00000004000000020000000c00000000040000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000bd50f0ef0e26c5f25f476f0000000000"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r3, 0x1, 0x3c, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, 0x0, 0x0)
r4 = syz_mount_image$ext4(&(0x7f0000000140)='ext3\x00', &(0x7f00000005c0)='./file0\x00', 0x40000, &(0x7f0000000080)={[{@dax_never}, {@user_xattr}, {@usrquota}]}, 0x9, 0x5f1, &(0x7f0000000680)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r5}, 0x10)
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x2)
fcntl$notify(r6, 0x402, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
open_by_handle_at(r7, &(0x7f00000004c0)=ANY=[@ANYBLOB="08000000020000000b00000000000000e331ccac44bad36159bdc939a63fb485a8673a02d7f67a4615c08bb50b719aad7dee422ecb0443ca7dc6d6b056cb018a22661c2d5abe124ef2f2259858d971957dc9ac713fda53083e48e7c71d52dcfa68f843a40a8fa25247f469c8"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r8=>r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$P9_RLERRORu(r9, 0x0, 0x18)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000580)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000007000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000002c0)=ANY=[@ANYRES64=r8, @ANYRES16=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r11}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000100))

1.141592631s ago: executing program 1 (id=3090):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
creat(&(0x7f0000001700)='./file0\x00', 0x191)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
utimes(&(0x7f0000000040)='./file0\x00', 0x0)

1.093896495s ago: executing program 0 (id=3092):
r0 = socket(0x21, 0x800, 0x3a)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x1}, 0xc)
socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="efff000059ce5b37e5f572a9010000b5", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=<r2=>0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f0ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRESHEX=r1, @ANYRESHEX], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058", @ANYRES32=r3, @ANYRES16=r2, @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r4, 0x0)
ftruncate(r4, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mlock2(&(0x7f000075b000/0x2000)=nil, 0x2000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x200000000003, 0x87)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0be1000064528639c22508e606f2e11b3ed542223bdc818c7b3707421ee663d0b13b413cee7dab988e046e007ef6ecb9974300"/68, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b708000000a926007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
syz_emit_ethernet(0x37, &(0x7f0000000100)=ANY=[@ANYBLOB="0180c20000010180c200100e0004d6725134b127988863e044a25a21af344e3fc701197a3e32a0bc83b73752f254d2e97705af64408615"], 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0xc31, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=<r8=>0xffffffffffffffff, @ANYBLOB="0001000000fcfffffff8287258fa86bb1ec5a283f0b32f142740000000000000000000000000000091844e6afcff00000008eeab051b124f88753936aff9f89cee274bd7e681c77d6189ce0b23c7f26c05fb6f851c3152147a72a072533fbab24299efa45bcacb04cbc68029e49eb1a825e1d8c5cb0ad3b3bdc65e2a3511815df463e7e55243d3084314f56398df5a602835cec163c8ab528dedbb2c67830faac9ccbde1272f83df260b13d4228a47af9ea850e67f"], 0x48)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000338000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x2b4, &(0x7f0000000600)=ANY=[@ANYRESDEC, @ANYRES32=0x0, @ANYRESDEC=r8], 0x0)
r9 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r9, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='iocost_ioc_vrate_adj\x00', r3}, 0x18)

1.086599196s ago: executing program 2 (id=3094):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
creat(&(0x7f0000000180)='./bus\x00', 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000092900000000000000000001850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='btrfs_trigger_flush\x00', r1, 0x0, 0x6}, 0x18)
pipe(&(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x10}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x9}, @TCA_CODEL_LIMIT={0x8, 0x2, 0xe2}]}}]}, 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000), 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x4ffe6, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000000), 0x0)

1.062359458s ago: executing program 0 (id=3095):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYRESOCT, @ANYRES8=r1], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getpid()
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014001100b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000021000f0000f901000000000002"], 0x1c}}, 0x0)

905.061633ms ago: executing program 4 (id=3098):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000181100006a4518322831c56958749480b7ce46cad8f3e3521149d9d877a77e882d85da55aacf8d9e6177ff58135c39e76c5aa00ca44479e197f53abbedc99db1d30bf04900e7386da3450aac50868b775ffecd37e4bdbe16a21e98d84365242a5ca36d2c39e5c87eab52b05f8d42d15e86053e34e1", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$vsock(0xffffff9c, &(0x7f0000000280), 0x2000, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c0000001a00010000000000000000000a0000000000000000000000080010000000000008000300", @ANYRESOCT=r2], 0x2c}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNSETNOCSUM(r3, 0xc0189436, 0x1ffffffe)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'syztnl0\x00', &(0x7f0000000880)={'syztnl0\x00', <r4=>0x0, 0x80, 0x40, 0xb4ae, 0x8001, {{0x17, 0x4, 0x2, 0xd, 0x5c, 0x66, 0x0, 0x1a, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x13}, {[@ssrr={0x89, 0x1f, 0x99, [@multicast1, @local, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @empty, @multicast1]}, @cipso={0x86, 0xa, 0x2, [{0x1, 0x4, "16ff"}]}, @rr={0x7, 0xf, 0x50, [@empty, @rand_addr=0x64010100, @local]}, @ra={0x94, 0x4}, @timestamp={0x44, 0xc, 0xb9, 0x0, 0x4, [0x3, 0x8000]}]}}}}})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000480)={0x7, <r5=>0x0}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000900)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000009c0)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000940), &(0x7f0000000980)='%pK    \x00'}, 0x20)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000a00)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000a80)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0xb, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000b00)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x800, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x0, 0x5, 0x9, 0x48, 0x1, 0xffffff00, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x1, 0x8, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x19, 0x1e, &(0x7f0000000780)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7ff}, [@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}, @map_idx={0x18, 0x7, 0x5, 0x0, 0xc}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x7fffffff}, @jmp={0x5, 0x1, 0x6, 0x3, 0x0, 0x2, 0x4}, @alu={0x4, 0x0, 0x5, 0xb, 0x3, 0x20, 0x16}, @jmp={0x5, 0x1, 0x8, 0x0, 0xa, 0xfffffffffffffff0, 0xffffffffffffffff}, @map_val={0x18, 0x1, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x5}]}, &(0x7f00000002c0)='syzkaller\x00', 0x2, 0x52, &(0x7f0000000500)=""/82, 0x41100, 0x5, '\x00', r4, @fallback=0x32, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x2, 0x1}, 0x8, 0x10, 0x0, 0x0, r5, r6, 0x0, &(0x7f0000000c00)=[r7, r8, r9, r10, r11, 0x1, r12], 0x0, 0x10, 0x4, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000000180013010000e9000000000002000000000f00080000000008001e0007"], 0x24}}, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x2, 0x1, 0x40, 0x10, 0xaf, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "bf9bc165"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0xffff7fff, 0x6, 0x4773, 0x79}, {0x6, 0x24, 0x1a, 0x0, 0x31}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0xfa, 0x51, 0x9}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x80, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0xf, 0x5, 0x4}}}}}}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x310, 0x3, 0xe4, 0x6, 0x10, 0x7}, 0xf, &(0x7f0000000180)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0xab, 0x1a, 0x7}]}})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='module_request\x00', r13}, 0x10)
socket(0x26, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r14, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r14], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r15 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000e00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r15}, 0x10)

848.298079ms ago: executing program 1 (id=3099):
unshare(0x6a040000)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x30}}], 0x1, 0x4008804)

737.224929ms ago: executing program 1 (id=3104):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000003180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x88101)

736.773809ms ago: executing program 3 (id=3105):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r2, 0x0, 0x0, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{0x0, 0x2}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000000002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0)

677.214855ms ago: executing program 1 (id=3106):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r2)

676.996855ms ago: executing program 3 (id=3107):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000008385000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
creat(&(0x7f0000001700)='./file0\x00', 0x191)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
utimes(&(0x7f0000000040)='./file0\x00', 0x0)

666.497256ms ago: executing program 1 (id=3108):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x800090, &(0x7f00000007c0)=ANY=[@ANYRESDEC=0x0, @ANYRES16, @ANYBLOB="00704a5ed53102c06f229ab7df8ebb0100a9bb08fcd95b2fe3708a2dec645fabf88d617119f4bafdabe8bd3890243a23231ef02a86733f0257c52e36a56d5058628c69018ffdbf08438b", @ANYRESDEC=0x0, @ANYRES64=0x0, @ANYRES8, @ANYBLOB="7670e851b5db2d6be8adbf8cc547eeeae75abe1a50751d0dbff635785d9db05113f82682739741c97f05a0670359f583f2ee92dae619a16707e85c1dadfa"], 0x6, 0x2e1, &(0x7f0000000d40)="$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")
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = gettid()
readv(0xffffffffffffffff, &(0x7f0000001340)=[{&(0x7f0000001280)=""/151, 0x97}], 0x1)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x7e, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
process_mrelease(0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001240)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000020"], 0x50)
waitid(0x0, 0x0, &(0x7f0000002b80), 0x41000004, &(0x7f0000000040))

440.874157ms ago: executing program 3 (id=3109):
r0 = socket$inet(0x2, 0x2000080001, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="00b6863a398ffeefde72ae2ee251", @ANYRES32=r0, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r3, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x7}, 'port1\x00', 0x7a, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r3, 0xc0a85320, &(0x7f00000000c0)={{0x80}, 'port0\x00', 0xd4, 0x141019, 0xfffffffc, 0x20000, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x1})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000500)='jbd2_shrink_scan_exit\x00', r2, 0x0, 0x7}, 0x18)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_MCE_KILL(0x35, 0x1, 0x8)
r4 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f000050a000/0x2000)=nil, 0x2000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0a00000002000000ff0f00000700000000000000", @ANYRESHEX=r5, @ANYBLOB='\x00'/20, @ANYRESOCT=r1, @ANYRES32, @ANYBLOB="0800000000000000000000000000000000faa4eac2cc9c752d7c093b00a87048d81888599df7323ade5750b2f096923c485cbc59a58bc129d896a4844aeb21b8"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001000010700000000006e6c383032313100"/32], 0x20}}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0xc, &(0x7f0000000380)=@assoc_value={<r9=>0x0}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r5, 0x84, 0x71, &(0x7f0000000100)={r9, 0x8}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000240)={r9, @in={{0x2, 0x4e23, @rand_addr=0x64010101}}, 0x1, 0x3, 0x7f, 0x9, 0x25, 0x3, 0x7}, 0x9c)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002, 0x8000000, 0x0, 0x0, r4}, &(0x7f0000000480), &(0x7f00000004c0))
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r10}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)

242.789736ms ago: executing program 4 (id=3110):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
socketpair(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89a0, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89a1, &(0x7f0000000080))

234.174537ms ago: executing program 2 (id=3111):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/stat\x00', 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r2, &(0x7f0000001a40)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000140)="53a1b228144d4835415007b390c577cc8a52baa9acba00f1dd7513f66663907dd44196b10d83678ae900d813987c30ec", 0x30}, {&(0x7f0000000540)="0b8b61a9d3983220d21a6c51b2595f671ffd4f674d81bec0e74d44fc1f87c6699a37d7dc912a573f5160648d2dc6dcb9b7fadbfa5f6d0b77afb8e72fc808ca522704d3a40c10a4ec42cef49e0f14cfed658cd906fbfbd5662ad2d46f866d5822", 0x60}, {&(0x7f0000000700)="ecb0cf337e24fac56e2538eeef46cfc55416975a2b339dc2fd50692d3a8701efab83f5d5522b4d66e05b95861dbd39ec103f21789acad70354be14337dee47726ee004957151164ff869fd080c8aba3cbbb98dc6833516bd27cea00e2bcf832865128a661ee2d8bb45952d584728fc7b3d9031f3fca7780d3345a6386a1380b311cbf7dcfcc6f0cc62cef4971d77e32d4df628932e98b716b22833c4f753ae66f24ad52ad704929d72860c28223013a4e9e1f1d0457b2ced6397ba", 0xbb}, {&(0x7f0000000340)="88b1b408f4505cceda1a52bd9275c1cee323958beab018ed3fcfbda5a40856fff0e5775f3964edba0dffc9d6d5781f0cd36e643553f83c877d4abcf0197bdc9e0420107e5ce648500ee9d4e1d6f9b70f882178e1d16aedb5ac18916125c173da0679e5256e3494915f76f31d", 0x6c}, {&(0x7f0000000880)="f3800fa39c041d1b847639be7e710c9d84b36d726fd1c0c270e96d7301800d1474a8eb421e917e4356d41fe994c2f77cbe4d1c995b1457fe265375b93d0921e88a50b1ecd43d26e80ac566f640c663150d78beb087b3b94a4abfe1f4595f787d80ddb07bd31da39d135514a9bb1489bef35ef7a524ce59fcada09cab615172ab3d844b24bb76d2b1443a7942708f845d143499446d609aba4d95531eb7396d6606b9d0e6f559fb04ec9352e6dc104d1f6d89e4157200fea77e", 0xb9}, {&(0x7f00000009c0)="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", 0x145}, {&(0x7f00000007c0)="3efce8a8cebdc7241cb440f11fea781548d34d5e722a5dba696e4537ea944559f4e059a3fe4330959c11510fa33e1c42452283b13d4c83a23330b6408a9b", 0x3e}, {&(0x7f0000000940)="c8", 0x1}, {&(0x7f0000000640)='i', 0x1}], 0x9}}], 0x1, 0x7c9ce320e12db95)
sendfile(r2, r1, 0x0, 0x4000000000010046)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)

233.237747ms ago: executing program 3 (id=3112):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
link(&(0x7f0000000500)='./file0\x00', 0x0)

218.054179ms ago: executing program 2 (id=3113):
r0 = socket$inet(0x2, 0x3, 0x33)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x2e}], 0x1}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000005efe2100850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x2c, r5, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6d, &(0x7f0000000480)=[{}, {}], 0x10, 0x10, &(0x7f00000004c0), &(0x7f0000000500), 0x8, 0xc1, 0x8, 0x8, &(0x7f0000000540)}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000480)=[{0x0, 0x0, 0x0, 0x1000000}], 0x0)
syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x181801)

186.118532ms ago: executing program 1 (id=3114):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x17fe5286}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b708000000005aab7b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="91", 0x1, 0x20004044, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x49288000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8}]}, 0x2c}}, 0x0)
unshare(0x68040200)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000380)=@ethtool_drvinfo={0x21, "64a80c3f3336efade53deeb4e3ab158b39c1400000000000000092a6696fcfba", "95ddfb65f500c0d934717ef5dd3dfc83e29f92e4cfa26270ba343bd9e805026a", "5b4cbd6c4dd2752d74d58b94da2123cb1cda09b11357b3b94a80d506fd05f09f", "6ab12ed073d2c6db98497a51dd1b00c13240edd30c6348ec4b57eaab53bf94d6", "19e3c0787eebb27570731ffc8c0969f3b66abdd6331cf84bc6d25b3832f4be75", "79924d9a6cf1704ae3c04aa5"}})
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)

181.451002ms ago: executing program 3 (id=3115):
unshare(0x6a040000)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x30}}], 0x1, 0x4008804)

82.909962ms ago: executing program 0 (id=3116):
socket$key(0xf, 0x3, 0x2)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@remote, 0x0, 0x2b}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0xa, 0x2}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
socket(0x11, 0xa, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r2, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

81.993432ms ago: executing program 4 (id=3117):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000003180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x88101)

1.194249ms ago: executing program 4 (id=3118):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000000002}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES32=0x1, @ANYBLOB, @ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080)={'#! ', './file0'}, 0xb)
unshare(0x62040200)

0s ago: executing program 3 (id=3119):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2, <r4=>0xffffffffffffffff}, &(0x7f0000000440), &(0x7f00000005c0)}, 0x20)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000ac0)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x0, 0x5d8, &(0x7f0000000c00)="$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")
chmod(0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x5f}, './file0\x00'})
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x104, 0x4, 0x3d0, 0x100, 0x200, 0x0, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@remote, @rand_addr, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'wlan0\x00', 'ipvlan1\x00'}, 0xc0, 0xe8}, @unspec=@MARK={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x420)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000280), 0x1000a)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r6, 0x0)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r7, 0x84, 0xa, &(0x7f0000000400)={0x40, 0x400, 0x0, 0x7, 0x3ff, 0x0, 0x1, 0xec7}, &(0x7f0000000040)=0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000040)=ANY=[], 0xffe6)
r9 = getpid()
setreuid(0xee00, 0x0)
syz_pidfd_open(r9, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')

kernel console output (not intermixed with test programs):

ge from 0 to 128
[  245.767450][T10472] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  245.779652][T10472] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  245.912269][T10489] pim6reg1: entered promiscuous mode
[  245.917700][T10489] pim6reg1: entered allmulticast mode
[  245.978345][T10494] loop4: detected capacity change from 0 to 1024
[  246.253311][T10514] loop3: detected capacity change from 0 to 1024
[  246.285067][T10519] loop4: detected capacity change from 0 to 512
[  246.314300][T10519] ext4 filesystem being mounted at /482/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.341466][T10519] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2373: corrupted inode contents
[  246.359178][T10521] loop3: detected capacity change from 0 to 1024
[  246.370503][T10519] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.2373: mark_inode_dirty error
[  246.384063][T10519] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2373: corrupted inode contents
[  246.399075][T10519] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2373: mark_inode_dirty error
[  246.580244][T10546] loop2: detected capacity change from 0 to 1024
[  246.637213][T10552] loop2: detected capacity change from 0 to 128
[  246.660702][T10552] ext4 filesystem being mounted at /471/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.888216][T10559] loop2: detected capacity change from 0 to 512
[  246.923544][T10559] ext4 filesystem being mounted at /473/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.976683][T10559] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2388: corrupted inode contents
[  246.988670][T10559] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.2388: mark_inode_dirty error
[  247.006205][T10559] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2388: corrupted inode contents
[  247.018642][T10559] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.2388: mark_inode_dirty error
[  247.114779][T10580] loop1: detected capacity change from 0 to 128
[  247.122710][T10578] loop0: detected capacity change from 0 to 512
[  247.147350][T10580] ext4 filesystem being mounted at /507/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.171405][T10578] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.188266][T10578] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2396: corrupted inode contents
[  247.200897][T10578] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2396: mark_inode_dirty error
[  247.212462][T10578] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2396: corrupted inode contents
[  247.225260][T10578] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2396: mark_inode_dirty error
[  247.367696][T10590] loop2: detected capacity change from 0 to 2048
[  247.407337][T10590] Alternate GPT is invalid, using primary GPT.
[  247.413689][T10590]  loop2: p1 p2 p3
[  247.531295][T10596] 9pnet_fd: Insufficient options for proto=fd
[  247.702948][T10597] loop1: detected capacity change from 0 to 256
[  247.725870][T10597] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  247.752615][T10605] loop3: detected capacity change from 0 to 512
[  247.768519][T10605] ext4 filesystem being mounted at /473/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.796920][T10605] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2404: corrupted inode contents
[  247.821485][T10605] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2404: mark_inode_dirty error
[  247.836084][T10605] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2404: corrupted inode contents
[  247.848219][T10605] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2404: mark_inode_dirty error
[  248.027091][T10619] loop2: detected capacity change from 0 to 128
[  248.059635][T10619] ext4 filesystem being mounted at /478/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.397201][T10639] loop0: detected capacity change from 0 to 512
[  248.631350][T10639] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.648900][T10639] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2416: corrupted inode contents
[  248.670007][T10639] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2416: mark_inode_dirty error
[  248.837676][T10646] loop2: detected capacity change from 0 to 2048
[  249.066930][T10646] Alternate GPT is invalid, using primary GPT.
[  249.073176][T10646]  loop2: p1 p2 p3
[  249.128276][T10652] loop1: detected capacity change from 0 to 256
[  249.135983][T10639] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2416: corrupted inode contents
[  249.145034][T10652] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  249.156187][T10639] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2416: mark_inode_dirty error
[  249.264344][T10656] loop3: detected capacity change from 0 to 1024
[  249.315524][T10660] process 'syz.4.2422' launched './file0' with NULL argv: empty string added
[  249.374180][T10663] loop0: detected capacity change from 0 to 512
[  249.449621][T10663] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.465133][T10674] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2428'.
[  249.474783][T10674] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2428'.
[  249.508056][T10683] program syz.4.2431 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  249.659057][T10698] loop4: detected capacity change from 0 to 1024
[  250.078663][   T29] kauditd_printk_skb: 1204 callbacks suppressed
[  250.078675][   T29] audit: type=1326 audit(1727984752.309:20990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.131729][   T29] audit: type=1326 audit(1727984752.339:20991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.155434][   T29] audit: type=1326 audit(1727984752.339:20992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.155744][T10722] loop4: detected capacity change from 0 to 1024
[  250.179223][   T29] audit: type=1326 audit(1727984752.339:20993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.209091][   T29] audit: type=1326 audit(1727984752.339:20994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.209116][   T29] audit: type=1326 audit(1727984752.339:20995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.256263][   T29] audit: type=1326 audit(1727984752.339:20996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.279832][   T29] audit: type=1326 audit(1727984752.339:20997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.279857][   T29] audit: type=1326 audit(1727984752.339:20998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.279945][   T29] audit: type=1326 audit(1727984752.339:20999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10716 comm="syz.1.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  250.445680][T10730] loop3: detected capacity change from 0 to 512
[  250.450003][T10729] loop1: detected capacity change from 0 to 256
[  250.458681][T10729] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  250.472861][ T9361] EXT4-fs unmount: 45 callbacks suppressed
[  250.472886][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.493505][T10730] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  250.513181][T10730] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.026915][T10751] FAULT_INJECTION: forcing a failure.
[  251.026915][T10751] name failslab, interval 1, probability 0, space 0, times 0
[  251.039658][T10751] CPU: 0 UID: 0 PID: 10751 Comm: syz.1.2459 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  251.050508][T10751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  251.060645][T10751] Call Trace:
[  251.063990][T10751]  <TASK>
[  251.066968][T10751]  dump_stack_lvl+0xf2/0x150
[  251.071574][T10751]  dump_stack+0x15/0x20
[  251.075774][T10751]  should_fail_ex+0x223/0x230
[  251.080475][T10751]  ? alloc_pipe_info+0x1cb/0x360
[  251.085510][T10751]  should_failslab+0x8f/0xb0
[  251.090093][T10751]  __kmalloc_noprof+0xa5/0x370
[  251.094963][T10751]  alloc_pipe_info+0x1cb/0x360
[  251.099729][T10751]  splice_direct_to_actor+0x60f/0x670
[  251.105177][T10751]  ? kstrtouint_from_user+0xb0/0xe0
[  251.110387][T10751]  ? __pfx_direct_splice_actor+0x10/0x10
[  251.116160][T10751]  ? 0xffffffff81000000
[  251.120321][T10751]  ? __rcu_read_unlock+0x4e/0x70
[  251.125267][T10751]  ? avc_policy_seqno+0x15/0x20
[  251.130123][T10751]  ? selinux_file_permission+0x22a/0x360
[  251.135800][T10751]  do_splice_direct+0xd7/0x150
[  251.140646][T10751]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  251.146674][T10751]  do_sendfile+0x39b/0x970
[  251.151132][T10751]  __x64_sys_sendfile64+0x110/0x150
[  251.156328][T10751]  x64_sys_call+0xed5/0x2d60
[  251.161005][T10751]  do_syscall_64+0xc9/0x1c0
[  251.165516][T10751]  ? clear_bhb_loop+0x55/0xb0
[  251.170302][T10751]  ? clear_bhb_loop+0x55/0xb0
[  251.175062][T10751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.181028][T10751] RIP: 0033:0x7eff117ddff9
[  251.185515][T10751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.205306][T10751] RSP: 002b:00007eff10457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  251.213898][T10751] RAX: ffffffffffffffda RBX: 00007eff11995f80 RCX: 00007eff117ddff9
[  251.221867][T10751] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  251.229860][T10751] RBP: 00007eff10457090 R08: 0000000000000000 R09: 0000000000000000
[  251.237829][T10751] R10: 00008000fffffffe R11: 0000000000000246 R12: 0000000000000001
[  251.245864][T10751] R13: 0000000000000000 R14: 00007eff11995f80 R15: 00007ffce8675ac8
[  251.253910][T10751]  </TASK>
[  251.319297][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  251.390998][T10760] loop4: detected capacity change from 0 to 512
[  251.400986][T10757] loop3: detected capacity change from 0 to 1024
[  251.499795][T10765] loop3: detected capacity change from 0 to 512
[  251.510185][T10760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.537574][T10760] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.549573][T10765] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.584529][T10765] ext4 filesystem being mounted at /482/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.663122][T10765] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2464: corrupted inode contents
[  251.675380][T10765] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2464: mark_inode_dirty error
[  251.687388][T10765] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2464: corrupted inode contents
[  251.699824][T10765] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2464: mark_inode_dirty error
[  251.818316][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.069637][T10789] loop3: detected capacity change from 0 to 512
[  252.304489][T10796] loop1: detected capacity change from 0 to 512
[  252.416632][T10789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.431166][T10789] ext4 filesystem being mounted at /484/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.444517][T10796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.504497][T10789] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2472: corrupted inode contents
[  252.507748][T10796] ext4 filesystem being mounted at /522/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.530770][T10789] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2472: mark_inode_dirty error
[  252.539958][T10801] loop2: detected capacity change from 0 to 2048
[  252.562085][T10789] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2472: corrupted inode contents
[  252.577272][T10789] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2472: mark_inode_dirty error
[  252.577854][T10796] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2474: corrupted inode contents
[  252.589240][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.612562][T10801] Alternate GPT is invalid, using primary GPT.
[  252.618951][T10801]  loop2: p1 p2 p3
[  252.625016][T10796] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2474: mark_inode_dirty error
[  252.637235][T10796] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2474: corrupted inode contents
[  252.663051][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.684993][T10796] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2474: mark_inode_dirty error
[  252.745022][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.812867][T10811] loop0: detected capacity change from 0 to 512
[  252.838231][T10817] loop1: detected capacity change from 0 to 512
[  252.845817][T10811] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.859356][T10811] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.876503][T10811] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2479: corrupted inode contents
[  252.889668][T10817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.896119][T10811] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2479: mark_inode_dirty error
[  252.902300][T10817] ext4 filesystem being mounted at /524/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.916031][T10811] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2479: corrupted inode contents
[  252.943419][T10811] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2479: mark_inode_dirty error
[  252.943595][T10817] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2480: corrupted inode contents
[  252.967031][T10817] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2480: mark_inode_dirty error
[  252.979329][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.988052][T10817] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2480: corrupted inode contents
[  253.026133][T10817] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2480: mark_inode_dirty error
[  253.064566][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.581023][T10854] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2491'.
[  253.612779][T10854] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2491'.
[  253.774880][T10871] loop4: detected capacity change from 0 to 512
[  253.813909][T10871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.836575][T10871] ext4 filesystem being mounted at /514/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  253.878187][T10871] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2498: corrupted inode contents
[  253.890196][T10871] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.2498: mark_inode_dirty error
[  253.935755][T10871] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2498: corrupted inode contents
[  253.971906][T10880] loop2: detected capacity change from 0 to 1024
[  253.997677][T10879] loop1: detected capacity change from 0 to 2048
[  254.007833][T10871] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2498: mark_inode_dirty error
[  254.079087][T10879] Alternate GPT is invalid, using primary GPT.
[  254.085435][T10879]  loop1: p1 p2 p3
[  254.107668][T10889] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2503'.
[  254.144534][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.160041][T10887] pim6reg1: entered promiscuous mode
[  254.165418][T10887] pim6reg1: entered allmulticast mode
[  254.320657][T10899] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2505'.
[  254.325565][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.332975][T10895] syz.3.2506[10895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.347893][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.359930][T10900] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2505'.
[  254.395960][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.409946][T10895] syz.3.2506[10895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.436593][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.457094][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.482270][T10895] syz.3.2506[10895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.494663][T10894] syz.3.2506[10894] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.942863][T10923] loop1: detected capacity change from 0 to 512
[  254.989042][T10921] loop2: detected capacity change from 0 to 512
[  254.995570][T10925] loop3: detected capacity change from 0 to 256
[  255.019293][T10925] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  255.037462][T10923] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.038616][T10921] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.065843][T10923] ext4 filesystem being mounted at /533/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.158255][T10923] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2515: corrupted inode contents
[  255.166013][   T29] kauditd_printk_skb: 533 callbacks suppressed
[  255.166027][   T29] audit: type=1326 audit(1727984757.389:21533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10922 comm="syz.1.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  255.170324][T10923] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2515: mark_inode_dirty error
[  255.176173][   T29] audit: type=1326 audit(1727984757.389:21534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10922 comm="syz.1.2515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7eff117ddff9 code=0x7ffc0000
[  255.179418][T10921] ext4 filesystem being mounted at /494/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.200364][T10923] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2515: corrupted inode contents
[  255.272953][   T29] audit: type=1326 audit(1727984757.489:21535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.296597][   T29] audit: type=1326 audit(1727984757.499:21536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.320380][   T29] audit: type=1326 audit(1727984757.499:21537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.344127][   T29] audit: type=1326 audit(1727984757.499:21538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.361141][T10936] ipt_ECN: cannot use operation on non-tcp rule
[  255.367822][   T29] audit: type=1326 audit(1727984757.499:21539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.397644][   T29] audit: type=1326 audit(1727984757.499:21540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.421387][   T29] audit: type=1326 audit(1727984757.499:21541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.445092][   T29] audit: type=1326 audit(1727984757.499:21542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10933 comm="syz.4.2518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f680bf8dff9 code=0x7ffc0000
[  255.475934][T10923] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2515: mark_inode_dirty error
[  255.539783][T10921] program syz.2.2513 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  255.651421][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.697656][ T3274] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.723556][T10948] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2521'.
[  255.940336][T10948] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2521'.
[  256.394221][T10956] loop4: detected capacity change from 0 to 2048
[  256.490520][T10967] loop0: detected capacity change from 0 to 256
[  256.515312][T10967] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  256.625494][T10956] Alternate GPT is invalid, using primary GPT.
[  256.631987][T10956]  loop4: p1 p2 p3
[  257.101924][T10973] loop1: detected capacity change from 0 to 512
[  257.191762][T10984] loop0: detected capacity change from 0 to 512
[  257.199968][T10973] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.212827][T10973] ext4 filesystem being mounted at /536/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.226987][T10973] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2532: corrupted inode contents
[  257.244603][T10973] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2532: mark_inode_dirty error
[  257.256690][T10984] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.284451][T10973] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2532: corrupted inode contents
[  257.341824][T10984] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.353131][T10973] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2532: mark_inode_dirty error
[  257.372513][T10984] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2534: corrupted inode contents
[  257.385649][T10984] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2534: mark_inode_dirty error
[  257.410552][T10996] loop3: detected capacity change from 0 to 1024
[  257.417900][T10984] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2534: corrupted inode contents
[  257.466561][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.491122][T10984] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2534: mark_inode_dirty error
[  257.551002][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.611689][T11006] loop3: detected capacity change from 0 to 512
[  257.638169][T11006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.651393][T11006] ext4 filesystem being mounted at /498/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.704946][T11013] loop0: detected capacity change from 0 to 1024
[  257.713973][T11014] 9pnet_fd: Insufficient options for proto=fd
[  257.818084][T11006] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2542: corrupted inode contents
[  257.860573][T11006] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #19: comm syz.3.2542: mark_inode_dirty error
[  257.902901][T11006] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.2542: corrupted inode contents
[  257.985308][T11006] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3005: inode #19: comm syz.3.2542: mark_inode_dirty error
[  258.002990][T11006] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3008: inode #19: comm syz.3.2542: mark inode dirty (error -117)
[  258.067038][T11006] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[  258.145487][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.330870][T11051] FAULT_INJECTION: forcing a failure.
[  258.330870][T11051] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.344199][T11051] CPU: 0 UID: 0 PID: 11051 Comm: syz.3.2559 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  258.354974][T11051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  258.365079][T11051] Call Trace:
[  258.368516][T11051]  <TASK>
[  258.371450][T11051]  dump_stack_lvl+0xf2/0x150
[  258.376163][T11051]  dump_stack+0x15/0x20
[  258.380321][T11051]  should_fail_ex+0x223/0x230
[  258.385039][T11051]  should_fail+0xb/0x10
[  258.389232][T11051]  should_fail_usercopy+0x1a/0x20
[  258.394315][T11051]  _copy_to_user+0x1e/0xa0
[  258.398737][T11051]  simple_read_from_buffer+0xa0/0x110
[  258.404117][T11051]  proc_fail_nth_read+0xf9/0x140
[  258.409102][T11051]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.414649][T11051]  vfs_read+0x195/0x720
[  258.418888][T11051]  ? __rcu_read_unlock+0x4e/0x70
[  258.423929][T11051]  ? __fget_files+0x1d4/0x210
[  258.428693][T11051]  ksys_read+0xeb/0x1b0
[  258.432895][T11051]  __x64_sys_read+0x42/0x50
[  258.437593][T11051]  x64_sys_call+0x27d3/0x2d60
[  258.442368][T11051]  do_syscall_64+0xc9/0x1c0
[  258.446930][T11051]  ? clear_bhb_loop+0x55/0xb0
[  258.451632][T11051]  ? clear_bhb_loop+0x55/0xb0
[  258.456446][T11051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.462411][T11051] RIP: 0033:0x7f299327ca3c
[  258.466840][T11051] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  258.486688][T11051] RSP: 002b:00007f2991ef1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  258.495178][T11051] RAX: ffffffffffffffda RBX: 00007f2993435f80 RCX: 00007f299327ca3c
[  258.503160][T11051] RDX: 000000000000000f RSI: 00007f2991ef10a0 RDI: 0000000000000007
[  258.511133][T11051] RBP: 00007f2991ef1090 R08: 0000000000000000 R09: 0000000000000000
[  258.519107][T11051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.527088][T11051] R13: 0000000000000000 R14: 00007f2993435f80 R15: 00007ffd6d635e98
[  258.535064][T11051]  </TASK>
[  258.731765][T11061] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2562'.
[  258.829267][T11067] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2562'.
[  258.868188][T11066] loop0: detected capacity change from 0 to 512
[  258.888104][T11069] lo speed is unknown, defaulting to 1000
[  258.913855][T11069] lo speed is unknown, defaulting to 1000
[  258.941767][T11069] lo speed is unknown, defaulting to 1000
[  258.948769][T11069] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  258.961386][T11069] lo speed is unknown, defaulting to 1000
[  259.139691][T11069] lo speed is unknown, defaulting to 1000
[  259.152918][T11069] lo speed is unknown, defaulting to 1000
[  259.163150][T11066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.177002][T11069] lo speed is unknown, defaulting to 1000
[  259.183150][T11069] lo speed is unknown, defaulting to 1000
[  259.189471][T11069] lo speed is unknown, defaulting to 1000
[  259.214203][T11077] loop2: detected capacity change from 0 to 1024
[  259.310357][T11082] lo speed is unknown, defaulting to 1000
[  259.365913][T11066] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.394667][T11082] lo speed is unknown, defaulting to 1000
[  259.437257][T11066] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2564: corrupted inode contents
[  259.501198][T11086] lo speed is unknown, defaulting to 1000
[  259.880779][T11093] 9pnet_fd: Insufficient options for proto=fd
[  259.946848][T11066] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2564: mark_inode_dirty error
[  260.030497][T11066] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2564: corrupted inode contents
[  260.158257][T11066] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2564: mark_inode_dirty error
[  260.198224][T11103] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2576'.
[  260.208045][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.212629][T11103] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2576'.
[  260.247855][T11108] lo speed is unknown, defaulting to 1000
[  260.681116][T11130] lo speed is unknown, defaulting to 1000
[  260.829229][T11140] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2592'.
[  260.852818][T11140] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2592'.
[  260.893873][T11146] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=128 sclass=netlink_route_socket pid=11146 comm=syz.2.2594
[  260.924706][T11146] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2594'.
[  260.935955][T11146] dummy0: left allmulticast mode
[  260.941001][T11146] dummy0: left promiscuous mode
[  260.946022][T11146] bridge0: port 3(dummy0) entered disabled state
[  260.959893][T11148] loop3: detected capacity change from 0 to 1024
[  260.968966][T11146] bridge_slave_1: left allmulticast mode
[  260.974675][T11146] bridge_slave_1: left promiscuous mode
[  260.980362][T11146] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.988026][T11150] x_tables: ip_tables: icmp match: only valid for protocol 1
[  260.995862][   T29] kauditd_printk_skb: 413 callbacks suppressed
[  260.995874][   T29] audit: type=1326 audit(1727984763.199:21956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.037500][T11146] bridge_slave_0: left allmulticast mode
[  261.043163][T11146] bridge_slave_0: left promiscuous mode
[  261.049017][T11146] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.052390][   T29] audit: type=1326 audit(1727984763.279:21957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.079903][   T29] audit: type=1326 audit(1727984763.279:21958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.103562][   T29] audit: type=1326 audit(1727984763.279:21959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.127143][   T29] audit: type=1326 audit(1727984763.319:21960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.150911][   T29] audit: type=1400 audit(1727984763.339:21961): avc:  denied  { getopt } for  pid=11145 comm="syz.2.2594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  261.213996][   T29] audit: type=1326 audit(1727984763.409:21962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.237641][   T29] audit: type=1326 audit(1727984763.409:21963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.261842][   T29] audit: type=1326 audit(1727984763.419:21964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.285281][   T29] audit: type=1326 audit(1727984763.419:21965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11147 comm="syz.3.2596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299327dff9 code=0x7ffc0000
[  261.333471][T11156] loop3: detected capacity change from 0 to 1024
[  261.386648][T11150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2594'.
[  261.395548][T11150] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2594'.
[  261.408259][T11150] ip6erspan0: entered promiscuous mode
[  261.428909][T11149] lo speed is unknown, defaulting to 1000
[  261.633782][T11180] loop0: detected capacity change from 0 to 1024
[  261.709093][T11186] lo speed is unknown, defaulting to 1000
[  261.962906][T11188] loop1: detected capacity change from 0 to 1024
[  261.997057][T11192] lo speed is unknown, defaulting to 1000
[  262.033837][T11197] loop1: detected capacity change from 0 to 512
[  262.079095][T11197] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.091700][T11197] ext4 filesystem being mounted at /547/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  262.104883][T11197] program syz.1.2617 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.120451][T11206] lo speed is unknown, defaulting to 1000
[  262.154635][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.208870][T11212] lo speed is unknown, defaulting to 1000
[  262.296849][T11216] loop1: detected capacity change from 0 to 1024
[  262.525051][T11236] 9pnet_fd: Insufficient options for proto=fd
[  262.553162][T11235] pim6reg1: entered promiscuous mode
[  262.558559][T11235] pim6reg1: entered allmulticast mode
[  262.762473][T11241] loop2: detected capacity change from 0 to 1024
[  262.779588][T11241] ext4: Bad value for 'debug_want_extra_isize'
[  263.067936][T11262] lo speed is unknown, defaulting to 1000
[  263.430104][T11275] pim6reg1: entered promiscuous mode
[  263.435457][T11275] pim6reg1: entered allmulticast mode
[  263.449783][T11277] loop0: detected capacity change from 0 to 1024
[  263.668576][T11291] loop2: detected capacity change from 0 to 512
[  263.687345][T11291] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.700224][T11291] ext4 filesystem being mounted at /518/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  263.718261][T11291] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2652: corrupted inode contents
[  263.745965][T11291] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.2652: mark_inode_dirty error
[  263.775161][T11291] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2652: corrupted inode contents
[  263.792712][T11295] lo speed is unknown, defaulting to 1000
[  263.821773][T11291] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.2652: mark_inode_dirty error
[  263.834142][T11299] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2654'.
[  263.851369][T11299] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2654'.
[  263.868282][T11303] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹
[  263.894841][ T3274] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.960921][T11307] loop3: detected capacity change from 0 to 1024
[  263.974421][T11309] loop2: detected capacity change from 0 to 1024
[  264.130925][T11317] syz.2.2662 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  265.485022][T11320] lo speed is unknown, defaulting to 1000
[  265.659998][T11322] lo speed is unknown, defaulting to 1000
[  265.768831][T11333] loop0: detected capacity change from 0 to 512
[  265.804928][T11339] 9pnet_fd: Insufficient options for proto=fd
[  265.823151][T11333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.835698][T11333] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.867218][T11345] loop4: detected capacity change from 0 to 1024
[  265.887434][T11333] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2667: corrupted inode contents
[  265.908473][T11333] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2667: mark_inode_dirty error
[  265.930462][T11352] loop1: detected capacity change from 0 to 512
[  265.937418][T11333] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2667: corrupted inode contents
[  265.949597][T11333] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2667: mark_inode_dirty error
[  265.975446][T11353] loop3: detected capacity change from 0 to 512
[  265.981953][T11357] loop4: detected capacity change from 0 to 512
[  266.001689][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.010740][T11352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.023504][T11352] ext4 filesystem being mounted at /565/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.038176][T11352] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2676: corrupted inode contents
[  266.045098][T11353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.050295][T11352] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2676: mark_inode_dirty error
[  266.063961][T11357] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  266.073829][T11353] ext4 filesystem being mounted at /527/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.095955][T11357] ext4 filesystem being mounted at /548/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.108876][T11352] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2676: corrupted inode contents
[  266.128909][T11352] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2676: mark_inode_dirty error
[  266.137339][T11353] program syz.3.2677 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  266.188353][T11370] 9pnet_fd: Insufficient options for proto=fd
[  266.202134][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.285742][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.317597][   T29] kauditd_printk_skb: 797 callbacks suppressed
[  266.317611][   T29] audit: type=1326 audit(1727984768.549:22763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.367469][   T29] audit: type=1326 audit(1727984768.579:22764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.391212][   T29] audit: type=1326 audit(1727984768.579:22765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.414879][   T29] audit: type=1326 audit(1727984768.579:22766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.417086][T11393] lo speed is unknown, defaulting to 1000
[  266.438551][   T29] audit: type=1326 audit(1727984768.579:22767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.467961][   T29] audit: type=1326 audit(1727984768.579:22768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.491562][   T29] audit: type=1326 audit(1727984768.579:22769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.515206][   T29] audit: type=1326 audit(1727984768.579:22770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.535874][T11401] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2696'.
[  266.538825][   T29] audit: type=1326 audit(1727984768.579:22771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.571054][   T29] audit: type=1326 audit(1727984768.579:22772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  266.595549][T11401] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2696'.
[  266.689228][T11410] loop3: detected capacity change from 0 to 512
[  266.697400][T11412] lo speed is unknown, defaulting to 1000
[  266.711174][T11410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.737732][T11410] ext4 filesystem being mounted at /534/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.781709][T11410] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2700: corrupted inode contents
[  266.856333][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  266.856747][T11410] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2700: mark_inode_dirty error
[  266.886163][T11410] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2700: corrupted inode contents
[  266.918199][T11410] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2700: mark_inode_dirty error
[  266.932654][T11420] pim6reg1: entered promiscuous mode
[  266.938038][T11420] pim6reg1: entered allmulticast mode
[  266.944850][T11422] lo speed is unknown, defaulting to 1000
[  267.017742][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.250374][T11438] lo speed is unknown, defaulting to 1000
[  267.479124][T11445] loop0: detected capacity change from 0 to 512
[  267.570649][T11445] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.583329][T11445] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  267.596109][T11445] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2713: corrupted inode contents
[  267.608202][T11445] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2713: mark_inode_dirty error
[  267.666948][T11445] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2713: corrupted inode contents
[  267.691637][T11453] lo speed is unknown, defaulting to 1000
[  267.736682][T11445] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2713: mark_inode_dirty error
[  267.817415][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.884175][T11454] lo speed is unknown, defaulting to 1000
[  267.996214][T11460] lo speed is unknown, defaulting to 1000
[  268.007478][T11458] pim6reg1: entered promiscuous mode
[  268.012799][T11458] pim6reg1: entered allmulticast mode
[  268.238471][T11474] loop0: detected capacity change from 0 to 512
[  268.277932][T11474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.290809][T11474] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.302649][T11474] program syz.0.2723 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  268.418581][T11481] lo speed is unknown, defaulting to 1000
[  268.434396][T11483] loop4: detected capacity change from 0 to 512
[  268.472949][T11483] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.488708][ T9361] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.497837][T11483] ext4 filesystem being mounted at /552/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.509433][T11483] program syz.4.2725 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  268.532055][T11493] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  268.540410][T11493] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  268.609110][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.691267][T11506] lo speed is unknown, defaulting to 1000
[  268.839955][T11517] pim6reg1: entered promiscuous mode
[  268.845326][T11517] pim6reg1: entered allmulticast mode
[  268.955637][T11540] lo speed is unknown, defaulting to 1000
[  269.087291][T11559] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2758'.
[  269.105426][T11561] loop3: detected capacity change from 0 to 512
[  269.142022][T11561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.154830][T11561] ext4 filesystem being mounted at /539/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.173155][T11569] pim6reg1: entered promiscuous mode
[  269.178604][T11569] pim6reg1: entered allmulticast mode
[  269.192066][T11573] loop4: detected capacity change from 0 to 512
[  269.199056][T11561] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2759: corrupted inode contents
[  269.211893][T11561] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2759: mark_inode_dirty error
[  269.223727][T11561] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2759: corrupted inode contents
[  269.235984][T11561] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2759: mark_inode_dirty error
[  269.258818][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.269109][T11573] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.281768][T11573] ext4 filesystem being mounted at /559/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.299930][T11573] program syz.4.2764 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  269.383848][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.432785][T11590] 9pnet_fd: Insufficient options for proto=fd
[  269.451912][T11594] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2773'.
[  269.481018][T11602] loop4: detected capacity change from 0 to 512
[  269.508710][T11602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.531397][T11602] ext4 filesystem being mounted at /562/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.560291][T11610] loop1: detected capacity change from 0 to 512
[  269.567249][T11608] lo speed is unknown, defaulting to 1000
[  269.573973][T11602] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2777: corrupted inode contents
[  269.589330][T11602] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.2777: mark_inode_dirty error
[  269.610545][T11602] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.2777: corrupted inode contents
[  269.625654][T11610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  269.645899][T11610] ext4 filesystem being mounted at /583/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.656766][T11602] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2777: mark_inode_dirty error
[  269.707274][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.826083][T11618] loop4: detected capacity change from 0 to 512
[  269.837214][T11618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.849967][T11618] ext4 filesystem being mounted at /564/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.862449][T11618] program syz.4.2781 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  269.914979][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.956441][T11630] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2786'.
[  269.956606][T11632] 9pnet_fd: Insufficient options for proto=fd
[  269.990291][T11636] loop2: detected capacity change from 0 to 128
[  269.998956][T11636] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  270.011412][T11636] ext4 filesystem being mounted at /539/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  270.046785][T11639] pim6reg1: entered promiscuous mode
[  270.052108][T11639] pim6reg1: entered allmulticast mode
[  270.065906][ T3274] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  270.117710][T11647] loop2: detected capacity change from 0 to 512
[  270.127896][T11647] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.140835][T11647] ext4 filesystem being mounted at /543/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.155464][T11647] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2794: corrupted inode contents
[  270.187768][T11647] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.2794: mark_inode_dirty error
[  270.200640][T11647] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2794: corrupted inode contents
[  270.215112][T11647] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.2794: mark_inode_dirty error
[  270.247527][ T3274] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.260085][T11659] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2800'.
[  270.267336][T11661] 9pnet_fd: Insufficient options for proto=fd
[  270.404778][T11670] program syz.3.2804 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  270.489708][T11676] lo speed is unknown, defaulting to 1000
[  270.534610][ T3269] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  270.805624][T11673] pim6reg1: entered promiscuous mode
[  270.811100][T11673] pim6reg1: entered allmulticast mode
[  270.863591][T11684] lo speed is unknown, defaulting to 1000
[  270.904031][T11688] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2812'.
[  270.905879][T11690] Cannot find set identified by id 0 to match
[  270.929410][T11693] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2814'.
[  270.938970][T11693] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2814'.
[  270.954515][T11697] program syz.3.2816 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  271.002322][T11705] loop3: detected capacity change from 0 to 512
[  271.010245][T11705] EXT4-fs: Ignoring removed orlov option
[  271.017385][T11705] EXT4-fs: Ignoring removed bh option
[  271.022896][T11705] EXT4-fs: dax option not supported
[  271.032122][T11709] pim6reg1: entered promiscuous mode
[  271.037572][T11709] pim6reg1: entered allmulticast mode
[  271.113483][T11717] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2824'.
[  271.121297][T11719] loop0: detected capacity change from 0 to 256
[  271.129038][T11719] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  271.257660][T11720] loop3: detected capacity change from 0 to 8192
[  271.331138][   T29] kauditd_printk_skb: 733 callbacks suppressed
[  271.331153][   T29] audit: type=1326 audit(1727984773.559:23506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa28e9f4fa7 code=0x7ffc0000
[  271.362986][   T29] audit: type=1326 audit(1727984773.559:23507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa28e999959 code=0x7ffc0000
[  271.386566][   T29] audit: type=1326 audit(1727984773.559:23508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  271.410371][   T29] audit: type=1326 audit(1727984773.569:23509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa28e9f4fa7 code=0x7ffc0000
[  271.434085][   T29] audit: type=1326 audit(1727984773.569:23510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa28e999959 code=0x7ffc0000
[  271.457799][   T29] audit: type=1326 audit(1727984773.569:23511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  271.481389][   T29] audit: type=1326 audit(1727984773.569:23512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa28e9f4fa7 code=0x7ffc0000
[  271.505066][   T29] audit: type=1326 audit(1727984773.569:23513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa28e999959 code=0x7ffc0000
[  271.528593][   T29] audit: type=1326 audit(1727984773.569:23514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa28e9fdff9 code=0x7ffc0000
[  271.552249][   T29] audit: type=1326 audit(1727984773.599:23515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11718 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa28e9f4fa7 code=0x7ffc0000
[  271.905414][T11750] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2837'.
[  271.960143][T11760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2842'.
[  271.962622][T11764] loop3: detected capacity change from 0 to 256
[  271.976434][T11764] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  272.184413][T11776] loop4: detected capacity change from 0 to 512
[  272.201953][T11778] lo speed is unknown, defaulting to 1000
[  272.272893][T11776] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  272.351158][T11776] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  272.408499][T11776] EXT4-fs (loop4): orphan cleanup on readonly fs
[  272.450456][T11776] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2849: bg 0: block 361: padding at end of block bitmap is not set
[  272.476018][T11776] EXT4-fs (loop4): Remounting filesystem read-only
[  272.496362][T11776] EXT4-fs (loop4): 1 truncate cleaned up
[  272.500456][T11788] loop2: detected capacity change from 0 to 1024
[  272.502345][T11776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  272.556982][T11776] SELinux: (dev loop4, type ext4) getxattr errno 5
[  272.677107][T11776] mmap: syz.4.2849 (11776) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  273.181962][T11820] loop1: detected capacity change from 0 to 1024
[  273.190397][T11822] loop4: detected capacity change from 0 to 256
[  273.206998][T11822] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  273.355054][T11828] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2869'.
[  273.581780][T11842] lo speed is unknown, defaulting to 1000
[  274.355953][T11866] loop3: detected capacity change from 0 to 512
[  274.370294][T11866] ext4 filesystem being mounted at /560/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  274.382870][T11866] program syz.3.2882 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  274.875035][T11873] Cannot find set identified by id 0 to match
[  274.887405][T11875] loop4: detected capacity change from 0 to 256
[  274.900692][T11875] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  275.052840][T11878] ipt_ECN: cannot use operation on non-tcp rule
[  275.158810][T11883] xt_hashlimit: max too large, truncated to 1048576
[  275.193979][T11885] FAULT_INJECTION: forcing a failure.
[  275.193979][T11885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  275.207667][T11885] CPU: 0 UID: 0 PID: 11885 Comm: syz.1.2888 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  275.218432][T11885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  275.228482][T11885] Call Trace:
[  275.231829][T11885]  <TASK>
[  275.234818][T11885]  dump_stack_lvl+0xf2/0x150
[  275.239473][T11885]  dump_stack+0x15/0x20
[  275.243658][T11885]  should_fail_ex+0x223/0x230
[  275.248342][T11885]  should_fail+0xb/0x10
[  275.252549][T11885]  should_fail_usercopy+0x1a/0x20
[  275.257598][T11885]  _copy_from_user+0x1e/0xd0
[  275.262294][T11885]  copy_msghdr_from_user+0x54/0x2a0
[  275.267568][T11885]  __sys_recvmsg+0x160/0x270
[  275.272243][T11885]  __x64_sys_recvmsg+0x46/0x50
[  275.277454][T11885]  x64_sys_call+0xb84/0x2d60
[  275.282074][T11885]  do_syscall_64+0xc9/0x1c0
[  275.286589][T11885]  ? clear_bhb_loop+0x55/0xb0
[  275.291323][T11885]  ? clear_bhb_loop+0x55/0xb0
[  275.296011][T11885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.301989][T11885] RIP: 0033:0x7eff117ddff9
[  275.306430][T11885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.326155][T11885] RSP: 002b:00007eff10457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  275.334660][T11885] RAX: ffffffffffffffda RBX: 00007eff11995f80 RCX: 00007eff117ddff9
[  275.342702][T11885] RDX: 0000000000001f00 RSI: 0000000020000500 RDI: 0000000000000004
[  275.350749][T11885] RBP: 00007eff10457090 R08: 0000000000000000 R09: 0000000000000000
[  275.358779][T11885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.366814][T11885] R13: 0000000000000000 R14: 00007eff11995f80 R15: 00007ffce8675ac8
[  275.374786][T11885]  </TASK>
[  275.566098][T11896] loop2: detected capacity change from 0 to 8192
[  275.586948][T11896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2893'.
[  275.821206][T11910] Cannot find set identified by id 0 to match
[  275.935003][T11918] loop3: detected capacity change from 0 to 2048
[  275.996305][T11918]  loop3: p1 < > p4
[  276.006320][T11918] loop3: p4 size 8388608 extends beyond EOD, truncated
[  276.406074][T11923] lo speed is unknown, defaulting to 1000
[  276.468120][T11939] Cannot find set identified by id 0 to match
[  276.570485][T11923] chnl_net:caif_netlink_parms(): no params data found
[  276.694244][T11923] bridge0: port 1(bridge_slave_0) entered blocking state
[  276.701426][T11923] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.709128][T11923] bridge_slave_0: entered allmulticast mode
[  276.715494][T11923] bridge_slave_0: entered promiscuous mode
[  276.722536][T11923] bridge0: port 2(bridge_slave_1) entered blocking state
[  276.729607][T11923] bridge0: port 2(bridge_slave_1) entered disabled state
[  276.830613][T11923] bridge_slave_1: entered allmulticast mode
[  276.845893][   T29] kauditd_printk_skb: 352 callbacks suppressed
[  276.845906][   T29] audit: type=1326 audit(1727984779.069:23868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.875699][   T29] audit: type=1326 audit(1727984779.069:23869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.899299][   T29] audit: type=1326 audit(1727984779.069:23870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.922979][   T29] audit: type=1326 audit(1727984779.069:23871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.946717][   T29] audit: type=1326 audit(1727984779.069:23872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.970278][   T29] audit: type=1326 audit(1727984779.069:23873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  276.994565][   T29] audit: type=1326 audit(1727984779.069:23874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  277.018133][   T29] audit: type=1326 audit(1727984779.069:23875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  277.041754][   T29] audit: type=1326 audit(1727984779.069:23876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  277.065348][   T29] audit: type=1326 audit(1727984779.069:23877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11943 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  277.090319][T11923] bridge_slave_1: entered promiscuous mode
[  277.103932][T11952] lo speed is unknown, defaulting to 1000
[  277.116741][T11923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  277.126593][T11949] loop2: detected capacity change from 0 to 512
[  277.144597][T11923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  277.163793][T11923] team0: Port device team_slave_0 added
[  277.170474][T11923] team0: Port device team_slave_1 added
[  277.186096][T11923] batman_adv: batadv0: Adding interface: batadv_slave_0
[  277.193076][T11923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.219134][T11923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  277.236542][T11923] batman_adv: batadv0: Adding interface: batadv_slave_1
[  277.243569][T11923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  277.269561][T11923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  277.299486][T11923] hsr_slave_0: entered promiscuous mode
[  277.305683][T11923] hsr_slave_1: entered promiscuous mode
[  277.312725][T11923] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  277.320773][T11923] Cannot create hsr debugfs directory
[  277.396490][T11949] ext4 filesystem being mounted at /580/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.465489][T11923] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.528999][T11923] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.611631][T11923] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.694230][T11923] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.769955][T11923] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  277.788616][T11923] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  277.798002][T11923] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  277.817367][T11923] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  277.860637][T11958] loop3: detected capacity change from 0 to 512
[  277.881429][T11923] 8021q: adding VLAN 0 to HW filter on device bond0
[  277.894864][T11923] 8021q: adding VLAN 0 to HW filter on device team0
[  277.903486][T11958] ext4 filesystem being mounted at /572/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.917928][T11958] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2909: corrupted inode contents
[  277.930156][T11958] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2909: mark_inode_dirty error
[  277.941841][T11958] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2909: corrupted inode contents
[  277.954290][T11958] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2909: mark_inode_dirty error
[  277.979666][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.986846][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  278.006481][T11923] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  278.016895][T11923] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  278.033071][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.040160][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  278.098864][T11923] 8021q: adding VLAN 0 to HW filter on device batadv0
[  278.170448][T11923] veth0_vlan: entered promiscuous mode
[  278.179697][T11923] veth1_vlan: entered promiscuous mode
[  278.195494][T11923] veth0_macvtap: entered promiscuous mode
[  278.204472][T11923] veth1_macvtap: entered promiscuous mode
[  278.216280][T11923] batman_adv: batadv0: Interface activated: batadv_slave_0
[  278.229059][T11923] batman_adv: batadv0: Interface activated: batadv_slave_1
[  278.239230][T11923] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  278.248073][T11923] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  278.256873][T11923] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  278.265579][T11923] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  278.348144][T11979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2913'.
[  278.357330][T11979] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2913'.
[  278.436567][T11989] pim6reg1: entered promiscuous mode
[  278.441928][T11989] pim6reg1: entered allmulticast mode
[  278.454709][T11993] loop3: detected capacity change from 0 to 512
[  278.464005][T11992] loop1: detected capacity change from 0 to 512
[  278.518882][T11983] netlink: 'syz.4.2914': attribute type 1 has an invalid length.
[  278.536968][T11993] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  278.544886][T11993] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2842c018, mo2=0002]
[  278.561780][T11992] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.565526][T11983] loop4: detected capacity change from 0 to 512
[  278.578708][T11983] EXT4-fs: Ignoring removed mblk_io_submit option
[  278.585605][T11983] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  278.594520][T11993] System zones: 0-2, 18-18, 34-35
[  278.604524][T12001] loop2: detected capacity change from 0 to 512
[  278.607935][T11992] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2918: corrupted inode contents
[  278.623409][T11983] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  278.631656][T11983] System zones: 1-12
[  278.636220][T11983] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.2914: corrupted in-inode xattr: e_value size too large
[  278.636460][T11992] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.2918: mark_inode_dirty error
[  278.662181][T11992] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.2918: corrupted inode contents
[  278.662258][T11983] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.2914: couldn't read orphan inode 15 (err -117)
[  278.690928][T11992] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.2918: mark_inode_dirty error
[  278.778189][T12001] ext4 filesystem being mounted at /583/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.799096][T12001] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2920: corrupted inode contents
[  278.812865][T12009] loop4: detected capacity change from 0 to 256
[  278.820508][T12009] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  278.827171][T12001] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.2920: mark_inode_dirty error
[  278.839414][T12001] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.2920: corrupted inode contents
[  278.852399][T12001] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.2920: mark_inode_dirty error
[  278.956486][T12018] loop2: detected capacity change from 0 to 1024
[  279.068357][T12029] loop2: detected capacity change from 0 to 512
[  279.088368][T12029] ext4 filesystem being mounted at /590/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.281015][T12034] loop4: detected capacity change from 0 to 8192
[  279.326980][T12034]  loop4: p1 p2 p3 p4
[  279.331203][T12034] loop4: p1 start 17760256 is beyond EOD, truncated
[  279.337968][T12034] loop4: p2 size 64053 extends beyond EOD, truncated
[  279.345290][T12034] loop4: p3 start 458496 is beyond EOD, truncated
[  279.351731][T12034] loop4: p4 size 50331648 extends beyond EOD, truncated
[  279.680490][T12050] Cannot find set identified by id 0 to match
[  279.973911][T12054] loop3: detected capacity change from 0 to 1024
[  280.009917][T12058] loop3: detected capacity change from 0 to 256
[  280.016685][T12058] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  280.038215][T12057] FAULT_INJECTION: forcing a failure.
[  280.038215][T12057] name failslab, interval 1, probability 0, space 0, times 0
[  280.050881][T12057] CPU: 0 UID: 0 PID: 12057 Comm: syz.1.2940 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  280.061706][T12057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  280.071800][T12057] Call Trace:
[  280.075153][T12057]  <TASK>
[  280.078083][T12057]  dump_stack_lvl+0xf2/0x150
[  280.082737][T12057]  dump_stack+0x15/0x20
[  280.086889][T12057]  should_fail_ex+0x223/0x230
[  280.091697][T12057]  ? audit_log_start+0x34c/0x6b0
[  280.096716][T12057]  should_failslab+0x8f/0xb0
[  280.101309][T12057]  kmem_cache_alloc_noprof+0x4c/0x290
[  280.106698][T12057]  audit_log_start+0x34c/0x6b0
[  280.111540][T12057]  audit_seccomp+0x4b/0x130
[  280.116152][T12057]  __seccomp_filter+0x6fa/0x1180
[  280.121178][T12057]  ? proc_fail_nth_write+0x12a/0x150
[  280.126601][T12057]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  280.132256][T12057]  ? vfs_write+0x580/0x910
[  280.136747][T12057]  ? __fget_files+0x1d4/0x210
[  280.141430][T12057]  __secure_computing+0x9f/0x1c0
[  280.146461][T12057]  syscall_trace_enter+0xd1/0x1f0
[  280.151533][T12057]  ? fpregs_assert_state_consistent+0x83/0xa0
[  280.157749][T12057]  do_syscall_64+0xaa/0x1c0
[  280.162314][T12057]  ? clear_bhb_loop+0x55/0xb0
[  280.167056][T12057]  ? clear_bhb_loop+0x55/0xb0
[  280.171731][T12057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.177806][T12057] RIP: 0033:0x7fd14adddff9
[  280.182261][T12057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.201965][T12057] RSP: 002b:00007fd149a57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e4
[  280.210466][T12057] RAX: ffffffffffffffda RBX: 00007fd14af95f80 RCX: 00007fd14adddff9
[  280.218430][T12057] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000000
[  280.226549][T12057] RBP: 00007fd149a57090 R08: 0000000000000000 R09: 0000000000000000
[  280.234589][T12057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.242648][T12057] R13: 0000000000000000 R14: 00007fd14af95f80 R15: 00007fffa5764f18
[  280.250636][T12057]  </TASK>
[  280.565271][   T28] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.590691][T12066] lo speed is unknown, defaulting to 1000
[  280.630946][   T28] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.690388][   T28] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.725380][T12066] chnl_net:caif_netlink_parms(): no params data found
[  280.750172][   T28] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.787515][T12066] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.794594][T12066] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.802748][T12066] bridge_slave_0: entered allmulticast mode
[  280.809901][T12066] bridge_slave_0: entered promiscuous mode
[  280.830824][T12066] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.838018][T12066] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.845411][T12066] bridge_slave_1: entered allmulticast mode
[  280.852550][T12066] bridge_slave_1: entered promiscuous mode
[  280.858942][   T28] bridge_slave_1: left allmulticast mode
[  280.864612][   T28] bridge_slave_1: left promiscuous mode
[  280.870435][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.884623][   T28] bridge_slave_0: left allmulticast mode
[  280.890332][   T28] bridge_slave_0: left promiscuous mode
[  280.896032][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.028905][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  281.057464][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  281.073367][   T28] bond0 (unregistering): Released all slaves
[  281.099772][T12066] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  281.115055][T12066] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  281.140725][T12098] lo speed is unknown, defaulting to 1000
[  281.154125][   T28] hsr_slave_0: left promiscuous mode
[  281.160416][   T28] hsr_slave_1: left promiscuous mode
[  281.168047][   T28] veth1_macvtap: left promiscuous mode
[  281.173618][   T28] veth0_macvtap: left promiscuous mode
[  281.179186][   T28] veth1_vlan: left promiscuous mode
[  281.184489][   T28] veth0_vlan: left promiscuous mode
[  281.271018][   T28] team0 (unregistering): Port device team_slave_1 removed
[  281.283040][   T28] team0 (unregistering): Port device team_slave_0 removed
[  281.330431][T12066] team0: Port device team_slave_0 added
[  281.349169][T12066] team0: Port device team_slave_1 added
[  281.375055][T12066] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.382097][T12066] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.408062][T12066] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.434345][T12104] loop1: detected capacity change from 0 to 1024
[  281.449678][T12066] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.456727][T12066] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.482641][T12066] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.523733][T12105] lo speed is unknown, defaulting to 1000
[  281.533906][T12066] hsr_slave_0: entered promiscuous mode
[  281.618130][T12066] hsr_slave_1: entered promiscuous mode
[  281.627128][T12066] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  281.634697][T12066] Cannot create hsr debugfs directory
[  281.749674][T12115] lo speed is unknown, defaulting to 1000
[  281.868682][   T28] IPVS: stop unused estimator thread 0...
[  282.211878][T12066] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  282.221385][T12066] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  282.230709][T12066] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  282.240001][T12066] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  282.306531][T12066] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.322321][T12066] 8021q: adding VLAN 0 to HW filter on device team0
[  282.332002][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.339172][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.353496][   T86] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.360614][   T86] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.385935][T12066] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  282.396332][T12066] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  282.422377][T12123] pim6reg1: entered promiscuous mode
[  282.427861][T12123] pim6reg1: entered allmulticast mode
[  282.441667][   T29] kauditd_printk_skb: 439 callbacks suppressed
[  282.441682][   T29] audit: type=1326 audit(1727984784.669:24315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.471806][   T29] audit: type=1326 audit(1727984784.669:24316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.495409][   T29] audit: type=1326 audit(1727984784.669:24317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.519177][   T29] audit: type=1326 audit(1727984784.669:24318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.543355][   T29] audit: type=1326 audit(1727984784.669:24319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.566969][   T29] audit: type=1326 audit(1727984784.669:24320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.590891][   T29] audit: type=1326 audit(1727984784.669:24321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.614554][   T29] audit: type=1326 audit(1727984784.669:24322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.638222][   T29] audit: type=1326 audit(1727984784.669:24323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.662110][   T29] audit: type=1326 audit(1727984784.669:24324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.2.2959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fb98fdff9 code=0x7ffc0000
[  282.693643][T12127] netlink: 'syz.3.2960': attribute type 2 has an invalid length.
[  282.737712][T12066] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.990710][T12066] veth0_vlan: entered promiscuous mode
[  283.012569][T12157] lo speed is unknown, defaulting to 1000
[  283.050281][T12066] veth1_vlan: entered promiscuous mode
[  283.074067][T12066] veth0_macvtap: entered promiscuous mode
[  283.130757][T12066] veth1_macvtap: entered promiscuous mode
[  283.160232][T12066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.170752][T12066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.230153][T12066] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.261435][T12158] lo speed is unknown, defaulting to 1000
[  283.264983][T12066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.277764][T12066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.290678][T12066] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.302746][T12066] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.311754][T12066] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.320646][T12066] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.329440][T12066] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.455559][T12163] loop4: detected capacity change from 0 to 764
[  283.473009][T12163] FAULT_INJECTION: forcing a failure.
[  283.473009][T12163] name failslab, interval 1, probability 0, space 0, times 0
[  283.486233][T12163] CPU: 0 UID: 0 PID: 12163 Comm: syz.4.2966 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  283.497050][T12163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  283.507111][T12163] Call Trace:
[  283.510385][T12163]  <TASK>
[  283.513310][T12163]  dump_stack_lvl+0xf2/0x150
[  283.517968][T12163]  dump_stack+0x15/0x20
[  283.522246][T12163]  should_fail_ex+0x223/0x230
[  283.526924][T12163]  ? getname_flags+0x81/0x3b0
[  283.531598][T12163]  should_failslab+0x8f/0xb0
[  283.536265][T12163]  kmem_cache_alloc_noprof+0x4c/0x290
[  283.541737][T12163]  getname_flags+0x81/0x3b0
[  283.546235][T12163]  __x64_sys_link+0x33/0x70
[  283.550795][T12163]  x64_sys_call+0x22a2/0x2d60
[  283.555470][T12163]  do_syscall_64+0xc9/0x1c0
[  283.559997][T12163]  ? clear_bhb_loop+0x55/0xb0
[  283.564688][T12163]  ? clear_bhb_loop+0x55/0xb0
[  283.569510][T12163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.575424][T12163] RIP: 0033:0x7fb5cb4fdff9
[  283.579840][T12163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.599654][T12163] RSP: 002b:00007fb5ca177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056
[  283.608145][T12163] RAX: ffffffffffffffda RBX: 00007fb5cb6b5f80 RCX: 00007fb5cb4fdff9
[  283.616183][T12163] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000020000200
[  283.624186][T12163] RBP: 00007fb5ca177090 R08: 0000000000000000 R09: 0000000000000000
[  283.632196][T12163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.640161][T12163] R13: 0000000000000000 R14: 00007fb5cb6b5f80 R15: 00007fff8e7dde28
[  283.648139][T12163]  </TASK>
[  283.833433][T12176] program syz.1.2971 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.859286][T12185] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2973'.
[  283.868379][T12185] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2973'.
[  283.911221][T12185] bond_slave_0: entered promiscuous mode
[  283.943509][T12185] bond_slave_0: left promiscuous mode
[  283.988693][T12170] lo speed is unknown, defaulting to 1000
[  284.073914][   T40] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.134240][T12206] lo speed is unknown, defaulting to 1000
[  284.165049][T12170] chnl_net:caif_netlink_parms(): no params data found
[  284.210509][   T40] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.309511][T12219] lo speed is unknown, defaulting to 1000
[  284.354885][T12170] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.362139][T12170] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.370807][T12170] bridge_slave_0: entered allmulticast mode
[  284.377664][T12170] bridge_slave_0: entered promiscuous mode
[  284.388210][   T40] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.404599][T12202] lo speed is unknown, defaulting to 1000
[  284.418091][T12170] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.425240][T12170] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.433055][T12170] bridge_slave_1: entered allmulticast mode
[  284.440784][T12170] bridge_slave_1: entered promiscuous mode
[  284.462069][   T40] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.504883][T12170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.517498][T12170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.543146][T12170] team0: Port device team_slave_0 added
[  284.554608][T12170] team0: Port device team_slave_1 added
[  284.582947][T12170] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.589953][T12170] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.616515][T12170] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.632068][T12170] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.639147][T12170] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.665199][T12170] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.733076][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  284.743768][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  284.754270][   T40] bond0 (unregistering): Released all slaves
[  284.761961][T12202] chnl_net:caif_netlink_parms(): no params data found
[  284.792328][T12170] hsr_slave_0: entered promiscuous mode
[  284.798672][T12170] hsr_slave_1: entered promiscuous mode
[  284.804633][T12170] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  284.812220][T12170] Cannot create hsr debugfs directory
[  284.842860][   T40] hsr_slave_0: left promiscuous mode
[  284.848572][   T40] 1·: left promiscuous mode
[  284.855690][   T40] veth1_macvtap: left promiscuous mode
[  284.861268][   T40] veth0_macvtap: left promiscuous mode
[  284.866859][   T40] veth1_vlan: left promiscuous mode
[  284.872533][   T40] veth0_vlan: left promiscuous mode
[  284.882292][T12226] loop1: detected capacity change from 0 to 1024
[  284.917899][T12226] EXT4-fs mount: 17 callbacks suppressed
[  284.917914][T12226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.003963][T12238] loop3: detected capacity change from 0 to 512
[  285.020437][T12238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.033735][T12238] ext4 filesystem being mounted at /592/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.046508][   T40] team0 (unregistering): Port device team_slave_1 removed
[  285.049274][T12238] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2984: corrupted inode contents
[  285.066040][T12238] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2984: mark_inode_dirty error
[  285.067068][   T40] team0 (unregistering): Port device team_slave_0 removed
[  285.078442][T12238] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2984: corrupted inode contents
[  285.102876][T12238] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2984: mark_inode_dirty error
[  285.135238][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.135682][T11923] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.166117][T12202] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.173197][T12202] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.188430][T12202] bridge_slave_0: entered allmulticast mode
[  285.188511][T12247] Cannot find set identified by id 0 to match
[  285.207527][T12202] bridge_slave_0: entered promiscuous mode
[  285.234547][T12202] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.241697][T12202] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.259885][T12202] bridge_slave_1: entered allmulticast mode
[  285.266723][T12202] bridge_slave_1: entered promiscuous mode
[  285.284856][T12253] loop3: detected capacity change from 0 to 512
[  285.304989][T12257] team0 (unregistering): Port device team_slave_0 removed
[  285.313331][T12253] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  285.314856][T12257] team0 (unregistering): Port device team_slave_1 removed
[  285.327279][T12253] ext4 filesystem being mounted at /594/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.353075][T12260] loop1: detected capacity change from 0 to 512
[  285.385413][T12202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  285.404381][T12260] ext4: Unknown parameter 'fsuuid'
[  285.411753][T12202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  285.599785][T12202] team0: Port device team_slave_0 added
[  285.628812][T12202] team0: Port device team_slave_1 added
[  285.681282][T12202] batman_adv: batadv0: Adding interface: batadv_slave_0
[  285.688336][T12202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.714322][T12202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  285.728065][T12202] batman_adv: batadv0: Adding interface: batadv_slave_1
[  285.735036][T12202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.761317][T12202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  285.794174][T12202] hsr_slave_0: entered promiscuous mode
[  285.800247][T12202] hsr_slave_1: entered promiscuous mode
[  285.806573][T12202] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  285.814152][T12202] Cannot create hsr debugfs directory
[  285.821935][T12268] lo speed is unknown, defaulting to 1000
[  285.867385][   T40] IPVS: stop unused estimator thread 0...
[  285.908632][T12268] lo speed is unknown, defaulting to 1000
[  285.933724][T12170] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  285.945892][T12202] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.961334][T12170] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  285.973315][T12170] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  285.990183][T12170] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  286.019907][T12202] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.095949][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  286.118069][T12170] 8021q: adding VLAN 0 to HW filter on device bond0
[  286.130585][T12170] 8021q: adding VLAN 0 to HW filter on device team0
[  286.139956][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.147149][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  286.187376][T12202] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.199424][T12275] loop1: detected capacity change from 0 to 512
[  286.201098][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.212834][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  286.227424][T12275] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.256146][T12275] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  286.258140][T12277] lo speed is unknown, defaulting to 1000
[  286.268129][T12170] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  286.288807][T12202] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.326821][T12275] program syz.1.2995 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.349568][   T40] bridge_slave_1: left allmulticast mode
[  286.355275][   T40] bridge_slave_1: left promiscuous mode
[  286.360977][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.405351][   T40] bridge_slave_0: left allmulticast mode
[  286.411270][   T40] bridge_slave_0: left promiscuous mode
[  286.417112][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.449484][T12296] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3003'.
[  286.629193][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  286.640822][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  286.652062][   T40] bond0 (unregistering): Released all slaves
[  286.689999][T12294] lo speed is unknown, defaulting to 1000
[  286.700524][T12170] 8021q: adding VLAN 0 to HW filter on device batadv0
[  286.711748][T12202] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  286.721073][T12202] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  286.737278][T12303] lo speed is unknown, defaulting to 1000
[  286.753964][T12202] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  286.778932][   T40] hsr_slave_0: left promiscuous mode
[  286.787070][   T40] hsr_slave_1: left promiscuous mode
[  286.787446][T11923] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.803999][   T40] veth1_macvtap: left promiscuous mode
[  286.809719][   T40] veth0_macvtap: left promiscuous mode
[  286.815285][   T40] veth1_vlan: left promiscuous mode
[  286.820691][   T40] veth0_vlan: left promiscuous mode
[  286.908790][   T40] team0 (unregistering): Port device team_slave_1 removed
[  286.920346][   T40] team0 (unregistering): Port device team_slave_0 removed
[  286.957807][T12202] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  287.014048][T12328] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3013'.
[  287.023212][T12319] lo speed is unknown, defaulting to 1000
[  287.073297][T12202] 8021q: adding VLAN 0 to HW filter on device bond0
[  287.101813][T12202] 8021q: adding VLAN 0 to HW filter on device team0
[  287.120363][T12170] veth0_vlan: entered promiscuous mode
[  287.137249][T12337] Cannot find set identified by id 0 to match
[  287.153386][T12334] loop3: detected capacity change from 0 to 512
[  287.161600][T12170] veth1_vlan: entered promiscuous mode
[  287.168898][T12338] loop4: detected capacity change from 0 to 256
[  287.177487][   T86] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.184599][   T86] bridge0: port 1(bridge_slave_0) entered forwarding state
[  287.200804][T12338] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  287.209274][   T86] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.216522][   T86] bridge0: port 2(bridge_slave_1) entered forwarding state
[  287.230286][T12334] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.252500][   T40] IPVS: stop unused estimator thread 0...
[  287.255906][T12334] ext4 filesystem being mounted at /608/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.264335][T12202] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  287.279144][T12202] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  287.295993][T12340] program syz.1.3018 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.321501][T12170] veth0_macvtap: entered promiscuous mode
[  287.337104][T12334] program syz.3.3015 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.364011][T12170] veth1_macvtap: entered promiscuous mode
[  287.382147][T12170] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.392661][T12170] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.402756][T12170] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.413386][T12170] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.427905][T12170] batman_adv: batadv0: Interface activated: batadv_slave_0
[  287.471662][   T29] kauditd_printk_skb: 290 callbacks suppressed
[  287.471681][   T29] audit: type=1326 audit(1727984789.699:24615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.511778][   T29] audit: type=1326 audit(1727984789.739:24616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.535584][   T29] audit: type=1326 audit(1727984789.739:24617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.559191][   T29] audit: type=1326 audit(1727984789.739:24618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.583005][   T29] audit: type=1326 audit(1727984789.739:24619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.606909][   T29] audit: type=1326 audit(1727984789.739:24620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.630563][   T29] audit: type=1326 audit(1727984789.739:24621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.654195][   T29] audit: type=1326 audit(1727984789.739:24622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.678081][   T29] audit: type=1326 audit(1727984789.739:24623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.701873][   T29] audit: type=1326 audit(1727984789.739:24624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12336 comm="syz.4.3017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fb5cb4fdff9 code=0x7ffc0000
[  287.727686][T12170] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.738143][T12170] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.748011][T12170] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.758524][T12170] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.769129][T12170] batman_adv: batadv0: Interface activated: batadv_slave_1
[  287.777583][T12170] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  287.786350][T12170] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  287.795225][T12170] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  287.804010][T12170] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  287.821201][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.856733][T12202] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.970054][T12369] lo speed is unknown, defaulting to 1000
[  288.014281][T12202] veth0_vlan: entered promiscuous mode
[  288.034736][T12202] veth1_vlan: entered promiscuous mode
[  288.123262][T12202] veth0_macvtap: entered promiscuous mode
[  288.132410][T12202] veth1_macvtap: entered promiscuous mode
[  288.157210][T12390] Cannot find set identified by id 0 to match
[  288.160225][T12393] loop4: detected capacity change from 0 to 512
[  288.175186][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.185719][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.195548][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.206288][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.216232][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  288.227187][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.246542][T12202] batman_adv: batadv0: Interface activated: batadv_slave_0
[  288.254954][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.265509][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.275611][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.286217][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.296224][T12202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.306652][T12202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.317427][T12202] batman_adv: batadv0: Interface activated: batadv_slave_1
[  288.326180][T12202] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  288.335052][T12202] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  288.343818][T12202] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  288.352587][T12202] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  288.369842][T12397] loop1: detected capacity change from 0 to 256
[  288.377409][T12397] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  288.393758][T12393] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.510243][T12393] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.590471][T12409] ipt_ECN: cannot use operation on non-tcp rule
[  288.792150][T12393] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.3035: corrupted inode contents
[  288.823557][T12393] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.3035: mark_inode_dirty error
[  288.879762][T12393] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.3035: corrupted inode contents
[  288.911195][T12415] loop0: detected capacity change from 0 to 256
[  288.921558][T12393] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.3035: mark_inode_dirty error
[  288.925240][T12415] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  288.993412][T12066] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.021303][T12418] Cannot find set identified by id 0 to match
[  289.155565][T12428] lo speed is unknown, defaulting to 1000
[  289.258043][T12432] Cannot find set identified by id 0 to match
[  289.305430][T12435] program syz.1.3048 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.365530][T12440] Cannot find set identified by id 0 to match
[  289.381589][T12446] loop1: detected capacity change from 0 to 764
[  289.424304][T12446] Symlink component flag not implemented
[  289.437631][T12446] rock: directory entry would overflow storage
[  289.443930][T12446] rock: sig=0x4f50, size=4, remaining=3
[  289.449626][T12446] iso9660: Corrupted directory entry in block 6 of inode 1792
[  289.497646][T12460] loop4: detected capacity change from 0 to 256
[  289.512362][T12439] lo speed is unknown, defaulting to 1000
[  289.536002][T12460] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  289.577726][T12464] loop2: detected capacity change from 0 to 1024
[  289.595573][T12464] loop2: detected capacity change from 0 to 512
[  289.603387][T12464] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  289.661368][T12439] chnl_net:caif_netlink_parms(): no params data found
[  289.677136][T12464] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.3057: iget: bad i_size value: -6917529027641081756
[  289.691489][T12464] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.3057: couldn't read orphan inode 17 (err -117)
[  289.698183][T12476] loop1: detected capacity change from 0 to 256
[  289.710091][T12476] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  289.712770][T12464] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.746850][T12464] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3057: bg 0: block 65: padding at end of block bitmap is not set
[  289.767451][T12439] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.774533][T12439] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.781868][T12479] ipt_ECN: cannot use operation on non-tcp rule
[  289.798615][T12439] bridge_slave_0: entered allmulticast mode
[  289.805096][T12439] bridge_slave_0: entered promiscuous mode
[  289.815179][T12480] lo speed is unknown, defaulting to 1000
[  289.823209][T12439] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.830346][T12439] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.838877][T12439] bridge_slave_1: entered allmulticast mode
[  289.845937][T12439] bridge_slave_1: entered promiscuous mode
[  289.851968][T12464] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.3057: Failed to acquire dquot type 0
[  289.882622][T12482] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3057'.
[  289.904864][T12439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.919744][T12439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  289.936168][T12170] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.960789][T12439] team0: Port device team_slave_0 added
[  289.973519][T12439] team0: Port device team_slave_1 added
[  290.004646][T12439] batman_adv: batadv0: Adding interface: batadv_slave_0
[  290.011655][T12439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.037710][T12439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  290.052585][T12439] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.059571][T12439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.085853][T12439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.116956][T12439] hsr_slave_0: entered promiscuous mode
[  290.123215][T12439] hsr_slave_1: entered promiscuous mode
[  290.129168][T12439] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  290.136800][T12439] Cannot create hsr debugfs directory
[  290.159497][T12489] lo speed is unknown, defaulting to 1000
[  290.219518][T12439] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.231062][ T3343] IPVS: starting estimator thread 0...
[  290.352202][T12493] IPVS: using max 2880 ests per chain, 144000 per kthread
[  290.382844][T12439] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.436353][T12510] loop0: detected capacity change from 0 to 256
[  290.443128][T12510] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  290.572938][T12512] lo speed is unknown, defaulting to 1000
[  290.660846][T12439] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.672079][T12515] ipt_ECN: cannot use operation on non-tcp rule
[  290.751255][T12513] loop4: detected capacity change from 0 to 1024
[  290.781411][T12439] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.796184][T12518] loop4: detected capacity change from 0 to 256
[  290.802612][T12518] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  290.856442][T12439] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  290.865519][T12439] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  290.874359][T12439] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  290.883322][T12439] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  290.920652][T12522] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹
[  290.938918][T12439] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.952119][T12439] 8021q: adding VLAN 0 to HW filter on device team0
[  290.961413][   T86] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.968584][   T86] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.981138][ T1244] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.988219][ T1244] bridge0: port 2(bridge_slave_1) entered forwarding state
[  291.023866][T12525] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹
[  291.056754][T12439] 8021q: adding VLAN 0 to HW filter on device batadv0
[  291.208812][T12439] veth0_vlan: entered promiscuous mode
[  291.224591][T12439] veth1_vlan: entered promiscuous mode
[  291.232962][T12540] loop4: detected capacity change from 0 to 1024
[  291.253408][T12439] veth0_macvtap: entered promiscuous mode
[  291.262344][T12439] veth1_macvtap: entered promiscuous mode
[  291.302593][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  291.313121][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.323002][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  291.333513][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.343503][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  291.354165][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.364077][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  291.374730][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.519902][T12548] netlink: 'syz.4.3080': attribute type 2 has an invalid length.
[  291.611055][T12439] batman_adv: batadv0: Interface activated: batadv_slave_0
[  291.620267][T12544] lo speed is unknown, defaulting to 1000
[  291.638418][T12564] loop4: detected capacity change from 0 to 256
[  291.649571][T12556] lo speed is unknown, defaulting to 1000
[  291.652020][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  291.665759][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.675619][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  291.686148][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.687823][T12564] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  291.696070][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  291.713011][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.722852][T12439] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  291.733551][T12439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  291.745518][T12439] batman_adv: batadv0: Interface activated: batadv_slave_1
[  291.753131][T12557] pim6reg1: entered promiscuous mode
[  291.758593][T12557] pim6reg1: entered allmulticast mode
[  291.778427][T12439] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  291.787285][T12439] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  291.796143][T12439] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  291.804913][T12439] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  291.888581][T12572] 9pnet_fd: Insufficient options for proto=fd
[  291.896064][T12569] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3047'.
[  291.920669][T12574] loop0: detected capacity change from 0 to 1024
[  291.969236][T12578] loop1: detected capacity change from 0 to 512
[  291.998168][T12578] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.011119][T12578] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.025717][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.3090: corrupted inode contents
[  292.036132][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3094'.
[  292.050065][T12590] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  292.053219][T12578] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.3090: mark_inode_dirty error
[  292.058861][T12590] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  292.070993][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.3090: corrupted inode contents
[  292.078798][T12590] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  292.099347][T12590] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  292.112163][T12578] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.3090: mark_inode_dirty error
[  292.117074][T12590] vxlan0: entered promiscuous mode
[  292.170516][T12598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  292.180714][T12598] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  292.204571][T11923] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.235980][T12604] 9pnet_fd: Insufficient options for proto=fd
[  292.259171][T12606] lo speed is unknown, defaulting to 1000
[  292.260942][T12608] loop3: detected capacity change from 0 to 1024
[  292.300056][T12610] Cannot find set identified by id 0 to match
[  292.391772][T12619] loop3: detected capacity change from 0 to 512
[  292.400826][T12621] loop1: detected capacity change from 0 to 256
[  292.407730][T12621] vfat: Unknown parameter '00000000000000000000ÿÿ'
[  292.415652][T12619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.446445][T12619] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.472795][T12619] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.3107: corrupted inode contents
[  292.507581][T12619] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.3107: mark_inode_dirty error
[  292.529673][T12619] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.3107: corrupted inode contents
[  292.555992][T12619] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.3107: mark_inode_dirty error
[  292.571773][   T29] kauditd_printk_skb: 913 callbacks suppressed
[  292.571784][   T29] audit: type=1326 audit(1727984794.799:25536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.614587][T12439] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.625932][   T29] audit: type=1326 audit(1727984794.839:25537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.649598][   T29] audit: type=1326 audit(1727984794.839:25538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.673219][   T29] audit: type=1326 audit(1727984794.839:25539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.697042][   T29] audit: type=1326 audit(1727984794.839:25540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.720710][   T29] audit: type=1326 audit(1727984794.839:25541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.744425][   T29] audit: type=1326 audit(1727984794.839:25542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.768666][   T29] audit: type=1326 audit(1727984794.839:25543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12618 comm="syz.3.3107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bb15ddff9 code=0x7ffc0000
[  292.847767][   T29] audit: type=1400 audit(1727984795.039:25544): avc:  denied  { unmount } for  pid=12170 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  292.891594][T12636] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  292.899150][T12636] batman_adv: batadv0: Removing interface: batadv_slave_0
[  292.912778][T12636] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  292.920308][T12636] batman_adv: batadv0: Removing interface: batadv_slave_1
[  292.932241][   T29] audit: type=1326 audit(1727984795.159:25545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.2.3113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35133bdff9 code=0x7ffc0000
[  292.984849][T12640] lo speed is unknown, defaulting to 1000
[  292.997708][T12639] lo speed is unknown, defaulting to 1000
[  293.024580][T12643] lo speed is unknown, defaulting to 1000
[  293.066681][T12652] loop3: detected capacity change from 0 to 128
[  293.102043][T12652] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  293.121855][T11923] ==================================================================
[  293.129953][T11923] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  293.137882][T11923] 
[  293.140206][T11923] read-write to 0xffff8881146aa528 of 8 bytes by task 12655 on cpu 1:
[  293.148360][T11923]  shmem_add_to_page_cache+0x3b9/0x4b0
[  293.153834][T11923]  shmem_get_folio_gfp+0x4f6/0xd90
[  293.158954][T11923]  shmem_write_begin+0xa2/0x180
[  293.163910][T11923]  generic_perform_write+0x1a8/0x4a0
[  293.169193][T11923]  shmem_file_write_iter+0xc2/0xe0
[  293.174307][T11923]  __kernel_write_iter+0x24b/0x4e0
[  293.179430][T11923]  dump_user_range+0x3a7/0x550
[  293.184202][T11923]  elf_core_dump+0x1b66/0x1c60
[  293.188977][T11923]  do_coredump+0x1736/0x1ce0
[  293.193567][T11923]  get_signal+0xdc0/0x1070
[  293.197995][T11923]  arch_do_signal_or_restart+0x95/0x4b0
[  293.203537][T11923]  irqentry_exit_to_user_mode+0x9a/0x130
[  293.209184][T11923]  irqentry_exit+0x12/0x50
[  293.213616][T11923]  asm_exc_page_fault+0x26/0x30
[  293.218487][T11923] 
[  293.220810][T11923] read to 0xffff8881146aa528 of 8 bytes by task 11923 on cpu 0:
[  293.226096][T12652] ext4 filesystem being mounted at /14/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  293.228420][T11923]  shmem_getattr+0x69/0x200
[  293.228441][T11923]  vfs_getattr+0x19b/0x1e0
[  293.269167][T11923]  vfs_statx+0x134/0x2f0
[  293.273500][T11923]  vfs_fstatat+0xec/0x110
[  293.277829][T11923]  __se_sys_newfstatat+0x58/0x260
[  293.282869][T11923]  __x64_sys_newfstatat+0x55/0x70
[  293.287907][T11923]  x64_sys_call+0x141f/0x2d60
[  293.292583][T11923]  do_syscall_64+0xc9/0x1c0
[  293.297089][T11923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.302997][T11923] 
[  293.305313][T11923] value changed: 0x00000000000003c6 -> 0x00000000000003c9
[  293.312501][T11923] 
[  293.314821][T11923] Reported by Kernel Concurrency Sanitizer on:
[  293.320965][T11923] CPU: 0 UID: 0 PID: 11923 Comm: syz-executor Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  293.331913][T11923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  293.341975][T11923] ==================================================================
[  293.673539][T12665] loop1: detected capacity change from 0 to 128
[  293.695221][T12439] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  293.709778][T12660] lo speed is unknown, defaulting to 1000
[  293.743658][T12665] EXT4-fs: Ignoring removed bh option
[  293.749644][T12665] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  293.767210][T12665] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  293.780892][T12665] ext2 filesystem being mounted at /59/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  293.849131][T11923] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.