last executing test programs:

4.936849691s ago: executing program 0 (id=745):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
socket$rds(0x15, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x4, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e23, 0x81, @loopback, 0x7f}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x86, &(0x7f0000000300)={@multicast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010102, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x17, 0x4, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x0, 0x11, 0x2, @local, @local, {[@rr={0x7, 0x3}, @ssrr={0x89, 0x7, 0x9d, [@empty]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@multicast1}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@private=0xa010101}, {}, {@dev}, {@private}]}]}}}}}}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0xffffffffffffffff}, 0x18)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3, &(0x7f0000000440)=0x1, 0xffffffff, 0x0)
set_mempolicy_home_node(&(0x7f0000ffc000/0x4000)=nil, 0x403f, 0x0, 0x0)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000004004009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='ufshcd_uic_command\x00', r8}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
recvmmsg(r7, &(0x7f0000001940)=[{{&(0x7f0000000540)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @initdev}}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000600)=""/110, 0x6e}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f00000006c0)=""/210, 0xd2}, {&(0x7f0000001ac0)=""/232, 0xe8}, {&(0x7f0000000ac0)=""/249, 0xf9}, {&(0x7f00000007c0)=""/100, 0x64}], 0x6, &(0x7f0000000bc0)=""/139, 0x8b}, 0x72}, {{&(0x7f0000000c80)=@ethernet, 0x80, &(0x7f0000000280), 0x0, &(0x7f0000000e40)=""/211, 0xd3}, 0x3}, {{&(0x7f0000000f40)=@qipcrtr, 0x80, &(0x7f0000001300)=[{&(0x7f0000000900)=""/54, 0x36}, {&(0x7f0000000fc0)=""/26, 0x1a}, {&(0x7f0000001000)=""/202, 0xca}, {&(0x7f0000001100)=""/103, 0x67}, {&(0x7f0000000d40)=""/159, 0x9f}, {&(0x7f0000001240)=""/118, 0x76}, {&(0x7f0000000d00)=""/60, 0x3c}], 0x7, &(0x7f0000001380)=""/55, 0x37}, 0x200}, {{&(0x7f00000013c0)=@l2tp={0x2, 0x0, @empty}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001440)=""/151, 0x97}], 0x1, &(0x7f0000001540)=""/117, 0x75}, 0x1}, {{&(0x7f00000015c0)=@sco={0x1f, @fixed}, 0x80, &(0x7f0000000280)=[{&(0x7f0000001640)=""/88, 0x58}, {&(0x7f00000016c0)=""/25, 0x19}, {&(0x7f0000001700)=""/251, 0xfb}, {&(0x7f00000009c0)=""/240, 0xf0}], 0x4}, 0xe}], 0x5, 0x0, &(0x7f0000001a80)={0x77359400})
preadv(r7, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000840), r9)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r9, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000004c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010027bd7000fddbdf25060000002500070073797374656d5f753a6f626a6563745f723a64706b675f657865635f743a73300000000014000200fc010000000000000000000000000001739d4e5f4f172623a91a7a4a39c469bc03952f9bd98377c5c5d54d9c87ccb6dfab9ccfb5c753265c75"], 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100ffffffff000000001c"], 0x20}, 0x1, 0x0, 0x0, 0x703d33dc4b18a98e}, 0x4040814)

4.057336092s ago: executing program 0 (id=753):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000440)=[{&(0x7f0000000240)=""/204, 0xcc}], 0x1, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pread64(r3, &(0x7f0000002280)=""/4096, 0x1000, 0xd33)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000003c0), 0x13f, 0x5}}, 0x20)
setuid(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f0000000280)={0x2000000, 0x100000000000})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000280), 0xfd, r0}, 0x38)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="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", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
times(0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800090000b10ab300b827f2", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0xffffffffffffffff}, 0x18)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000140)={0x1, 0x4, 0x6, 0x9, 0x9, 0x200})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r8, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x62, 0x51cfa, 0x0, 0x8000008, 0x3, 0xfffffffe, 0x1, 0x0, 0x7cce8c743ee810df})

3.972560289s ago: executing program 0 (id=758):
futex(&(0x7f000000cffc)=0x2, 0x5, 0x10000000, 0x0, &(0x7f0000000000), 0x40000000)
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xf8, 0x587, &(0x7f0000002100)="$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")
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000780)={0xf97cff8c, 0x8, 'SE Linux', "5278ecc6fd82df21e7a70810cb3bdb488bb6b9a9ce0aa61e72b2e3fd94f21d68487c6d4713c76593c3de18d6912488006bf47e4c9d05b5a8ac29ef0d412c9253d6a5e11420e679eddcec3b88844420908a4ace99f5bdcc3129c95188e6f779dfac51efd1e66d2b6878f51b55f4c065b62ffca856bda7c8f24c79503eae4c991fee25c9ea034838935cb554b732379eadf9dc2e4e30c2ad157cbf076d6a55a9081eab5f8859a4e43df73615b4545d63989e175772f3ee597aef7731a082eb39d91526"}, 0xd2)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000a80)='./file1\x00', 0x8, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@sb={'sb', 0x3d, 0x64}}, {@orlov}, {@quota}, {@data_err_abort}, {@nomblk_io_submit}]}, 0x66, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0xb6f8000)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x84)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0xc8101339d8526c63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000000080)={0xf, 0x400000000000, 0x25, 0x7, 0x8, r3, 0x0, 0x0, 0x40000000000e7, 0x0, 0x2, r3}])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000880)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})

3.469725399s ago: executing program 0 (id=767):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="4e3d68d72e662d9a56ef5a1563e001119a2cc39cc67ea55a54460297ad69fc40a657a5aeb8b873ffb06609e70faa42922f1a1886aa7e577bb569eed935e8e138b6cff04328abae53945332556401f6873e8a9615a4fd46a2414fd0ac46b49e9b6b1b85d3474aa4b9a75826fdfa62a8ad977cdb1963697ccc", @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='kfree\x00', r2}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x24040018}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000020207b1af8fe00000000010400000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095c28e546de4ee7f1bd112a5cde7d035913d2e152367f9ee2bfee1a3bd1d3a7b5695a939288c95fadde76fb4a7682bbf2894b5cd57c6fbafaf71b279ff035fbb52ac3fa526f549cdf38f5b561c88ba187ad85511d558a4f11b8ef4683b68b5f1a0abbbf0b5fdecaada265baf68a73b704dd8900776a074a9331f64dcc3b9cb534e7302"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x4}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRESDEC, @ANYRES16, @ANYRESOCT, @ANYRESHEX, @ANYBLOB="97aea348de7479a4baf31084f308e8f0a6b63aee4d47397cc36ed0e949e5f73ae57c3f433ef3696380abc0ac9ebfdbe5a0a63c48b2e9967f0e61ac97e0586a239b6cbec38a7ab83438b583d66630356f9c82c5f16b33502b8979c7a5e4e5ed3304ad17177d47bff4", @ANYBLOB="af6f6e4a3b49600da1783949573b7872cc9b98f760ae2b58cf2f6aebcc6eb32d32b7bee3e4cd610d02"], 0x48)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x3, 0x2)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000000280)=0x2, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x1)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000740)=ANY=[@ANYBLOB="0a2ca75ba17d130e07314b31ecd7e74471", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r8, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r8, 0x5437, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000160a0500000000000000000002000000300003802c00038004000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

2.568902833s ago: executing program 0 (id=781):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0)

2.403456016s ago: executing program 0 (id=784):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x400000008000f28, 0x0)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f0000000040)={0x5, 0x4, 0x10000, 0x77c, 0x8})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0xf8, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000}, {0x0, 0x200000, 0x7}, {0x0, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@tfcpad={0x8, 0x16, 0x6}]}, 0xf8}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="050000000400000099000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x64, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00'})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000000000000000000000000001800000008000000000000006e14000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffe9}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={0xffffffffffffffff, r7}, 0x5)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

1.3585645s ago: executing program 4 (id=803):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r1, 0x11e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x63, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r1, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

1.311292434s ago: executing program 4 (id=804):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x2, 0x9, 0xfffffffffffffff7})
ftruncate(r0, 0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r1, 0x0, 0x13, &(0x7f0000000040), 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f0000000600)=ANY=[@ANYBLOB="01f9"], 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140), 0x1, 0x4e4, &(0x7f0000001880)="$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")
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000040000000000000200000000000000000000610016b93d79238971992a628d2d2d9379d895d067034aae2cc9bd2cda12325af15b0043b5e4e77a379a304cf765f003994dbf1f614df454cbbd516bacd2"], 0x0, 0x28}, 0x20)
r4 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000540), 0x10000065, &(0x7f0000000000)}, 0x4840)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r3, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000002c0)=0x1)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x2)

858.497351ms ago: executing program 1 (id=810):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000"], 0xfc}}, 0x0)

766.131439ms ago: executing program 3 (id=812):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x1, @perf_config_ext={0x5, 0x100000000}, 0x4, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0x4, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x4)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800)

765.165029ms ago: executing program 4 (id=813):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x0, 0x8})
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
sendmmsg$inet(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000740)="b3", 0x1}], 0x1, &(0x7f0000000ec0)=ANY=[], 0xf0}}], 0x1, 0x24004c41)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xe, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0x4, 0xffb, 0x7, 0xb69, 0xc1, 0x8, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x1, 0x6, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0xffffffff, 0x10000d, 0xb, 0x2b12, 0x100, 0x6, 0x1c00, 0xb, 0x7, 0xbed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0x2, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0xa, 0x6, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x400f, 0x0, 0x10001, 0x2, 0xffffffff, 0x5, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0x2, 0x85, 0x100, 0x5, 0x252, 0x81, 0xb, 0x5, 0x20006, 0x5, 0x2, 0xb, 0x2, 0xd9a, 0xd, 0x2a2, 0x7, 0x2, 0x2, 0x5, 0x8, 0x9, 0x4, 0x1, 0x40, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
unshare(0x20020480)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

738.615821ms ago: executing program 1 (id=815):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
syz_clone(0xa0200000, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1e, &(0x7f00000006c0)=[{0xf74, 0xa, 0x10, 0x5}]})
getgroups(0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
syz_mount_image$ext4(&(0x7f0000000d80)='ext3\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@block_validity}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x4}}]}, 0x1, 0x50f, &(0x7f0000000140)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
ftruncate(r2, 0x7)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000240)={0x3920e, r1, 0x3, 0x1, 0x5, 0x53000000})
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=0x0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='rpcb_unregister\x00', 0xffffffffffffffff, 0x0, 0x7fffffffffffffff}, 0x18)
syz_emit_ethernet(0x33, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca20180c20000000800450000250000e000"], 0x0)
r3 = socket(0x200000000000011, 0x2, 0x1)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa424e1aa2e0d4080045000014"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05010000040000009c0000000b00000000000000", @ANYRES32, @ANYBLOB="270300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xc, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xff00000000000000, 0xac14140c}, 0xff000000}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)="8bcd", 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000181100004aba80485429a28e43bdeea50c9d2e4ff2477f9cbd3e1e1bbbbb4b7cebd4a35840ad5ddcf3be27123988562c8eccc3b7b9a32919e3436242119e00894aa3a9a70dc88fbf034f94692fd883ed0d8d244aee42b91d748aba9180684221", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="21ae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dbfaf8eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff", 0x2ac}, {&(0x7f0000000bc0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc9067bb6f7f7c3ee1720000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0769421fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61faec4a42c29d7f9e48a43b8cb7d3c5a1e5aa67f87538140f8d633a54bceb8b1dda2397ea147d3b26e903f608b6ab1844ea7cf630d828118bba0f0f85e2e6316ae1ed9a2a7d08a05c170cb76bf111930df0cf760f7768571afdefe82a95296cee7c010f748a97046efcc774e7d85edbd5058104fef4942fb4430da89f67d1fea33bf2acfb793a610b3738b393eed8633fc8e8f630932206960e9076c7d7fc99fce018701c50d39b811a7427a7a9fcb340c2755541f228462010ec40ba945a0febd460dad5d548f1be090f5dbaa8ae8835dc47ed2537681827f6129759272574cf58f2f33e47a0e416573cfdcfb44ed9d", 0x1cb}, {&(0x7f00000005c0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf033a4784a11e84639d3b9164d9c5d729f3dd409d39ff6d5cca97", 0x47}, {&(0x7f0000000140)="f610e61ac81cc3edc86f0500194d27a5a443f10dfd1ecda0fd0ed9a444b7fb76afe3a0002f0a5eafcd3555a6cad574af080de74a37f54ee5f10fe3f42b445293ca980200000000000000ecfd6cc1b3a9a9263506e88c5557069d0ca055991454ec1307b7411892a1beaef9ae54833107eb88b0411b1bc0ba9bc28d0eb6a73ad76be9facd1d9d82b6a3cc2040e84b398d279e50535b6557df8a633cfc7615fca9879b11834eb07eeb4278cab057f89b7464048cf573c21df5435e3b81aaba048fa426", 0xc2}], 0x4, 0x0, 0x0, 0x900}}], 0x1, 0x0)
socket(0x10, 0x1, 0x5e78)

681.539305ms ago: executing program 4 (id=816):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0)

681.032726ms ago: executing program 2 (id=817):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x2, 0x9, 0xfffffffffffffff7})
ftruncate(r0, 0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r1, 0x0, 0x13, &(0x7f0000000040), 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f0000000600)=ANY=[@ANYBLOB="01f9"], 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140), 0x1, 0x4e4, &(0x7f0000001880)="$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")
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000040000000000000200000000000000000000610016b93d79238971992a628d2d2d9379d895d067034aae2cc9bd2cda12325af15b0043b5"], 0x0, 0x28}, 0x28)
socket$inet(0x2, 0x2, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r3, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000002c0)=0x1)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f})
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x2)

677.882816ms ago: executing program 3 (id=818):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000480)=@broute={'broute\x00', 0x5e04, 0x0, 0x90, [0x0, 0x0, 0x200000000140], 0x2, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff000000000000"]}, 0x108) (async, rerun: 64)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00') (rerun: 64)
r2 = signalfd(r0, &(0x7f0000000440), 0x8) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000680)={r1, 0x58, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000740)={'ip6_vti0\x00', &(0x7f00000006c0)={'syztnl1\x00', r3, 0x29, 0x4, 0x5, 0x4, 0xa, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, 0x7, 0x80, 0xb73, 0x57f}})
setns(r1, 0x0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r5, 0x0, 0x7fffffffffffffff}, 0x18)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6) (async)
ptrace$cont(0x18, r6, 0x97d, 0x37b) (async, rerun: 32)
r7 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x5, 0x7ff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (rerun: 32)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xc, 0x2, 0x0, 0x2, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x14246, 0xfffffffffffffffc, 0x0, 0x0, 0x1, 0x1}, 0x0, 0xffffffffffffffff, r7, 0x2) (async, rerun: 32)
r8 = socket(0x10, 0x3, 0x0) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r9=>0x0}) (async, rerun: 64)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) (rerun: 64)
r10 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
readahead(r10, 0x4, 0xd7)
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000380)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xd}, {0xffff, 0xffff}, {0x6, 0xa}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ALPHA={0x8, 0x5, 0xe}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24000000}, 0x2000400c) (async)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4b, 0x4b, 0x2, [@datasec={0x6, 0x1, 0x0, 0xf, 0x3, [{0x4, 0x9}], "4548a4"}, @restrict={0x5, 0x0, 0x0, 0xb, 0x2}, @restrict={0x1, 0x0, 0x0, 0xb, 0x1}, @type_tag={0xe, 0x0, 0x0, 0x12, 0x5}, @type_tag={0xb, 0x0, 0x0, 0x12, 0x1}]}}, &(0x7f0000000500)=""/238, 0x66, 0xee, 0x0, 0x7fff, 0x10000}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x6, 0x6, 0x200, 0x80000001, 0x1d40, r4, 0x3, '\x00', r9, r11, 0x4, 0x4, 0x4}, 0x50)
r12 = getpid()
r13 = syz_pidfd_open(r12, 0x0)
process_madvise(r13, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000000)=')', 0x1}], 0x2, 0x17, 0x0) (async)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x34e87deb, 0x8000, 0x0, 'queue0\x00', 0x20000})
write$sndseq(0xffffffffffffffff, &(0x7f0000002200)=[{0x84, 0x77, 0x4, 0x0, @tick=0x8af, {0xfd, 0x2}, {0x7, 0xa}, @raw32={[0x2, 0xfffffffd, 0x8000400]}}, {0x0, 0x0, 0x0, 0x83, @time={0x4}, {0xfd}, {0x0, 0xfe}, @note={0x81, 0x4, 0x0, 0x0, 0x80}}, {0x0, 0x4, 0x0, 0x1, @tick=0x6, {}, {0x1, 0x83}, @time=@time={0x2b05, 0x3}}], 0xb2) (async)
socket$nl_generic(0x10, 0x3, 0x10)

623.17977ms ago: executing program 4 (id=819):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000440)=[{&(0x7f0000000240)=""/204, 0xcc}], 0x1, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pread64(r3, &(0x7f0000002280)=""/4096, 0x1000, 0xd33)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000003c0), 0x13f, 0x5}}, 0x20)
setuid(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f0000000280)={0x2000000, 0x100000000000})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000280), 0xfd, r0}, 0x38)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="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", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
times(0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800090000b10ab300b827f2", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0xffffffffffffffff}, 0x18)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000140)={0x1, 0x4, 0x6, 0x9, 0x9, 0x200})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r8, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x62, 0x51cfa, 0x0, 0x8000008, 0x3, 0xfffffffe, 0x1, 0x0, 0x7cce8c743ee810df})

558.474765ms ago: executing program 4 (id=820):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="4e3d68d72e662d9a56ef5a1563e001119a2cc39cc67ea55a54460297ad69fc40a657a5aeb8b873ffb06609e70faa42922f1a1886aa7e577bb569eed935e8e138b6cff04328abae53945332556401f6873e8a9615a4fd46a2414fd0ac46b49e9b6b1b85d3474aa4b9a75826fdfa62a8ad977cdb1963697ccc", @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000001c0)='kfree\x00', r2}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x24040018}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000020207b1af8fe00000000010400000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095c28e546de4ee7f1bd112a5cde7d035913d2e152367f9ee2bfee1a3bd1d3a7b5695a939288c95fadde76fb4a7682bbf2894b5cd57c6fbafaf71b279ff035fbb52ac3fa526f549cdf38f5b561c88ba187ad85511d558a4f11b8ef4683b68b5f1a0abbbf0b5fdecaada265baf68a73b704dd8900776a074a9331f64dcc3b9cb534e7302"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x4}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRESDEC, @ANYRES16, @ANYRESOCT, @ANYRESHEX, @ANYBLOB="97aea348de7479a4baf31084f308e8f0a6b63aee4d47397cc36ed0e949e5f73ae57c3f433ef3696380abc0ac9ebfdbe5a0a63c48b2e9967f0e61ac97e0586a239b6cbec38a7ab83438b583d66630356f9c82c5f16b33502b8979c7a5e4e5ed3304ad17177d47bff4", @ANYBLOB="af6f6e4a3b49600da1783949573b7872cc9b98f760ae2b58cf2f6aebcc6eb32d32b7bee3e4cd610d02"], 0x48)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x3, 0x2)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000000280)=0x2, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x1)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000740)=ANY=[@ANYBLOB="0a2ca75ba17d130e07314b31ecd7e74471", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r8, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r8, 0x5437, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000160a0500000000000000000002000000300003802c00038004000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

540.889997ms ago: executing program 1 (id=821):
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000140)=ANY=[], 0x841, 0x1)
fstat(0xffffffffffffffff, &(0x7f0000000200))

417.208757ms ago: executing program 1 (id=822):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000c00)=ANY=[], &(0x7f0000000b00)=""/255, 0xd8, 0xff, 0x0, 0x9}, 0x28)
open(0x0, 0x0, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000e00)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x1108)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)

316.784755ms ago: executing program 3 (id=823):
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x80000}, 0xc)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000900)="580000001400192360834b80043f679a10ff3d420000000001000000f61bcdf1194acd77e9cc853a804824cabece4b381effffffff0057e792945f80000000050028925aaa000000c600000004002e499391db0926f27805", 0x58}], 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockname(r1, &(0x7f0000000040)=@alg, &(0x7f0000000100)=0x80)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40884}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3b}, @NFTA_LOG_PREFIX={0x7, 0x2, 0x1, 0x0, '.\xfa\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x40010}, 0x20000004)

265.277529ms ago: executing program 1 (id=824):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x2, 0x9, 0xfffffffffffffff7})
ftruncate(r0, 0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r1, 0x0, 0x13, &(0x7f0000000040), 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f0000000600)=ANY=[@ANYBLOB="01f9"], 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140), 0x1, 0x4e4, &(0x7f0000001880)="$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")
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000040000000000000200000000000000000000610016b93d79238971992a628d2d2d9379d895d067034aae2cc9bd2cda12325af15b0043b5e4e77a379a304cf765f003994dbf1f614df454cbbd516bacd2"], 0x0, 0x28}, 0x20)
r4 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000540), 0x10000065, &(0x7f0000000000)}, 0x4840)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r3, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000002c0)=0x1)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x2)

261.405899ms ago: executing program 2 (id=825):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000"], 0xfc}}, 0x0)

261.06303ms ago: executing program 3 (id=826):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x0, 0x8})
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
sendmmsg$inet(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000740)="b3", 0x1}], 0x1, &(0x7f0000000ec0)=ANY=[], 0xf0}}], 0x1, 0x24004c41)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xe, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0x4, 0xffb, 0x7, 0xb69, 0xc1, 0x8, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x1, 0x6, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0xffffffff, 0x10000d, 0xb, 0x2b12, 0x100, 0x6, 0x1c00, 0xb, 0x7, 0xbed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0x2, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0xa, 0x6, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x400f, 0x0, 0x10001, 0x2, 0xffffffff, 0x5, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0x2, 0x85, 0x100, 0x5, 0x252, 0x81, 0xb, 0x5, 0x20006, 0x5, 0x2, 0xb, 0x2, 0xd9a, 0xd, 0x2a2, 0x7, 0x2, 0x2, 0x5, 0x8, 0x9, 0x4, 0x1, 0x40, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
unshare(0x20020480)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

204.902164ms ago: executing program 3 (id=827):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

193.769575ms ago: executing program 2 (id=828):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r1, 0x11e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x63, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r1, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

160.379338ms ago: executing program 2 (id=829):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0)

159.963407ms ago: executing program 3 (id=830):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='ext4_sync_fs\x00', r5}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sync()
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x18)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18010000010000000000000000030097850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r7}, 0x10)
r8 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r8, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
socket$netlink(0x10, 0x3, 0x12)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0xf1, &(0x7f0000000240)={&(0x7f0000000500)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0xf1ffffff, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_HH_FLOWS_LIMIT={0x4}]}}]}, 0x38}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800100000400"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="00000000f0000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000000c000000bca30000000000002403000020feffff620af8fff8ffffff71a4f8ff000000001f03000000000000e5000300000000002604fdffff02000014010000033800001d130000000000007a0a00fe0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)

92.399113ms ago: executing program 2 (id=831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000440)=[{&(0x7f0000000240)=""/204, 0xcc}], 0x1, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pread64(r3, &(0x7f0000002280)=""/4096, 0x1000, 0xd33)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000003c0), 0x13f, 0x5}}, 0x20)
setuid(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f0000000280)={0x2000000, 0x100000000000})
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000280), 0xfd, r0}, 0x38)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed300444000f8ac89758d3a070000000000000096a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118769b54e011eca8b5d65c01706e43f4af30554f23f131ca341ca0e87fabd13b273fe0c19b31ca232d127f579f37661a16030054e34159a5f93dde0a55f4dade4419911ff248f6b924ec4eae9ec86e270397fac98ec61149370bd2755bddb92e94eca0221d7cc00149aaf19526a0a7c4618eeffa908f65920c65e6bc9a1354b6becff6183aaf0b7e2ff23e699bcb15ed028fac53820e061e53df154433a9b9de173bf9fcede40facee659bd97287aad2bf63bd9556e1bbf0a51b0745b347e801f78a23b43e49b38fc008a5bb919849b54250ca3e295502fdf3fdd724ee8727bab60d00000000", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
times(0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800090000b10ab300b827f2", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0xffffffffffffffff}, 0x18)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000140)={0x1, 0x4, 0x6, 0x9, 0x9, 0x200})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r8, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x62, 0x51cfa, 0x0, 0x8000008, 0x3, 0xfffffffe, 0x1, 0x0, 0x7cce8c743ee810df})

39.444738ms ago: executing program 2 (id=832):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800)

0s ago: executing program 1 (id=833):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno', @ANYRESHEX=r3])

kernel console output (not intermixed with test programs):

_stack_lvl+0xe8/0x140
[   54.748558][ T4537]  dump_stack+0x15/0x1b
[   54.748582][ T4537]  should_fail_ex+0x265/0x280
[   54.748622][ T4537]  should_fail+0xb/0x20
[   54.748683][ T4537]  should_fail_usercopy+0x1a/0x20
[   54.748701][ T4537]  _copy_from_user+0x1c/0xb0
[   54.748798][ T4537]  ___sys_sendmsg+0xc1/0x1d0
[   54.748853][ T4537]  __x64_sys_sendmsg+0xd4/0x160
[   54.748921][ T4537]  x64_sys_call+0x191e/0x2ff0
[   54.749000][ T4537]  do_syscall_64+0xd2/0x200
[   54.749023][ T4537]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.749048][ T4537]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.749075][ T4537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.749136][ T4537] RIP: 0033:0x7f594af7eb69
[   54.749280][ T4537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.749301][ T4537] RSP: 002b:00007f59495e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.749325][ T4537] RAX: ffffffffffffffda RBX: 00007f594b1a5fa0 RCX: 00007f594af7eb69
[   54.749340][ T4537] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000007
[   54.749351][ T4537] RBP: 00007f59495e7090 R08: 0000000000000000 R09: 0000000000000000
[   54.749364][ T4537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.749454][ T4537] R13: 0000000000000000 R14: 00007f594b1a5fa0 R15: 00007fff1ccb6c48
[   54.749478][ T4537]  </TASK>
[   54.793280][ T4537] syz.0.282 (4537) used greatest stack depth: 10176 bytes left
[   54.799612][ T4560] loop1: detected capacity change from 0 to 512
[   54.974362][ T4560] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   54.985136][ T4584] loop0: detected capacity change from 0 to 764
[   54.991616][ T4578] loop2: detected capacity change from 0 to 512
[   55.001289][ T4578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.015982][ T4560] EXT4-fs (loop1): 1 truncate cleaned up
[   55.023636][ T4584] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   55.059734][ T4578] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.088106][ T4578] EXT4-fs (loop2): shut down requested (0)
[   55.151132][ T4578] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.161271][ T4578] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.190092][ T4578] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.210278][ T4601] loop1: detected capacity change from 0 to 512
[   55.244325][ T4601] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.263664][ T4595] lo speed is unknown, defaulting to 1000
[   55.276551][ T4578] Falling back ldisc for ttyS3.
[   55.283496][ T4601] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.305643][ T4601] EXT4-fs (loop1): shut down requested (0)
[   55.332047][ T4608] loop2: detected capacity change from 0 to 512
[   55.337447][ T4601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   55.347519][ T4601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   55.358821][ T4601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   55.368955][ T4608] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.397280][ T4608] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.428100][ T4608] EXT4-fs (loop2): shut down requested (0)
[   55.449102][ T4614] batadv_slave_0: entered promiscuous mode
[   55.455342][ T4617] loop4: detected capacity change from 0 to 512
[   55.466456][ T4601] Falling back ldisc for ttyS3.
[   55.467231][ T4617] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.481866][ T4608] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.490894][ T4614] batadv_slave_0: left promiscuous mode
[   55.496733][ T4608] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.514959][ T4608] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   55.566680][ T4617] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.602735][ T4628] netlink: 8 bytes leftover after parsing attributes in process `syz.1.301'.
[   55.616962][ T4608] Falling back ldisc for ttyS3.
[   55.631425][ T4617] EXT4-fs (loop4): shut down requested (0)
[   55.633212][ T4628] bond1: entered promiscuous mode
[   55.642367][ T4628] bond1: entered allmulticast mode
[   55.648080][ T4628] 8021q: adding VLAN 0 to HW filter on device bond1
[   55.689441][ T4617] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   55.698501][ T4617] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   55.716336][ T4617] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   55.806686][ T4641] netlink: 8 bytes leftover after parsing attributes in process `syz.3.304'.
[   55.819087][ T4617] Falling back ldisc for ttyS3.
[   55.819584][ T4649] loop2: detected capacity change from 0 to 764
[   55.868090][ T4649] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   55.874699][ T4656] pim6reg1: entered promiscuous mode
[   55.881483][ T4656] pim6reg1: entered allmulticast mode
[   55.936122][ T4665] loop0: detected capacity change from 0 to 1024
[   55.962989][ T4665] EXT4-fs: Ignoring removed orlov option
[   55.972776][ T4672] netlink: 24 bytes leftover after parsing attributes in process `syz.4.311'.
[   55.983482][ T4669] loop2: detected capacity change from 0 to 1024
[   56.007967][ T4665] SELinux:  policydb version -957581230 does not match my version range 15-35
[   56.036251][ T4665] SELinux: failed to load policy
[   56.049234][ T4665] EXT4-fs: Ignoring sb option on remount
[   56.054937][ T4665] EXT4-fs: Ignoring removed orlov option
[   56.060707][ T4665] EXT4-fs: Ignoring removed nomblk_io_submit option
[   56.067393][ T4665] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   56.075619][ T4665] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   56.089552][ T4669] SELinux: ebitmap: truncated map
[   56.095782][ T4669] SELinux: failed to load policy
[   56.127916][ T4685] netlink: 8 bytes leftover after parsing attributes in process `syz.0.314'.
[   56.155370][ T4685] bond1: entered promiscuous mode
[   56.160677][ T4685] bond1: entered allmulticast mode
[   56.175041][ T4685] 8021q: adding VLAN 0 to HW filter on device bond1
[   56.270478][ T4695] loop2: detected capacity change from 0 to 2048
[   56.297720][ T4699] batadv_slave_0: entered promiscuous mode
[   56.307697][ T4699] batadv_slave_0: left promiscuous mode
[   56.358321][ T4706] loop0: detected capacity change from 0 to 764
[   56.370430][ T4706] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   56.461546][ T4716] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   56.473903][ T4721] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   56.494637][ T4721] SELinux: failed to load policy
[   56.540816][ T4727] netlink: 8 bytes leftover after parsing attributes in process `syz.4.328'.
[   56.562926][ T4727] bond1: entered promiscuous mode
[   56.568103][ T4727] bond1: entered allmulticast mode
[   56.573590][ T4727] 8021q: adding VLAN 0 to HW filter on device bond1
[   56.576137][ T4733] loop0: detected capacity change from 0 to 512
[   56.609008][ T4733] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.688803][ T4733] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.734692][ T4733] EXT4-fs (loop0): shut down requested (0)
[   56.791441][ T4733] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   56.809857][ T4747] FAULT_INJECTION: forcing a failure.
[   56.809857][ T4747] name failslab, interval 1, probability 0, space 0, times 0
[   56.822539][ T4747] CPU: 0 UID: 0 PID: 4747 Comm: syz.4.332 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   56.822565][ T4747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   56.822577][ T4747] Call Trace:
[   56.822584][ T4747]  <TASK>
[   56.822593][ T4747]  __dump_stack+0x1d/0x30
[   56.822612][ T4747]  dump_stack_lvl+0xe8/0x140
[   56.822630][ T4747]  dump_stack+0x15/0x1b
[   56.822702][ T4747]  should_fail_ex+0x265/0x280
[   56.822773][ T4747]  ? __io_uring_add_tctx_node+0xbf/0x2d0
[   56.822810][ T4747]  should_failslab+0x8c/0xb0
[   56.822832][ T4747]  __kmalloc_cache_noprof+0x4c/0x320
[   56.822869][ T4747]  __io_uring_add_tctx_node+0xbf/0x2d0
[   56.822901][ T4747]  __io_uring_add_tctx_node_from_submit+0x69/0xc0
[   56.822981][ T4747]  __se_sys_io_uring_enter+0x195b/0x1b70
[   56.823022][ T4747]  ? 0xffffffff81000000
[   56.823034][ T4747]  ? plist_check_list+0x1cf/0x210
[   56.823174][ T4747]  ? plist_check_list+0x1cf/0x210
[   56.823208][ T4747]  ? perf_cgroup_switch+0x10c/0x480
[   56.823234][ T4747]  ? _raw_spin_unlock+0x26/0x50
[   56.823292][ T4747]  ? finish_task_switch+0xad/0x2b0
[   56.823317][ T4747]  ? __schedule+0x6b9/0xb30
[   56.823347][ T4747]  __x64_sys_io_uring_enter+0x78/0x90
[   56.823443][ T4747]  x64_sys_call+0x2de1/0x2ff0
[   56.823462][ T4747]  do_syscall_64+0xd2/0x200
[   56.823490][ T4747]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.823512][ T4747]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.823589][ T4747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.823647][ T4747] RIP: 0033:0x7fe00b9ceb69
[   56.823665][ T4747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.823783][ T4747] RSP: 002b:00007fe009fc2038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   56.823805][ T4747] RAX: ffffffffffffffda RBX: 00007fe00bbf6160 RCX: 00007fe00b9ceb69
[   56.823830][ T4747] RDX: 0000000000003900 RSI: 00000000000006e2 RDI: 0000000000000003
[   56.823841][ T4747] RBP: 00007fe009fc2090 R08: 0000000000000000 R09: 0000000000000e00
[   56.823853][ T4747] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   56.823867][ T4747] R13: 0000000000000000 R14: 00007fe00bbf6160 R15: 00007ffe488eddc8
[   56.823888][ T4747]  </TASK>
[   57.095278][ T4733] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   57.104385][ T4733] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   57.113400][ T4750] loop2: detected capacity change from 0 to 764
[   57.121119][ T4750] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   57.186342][ T4733] Falling back ldisc for ttyS3.
[   57.222309][ T4759] loop2: detected capacity change from 0 to 512
[   57.235598][ T4763] netlink: 24 bytes leftover after parsing attributes in process `syz.3.334'.
[   57.256050][ T4759] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.309178][ T4759] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.328577][ T4773] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   57.350416][ T4759] EXT4-fs (loop2): shut down requested (0)
[   57.360760][ T4773] SELinux: failed to load policy
[   57.378341][ T4759] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   57.387325][ T4759] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   57.396473][ T4759] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   57.436651][ T4759] Falling back ldisc for ttyS3.
[   57.547944][ T1037] IPVS: starting estimator thread 0...
[   57.553664][ T4777] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   57.599788][ T4793] bond2: entered promiscuous mode
[   57.604910][ T4793] bond2: entered allmulticast mode
[   57.661618][ T4798] IPVS: using max 2400 ests per chain, 120000 per kthread
[   57.661721][ T4807] syz.4.342 uses obsolete (PF_INET,SOCK_PACKET)
[   57.704376][ T4793] 8021q: adding VLAN 0 to HW filter on device bond2
[   57.757075][ T4805] netlink: 8 bytes leftover after parsing attributes in process `syz.2.345'.
[   57.846619][ T4821] loop3: detected capacity change from 0 to 512
[   57.875109][ T4825] netlink: 24 bytes leftover after parsing attributes in process `syz.2.350'.
[   57.898086][ T4821] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.980498][ T4821] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.997749][ T4835] loop0: detected capacity change from 0 to 764
[   58.000633][ T4839] loop4: detected capacity change from 0 to 1024
[   58.015208][ T4840] loop2: detected capacity change from 0 to 1024
[   58.025246][ T4835] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   58.056496][ T4839] EXT4-fs: Ignoring removed orlov option
[   58.083984][ T4821] EXT4-fs (loop3): shut down requested (0)
[   58.107111][ T4839] SELinux:  policydb version -957581230 does not match my version range 15-35
[   58.153556][ T4846] loop1: detected capacity change from 0 to 1024
[   58.179535][ T4839] SELinux: failed to load policy
[   58.208667][   T36] IPVS: starting estimator thread 0...
[   58.214499][ T4839] EXT4-fs: Ignoring sb option on remount
[   58.220222][ T4839] EXT4-fs: Ignoring removed orlov option
[   58.229076][ T4842] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   58.238038][   T29] kauditd_printk_skb: 418 callbacks suppressed
[   58.238052][   T29] audit: type=1326 audit(1754199190.462:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4819 comm="syz.3.347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd1025eb69 code=0x7ffc0000
[   58.268271][ T4821] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   58.286265][ T4839] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.301605][ T4839] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   58.305574][ T4840] SELinux:  policydb magic number 0x69662f2e does not match expected magic number 0xf97cff8c
[   58.327444][ T4839] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   58.337718][ T4821] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   58.347027][ T4840] SELinux: failed to load policy
[   58.366380][ T4851] IPVS: using max 2256 ests per chain, 112800 per kthread
[   58.384090][   T29] audit: type=1326 audit(1754199190.492:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4819 comm="syz.3.347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fcd1025eb69 code=0x7ffc0000
[   58.407469][   T29] audit: type=1326 audit(1754199190.502:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.432133][   T29] audit: type=1326 audit(1754199190.502:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.455522][   T29] audit: type=1326 audit(1754199190.502:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.479007][   T29] audit: type=1326 audit(1754199190.502:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.500657][ T4821] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   58.502415][   T29] audit: type=1326 audit(1754199190.502:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.534499][   T29] audit: type=1326 audit(1754199190.502:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.557899][   T29] audit: type=1326 audit(1754199190.502:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.581229][   T29] audit: type=1326 audit(1754199190.502:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4837 comm="syz.2.356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   58.641437][ T4846] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   58.672191][ T4865] loop2: detected capacity change from 0 to 512
[   58.695055][ T4865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.703806][ T4852] Falling back ldisc for ttyS3.
[   58.727018][ T4846] SELinux: failed to load policy
[   58.795413][ T4865] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.809959][ T4881] loop0: detected capacity change from 0 to 512
[   58.867830][ T4881] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.878546][ T4884] loop1: detected capacity change from 0 to 764
[   58.899101][ T4865] EXT4-fs (loop2): shut down requested (0)
[   58.927891][ T4884] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   58.949603][ T4865] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   58.958674][ T4865] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   58.979829][ T4881] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.993603][ T4865] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   59.084569][ T4881] EXT4-fs (loop0): shut down requested (0)
[   59.101134][ T4910] loop1: detected capacity change from 0 to 1024
[   59.110337][ T4865] Falling back ldisc for ttyS3.
[   59.191048][ T4910] SELinux: ebitmap: truncated map
[   59.196890][ T4910] SELinux: failed to load policy
[   59.199252][ T4881] Falling back ldisc for ttyS3.
[   59.280224][ T4930] loop2: detected capacity change from 0 to 512
[   59.299400][ T4930] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.315909][ T4926] loop1: detected capacity change from 0 to 764
[   59.323352][ T4926] /dev/loop1: Can't open blockdev
[   59.334164][ T4931] loop0: detected capacity change from 0 to 512
[   59.353870][ T4931] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #17: comm syz.0.371: invalid fast symlink length 0
[   59.371984][ T4931] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.371: couldn't read orphan inode 17 (err -117)
[   59.389139][ T4930] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.402856][ T4930] EXT4-fs (loop2): shut down requested (0)
[   59.413223][ T4924] netlink: 88 bytes leftover after parsing attributes in process `syz.0.371'.
[   59.434676][ T4930] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   59.443700][ T4930] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   59.452813][ T4930] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   59.506352][ T4930] Falling back ldisc for ttyS3.
[   59.509096][ T4937] loop0: detected capacity change from 0 to 512
[   59.518765][ T4937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.542265][ T4937] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.568775][ T4937] EXT4-fs (loop0): shut down requested (0)
[   59.584190][ T4937] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   59.594131][ T4937] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   59.603142][ T4937] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   59.666457][ T4937] Falling back ldisc for ttyS3.
[   59.895903][ T4955] loop4: detected capacity change from 0 to 1024
[   59.951853][ T4955] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   59.955023][ T4959] loop0: detected capacity change from 0 to 764
[   59.982494][ T4959] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   60.006509][ T4955] SELinux: failed to load policy
[   60.022073][ T4963] netlink: 24 bytes leftover after parsing attributes in process `syz.3.383'.
[   60.034449][ T4965] loop2: detected capacity change from 0 to 512
[   60.059299][ T4967] loop4: detected capacity change from 0 to 512
[   60.072910][ T4965] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.088053][ T4967] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.113315][ T4965] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.134011][ T4967] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.148068][ T4965] EXT4-fs (loop2): shut down requested (0)
[   60.167897][ T4976] bond2: entered promiscuous mode
[   60.172986][ T4976] bond2: entered allmulticast mode
[   60.178531][ T4976] 8021q: adding VLAN 0 to HW filter on device bond2
[   60.214791][ T4967] EXT4-fs (loop4): shut down requested (0)
[   60.239120][ T4967] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   60.249918][ T4967] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   60.263942][ T4983] loop1: detected capacity change from 0 to 1024
[   60.271839][ T4967] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   60.284526][ T4983] EXT4-fs: Ignoring removed orlov option
[   60.315738][ T4965] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   60.321879][ T4983] SELinux:  policydb version -957581230 does not match my version range 15-35
[   60.327739][ T4965] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   60.333895][ T4983] SELinux: failed to load policy
[   60.350381][ T4988] loop3: detected capacity change from 0 to 764
[   60.356778][ T4967] Falling back ldisc for ttyS3.
[   60.358895][ T4983] EXT4-fs: Ignoring sb option on remount
[   60.367504][ T4983] EXT4-fs: Ignoring removed orlov option
[   60.373345][ T4983] EXT4-fs: Ignoring removed nomblk_io_submit option
[   60.379983][ T4983] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   60.388449][ T4988] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   60.389749][ T4965] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   60.405875][ T4983] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   60.467145][ T4994] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.486595][ T4965] Falling back ldisc for ttyS3.
[   60.640793][ T5015] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.389: bg 0: block 88: padding at end of block bitmap is not set
[   61.456938][ T5057] loop4: detected capacity change from 0 to 512
[   61.468137][ T5054] loop1: detected capacity change from 0 to 512
[   61.482820][ T5057] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.519893][ T5054] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.402: invalid fast symlink length 0
[   61.543649][ T5057] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.565468][ T5054] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.402: couldn't read orphan inode 17 (err -117)
[   61.607618][ T5057] EXT4-fs (loop4): shut down requested (0)
[   61.643177][ T5067] loop3: detected capacity change from 0 to 1024
[   61.644583][ T5057] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   61.650756][ T5067] /dev/loop3: Can't open blockdev
[   61.684230][ T5057] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   61.711873][ T5057] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   61.717803][ T5067] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   61.731298][ T5048] netlink: 88 bytes leftover after parsing attributes in process `syz.1.402'.
[   61.731647][ T5067] SELinux: failed to load policy
[   61.784218][ T5078] netlink: 24 bytes leftover after parsing attributes in process `syz.0.412'.
[   61.793336][ T5072] Falling back ldisc for ttyS3.
[   61.913944][ T5093] loop2: detected capacity change from 0 to 764
[   61.922676][ T5093] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   62.148915][ T5104] lo speed is unknown, defaulting to 1000
[   62.490332][ T5108] loop0: detected capacity change from 0 to 1024
[   62.594963][ T5108] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   62.605546][ T5108] SELinux: failed to load policy
[   62.726478][ T5116] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   62.824246][ T5123] loop4: detected capacity change from 0 to 1024
[   62.831686][ T5123] EXT4-fs: Ignoring removed oldalloc option
[   62.837672][ T5123] EXT4-fs: Ignoring removed bh option
[   62.859881][ T5123] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[   62.926498][ T5123] Falling back ldisc for ttyS3.
[   63.094886][ T5134] loop1: detected capacity change from 0 to 512
[   63.117068][ T5134] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   63.237537][ T5134] EXT4-fs (loop1): 1 truncate cleaned up
[   63.555479][   T29] kauditd_printk_skb: 365 callbacks suppressed
[   63.555497][   T29] audit: type=1326 audit(1754199195.772:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.585102][   T29] audit: type=1326 audit(1754199195.772:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.608442][   T29] audit: type=1326 audit(1754199195.772:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.631818][   T29] audit: type=1326 audit(1754199195.772:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.655160][   T29] audit: type=1326 audit(1754199195.772:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.678556][   T29] audit: type=1326 audit(1754199195.772:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.701992][   T29] audit: type=1326 audit(1754199195.772:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.725384][   T29] audit: type=1326 audit(1754199195.772:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.748812][   T29] audit: type=1326 audit(1754199195.772:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.772213][   T29] audit: type=1326 audit(1754199195.772:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5141 comm="syz.0.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   63.855578][ T5151] loop2: detected capacity change from 0 to 512
[   63.862851][ T5151] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.880913][ T5151] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.891453][ T5153] loop4: detected capacity change from 0 to 1024
[   63.900959][ T5151] EXT4-fs (loop2): shut down requested (0)
[   63.917435][ T5151] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   63.933934][ T5151] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   63.943445][ T5151] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   63.995554][ T5161] netlink: 24 bytes leftover after parsing attributes in process `syz.4.435'.
[   64.006526][ T5151] Falling back ldisc for ttyS3.
[   64.057918][ T5168] loop2: detected capacity change from 0 to 512
[   64.071063][ T5168] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   64.107188][ T5166] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   64.107203][   T10] IPVS: starting estimator thread 0...
[   64.121103][ T5168] EXT4-fs (loop2): 1 truncate cleaned up
[   64.206247][ T5177] IPVS: using max 2016 ests per chain, 100800 per kthread
[   64.249247][ T5199] loop2: detected capacity change from 0 to 1024
[   64.276875][ T5199] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   64.293114][ T5199] SELinux: failed to load policy
[   64.351672][ T5209] loop2: detected capacity change from 0 to 764
[   64.360071][ T5209] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   64.394699][ T5213] netlink: 116 bytes leftover after parsing attributes in process `syz.2.445'.
[   64.403882][ T5213] Zero length message leads to an empty skb
[   64.412537][ T5213] netlink: 260 bytes leftover after parsing attributes in process `syz.2.445'.
[   64.421877][ T5213] netlink: 260 bytes leftover after parsing attributes in process `syz.2.445'.
[   64.438888][ T5216] netlink: 24 bytes leftover after parsing attributes in process `syz.0.446'.
[   64.458437][ T5213] loop2: detected capacity change from 0 to 512
[   64.465169][ T5213] EXT4-fs: Ignoring removed i_version option
[   64.471237][ T5213] EXT4-fs: Ignoring removed nobh option
[   64.481547][ T5213] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   64.492599][ T5213] EXT4-fs (loop2): 1 truncate cleaned up
[   64.514991][ T5222] loop0: detected capacity change from 0 to 764
[   64.522984][ T5222] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   64.579803][ T5229] loop0: detected capacity change from 0 to 512
[   64.591112][ T5229] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.591506][ T5225] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   64.630061][ T5229] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.641092][ T5233] FAULT_INJECTION: forcing a failure.
[   64.641092][ T5233] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.652091][ T5229] EXT4-fs (loop0): shut down requested (0)
[   64.654339][ T5233] CPU: 1 UID: 0 PID: 5233 Comm: syz.4.452 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   64.654381][ T5233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.654398][ T5233] Call Trace:
[   64.654405][ T5233]  <TASK>
[   64.654479][ T5233]  __dump_stack+0x1d/0x30
[   64.654513][ T5233]  dump_stack_lvl+0xe8/0x140
[   64.654541][ T5233]  dump_stack+0x15/0x1b
[   64.654574][ T5233]  should_fail_ex+0x265/0x280
[   64.654636][ T5233]  should_fail+0xb/0x20
[   64.654720][ T5233]  should_fail_usercopy+0x1a/0x20
[   64.654747][ T5233]  _copy_from_user+0x1c/0xb0
[   64.654807][ T5233]  __copy_msghdr+0x244/0x300
[   64.654890][ T5233]  ___sys_sendmsg+0x109/0x1d0
[   64.654955][ T5233]  __x64_sys_sendmsg+0xd4/0x160
[   64.655034][ T5233]  x64_sys_call+0x191e/0x2ff0
[   64.655065][ T5233]  do_syscall_64+0xd2/0x200
[   64.655096][ T5233]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.655130][ T5233]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.655162][ T5233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.655191][ T5233] RIP: 0033:0x7fe00b9ceb69
[   64.655211][ T5233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.655236][ T5233] RSP: 002b:00007fe00a037038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.655262][ T5233] RAX: ffffffffffffffda RBX: 00007fe00bbf5fa0 RCX: 00007fe00b9ceb69
[   64.655279][ T5233] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000005
[   64.655321][ T5233] RBP: 00007fe00a037090 R08: 0000000000000000 R09: 0000000000000000
[   64.655338][ T5233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.655353][ T5233] R13: 0000000000000000 R14: 00007fe00bbf5fa0 R15: 00007ffe488eddc8
[   64.655380][ T5233]  </TASK>
[   64.662772][ T5236] loop2: detected capacity change from 0 to 1024
[   64.887229][ T5237] Falling back ldisc for ttyS3.
[   64.973144][ T5259] loop3: detected capacity change from 0 to 764
[   64.993912][ T5264] loop0: detected capacity change from 0 to 1024
[   65.000854][ T5264] EXT4-fs: Ignoring removed orlov option
[   65.037363][ T5264] SELinux:  policydb version -957581230 does not match my version range 15-35
[   65.046575][ T5259] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   65.085098][ T5264] SELinux: failed to load policy
[   65.122369][ T5276] EXT4-fs: Ignoring sb option on remount
[   65.128121][ T5276] EXT4-fs: Ignoring removed orlov option
[   65.144024][ T5278] loop2: detected capacity change from 0 to 764
[   65.160302][ T5276] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.167419][ T5278] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   65.213181][ T5285] siw: device registration error -23
[   65.215433][ T5276] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   65.260122][ T5291] loop4: detected capacity change from 0 to 512
[   65.276398][ T5276] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   65.284687][ T5288] loop1: detected capacity change from 0 to 764
[   65.295773][ T5291] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   65.297044][ T5294] loop2: detected capacity change from 0 to 512
[   65.313058][ T5288] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   65.316375][ T5296] netlink: 24 bytes leftover after parsing attributes in process `syz.3.465'.
[   65.369866][ T5298] FAULT_INJECTION: forcing a failure.
[   65.369866][ T5298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.383044][ T5298] CPU: 0 UID: 0 PID: 5298 Comm: syz.1.466 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   65.383116][ T5298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   65.383130][ T5298] Call Trace:
[   65.383136][ T5298]  <TASK>
[   65.383178][ T5298]  __dump_stack+0x1d/0x30
[   65.383204][ T5298]  dump_stack_lvl+0xe8/0x140
[   65.383294][ T5298]  dump_stack+0x15/0x1b
[   65.383315][ T5298]  should_fail_ex+0x265/0x280
[   65.383358][ T5298]  should_fail+0xb/0x20
[   65.383406][ T5298]  should_fail_usercopy+0x1a/0x20
[   65.383444][ T5298]  _copy_to_user+0x20/0xa0
[   65.383480][ T5298]  simple_read_from_buffer+0xb5/0x130
[   65.383509][ T5298]  proc_fail_nth_read+0x10e/0x150
[   65.383545][ T5298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   65.383579][ T5298]  vfs_read+0x1a0/0x6f0
[   65.383692][ T5298]  ? __rcu_read_unlock+0x4f/0x70
[   65.383719][ T5298]  ? __fget_files+0x184/0x1c0
[   65.383755][ T5298]  ksys_read+0xda/0x1a0
[   65.383820][ T5298]  __x64_sys_read+0x40/0x50
[   65.383843][ T5298]  x64_sys_call+0x27bc/0x2ff0
[   65.383870][ T5298]  do_syscall_64+0xd2/0x200
[   65.383899][ T5298]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.383932][ T5298]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   65.383953][ T5298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.383980][ T5298] RIP: 0033:0x7f48cc19d57c
[   65.383998][ T5298] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   65.384051][ T5298] RSP: 002b:00007f48ca807030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   65.384135][ T5298] RAX: ffffffffffffffda RBX: 00007f48cc3c5fa0 RCX: 00007f48cc19d57c
[   65.384151][ T5298] RDX: 000000000000000f RSI: 00007f48ca8070a0 RDI: 000000000000000c
[   65.384166][ T5298] RBP: 00007f48ca807090 R08: 0000000000000000 R09: 0000000000000000
[   65.384180][ T5298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.384195][ T5298] R13: 0000000000000000 R14: 00007f48cc3c5fa0 R15: 00007ffdafaf1bb8
[   65.384296][ T5298]  </TASK>
[   65.486621][ T5294] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   65.536405][ T5291] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.590967][ T5304] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.456: bg 0: block 88: padding at end of block bitmap is not set
[   65.652915][ T5291] EXT4-fs (loop4): shut down requested (0)
[   65.680554][ T5310] loop1: detected capacity change from 0 to 764
[   65.693560][ T5291] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   65.722915][ T5294] EXT4-fs (loop2): 1 truncate cleaned up
[   65.736574][ T5291] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   65.745646][ T5291] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   65.746326][ T5310] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   65.805813][ T5315] loop1: detected capacity change from 0 to 1024
[   65.894257][ T5315] SELinux: failed to load policy
[   65.905049][ T5312] Falling back ldisc for ttyS3.
[   66.012529][ T5337] loop4: detected capacity change from 0 to 764
[   66.024663][ T5337] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   66.078259][ T5351] loop4: detected capacity change from 0 to 512
[   66.085089][ T5351] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   66.105763][ T5351] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.124768][ T5351] EXT4-fs (loop4): shut down requested (0)
[   66.141934][ T5351] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   66.151131][ T5351] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   66.176319][ T5351] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   66.337209][ T5351] Falling back ldisc for ttyS3.
[   66.438276][ T5374] loop4: detected capacity change from 0 to 1024
[   66.446086][ T5374] EXT4-fs: Ignoring removed orlov option
[   66.469237][ T5374] SELinux:  policydb version -957581230 does not match my version range 15-35
[   66.479425][ T5374] SELinux: failed to load policy
[   66.491515][ T5374] EXT4-fs: Ignoring sb option on remount
[   66.497296][ T5374] EXT4-fs: Ignoring removed orlov option
[   66.504051][ T5374] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.510951][ T5374] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   66.520045][ T5374] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   66.660991][ T5379] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.479: bg 0: block 88: padding at end of block bitmap is not set
[   66.677963][ T5378] loop3: detected capacity change from 0 to 1024
[   66.686786][ T5378] EXT4-fs: Ignoring removed orlov option
[   66.701445][ T5378] SELinux:  policydb version -957581230 does not match my version range 15-35
[   66.733533][ T5378] SELinux: failed to load policy
[   66.755856][ T5378] EXT4-fs: Ignoring sb option on remount
[   66.761680][ T5378] EXT4-fs: Ignoring removed orlov option
[   66.770632][ T5383] loop2: detected capacity change from 0 to 764
[   66.821541][ T5378] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.834869][ T5383] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   66.853495][ T5378] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   66.864232][ T5387] 9pnet_fd: Insufficient options for proto=fd
[   66.897880][ T5389] loop0: detected capacity change from 0 to 1024
[   66.911467][ T5378] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[   67.057830][ T5389] SELinux: failed to load policy
[   67.115531][ T5402] loop0: detected capacity change from 0 to 512
[   67.208340][ T5402] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   67.224273][ T5395] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.480: bg 0: block 88: padding at end of block bitmap is not set
[   67.284112][ T5402] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.310668][ T5402] EXT4-fs (loop0): shut down requested (0)
[   67.348136][ T5402] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   67.357048][ T5402] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   67.366031][ T5402] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   67.381075][ T5414] loop2: detected capacity change from 0 to 512
[   67.401432][ T5414] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   67.418742][ T5402] Falling back ldisc for ttyS3.
[   67.475272][ T5414] EXT4-fs (loop2): 1 truncate cleaned up
[   67.524098][ T5420] netlink: 36 bytes leftover after parsing attributes in process `syz.0.493'.
[   67.581349][ T5425] loop0: detected capacity change from 0 to 512
[   67.597758][ T5425] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   67.626909][ T5425] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.495: casefold flag without casefold feature
[   67.670251][ T5425] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.495: couldn't read orphan inode 15 (err -117)
[   67.803542][ T5440] netlink: 24 bytes leftover after parsing attributes in process `syz.2.500'.
[   67.840235][ T5442] loop3: detected capacity change from 0 to 512
[   67.864239][ T5442] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.914993][ T5442] EXT4-fs (loop3): 1 truncate cleaned up
[   67.991850][ T5448] loop3: detected capacity change from 0 to 512
[   68.043114][ T5448] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.069805][ T5448] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.106235][ T5448] EXT4-fs (loop3): shut down requested (0)
[   68.157930][ T5448] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   68.173967][ T5448] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   68.194718][ T5448] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   68.286532][ T5448] Falling back ldisc for ttyS3.
[   68.331841][ T5469] netlink: 36 bytes leftover after parsing attributes in process `syz.4.504'.
[   68.400427][ T5474] loop3: detected capacity change from 0 to 1024
[   68.412966][ T5479] loop4: detected capacity change from 0 to 512
[   68.430064][ T5479] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   68.442720][ T5474] EXT4-fs: Ignoring removed orlov option
[   68.499872][ T5479] EXT4-fs (loop4): 1 truncate cleaned up
[   68.511970][ T5474] SELinux:  policydb version -957581230 does not match my version range 15-35
[   68.527721][ T5474] SELinux: failed to load policy
[   68.552739][ T5474] EXT4-fs: Ignoring sb option on remount
[   68.558550][ T5474] EXT4-fs: Ignoring removed orlov option
[   68.564310][ T5474] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.570961][ T5474] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   68.596262][   T29] kauditd_printk_skb: 423 callbacks suppressed
[   68.596281][   T29] audit: type=1400 audit(1754199200.762:2273): avc:  denied  { execmem } for  pid=5493 comm="syz.2.512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   68.621725][   T29] audit: type=1400 audit(1754199200.772:2274): avc:  denied  { remount } for  pid=5473 comm="syz.3.505" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   68.650490][ T5474] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[   68.767835][ T5508] process 'syz.2.512' launched './file0' with NULL argv: empty string added
[   68.787372][   T29] audit: type=1400 audit(1754199200.982:2275): avc:  denied  { create } for  pid=5493 comm="syz.2.512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   68.807063][   T29] audit: type=1400 audit(1754199200.982:2276): avc:  denied  { ioctl } for  pid=5493 comm="syz.2.512" path="socket:[9555]" dev="sockfs" ino=9555 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   68.831741][   T29] audit: type=1400 audit(1754199200.992:2277): avc:  denied  { watch watch_reads } for  pid=5493 comm="syz.2.512" path="/108/file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   68.855201][   T29] audit: type=1400 audit(1754199200.992:2278): avc:  denied  { execute } for  pid=5493 comm="syz.2.512" name="file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   68.877367][   T29] audit: type=1400 audit(1754199201.002:2279): avc:  denied  { execute_no_trans } for  pid=5493 comm="syz.2.512" path="/108/file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   68.939975][ T5510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.035408][ T5510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.173936][ T5517] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.505: bg 0: block 88: padding at end of block bitmap is not set
[   69.325303][ T5525] loop1: detected capacity change from 0 to 764
[   69.416043][ T5525] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   69.491010][   T29] audit: type=1400 audit(1754199201.162:2280): avc:  denied  { read write } for  pid=5509 comm="syz.4.515" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   69.514608][   T29] audit: type=1400 audit(1754199201.162:2281): avc:  denied  { open } for  pid=5509 comm="syz.4.515" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   69.538271][   T29] audit: type=1400 audit(1754199201.162:2282): avc:  denied  { ioctl } for  pid=5509 comm="syz.4.515" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   69.791093][ T3301] EXT4-fs unmount: 129 callbacks suppressed
[   69.791113][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.951306][ T5532] loop3: detected capacity change from 0 to 1024
[   70.029383][ T5532] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.076364][ T5540] FAULT_INJECTION: forcing a failure.
[   70.076364][ T5540] name failslab, interval 1, probability 0, space 0, times 0
[   70.089106][ T5540] CPU: 1 UID: 0 PID: 5540 Comm: syz.4.522 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   70.089140][ T5540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.089157][ T5540] Call Trace:
[   70.089164][ T5540]  <TASK>
[   70.089171][ T5540]  __dump_stack+0x1d/0x30
[   70.089192][ T5540]  dump_stack_lvl+0xe8/0x140
[   70.089210][ T5540]  dump_stack+0x15/0x1b
[   70.089231][ T5540]  should_fail_ex+0x265/0x280
[   70.089332][ T5540]  should_failslab+0x8c/0xb0
[   70.089363][ T5540]  kmem_cache_alloc_noprof+0x50/0x310
[   70.089441][ T5540]  ? skb_clone+0x151/0x1f0
[   70.089465][ T5540]  skb_clone+0x151/0x1f0
[   70.089488][ T5540]  __netlink_deliver_tap+0x2c9/0x500
[   70.089539][ T5540]  netlink_unicast+0x66b/0x690
[   70.089569][ T5540]  netlink_sendmsg+0x58b/0x6b0
[   70.089613][ T5540]  ? __pfx_netlink_sendmsg+0x10/0x10
[   70.089676][ T5540]  __sock_sendmsg+0x145/0x180
[   70.089705][ T5540]  ____sys_sendmsg+0x31e/0x4e0
[   70.089752][ T5540]  ___sys_sendmsg+0x17b/0x1d0
[   70.089878][ T5540]  __x64_sys_sendmsg+0xd4/0x160
[   70.089925][ T5540]  x64_sys_call+0x191e/0x2ff0
[   70.089985][ T5540]  do_syscall_64+0xd2/0x200
[   70.090014][ T5540]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.090121][ T5540]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   70.090219][ T5540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.090328][ T5540] RIP: 0033:0x7fe00b9ceb69
[   70.090348][ T5540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.090371][ T5540] RSP: 002b:00007fe00a037038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.090443][ T5540] RAX: ffffffffffffffda RBX: 00007fe00bbf5fa0 RCX: 00007fe00b9ceb69
[   70.090459][ T5540] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   70.090475][ T5540] RBP: 00007fe00a037090 R08: 0000000000000000 R09: 0000000000000000
[   70.090490][ T5540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.090506][ T5540] R13: 0000000000000000 R14: 00007fe00bbf5fa0 R15: 00007ffe488eddc8
[   70.090529][ T5540]  </TASK>
[   70.497810][ T5547] SELinux:  policydb magic number 0x69660001 does not match expected magic number 0xf97cff8c
[   70.571654][ T5547] SELinux: failed to load policy
[   70.600647][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.682929][ T5554] netlink: 88 bytes leftover after parsing attributes in process `syz.3.527'.
[   71.072659][ T5601] loop1: detected capacity change from 0 to 512
[   71.099303][ T5601] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.144589][ T5601] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.163256][ T5601] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.202284][ T5601] EXT4-fs (loop1): shut down requested (0)
[   71.234471][ T5601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   71.243458][ T5601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   71.253832][ T5601] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   71.326852][ T5601] Falling back ldisc for ttyS3.
[   71.363131][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.382255][ T5631] FAULT_INJECTION: forcing a failure.
[   71.382255][ T5631] name failslab, interval 1, probability 0, space 0, times 0
[   71.395074][ T5631] CPU: 0 UID: 0 PID: 5631 Comm: syz.2.548 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   71.395102][ T5631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.395113][ T5631] Call Trace:
[   71.395121][ T5631]  <TASK>
[   71.395182][ T5631]  __dump_stack+0x1d/0x30
[   71.395209][ T5631]  dump_stack_lvl+0xe8/0x140
[   71.395235][ T5631]  dump_stack+0x15/0x1b
[   71.395253][ T5631]  should_fail_ex+0x265/0x280
[   71.395294][ T5631]  should_failslab+0x8c/0xb0
[   71.395325][ T5631]  kmem_cache_alloc_noprof+0x50/0x310
[   71.395359][ T5631]  ? security_inode_alloc+0x37/0x100
[   71.395432][ T5631]  security_inode_alloc+0x37/0x100
[   71.395523][ T5631]  inode_init_always_gfp+0x4b7/0x500
[   71.395554][ T5631]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   71.395647][ T5631]  alloc_inode+0x58/0x170
[   71.395715][ T5631]  new_inode+0x1d/0xe0
[   71.395744][ T5631]  shmem_get_inode+0x244/0x750
[   71.395833][ T5631]  shmem_mknod+0x46/0x180
[   71.395864][ T5631]  shmem_create+0x34/0x50
[   71.395932][ T5631]  ? __pfx_shmem_create+0x10/0x10
[   71.395961][ T5631]  path_openat+0x1105/0x2170
[   71.395997][ T5631]  do_filp_open+0x109/0x230
[   71.396122][ T5631]  do_sys_openat2+0xa6/0x110
[   71.396173][ T5631]  __x64_sys_creat+0x65/0x90
[   71.396215][ T5631]  x64_sys_call+0x2d94/0x2ff0
[   71.396240][ T5631]  do_syscall_64+0xd2/0x200
[   71.396268][ T5631]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.396298][ T5631]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.396323][ T5631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.396345][ T5631] RIP: 0033:0x7f523248eb69
[   71.396363][ T5631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.396423][ T5631] RSP: 002b:00007f5230aef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   71.396447][ T5631] RAX: ffffffffffffffda RBX: 00007f52326b5fa0 RCX: 00007f523248eb69
[   71.396463][ T5631] RDX: 0000000000000000 RSI: ecf86c37d53049cc RDI: 0000200000000280
[   71.396479][ T5631] RBP: 00007f5230aef090 R08: 0000000000000000 R09: 0000000000000000
[   71.396495][ T5631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.396510][ T5631] R13: 0000000000000000 R14: 00007f52326b5fa0 R15: 00007ffde228f548
[   71.396547][ T5631]  </TASK>
[   71.404969][ T5633] FAULT_INJECTION: forcing a failure.
[   71.404969][ T5633] name failslab, interval 1, probability 0, space 0, times 0
[   71.554926][ T5640] loop2: detected capacity change from 0 to 764
[   71.572021][ T5633] CPU: 1 UID: 0 PID: 5633 Comm: syz.4.549 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   71.572059][ T5633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.572076][ T5633] Call Trace:
[   71.572087][ T5633]  <TASK>
[   71.572098][ T5633]  __dump_stack+0x1d/0x30
[   71.572127][ T5633]  dump_stack_lvl+0xe8/0x140
[   71.572225][ T5633]  dump_stack+0x15/0x1b
[   71.572241][ T5633]  should_fail_ex+0x265/0x280
[   71.572399][ T5633]  should_failslab+0x8c/0xb0
[   71.572433][ T5633]  __kmalloc_noprof+0xa5/0x3e0
[   71.572471][ T5633]  ? nf_tables_newrule+0xe25/0x17a0
[   71.572593][ T5633]  nf_tables_newrule+0xe25/0x17a0
[   71.572658][ T5633]  ? __nla_parse+0x40/0x60
[   71.572689][ T5633]  nfnetlink_rcv+0xb99/0x1690
[   71.572757][ T5633]  netlink_unicast+0x5c0/0x690
[   71.572809][ T5633]  netlink_sendmsg+0x58b/0x6b0
[   71.572856][ T5633]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.572973][ T5633]  __sock_sendmsg+0x145/0x180
[   71.573058][ T5633]  ____sys_sendmsg+0x31e/0x4e0
[   71.573186][ T5633]  ___sys_sendmsg+0x17b/0x1d0
[   71.573308][ T5633]  __x64_sys_sendmsg+0xd4/0x160
[   71.573360][ T5633]  x64_sys_call+0x191e/0x2ff0
[   71.573391][ T5633]  do_syscall_64+0xd2/0x200
[   71.573424][ T5633]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.573489][ T5633]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.573520][ T5633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.573592][ T5633] RIP: 0033:0x7fe00b9ceb69
[   71.573614][ T5633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.573713][ T5633] RSP: 002b:00007fe00a037038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.573739][ T5633] RAX: ffffffffffffffda RBX: 00007fe00bbf5fa0 RCX: 00007fe00b9ceb69
[   71.573756][ T5633] RDX: 0000000024000840 RSI: 0000200000009b40 RDI: 0000000000000003
[   71.573773][ T5633] RBP: 00007fe00a037090 R08: 0000000000000000 R09: 0000000000000000
[   71.573790][ T5633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.573806][ T5633] R13: 0000000000000000 R14: 00007fe00bbf5fa0 R15: 00007ffe488eddc8
[   71.573888][ T5633]  </TASK>
[   71.790941][ T5642] loop3: detected capacity change from 0 to 32768
[   71.858691][ T5647] FAULT_INJECTION: forcing a failure.
[   71.858691][ T5647] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.876250][ T5647] CPU: 1 UID: 0 PID: 5647 Comm: syz.3.553 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   71.876285][ T5647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.876324][ T5647] Call Trace:
[   71.876330][ T5647]  <TASK>
[   71.876339][ T5647]  __dump_stack+0x1d/0x30
[   71.876364][ T5647]  dump_stack_lvl+0xe8/0x140
[   71.876387][ T5647]  dump_stack+0x15/0x1b
[   71.876476][ T5647]  should_fail_ex+0x265/0x280
[   71.876515][ T5647]  should_fail+0xb/0x20
[   71.876555][ T5647]  should_fail_usercopy+0x1a/0x20
[   71.876578][ T5647]  _copy_from_user+0x1c/0xb0
[   71.876609][ T5647]  __x64_sys_rt_sigaction+0xb3/0x1a0
[   71.876644][ T5647]  x64_sys_call+0x1bc2/0x2ff0
[   71.876683][ T5647]  do_syscall_64+0xd2/0x200
[   71.876793][ T5647]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.876825][ T5647]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.876849][ T5647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.876875][ T5647] RIP: 0033:0x7fcd1025eb69
[   71.876940][ T5647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.876957][ T5647] RSP: 002b:00007fcd0e89e038 EFLAGS: 00000246 ORIG_RAX: 000000000000000d
[   71.876974][ T5647] RAX: ffffffffffffffda RBX: 00007fcd10486080 RCX: 00007fcd1025eb69
[   71.876986][ T5647] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 000000000000000e
[   71.877008][ T5647] RBP: 00007fcd0e89e090 R08: 0000200000000200 R09: 0000000000000000
[   71.877024][ T5647] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[   71.877037][ T5647] R13: 0000000000000001 R14: 00007fcd10486080 R15: 00007fff79588418
[   71.877054][ T5647]  </TASK>
[   72.059186][ T5640] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   72.159375][ T5654] loop4: detected capacity change from 0 to 512
[   72.217974][ T5654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.238248][ T5654] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.252164][ T5654] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.265725][ T5654] EXT4-fs (loop4): shut down requested (0)
[   72.290114][ T5654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   72.299287][ T5654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   72.308137][ T5654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   72.309703][ T5661] loop3: detected capacity change from 0 to 512
[   72.333562][ T5661] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.376324][ T5654] Falling back ldisc for ttyS3.
[   72.420971][ T5661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.444873][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.474984][ T5661] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.564762][ T5661] EXT4-fs (loop3): shut down requested (0)
[   72.601690][ T5661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   72.627324][ T5661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   72.645564][ T5661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   72.769553][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.780671][ T5671] loop2: detected capacity change from 0 to 32768
[   72.851665][ T5714] loop3: detected capacity change from 0 to 1024
[   72.859089][ T5714] EXT4-fs: Ignoring removed orlov option
[   72.879655][ T5697] loop4: detected capacity change from 0 to 32768
[   72.889586][ T5714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.922482][ T5722] loop2: detected capacity change from 0 to 512
[   72.932334][ T5714] SELinux:  policydb version -957581230 does not match my version range 15-35
[   72.941812][ T5722] ext4: Unknown parameter 'fsuuid'
[   72.950913][ T5714] SELinux: failed to load policy
[   72.956942][ T3504]  loop4: p1 p2 p3 < p5 p6 p7 >
[   72.964814][ T3504] loop4: p2 size 16775168 extends beyond EOD, truncated
[   72.989914][ T3504] loop4: p5 start 4294970168 is beyond EOD, truncated
[   73.006887][ T5697]  loop4: p1 p2 p3 < p5 p6 p7 >
[   73.012414][ T5697] loop4: p2 size 16775168 extends beyond EOD, truncated
[   73.020170][ T5714] EXT4-fs: Ignoring sb option on remount
[   73.021377][ T5697] loop4: p5 start 4294970168 is beyond EOD, truncated
[   73.025881][ T5714] EXT4-fs: Ignoring removed orlov option
[   73.034097][ T5714] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.055574][ T5714] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   73.066771][ T5714] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[   73.071556][ T2992]  loop4: p1 p2 p3 < p5 p6 p7 >
[   73.081648][ T2992] loop4: p2 size 16775168 extends beyond EOD, truncated
[   73.089947][ T2992] loop4: p5 start 4294970168 is beyond EOD, truncated
[   73.097314][ T5726] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   73.097314][ T5726] The task syz.4.564 (5726) triggered the difference, watch for misbehavior.
[   73.205757][ T5697] netlink: 8 bytes leftover after parsing attributes in process `syz.4.564'.
[   73.212633][ T5732] loop1: detected capacity change from 0 to 1024
[   73.222157][ T5732] EXT4-fs: Ignoring removed orlov option
[   73.337435][ T5733] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.567: bg 0: block 88: padding at end of block bitmap is not set
[   73.356721][ T5732] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.456704][ T5732] SELinux:  policydb version -957581230 does not match my version range 15-35
[   73.457451][ T5745] loop4: detected capacity change from 0 to 512
[   73.489322][ T5732] SELinux: failed to load policy
[   73.497844][ T5749] netlink: 56 bytes leftover after parsing attributes in process `syz.2.578'.
[   73.518643][ T5732] EXT4-fs: Ignoring sb option on remount
[   73.524357][ T5732] EXT4-fs: Ignoring removed orlov option
[   73.535520][ T5745] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   73.554790][ T3295] udevd[3295]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   73.571307][ T3504] udevd[3504]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   73.578200][ T3855] udevd[3855]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   73.582735][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   73.597947][ T3554] udevd[3554]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   73.608177][ T5732] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.611274][ T5752] loop2: detected capacity change from 0 to 1024
[   73.620930][ T5732] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   73.640438][ T5732] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   73.659969][ T5751] udevd[5751]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   73.671069][ T3504] udevd[3504]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   73.683476][ T3855] udevd[3855]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   73.695036][ T3295] udevd[3295]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   73.709257][ T3554] udevd[3554]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   73.722732][ T5752] EXT4-fs: Ignoring removed orlov option
[   73.775376][   T29] kauditd_printk_skb: 172 callbacks suppressed
[   73.775391][   T29] audit: type=1400 audit(1754199205.982:2455): avc:  denied  { bind } for  pid=5753 comm="syz.0.581" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   73.800900][   T29] audit: type=1400 audit(1754199205.992:2456): avc:  denied  { write } for  pid=5753 comm="syz.0.581" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   73.830343][ T5745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.844225][ T5752] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.871697][ T5745] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.874457][ T5752] SELinux:  policydb version -957581230 does not match my version range 15-35
[   73.891213][ T5752] SELinux: failed to load policy
[   73.905244][ T5752] EXT4-fs: Ignoring sb option on remount
[   73.910985][ T5752] EXT4-fs: Ignoring removed orlov option
[   73.916878][ T5752] EXT4-fs: Ignoring removed nomblk_io_submit option
[   73.923517][ T5752] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   73.927473][ T5745] EXT4-fs (loop4): shut down requested (0)
[   73.938541][ T5752] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   74.016071][ T5762] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.574: bg 0: block 88: padding at end of block bitmap is not set
[   74.061392][ T5745] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   74.062018][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.070617][   T29] audit: type=1326 audit(1754199206.282:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5744 comm="syz.4.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   74.102716][   T29] audit: type=1326 audit(1754199206.282:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5744 comm="syz.4.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   74.126111][   T29] audit: type=1326 audit(1754199206.282:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5744 comm="syz.4.577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   74.132362][ T5763] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.580: bg 0: block 88: padding at end of block bitmap is not set
[   74.156212][ T5745] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   74.173277][ T5745] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   74.206990][ T5766] Falling back ldisc for ttyS3.
[   74.269969][   T29] audit: type=1326 audit(1754199206.302:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.1.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   74.293476][   T29] audit: type=1326 audit(1754199206.302:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.1.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   74.316834][   T29] audit: type=1326 audit(1754199206.312:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.1.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=460 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   74.340235][   T29] audit: type=1326 audit(1754199206.312:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.1.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   74.364030][   T29] audit: type=1326 audit(1754199206.312:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.1.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   74.427457][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.444583][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.576575][ T5792] pimreg: entered allmulticast mode
[   74.588634][ T5792] pimreg: left allmulticast mode
[   74.599374][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.627819][ T5795] loop2: detected capacity change from 0 to 1024
[   74.634749][ T5795] EXT4-fs: Ignoring removed orlov option
[   74.659473][ T5795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.674719][ T5795] SELinux:  policydb version -957581230 does not match my version range 15-35
[   74.684824][ T5795] SELinux: failed to load policy
[   74.696087][ T5795] EXT4-fs: Ignoring sb option on remount
[   74.701879][ T5795] EXT4-fs: Ignoring removed orlov option
[   74.708007][ T5795] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.714847][ T5795] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   74.723606][ T5795] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   74.750191][ T5803] loop0: detected capacity change from 0 to 1024
[   74.780010][ T5803] EXT4-fs: Ignoring removed nobh option
[   74.785650][ T5803] EXT4-fs: Ignoring removed bh option
[   74.799352][ T5803] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.875366][ T5795] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.592: bg 0: block 88: padding at end of block bitmap is not set
[   74.927376][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.094713][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.130266][ T5811] loop3: detected capacity change from 0 to 512
[   75.151176][ T5813] loop2: detected capacity change from 0 to 512
[   75.157603][ T5811] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.177253][ T5813] ext4: Unknown parameter 'fsuuid'
[   75.189180][ T5811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.225205][ T5811] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.285124][ T5824] siw: device registration error -23
[   75.290522][ T5811] EXT4-fs (loop3): shut down requested (0)
[   75.319855][ T5827] loop0: detected capacity change from 0 to 1024
[   75.336419][ T5811] Falling back ldisc for ttyS3.
[   75.378737][ T5827] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.396814][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.449047][ T5827] SELinux: failed to load policy
[   75.465760][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.474086][ T5838] netlink: 28 bytes leftover after parsing attributes in process `syz.3.605'.
[   75.489779][ T5838] loop3: detected capacity change from 0 to 764
[   75.503423][ T5838] rock: directory entry would overflow storage
[   75.509761][ T5838] rock: sig=0x4654, size=5, remaining=4
[   75.533100][ T5838] rock: directory entry would overflow storage
[   75.539355][ T5838] rock: sig=0x4f50, size=4, remaining=3
[   75.544969][ T5838] iso9660: Corrupted directory entry in block 4 of inode 1792
[   75.647415][ T5857] cgroup: noprefix used incorrectly
[   75.654907][ T5859] loop0: detected capacity change from 0 to 512
[   75.665068][ T5859] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.681580][ T5859] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.700361][ T5859] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.720964][ T5859] EXT4-fs (loop0): shut down requested (0)
[   75.747703][ T5867] loop3: detected capacity change from 0 to 764
[   75.756973][ T5867] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   75.776890][ T5859] Falling back ldisc for ttyS3.
[   75.813589][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.867182][ T5882] loop1: detected capacity change from 0 to 512
[   75.879012][ T5884] loop0: detected capacity change from 0 to 1024
[   75.888542][ T5882] EXT4-fs: Ignoring removed oldalloc option
[   75.912080][ T5884] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.917831][ T5882] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.622: Parent and EA inode have the same ino 15
[   75.941657][ T5882] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.622: Parent and EA inode have the same ino 15
[   75.956039][ T5882] EXT4-fs (loop1): 1 orphan inode deleted
[   75.962985][ T5882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.988137][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.998851][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.048780][ T5901] loop0: detected capacity change from 0 to 512
[   76.067601][ T5901] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.098063][ T5901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.111345][ T5901] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.113860][ T5898] netlink: 28 bytes leftover after parsing attributes in process `syz.1.623'.
[   76.141304][ T5898] loop1: detected capacity change from 0 to 764
[   76.153493][ T5901] EXT4-fs (loop0): shut down requested (0)
[   76.184345][ T5898] rock: directory entry would overflow storage
[   76.190612][ T5898] rock: sig=0x4654, size=5, remaining=4
[   76.198957][ T5898] rock: directory entry would overflow storage
[   76.205168][ T5898] rock: sig=0x4f50, size=4, remaining=3
[   76.210840][ T5898] iso9660: Corrupted directory entry in block 4 of inode 1792
[   76.212121][ T5901] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.227418][ T5914] loop2: detected capacity change from 0 to 1024
[   76.230333][ T5901] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.244155][ T5901] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.272924][ T5914] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.308113][ T5901] Falling back ldisc for ttyS3.
[   76.314322][ T5914] SELinux: ebitmap: truncated map
[   76.326516][ T5914] SELinux: failed to load policy
[   76.337688][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.353723][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.482465][ T5929] FAULT_INJECTION: forcing a failure.
[   76.482465][ T5929] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.495614][ T5929] CPU: 0 UID: 0 PID: 5929 Comm: syz.2.631 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   76.495643][ T5929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.495673][ T5929] Call Trace:
[   76.495679][ T5929]  <TASK>
[   76.495686][ T5929]  __dump_stack+0x1d/0x30
[   76.495706][ T5929]  dump_stack_lvl+0xe8/0x140
[   76.495724][ T5929]  dump_stack+0x15/0x1b
[   76.495746][ T5929]  should_fail_ex+0x265/0x280
[   76.495788][ T5929]  should_fail+0xb/0x20
[   76.495889][ T5929]  should_fail_usercopy+0x1a/0x20
[   76.495989][ T5929]  _copy_from_iter+0xcf/0xe40
[   76.496015][ T5929]  ? __pfx_woken_wake_function+0x10/0x10
[   76.496045][ T5929]  file_tty_write+0x31d/0x690
[   76.496081][ T5929]  ? __pfx_tty_write+0x10/0x10
[   76.496146][ T5929]  tty_write+0x25/0x30
[   76.496178][ T5929]  vfs_write+0x4a0/0x8e0
[   76.496211][ T5929]  ksys_write+0xda/0x1a0
[   76.496246][ T5929]  __x64_sys_write+0x40/0x50
[   76.496271][ T5929]  x64_sys_call+0x27fe/0x2ff0
[   76.496356][ T5929]  do_syscall_64+0xd2/0x200
[   76.496378][ T5929]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.496438][ T5929]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.496507][ T5929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.496581][ T5929] RIP: 0033:0x7f523248eb69
[   76.496607][ T5929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.496678][ T5929] RSP: 002b:00007f5230aef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   76.496696][ T5929] RAX: ffffffffffffffda RBX: 00007f52326b5fa0 RCX: 00007f523248eb69
[   76.496729][ T5929] RDX: 0000000000001006 RSI: 0000200000002080 RDI: 0000000000000007
[   76.496744][ T5929] RBP: 00007f5230aef090 R08: 0000000000000000 R09: 0000000000000000
[   76.496759][ T5929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.496799][ T5929] R13: 0000000000000000 R14: 00007f52326b5fa0 R15: 00007ffde228f548
[   76.496822][ T5929]  </TASK>
[   76.708928][ T5931] loop0: detected capacity change from 0 to 512
[   76.725422][ T5931] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.759968][ T5931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.772800][ T5931] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.785826][ T5931] EXT4-fs (loop0): shut down requested (0)
[   76.801590][ T5931] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.810717][ T5931] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.819727][ T5931] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   76.876489][ T5931] Falling back ldisc for ttyS3.
[   76.894256][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.978322][ T5950] loop0: detected capacity change from 0 to 764
[   76.987431][ T5950] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   77.028073][ T5952] loop0: detected capacity change from 0 to 1024
[   77.049160][ T5952] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.103397][ T5952] SELinux: ebitmap: truncated map
[   77.108891][ T5952] SELinux: failed to load policy
[   77.128536][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.668232][ T5972] netlink: 'syz.1.645': attribute type 1 has an invalid length.
[   77.685393][ T5973] loop1: detected capacity change from 0 to 512
[   77.695167][ T5973] EXT4-fs: dax option not supported
[   77.880751][ T5985] loop4: detected capacity change from 0 to 1024
[   77.903649][ T5985] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.954787][ T5985] SELinux: failed to load policy
[   77.972010][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.019596][ T5991] siw: device registration error -23
[   78.030162][ T5993] loop0: detected capacity change from 0 to 1024
[   78.051807][ T5993] EXT4-fs: Ignoring removed orlov option
[   78.077991][ T5995] loop4: detected capacity change from 0 to 512
[   78.088188][ T5995] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   78.104230][ T5993] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.125790][ T5993] SELinux:  policydb version -957581230 does not match my version range 15-35
[   78.127068][ T5995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.134826][ T5993] SELinux: failed to load policy
[   78.150554][ T5995] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.166794][ T5993] EXT4-fs: Ignoring sb option on remount
[   78.167738][ T5995] EXT4-fs (loop4): shut down requested (0)
[   78.172485][ T5993] EXT4-fs: Ignoring removed orlov option
[   78.184084][ T5993] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.190881][ T5993] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   78.199200][ T5993] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   78.202591][ T5995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.216292][ T5995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.225101][ T5995] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.287134][ T5995] Falling back ldisc for ttyS3.
[   78.322702][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.378443][ T6014] loop4: detected capacity change from 0 to 1024
[   78.390563][ T5993] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.651: bg 0: block 88: padding at end of block bitmap is not set
[   78.419209][ T6014] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.482156][ T6014] SELinux: failed to load policy
[   78.502839][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.533349][ T6026] loop4: detected capacity change from 0 to 512
[   78.543837][ T6026] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   78.561613][ T6026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.613450][ T6026] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.620455][ T6040] loop1: detected capacity change from 0 to 1024
[   78.630973][ T6040] EXT4-fs: Ignoring removed orlov option
[   78.651832][ T6040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.669197][ T6026] EXT4-fs (loop4): shut down requested (0)
[   78.669625][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.679489][ T6040] SELinux:  policydb version -957581230 does not match my version range 15-35
[   78.693471][ T6040] SELinux: failed to load policy
[   78.714016][ T6026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.724913][ T6026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.725131][ T6040] EXT4-fs: Ignoring sb option on remount
[   78.733986][ T6026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   78.739585][ T6040] EXT4-fs: Ignoring removed orlov option
[   78.758274][ T6040] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.759565][ T6045] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   78.765038][ T6040] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   78.780426][   T29] kauditd_printk_skb: 163 callbacks suppressed
[   78.780439][   T29] audit: type=1326 audit(1754199211.002:2628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.810438][   T29] audit: type=1326 audit(1754199211.002:2629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.812195][ T6040] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   78.833939][   T29] audit: type=1326 audit(1754199211.002:2630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.833984][   T29] audit: type=1326 audit(1754199211.002:2631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.889337][   T29] audit: type=1326 audit(1754199211.012:2632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.912830][   T29] audit: type=1326 audit(1754199211.012:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.936263][   T29] audit: type=1326 audit(1754199211.012:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.959606][   T29] audit: type=1326 audit(1754199211.012:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   78.983231][   T29] audit: type=1326 audit(1754199211.012:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   79.006825][   T29] audit: type=1326 audit(1754199211.012:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6044 comm="syz.0.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f594af7eb69 code=0x7ffc0000
[   79.068449][ T6046] Falling back ldisc for ttyS3.
[   79.101534][ T6051] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.656: bg 0: block 88: padding at end of block bitmap is not set
[   79.117143][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.156035][ T6054] loop4: detected capacity change from 0 to 764
[   79.165497][ T6054] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   79.271311][ T6065] netlink: 24 bytes leftover after parsing attributes in process `syz.0.663'.
[   79.312138][ T6067] netlink: 'syz.0.664': attribute type 10 has an invalid length.
[   79.320365][ T6067] netlink: 40 bytes leftover after parsing attributes in process `syz.0.664'.
[   79.330358][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.334424][ T6067] team0: Port device geneve1 added
[   79.358598][ T6069] loop1: detected capacity change from 0 to 512
[   79.366001][ T6069] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.387685][ T6069] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.400917][ T6069] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.416028][ T6069] EXT4-fs (loop1): shut down requested (0)
[   79.440530][ T6069] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.452059][ T6069] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.461264][ T6069] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.511499][ T6078] loop0: detected capacity change from 0 to 764
[   79.520760][ T6078] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   79.529371][ T6069] Falling back ldisc for ttyS3.
[   79.565229][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.595444][ T6091] loop0: detected capacity change from 0 to 512
[   79.611430][ T6093] loop1: detected capacity change from 0 to 512
[   79.627338][ T6091] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.646812][ T6093] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.677245][ T6093] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.677625][ T6091] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.702951][ T6091] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.704125][ T6093] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.723802][ T6091] EXT4-fs (loop0): shut down requested (0)
[   79.739692][ T6091] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   79.748733][ T6091] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   79.757677][ T6091] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   79.794787][ T6093] EXT4-fs (loop1): shut down requested (0)
[   79.816342][ T6091] Falling back ldisc for ttyS3.
[   79.822545][ T6093] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.832858][ T6093] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.844500][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.854445][ T6093] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   79.898904][ T6118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.673'.
[   79.908060][ T6093] Falling back ldisc for ttyS3.
[   79.929030][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.959820][ T6123] loop1: detected capacity change from 0 to 1024
[   79.966983][ T6123] EXT4-fs: Ignoring removed orlov option
[   79.980906][ T6123] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.996658][ T6123] SELinux:  policydb version -957581230 does not match my version range 15-35
[   80.005815][ T6123] SELinux: failed to load policy
[   80.028182][ T6123] EXT4-fs: Ignoring sb option on remount
[   80.033970][ T6123] EXT4-fs: Ignoring removed orlov option
[   80.043953][ T6123] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.052942][ T6123] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   80.065465][ T6123] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   80.183336][ T6137] 9pnet_fd: Insufficient options for proto=fd
[   80.200806][ T6137] 9pnet_fd: Insufficient options for proto=fd
[   80.221402][ T6141] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.675: bg 0: block 88: padding at end of block bitmap is not set
[   80.328004][ T6143] FAULT_INJECTION: forcing a failure.
[   80.328004][ T6143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.341136][ T6143] CPU: 0 UID: 0 PID: 6143 Comm: syz.4.680 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   80.341175][ T6143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.341252][ T6143] Call Trace:
[   80.341258][ T6143]  <TASK>
[   80.341265][ T6143]  __dump_stack+0x1d/0x30
[   80.341286][ T6143]  dump_stack_lvl+0xe8/0x140
[   80.341368][ T6143]  dump_stack+0x15/0x1b
[   80.341389][ T6143]  should_fail_ex+0x265/0x280
[   80.341442][ T6143]  should_fail+0xb/0x20
[   80.341479][ T6143]  should_fail_usercopy+0x1a/0x20
[   80.341535][ T6143]  _copy_from_user+0x1c/0xb0
[   80.341573][ T6143]  ___sys_sendmsg+0xc1/0x1d0
[   80.341625][ T6143]  __x64_sys_sendmsg+0xd4/0x160
[   80.341684][ T6143]  x64_sys_call+0x191e/0x2ff0
[   80.341710][ T6143]  do_syscall_64+0xd2/0x200
[   80.341733][ T6143]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.341759][ T6143]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.341787][ T6143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.341875][ T6143] RIP: 0033:0x7fe00b9ceb69
[   80.341890][ T6143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.341933][ T6143] RSP: 002b:00007fe00a037038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.341957][ T6143] RAX: ffffffffffffffda RBX: 00007fe00bbf5fa0 RCX: 00007fe00b9ceb69
[   80.341973][ T6143] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 0000000000000005
[   80.341989][ T6143] RBP: 00007fe00a037090 R08: 0000000000000000 R09: 0000000000000000
[   80.342005][ T6143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.342020][ T6143] R13: 0000000000000000 R14: 00007fe00bbf5fa0 R15: 00007ffe488eddc8
[   80.342121][ T6143]  </TASK>
[   80.548325][ T6145] loop4: detected capacity change from 0 to 1024
[   80.559482][ T6145] EXT4-fs: Ignoring removed orlov option
[   80.581577][ T6145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.610558][ T6145] SELinux:  policydb version -957581230 does not match my version range 15-35
[   80.629917][ T6145] SELinux: failed to load policy
[   80.641246][ T6145] EXT4-fs: Ignoring sb option on remount
[   80.647003][ T6145] EXT4-fs: Ignoring removed orlov option
[   80.652964][ T6145] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.660273][ T6145] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   80.669358][ T6145] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   80.700662][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.811541][ T6151] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.681: bg 0: block 88: padding at end of block bitmap is not set
[   80.927134][ T6159] loop1: detected capacity change from 0 to 512
[   80.938793][ T6159] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.953389][ T6162] siw: device registration error -23
[   80.980000][ T6159] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.997961][ T6159] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.011311][ T6167] loop2: detected capacity change from 0 to 512
[   81.018314][ T6167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   81.030396][ T6159] EXT4-fs (loop1): shut down requested (0)
[   81.045864][ T6159] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   81.054994][ T6159] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   81.067866][ T6167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.082702][ T6159] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   81.093474][ T6167] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.107726][ T6167] EXT4-fs (loop2): shut down requested (0)
[   81.155924][ T6159] Falling back ldisc for ttyS3.
[   81.178918][ T6173] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.188094][ T6173] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.224790][ T6173] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.247811][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.286697][ T6167] Falling back ldisc for ttyS3.
[   81.369186][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.404661][ T6198] loop2: detected capacity change from 0 to 512
[   81.446070][ T6198] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   81.490442][ T6198] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.507389][ T6198] EXT4-fs (loop2): shut down requested (0)
[   81.537764][ T6198] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.547087][ T6198] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.559730][ T6198] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   81.635023][ T6217] netlink: 88 bytes leftover after parsing attributes in process `syz.3.693'.
[   81.697503][ T6198] Falling back ldisc for ttyS3.
[   81.779468][ T6228] loop0: detected capacity change from 0 to 764
[   81.811002][ T6228] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   81.898225][ T6241] loop4: detected capacity change from 0 to 764
[   81.907000][ T6241] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   81.941134][ T6246] loop0: detected capacity change from 0 to 1024
[   81.975114][ T6248] netlink: 'syz.4.699': attribute type 10 has an invalid length.
[   81.998009][ T6248] ipvlan0: entered allmulticast mode
[   82.003542][ T6248] veth0_vlan: entered allmulticast mode
[   82.057733][ T6248] team0: Device ipvlan0 failed to register rx_handler
[   82.078716][ T6246] SELinux: ebitmap: truncated map
[   82.105024][ T6246] SELinux: failed to load policy
[   82.256816][ T6272] netlink: 88 bytes leftover after parsing attributes in process `syz.3.702'.
[   82.273446][ T6275] loop0: detected capacity change from 0 to 1024
[   82.426382][ T6281] loop1: detected capacity change from 0 to 1024
[   82.456426][ T6281] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   82.468092][ T6281] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.508143][ T6281] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   82.525112][ T6281] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 29 with error 28
[   82.537587][ T6281] EXT4-fs (loop1): This should not happen!! Data will be lost
[   82.537587][ T6281] 
[   82.547410][ T6281] EXT4-fs (loop1): Total free blocks count 0
[   82.553418][ T6281] EXT4-fs (loop1): Free/Dirty block details
[   82.559375][ T6281] EXT4-fs (loop1): free_blocks=4293918720
[   82.565115][ T6281] EXT4-fs (loop1): dirty_blocks=64
[   82.570346][ T6281] EXT4-fs (loop1): Block reservation details
[   82.576521][ T6281] EXT4-fs (loop1): i_reserved_data_blocks=4
[   82.589591][ T6275] SELinux:  policydb magic number 0x69662f2e does not match expected magic number 0xf97cff8c
[   82.607962][ T6281] syz.1.706 (6281) used greatest stack depth: 9864 bytes left
[   82.619955][ T6292] netlink: 88 bytes leftover after parsing attributes in process `syz.2.707'.
[   82.621633][ T6275] SELinux: failed to load policy
[   82.662764][  T786] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 4: comm kworker/u8:6: lblock 36 mapped to illegal pblock 4 (length 12)
[   82.681439][  T786] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 12 with error 117
[   82.693994][  T786] EXT4-fs (loop1): This should not happen!! Data will be lost
[   82.693994][  T786] 
[   82.718111][ T6294] loop2: detected capacity change from 0 to 764
[   82.729846][ T6294] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   82.776909][ T6298] loop0: detected capacity change from 0 to 512
[   82.784136][ T6298] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.826780][ T6301] loop4: detected capacity change from 0 to 512
[   82.834915][ T6298] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.898203][ T6301] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.919520][ T6298] EXT4-fs (loop0): shut down requested (0)
[   82.968445][ T6301] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.990271][ T6301] EXT4-fs (loop4): shut down requested (0)
[   82.996446][ T6298] Falling back ldisc for ttyS3.
[   83.083522][ T6301] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   83.114636][ T6329] loop0: detected capacity change from 0 to 512
[   83.116380][ T6301] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   83.130271][ T6301] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   83.178558][ T6334] Falling back ldisc for ttyS3.
[   83.205903][ T6338] loop3: detected capacity change from 0 to 512
[   83.222176][ T6341] loop1: detected capacity change from 0 to 1024
[   83.229052][ T6338] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   83.239353][ T6329] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.261773][ T6344] loop4: detected capacity change from 0 to 1024
[   83.272387][ T6338] EXT4-fs (loop3): 1 truncate cleaned up
[   83.292179][ T6338] 9pnet_fd: Insufficient options for proto=fd
[   83.308833][ T6329] ext4 filesystem being mounted at /171/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.337319][ T6344] SELinux:  policydb magic number 0x69662f2e does not match expected magic number 0xf97cff8c
[   83.354662][ T6329] EXT4-fs (loop0): shut down requested (0)
[   83.371058][ T6344] SELinux: failed to load policy
[   83.380890][ T6341] SELinux: ebitmap: truncated map
[   83.389273][ T6341] SELinux: failed to load policy
[   83.410452][ T6329] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   83.419641][ T6329] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   83.438254][ T6360] netlink: 60 bytes leftover after parsing attributes in process `syz.3.722'.
[   83.447349][ T6329] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   83.528616][ T6366] loop1: detected capacity change from 0 to 764
[   83.539545][ T6368] loop0: detected capacity change from 0 to 764
[   83.556581][ T6368] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   83.566550][ T6366] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   83.628609][ T6379] netlink: 24 bytes leftover after parsing attributes in process `syz.4.727'.
[   83.669494][ T6384] loop4: detected capacity change from 0 to 1024
[   83.676876][ T6384] EXT4-fs: Ignoring removed orlov option
[   83.690591][ T6384] SELinux:  policydb version -957581230 does not match my version range 15-35
[   83.700040][ T6384] SELinux: failed to load policy
[   83.714426][ T6391] loop1: detected capacity change from 0 to 512
[   83.722656][ T6384] EXT4-fs: Ignoring sb option on remount
[   83.728430][ T6384] EXT4-fs: Ignoring removed orlov option
[   83.734824][ T6384] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.741626][ T6391] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.749406][ T6384] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   83.764130][ T6384] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   83.782045][ T6391] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.795556][ T6391] EXT4-fs (loop1): shut down requested (0)
[   83.819003][   T29] kauditd_printk_skb: 154 callbacks suppressed
[   83.819022][   T29] audit: type=1326 audit(1754199216.042:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6390 comm="syz.1.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   83.850845][ T6391] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   83.859973][ T6391] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   83.865077][   T29] audit: type=1326 audit(1754199216.042:2793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6390 comm="syz.1.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   83.871246][ T6399] loop2: detected capacity change from 0 to 1024
[   83.892235][   T29] audit: type=1326 audit(1754199216.072:2794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6390 comm="syz.1.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   83.905573][ T6391] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   83.932856][   T29] audit: type=1326 audit(1754199216.152:2795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6390 comm="syz.1.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   83.956347][   T29] audit: type=1326 audit(1754199216.152:2796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6390 comm="syz.1.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48cc19eb69 code=0x7ffc0000
[   83.993815][ T6404] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.729: bg 0: block 88: padding at end of block bitmap is not set
[   84.008722][ T6399] SELinux: failed to load policy
[   84.036515][ T6401] Falling back ldisc for ttyS3.
[   84.050704][ T6406] loop2: detected capacity change from 0 to 512
[   84.075855][ T6406] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.103858][   T29] audit: type=1326 audit(1754199216.322:2797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6383 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   84.127422][   T29] audit: type=1326 audit(1754199216.322:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6383 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   84.160507][ T6406] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.175346][ T6408] loop1: detected capacity change from 0 to 764
[   84.192709][ T6408] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   84.210290][ T6406] EXT4-fs (loop2): shut down requested (0)
[   84.238824][   T29] audit: type=1326 audit(1754199216.462:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6405 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   84.239071][ T6406] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   84.264780][   T29] audit: type=1326 audit(1754199216.462:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6405 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   84.294905][ T6406] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   84.304091][ T6406] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   84.313889][   T29] audit: type=1326 audit(1754199216.532:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6405 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523248eb69 code=0x7ffc0000
[   84.464018][ T6418] loop0: detected capacity change from 0 to 764
[   84.492894][ T6418] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   84.682396][ T6434] netlink: 12 bytes leftover after parsing attributes in process `syz.0.745'.
[   84.703666][ T6436] loop4: detected capacity change from 0 to 512
[   84.712718][ T6436] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.729997][ T6436] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.750025][ T6436] EXT4-fs (loop4): shut down requested (0)
[   84.768453][ T6436] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   84.779405][ T6436] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   84.788361][ T6436] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   84.846590][ T6436] Falling back ldisc for ttyS3.
[   84.890556][ T6443] loop4: detected capacity change from 0 to 764
[   84.902772][ T6443] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   84.979749][ T6445] loop1: detected capacity change from 0 to 764
[   84.987213][ T6445] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   85.432007][ T6451] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   85.554064][ T6458] loop0: detected capacity change from 0 to 764
[   85.582742][ T6458] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   85.617412][ T6466] loop2: detected capacity change from 0 to 1024
[   85.624086][ T6468] loop0: detected capacity change from 0 to 1024
[   85.635929][ T6468] EXT4-fs: Ignoring removed orlov option
[   85.674146][ T6468] SELinux:  policydb version -957581230 does not match my version range 15-35
[   85.683227][ T6468] SELinux: failed to load policy
[   85.692307][ T6468] EXT4-fs: Ignoring sb option on remount
[   85.692537][ T6466] SELinux: ebitmap: truncated map
[   85.698100][ T6468] EXT4-fs: Ignoring removed orlov option
[   85.705708][ T6468] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.711054][ T6466] SELinux: failed to load policy
[   85.717163][ T6468] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   85.730008][ T6468] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   85.772680][ T6474] netlink: 24 bytes leftover after parsing attributes in process `syz.4.759'.
[   85.869838][ T6479] loop4: detected capacity change from 0 to 1024
[   85.899648][ T6468] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.758: bg 0: block 88: padding at end of block bitmap is not set
[   85.919308][ T6479] EXT4-fs: Ignoring removed orlov option
[   85.934672][ T6486] loop2: detected capacity change from 0 to 1024
[   85.968450][ T6479] SELinux:  policydb version -957581230 does not match my version range 15-35
[   85.980067][ T6479] SELinux: failed to load policy
[   85.991663][ T6479] EXT4-fs: Ignoring sb option on remount
[   85.997440][ T6479] EXT4-fs: Ignoring removed orlov option
[   86.003630][ T6479] EXT4-fs: Ignoring removed nomblk_io_submit option
[   86.010555][ T6479] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   86.022021][ T6479] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   86.163466][ T6501] loop2: detected capacity change from 0 to 764
[   86.198639][ T6501] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   86.268292][ T6505] loop2: detected capacity change from 0 to 512
[   86.292075][ T6479] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.762: bg 0: block 88: padding at end of block bitmap is not set
[   86.311323][ T6505] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.331609][ T6505] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.348212][ T6505] EXT4-fs (loop2): shut down requested (0)
[   86.372669][ T6505] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   86.382736][ T6505] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   86.391814][ T6505] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[   86.456404][ T6505] Falling back ldisc for ttyS3.
[   86.572558][ T6522] ALSA: seq fatal error: cannot create timer (-19)
[   86.615397][ T6532] loop3: detected capacity change from 0 to 512
[   86.633254][ T6532] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.669223][ T6532] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.687995][ T6532] EXT4-fs (loop3): shut down requested (0)
[   86.693961][ T6538] netlink: 96 bytes leftover after parsing attributes in process `syz.2.772'.
[   86.703051][ T6538] netlink: 80 bytes leftover after parsing attributes in process `syz.2.772'.
[   86.723315][ T6538] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'.
[   86.738392][ T6532] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   86.755165][ T6532] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   86.755198][ T6532] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   86.772152][ T6540] loop1: detected capacity change from 0 to 512
[   86.790653][ T6540] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.811101][ T6540] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.821792][ T6532] Falling back ldisc for ttyS3.
[   86.836439][ T6540] EXT4-fs (loop1): shut down requested (0)
[   86.856834][ T6540] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   86.865778][ T6540] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   86.874766][ T6540] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   86.924049][ T6547] loop2: detected capacity change from 0 to 1024
[   86.931043][ T6547] EXT4-fs: Ignoring removed orlov option
[   86.946359][ T6540] Falling back ldisc for ttyS3.
[   86.960854][ T6552] loop4: detected capacity change from 0 to 764
[   86.980701][ T6547] SELinux:  policydb version -957581230 does not match my version range 15-35
[   86.990098][ T6547] SELinux: failed to load policy
[   87.005273][ T6557] loop3: detected capacity change from 0 to 1024
[   87.013277][ T6552] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   87.018876][ T6547] EXT4-fs: Ignoring sb option on remount
[   87.027031][ T6547] EXT4-fs: Ignoring removed orlov option
[   87.042256][ T6547] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.049116][ T6547] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   87.062259][ T6547] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   87.116732][ T6571] loop4: detected capacity change from 0 to 128
[   87.192476][ T6557] SELinux: ebitmap: truncated map
[   87.198749][ T6557] SELinux: failed to load policy
[   87.241930][ T6571] program syz.4.783 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   87.252380][ T6578] netlink: 'syz.1.786': attribute type 10 has an invalid length.
[   87.258524][ T6573] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.778: bg 0: block 88: padding at end of block bitmap is not set
[   87.300510][ T6583] loop3: detected capacity change from 0 to 512
[   87.307633][ T6583] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.318104][ T6578] ipvlan0: entered allmulticast mode
[   87.323542][ T6578] veth0_vlan: entered allmulticast mode
[   87.343782][ T6578] team0: Device ipvlan0 failed to register rx_handler
[   87.379012][ T6583] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.445772][ T6583] EXT4-fs (loop3): shut down requested (0)
[   87.465600][ T6583] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   87.546301][ T6583] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   87.555148][ T6583] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   87.643856][ T6607] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   87.659884][ T6607] loop1: detected capacity change from 0 to 1024
[   87.702736][ T6607] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.787: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   87.728988][ T6610] netlink: 24 bytes leftover after parsing attributes in process `syz.3.788'.
[   87.809800][ T6616] netlink: 'syz.3.790': attribute type 10 has an invalid length.
[   87.819438][ T6616] ipvlan0: entered allmulticast mode
[   87.824833][ T6616] veth0_vlan: entered allmulticast mode
[   87.852326][ T6616] team0: Device ipvlan0 failed to register rx_handler
[   87.917701][ T6623] loop2: detected capacity change from 0 to 512
[   87.932562][ T6623] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.949726][ T6623] EXT4-fs (loop2): 1 truncate cleaned up
[   87.958716][ T6623] 9pnet_fd: Insufficient options for proto=fd
[   87.992409][ T6631] netlink: 'syz.3.795': attribute type 10 has an invalid length.
[   88.002281][ T6632] netlink: 'syz.2.796': attribute type 10 has an invalid length.
[   88.010544][ T6631] team0: Device ipvlan0 failed to register rx_handler
[   88.026288][ T6632] ipvlan0: entered allmulticast mode
[   88.031656][ T6632] veth0_vlan: entered allmulticast mode
[   88.040026][ T6632] team0: Device ipvlan0 failed to register rx_handler
[   88.045784][ T6635] netlink: 88 bytes leftover after parsing attributes in process `syz.3.797'.
[   88.087699][ T6640] netlink: 24 bytes leftover after parsing attributes in process `syz.2.799'.
[   88.124578][ T6647] netlink: 'syz.2.800': attribute type 21 has an invalid length.
[   88.132938][ T6647] netlink: 132 bytes leftover after parsing attributes in process `syz.2.800'.
[   88.141965][ T6647] netlink: 20 bytes leftover after parsing attributes in process `syz.2.800'.
[   88.153822][ T6647] netlink: 'syz.2.800': attribute type 3 has an invalid length.
[   88.192559][ T6647] vlan2: entered allmulticast mode
[   88.215598][ T6654] loop3: detected capacity change from 0 to 512
[   88.223820][ T6654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.239253][ T6654] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.253385][ T6658] loop2: detected capacity change from 0 to 736
[   88.263941][ T6654] EXT4-fs (loop3): shut down requested (0)
[   88.283752][ T6654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   88.292805][ T6654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   88.303469][ T6654] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[   88.316439][ T6661] loop4: detected capacity change from 0 to 512
[   88.340926][ T6661] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.364136][ T6665] FAULT_INJECTION: forcing a failure.
[   88.364136][ T6665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.377429][ T6665] CPU: 0 UID: 0 PID: 6665 Comm: syz.2.806 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   88.377466][ T6665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.377492][ T6665] Call Trace:
[   88.377498][ T6665]  <TASK>
[   88.377505][ T6665]  __dump_stack+0x1d/0x30
[   88.377569][ T6665]  dump_stack_lvl+0xe8/0x140
[   88.377592][ T6665]  dump_stack+0x15/0x1b
[   88.377613][ T6665]  should_fail_ex+0x265/0x280
[   88.377673][ T6665]  should_fail+0xb/0x20
[   88.377746][ T6665]  should_fail_usercopy+0x1a/0x20
[   88.377770][ T6665]  _copy_from_user+0x1c/0xb0
[   88.377802][ T6665]  memdup_user+0x5e/0xd0
[   88.377828][ T6665]  strndup_user+0x68/0xb0
[   88.377861][ T6665]  __se_sys_mount+0x4d/0x2e0
[   88.377884][ T6665]  ? fput+0x8f/0xc0
[   88.377967][ T6665]  ? ksys_write+0x192/0x1a0
[   88.377989][ T6665]  __x64_sys_mount+0x67/0x80
[   88.378015][ T6665]  x64_sys_call+0x2b4d/0x2ff0
[   88.378086][ T6665]  do_syscall_64+0xd2/0x200
[   88.378108][ T6665]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.378131][ T6665]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   88.378155][ T6665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.378182][ T6665] RIP: 0033:0x7f523248eb69
[   88.378227][ T6665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.378245][ T6665] RSP: 002b:00007f5230aef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   88.378264][ T6665] RAX: ffffffffffffffda RBX: 00007f52326b5fa0 RCX: 00007f523248eb69
[   88.378354][ T6665] RDX: 0000200000000280 RSI: 0000200000000300 RDI: 0000000000000000
[   88.378370][ T6665] RBP: 00007f5230aef090 R08: 0000200000000c80 R09: 0000000000000000
[   88.378386][ T6665] R10: 000000000200004a R11: 0000000000000246 R12: 0000000000000001
[   88.378401][ T6665] R13: 0000000000000000 R14: 00007f52326b5fa0 R15: 00007ffde228f548
[   88.378422][ T6665]  </TASK>
[   88.380128][ T6661] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.438142][ T6669] loop2: detected capacity change from 0 to 512
[   88.444717][ T6661] EXT4-fs (loop4): shut down requested (0)
[   88.463054][ T6669] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.479417][ T6671] loop3: detected capacity change from 0 to 764
[   88.500289][ T6669] ext4 filesystem being mounted at /185/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.527333][ T6669] EXT4-fs (loop2): shut down requested (0)
[   88.563644][ T6671] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   88.681877][ T6661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   88.731164][ T6661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   88.734513][ T6694] netlink: 24 bytes leftover after parsing attributes in process `syz.1.810'.
[   88.770430][ T6661] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[   88.792717][ T6701] netlink: 'syz.3.812': attribute type 10 has an invalid length.
[   88.833005][ T6701] team0: Device ipvlan0 failed to register rx_handler
[   88.877015][ T6708] loop1: detected capacity change from 0 to 512
[   88.910078][   T29] kauditd_printk_skb: 311 callbacks suppressed
[   88.910093][   T29] audit: type=1400 audit(1754199221.132:3113): avc:  denied  { setopt } for  pid=6707 comm="syz.1.815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   88.939407][ T6719] loop2: detected capacity change from 0 to 512
[   88.969598][ T6726] loop4: detected capacity change from 0 to 764
[   88.978333][ T6726] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   89.006226][ T6719] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   89.053621][   T29] audit: type=1326 audit(1754199221.272:3114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.077357][   T29] audit: type=1326 audit(1754199221.272:3115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.100791][   T29] audit: type=1326 audit(1754199221.272:3116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.114054][ T6719] ext4 filesystem being mounted at /188/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.124192][   T29] audit: type=1326 audit(1754199221.272:3117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.141194][ T6719] EXT4-fs (loop2): shut down requested (0)
[   89.158019][   T29] audit: type=1326 audit(1754199221.272:3118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.187176][   T29] audit: type=1326 audit(1754199221.272:3119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.210550][   T29] audit: type=1326 audit(1754199221.272:3120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.233971][   T29] audit: type=1326 audit(1754199221.272:3121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe00b9ceb69 code=0x7ffc0000
[   89.270804][   T29] audit: type=1326 audit(1754199221.492:3122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.4.820" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe00b9ceb69 code=0x0
[   89.330320][ T6752] loop1: detected capacity change from 0 to 512
[   89.339410][ T6752] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   89.363433][ T6755] netlink: 24 bytes leftover after parsing attributes in process `syz.2.825'.
[   89.394165][ T6752] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.414488][ T6752] EXT4-fs (loop1): shut down requested (0)
[   89.429964][ T6752] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   89.440487][ T6752] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   89.450116][ T6752] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[   89.502913][ T6768] loop2: detected capacity change from 0 to 764
[   89.512934][ T6768] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   89.531724][ T6764] netlink: 'syz.3.830': attribute type 3 has an invalid length.
[   89.568339][ T5751] udevd[5751]: Failed to create symlink /run/udev/watch/1690: File exists
[   89.602229][ T6771] netlink: 'syz.2.832': attribute type 10 has an invalid length.
[   89.612722][ T6773] ==================================================================
[   89.618146][ T6771] team0: Device ipvlan0 failed to register rx_handler
[   89.620865][ T6773] BUG: KCSAN: data-race in bdev_statx / queue_limits_commit_update
[   89.635541][ T6773] 
[   89.637894][ T6773] read to 0xffff8881023a0488 of 4 bytes by task 3295 on cpu 0:
[   89.645476][ T6773]  bdev_statx+0x295/0x2d0
[   89.649845][ T6773]  vfs_getattr_nosec+0x1b6/0x1e0
[   89.654827][ T6773]  vfs_statx+0x113/0x390
[   89.659098][ T6773]  vfs_fstatat+0x115/0x170
[   89.663553][ T6773]  __se_sys_newfstatat+0x55/0x260
[   89.668627][ T6773]  __x64_sys_newfstatat+0x55/0x70
[   89.673711][ T6773]  x64_sys_call+0x135a/0x2ff0
[   89.678513][ T6773]  do_syscall_64+0xd2/0x200
[   89.683067][ T6773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.688996][ T6773] 
[   89.691352][ T6773] write to 0xffff8881023a0448 of 192 bytes by task 6773 on cpu 1:
[   89.699811][ T6773]  queue_limits_commit_update+0x4c/0x110
[   89.705489][ T6773]  loop_configure+0x79c/0xa50
[   89.710205][ T6773]  lo_ioctl+0x1e1/0x1350
[   89.714471][ T6773]  blkdev_ioctl+0x352/0x440
[   89.718989][ T6773]  __se_sys_ioctl+0xcb/0x140
[   89.723605][ T6773]  __x64_sys_ioctl+0x43/0x50
[   89.728215][ T6773]  x64_sys_call+0x1816/0x2ff0
[   89.732907][ T6773]  do_syscall_64+0xd2/0x200
[   89.737426][ T6773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.743419][ T6773] 
[   89.745743][ T6773] Reported by Kernel Concurrency Sanitizer on:
[   89.751897][ T6773] CPU: 1 UID: 0 PID: 6773 Comm: syz.1.833 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(voluntary) 
[   89.764248][ T6773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.774328][ T6773] ==================================================================
[   89.797264][ T6773] loop1: detected capacity change from 0 to 512
[   89.806331][ T6773] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   89.819376][ T6773] EXT4-fs (loop1): 1 truncate cleaned up
[   89.827880][ T6773] 9pnet_fd: Insufficient options for proto=fd