last executing test programs:

3.880048486s ago: executing program 0 (id=279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, &(0x7f0000000300), &(0x7f00000000c0)}, 0xfffffffffffffebc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='netlink_extack\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0xfffffffffffffffd)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000002000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000003000000", 0xfe60)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x81, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
r4 = socket$kcm(0x10, 0x3, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0xc)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
readv(r6, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r8)
sendmsg$NL80211_CMD_GET_WIPHY(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=ANY=[@ANYRES8=r9, @ANYRES16=r7, @ANYBLOB="01030000000000000000010000000800010014000000080003"], 0x30}}, 0x44)
r10 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
readv(r10, &(0x7f0000000800)=[{&(0x7f0000000340)=""/48, 0x30}, {0x0, 0x30}], 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r12=>0xffffffffffffffff, <r13=>0xffffffffffffffff})
splice(r11, 0x0, r13, 0x0, 0xf3a, 0x0)
close(r12)

3.460170608s ago: executing program 3 (id=281):
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x28, 0x0, 0xc4fc9e906872338b, 0x70bd27, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0x4, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x8, 0x11d, 0x0, 0x1, [{0x4}]}]}, 0x28}}, 0x40000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x80, &(0x7f0000000140), 0x1, 0x4dd, &(0x7f0000000240)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_settime(0x0, 0x0, 0x0, 0x0)
unshare(0x64000600)

2.869639052s ago: executing program 4 (id=287):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="040000"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r2}, 0x18)
setgid(0x0)
r3 = socket(0x1d, 0x5, 0x3)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000080), 0x4)
socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r4 = msgget$private(0x0, 0x220)
msgctl$IPC_SET(r4, 0x1, &(0x7f00000004c0)={{0x0, 0xee00, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xb, 0x6f76, 0x7, 0x0, 0x1, 0x8, 0x7f, 0x3, 0xffffffffffffffff})
socket(0x10, 0x3, 0x0)
setuid(0x0)
r5 = getgid()
lchown(0x0, 0x0, r5)
newfstatat(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x4000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
eventfd(0x0)
setreuid(r6, r6)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")

2.741824883s ago: executing program 0 (id=288):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = socket(0x2, 0x80802, 0x0)
sendmsg$inet(r1, &(0x7f0000000140)={&(0x7f00000005c0)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @local}}}, @ip_retopts={{0x10}}], 0x30}, 0x1c880)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r4, 0x0, 0x3}, 0x18)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/diskstats\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000000180)=""/73, 0x49, 0xac8c)

2.662331584s ago: executing program 0 (id=290):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

2.634441274s ago: executing program 0 (id=291):
syz_io_uring_setup(0x41c2, &(0x7f0000000600)={0x0, 0x0, 0x200, 0xffffffff, 0x2e6}, &(0x7f0000000540)=<r0=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000580)=0xffffffff, 0x0, 0x4)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_debug_messages', 0x42, 0x0)
read$watch_queue(r2, &(0x7f0000000900)=""/119, 0x77)
copy_file_range(r2, 0x0, r2, 0x0, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x200000000000003d, &(0x7f00000008c0)=ANY=[@ANYRESHEX=0x0, @ANYBLOB="9093a57bef44db6f93a2679a3aa390a7c0514021e3b7", @ANYRES8=r3], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$kcm(r2, &(0x7f0000000e80)={&(0x7f0000000980)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3}, [@null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast]}, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000a00)="dbf0425312b6437dabd7a6bb53d195bcf50f771eed0d8dca8fa1b43423fb7b90bb8bce9f56e8c6738a2ce1fc7552190669f4effbee54d482197aa383e40871c6ca52b1a9419e46fb11b6c55c6f87a880093d38b2a665842482be71d5f7a3f1272d7908c98674c30ba15207e210e87c5f1bbcaeecb4abe87c9a07e2e95af9fa7922f66d2214443052be6d6536997a4c68fe51ce6b06e42c19b4b8151b7a6c92728ccaaf686681db1fb48319253bb3746504", 0xb1}, {&(0x7f0000000ac0)="9c8bcc0d9337d77d5d7909c9e74c2fa1e6e6363f12281805af0b57d42575aca3f6b09945170bd8aabc96f2eec6f2c9dc453d1649f964297e6fc54dc5264d320cf4f4feac952448da62d0fda7653a33d35074f16a5e08e144c38821218d08ff0fda042fd15952662386073852cf705662a27d464e7f16156faed0d74333b25872d680559e4ca9af0ffecaba0d62a0b74811e52457c323302763e5f83d937a", 0x9e}, {&(0x7f0000000b80)="f535e2b01414646310a0a0911c4e46d740f64369aaf7972db936a369e0a111c0c76bc2011ea81ab9a27430fa7087a4c73fcec1f90c1241cb360e30b081dfeebaa442c796e18d35100c38b4967a2316a867a42747b551fd3b4fde6ecd1e35e59515ffd75406fdce26c3fc1de102cd8903805ea230a21656ef2043e154e5b81ddfca23b1d3c469501ca770817b98afe8a49b4ca7b45d526f4090f9b904d8b1", 0x9e}, {&(0x7f0000000c40)="63972c61a45356864ae074e4adf8110026a822acbf5b034e47c468c05c8f06d566ca6601043842ac9e2dd9acf2b3dd6fd9aba624684c286b5e324ec8dde5f2fa8c2807b90c47ccf1b764e597bef840911ce097d42dd6ce7127f773e1ba57cf6735f8cd95b0093b3c54640a85e51edf1a92a949f12f3880f8f9863af5efe21a1e6dd3a9dd25ea6c75f89bc1e73c9c", 0x8e}, {&(0x7f0000000d00)="3cfdd982622a218d009f547e5b3efdbcb88d41f1ce2cca7c2d8b27e6b98b48a02d770ce7d5e7bb5a5821714d4aa92a13665ef310b5e982d2ab79b7e8e4b6e4fc7ad7c42610386a3350", 0x49}, {&(0x7f0000002c40)="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", 0x1000}, {&(0x7f0000000d80)="802bba791b523775e98fe235fa96aeec9da1bfebc37b91ee356c28e6e878d304a0c30b6dd041f3f17d2b8fbf358d9023a20fc8e37e3806507903576abc3737c63982fc45eb23d3eb64c481557b2da0bfb77b2213aaad5bf871bbfa", 0x5b}], 0x7, &(0x7f0000002200)=ANY=[@ANYBLOB="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"], 0x468}, 0x20000840)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ustat(0x8000000000000001, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="52d5d5aed8f8b42bf545ccc543b56485354ff8a3cdd165262c04be505f891f44877aff93aa4a35ea4a6914f8a15a429e7d67d9e0fac17177d8a8ac860e6aa3092c2e6141a8987c04230e7ff55ae70207fd481e9e3f184dcf0d71764ab9428b2661cd385c167544be0dbc0b7e622fc56ab37025304bd4f12425b3e4f80bba495c9deee1d8a1a5d9ce444bbdda2767a3479e3913d4598c45db0d9a0571f9728a5c0c38d5c645b88c30cc0ebec1b1f0aa4effc8f9efeb93e322686987c6040bc219aaa7f607ac45d5a5ccfa10f1030f24315a22b17e8a94c49273"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc8a}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x21409e, &(0x7f0000000ec0)={[], [{@obj_role={'obj_role', 0x3d, '\x00'}}]}, 0xfe, 0x501, &(0x7f00000040c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x40810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000400)='afs_cell\x00', 0xffffffffffffffff, 0x0, 0x1200007}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESHEX=r2, @ANYRES8=0x0, @ANYRES32], 0x50)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@fallback, 0x0, 0x1, 0x6, &(0x7f0000001000)=[0x0], 0x1, 0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000580)}, 0x40)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x4, 0x0, 0x0, 0x0, 0x1, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbfdffffe, 0x2, @perf_config_ext={0x2, 0x8000000000000000}, 0x1, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x4, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xa, 0xffffffffffffffff, 0x2)
syz_open_dev$usbfs(0x0, 0xffffffffffffffff, 0xa82)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)

2.584518054s ago: executing program 0 (id=293):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ff9}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="04000000050000000000000000000000747ab8b9a5d6cab18e000000"], 0x50)
alarm(0x9)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xfffff024}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newtaction={0xd4, 0x30, 0x48b, 0x1, 0x0, {}, [{0xc0, 0x1, [@m_ctinfo={0x50, 0x2, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x1, 0x80000001, 0x0, 0x9, 0x5}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7fffffff}]}, {0x4}, {0xc}, {0xc}}}, @m_connmark={0x6c, 0x4, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0xffffffff, 0x5, 0x8, 0xffff38f4}, 0x7567}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x10001, 0xbdfc, 0x8, 0x5, 0x3}, 0x401}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r3)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

2.524749304s ago: executing program 3 (id=294):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = socket(0x2, 0x80802, 0x0)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f00000005c0)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @local}}}, @ip_retopts={{0x10}}], 0x30}, 0x1c880)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/diskstats\x00', 0x0, 0x0)
pread64(r2, &(0x7f0000000180)=""/73, 0x49, 0xac8c)

2.442652765s ago: executing program 3 (id=295):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7da, &(0x7f0000000fc0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)={'#! ', '', [], 0xa, "1fe14a0848b6c24c5c51220fec2614306f09fe51a349644a16bd0c7d1115c06e15971ca16be517de137888244ec8b7ef9806b8bb5ecfcda0c67981b47ba5454e0f420b56c4e209a88d"}, 0x4d)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={&(0x7f0000000040)="0a7ef99c1167f0bdb1883d41b663e9a31108b8e0bf311fddc9bbf5ec2b4577d37044cb6f523dd844775d5568377035e8fd42f5b26568108dded1ca", &(0x7f0000000280)=""/245, &(0x7f0000000380)="e76703a3aa109fff32842548ebc907cf37293727404b5a71c757e1d375f30deea9f0451fae657bca29ffbbaa3d598434f0f80097beefe6893473272291624ccdde72cbd457a5e41a0b0f75c5b287a67732bd9b8b1baf928d2b662b6a45bf8e989c5b72d5283b0376da6a798f7293", &(0x7f0000000080)="4c67e868caa439f9008ef4efbb115548947b6a617219cadf87b92bd82b", 0x6, r0}, 0x38)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x8081)
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000180)='kfree\x00', r6}, 0x18)
recvfrom$inet(r0, &(0x7f0000000480)=""/196, 0xc4, 0x40000000, &(0x7f0000000580)={0x2, 0x4e23, @loopback}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
lsetxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000280)=ANY=[@ANYBLOB='security.'], 0x0, 0x0, 0x1)
rmdir(&(0x7f0000000000)='./file0\x00')
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020025797a31000000000900010073797a3000000000080005400000001c"], 0xe8}}, 0x0)

2.383807665s ago: executing program 4 (id=297):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000007c0)={0x400000000000000, 0x0, &(0x7f0000000700)={&(0x7f0000001900)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00000000000000000000000000000000432e0000000000000000000000000008001200000002000000f1edc4ea00000600000000000000000000000000000000000000000000000000000000000000fc01000000000000000000000000810005000600000000000a00000000000000ff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x40080)

2.257519026s ago: executing program 4 (id=299):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3, 0x0, 0x7fff}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
futex(&(0x7f0000004000)=0x1400005, 0x5, 0x0, 0x0, &(0x7f0000004000), 0xb301fffd)
move_mount(r5, 0x0, r4, 0x0, 0x46)
close(r4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0)={<r6=>0x0})
connect$pppoe(r5, &(0x7f0000000140)={0x18, 0x0, {0x4, @broadcast, 'dvmrp0\x00'}}, 0x1e)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000040)={r6, 0x272, 0x63})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})

2.076434647s ago: executing program 1 (id=302):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1.991001028s ago: executing program 1 (id=303):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000d00)={[{@delalloc}, {@nombcache}, {@barrier}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x8}}, {@resgid}, {@data_err_ignore}, {@noblock_validity}, {@nobh}, {@commit={'commit', 0x3d, 0xf}}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000780)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r0, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x3c8a411}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="e35d0400", @ANYRES16=r1, @ANYBLOB="000329bd7000fedbdf25060000000500300001000000080034000600000008000b0002000000050033000200000005002f0000000000050037000100000005002a000000000008003c0003000000"], 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x60840, 0x38)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8080}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey62WYTazaZ2P18YLPPM/PszvebeXv2eXYD6FpD2Z8kYkdE/BoRA43q0gZDjafrV89P3rh6fjKJhYXX/kjydteunp8sm5av215UhtOI9MOk2MhSs2fPnZyo12tnivro3Km3RmfPnnvinVMTJ2onaqfHjxw5fGjs6afGn+xInlle1/a9P7N/74tvXHp58tilN3/8Oot3R7G+OY9OGcoS/3Mh17ru0U5vrGI7m8pJb4WBcFt6IiLbXX35+T8QPXFz5w3ECx9UGhywrrJ705b2q+cXgDtYElVHAFSjvNFnn3/LxwZ1PTaFK882PgBleV8vHo01vZEWbfpaPt920lBEHJv/6/PsEes0DgEA0Ozjyc+O9kfEeze+einrewwsrknjnvz5t/zvrmIOZTAi/h8RuyPirojYExF3R+Rt742I+9YYz639n/TyGt9yRVn/75libmtp/6/s/cVgT1HbmefflxyfrtcOFv+T4ejbktXHVtjGt8//8km7dc39v+yRbb/sCxZxXO5tGaCbmpibyDulHXDlYsS+3uXyTxZnApKI2BsR+27vrXeVhenHvtzfrtHq+a+gA/NMC19k6c1n+c9HS/6lpHl+cvqW+cnRrVGvHRwtj4pb/fTzR6+22/6a8u+AK7XGc9P+b20ymDTP1852dvv/8vhP+5PX83nm/mLZuxNzc2fGIvqTo3l9yfLxm68t62X77PgfPrD8+b+7eE2W//0RkR3ED0TEgxHxUBH7wxHxSEQcWCHHH55bPf9IK9r/FyOmlr3+LR7/Lfv/9gs9J7//pt32/9n+P5yXhosl+fVvFcuFk10uWgNcy/8OAAAA/ivS/DvwSTqyWE7TkZHGd/j3xP/S+szs3OPHZ94+PdX4rvxg9KXlSNdAMR5an67XxpL54h0b46PjxVhxOV56qBg3/rRnW14fmZypT1WcO3S77W3O/8zvPVVHB6yzbcsuHe/f8ECACrTOo6dLqxdeCRcDuFP5vTZ0r1XO/3Sj4gA2nvs/dK/lzv8LLXVzAXBncv+H7uX8hy6Vfld1BECF3P+hK63ld/3rWNi6OcKoprBZd0peiCgL6aaIR2GdClVfmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrj7wAAAP//KFzmgQ==")
r4 = inotify_init1(0x800)
inotify_add_watch(r4, 0x0, 0xe10000be)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, 0x0, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, 0x0)
ioctl$PPPIOCSMAXCID(r6, 0x40047451, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
syz_emit_ethernet(0x1f, &(0x7f0000000180)={@random="5d950784f28b", @random="623d87a2a1de", @void, {@llc_tr={0x11, {@snap={0xaa, 0x1, "e3", "0541e4", 0x6, "2477ddd2d0ec4bdc01"}}}}}, 0x0)

1.889367838s ago: executing program 4 (id=305):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
fcntl$setlease(r0, 0x400, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)

1.886188078s ago: executing program 4 (id=306):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000008000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x10)
fcntl$setlease(r2, 0x400, 0x0)
utime(&(0x7f0000000300)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020047b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000020000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r4}, 0x18)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28, 0x0, 0x3}, 0x28)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r5, 0x0, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r6, 0x3, '\x00', 0x0, r5, 0x3, 0x80}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x0, 0x0, 0x0, 0x5}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x281442, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r8, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r7, {0x2}}, './file0\x00'})
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_RTHDR(r9, 0x29, 0x39, &(0x7f00000000c0)=ANY=[@ANYBLOB="2300030000000000"], 0x8)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0)
ioctl$TCSETSW2(r10, 0x5453, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r12, 0x0, 0xffffffffffff8001}, 0x18)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
r13 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r13, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
lseek(r13, 0x5, 0x4)
socket$nl_route(0x10, 0x3, 0x0)

1.64786651s ago: executing program 3 (id=308):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x2}]}]}, 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r3 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x2, 0x571, &(0x7f0000000780)="$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")
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000500)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=ANY=[@ANYRES32=0x0, @ANYBLOB="0c4960d6359c51a6830ee240e6923d58a16547a881148d0fd658aaa0f9464ee2d4fb2977b79a4f9973b4fb246d61d78dcecafac90a183eae2fe868ab9128a3301e940f4a68d1b03288b579854d29890575e666a387d9dad190187131ed1c5c98", @ANYRES8=r3, @ANYRES32=r7], 0x4c}, 0x1, 0x0, 0x0, 0x44001}, 0x0)
sendmmsg$inet(r5, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @empty, @dev={0xac, 0x14, 0x14, 0x27}}}}], 0x20}}], 0x1, 0x80)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010004000000000004000500a9930000100000000000000020"], 0x24, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x511a01, 0x80)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000006c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x2, [@const={0x0, 0x0, 0x0, 0x9, 0x3}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x55}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x2, 0x9}}]}}, 0x0, 0x66, 0x0, 0x0, 0x0, 0x10000}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffff6}, 0x18)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r11 = socket(0x10, 0x803, 0xe313)
sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001400b59500000001000000000a000000", @ANYRES32=r10, @ANYBLOB="1400020000000000000000000000ffff000000000800080010050000"], 0x34}}, 0x0)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r13, 0x107, 0x12, &(0x7f00000000c0)={0x4, 0x2}, 0x4)
sendmsg$nl_generic(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000034c0)={0x14, 0x36, 0x107, 0x3, 0x2000000, {0x1, 0x7c}}, 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)

1.430667881s ago: executing program 1 (id=310):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000300)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7bd, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r2, 0x0, 0x1034}, 0x18)
fgetxattr(r3, &(0x7f0000000000)=@known='system.posix_acl_default\x00', 0x0, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000400)=ANY=[@ANYBLOB="810456feed489c2620223f689d"], 0x0)

1.330903092s ago: executing program 1 (id=311):
r0 = socket$packet(0x11, 0xa, 0x300)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64=r2, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r3, &(0x7f0000000200)='.\x00', 0x8000, &(0x7f0000001dc0)={0x81, 0x0, 0x80000}, 0x20)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r5, 0x0, 0x800000000006}, 0x18)
r6 = gettid()
rt_sigqueueinfo(r6, 0x21, &(0x7f0000000000))
openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x109000, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x4008032, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xb30, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r8}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
fallocate(r9, 0x0, 0x0, 0x1000f4)
io_setup(0x7d, &(0x7f0000000600))
dup2(r0, r1)

1.063528514s ago: executing program 0 (id=314):
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000"], 0x48)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="05000000070000000700000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
io_getevents(0x0, 0x400000000200, 0x0, 0x0, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r3, &(0x7f0000000040)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e21, 0xb8, @rand_addr=' \x01\x00', 0xfffffffb}}, 0x24)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x24040, 0x10)
truncate(&(0x7f0000000000)='./bus\x00', 0x9471)
finit_module(r4, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r5 = socket$inet(0x2, 0x3, 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)
shutdown(r5, 0x0)
unshare(0x40200)
r6 = semget(0x1, 0x4, 0x39c)
semop(r6, &(0x7f0000000080)=[{0x1, 0x8001, 0x1000}], 0x1)
semop(r6, &(0x7f0000000000)=[{0x3, 0xbbdd, 0x1000}, {0x2, 0x100, 0x800}], 0x2)
semctl$SETALL(r6, 0x0, 0x11, &(0x7f0000000140)=[0x6, 0x7fff])
unshare(0x40400)

883.016065ms ago: executing program 4 (id=316):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
syz_clone3(&(0x7f0000000740)={0x8180080, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[0xffffffffffffffff], 0x1}, 0x58)
r1 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000100)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@dioread_lock}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$eJzs3M9rXOUaAOD3nGaa/si9kwt3ce+mCi20UDpJmk27Mm7ETaFQcFtDMgkhJ5mSmdQkFpq6E4TabFQE0b1Lt0Kpf4A7KSi4F0RrXKibkTOZTNt0Zjptk04bnwdO5vvOfN9533dm8uUcyJkA/rFezX8kEUMRcTEiis39aUQcbLQORaxvjdu8d20q35Ko1y/9kuTTYrNebB0raT4ejcaU+F9E3ClEnH7v0bjV1bX5ySwrLzX7I7WFKyPV1bUzcwuTs+XZ8uLY+PnRc+Pj50bHd63WE2+dP3zr2zc2Nr77qnbz2MCZJCYadUeztl0L9ICt16QQEzv2L+5FsD5Kehgz8BzyAACgu/w8/0Dz3KwQxTjQ7SzNCRwAAAC8lOqD9V792fNIAAAA4AWTRL8zAAAAAPbW9v8BbN/bu1f3wXby8+sRMdwu/kDjHuKIQ1GIiCObyUO3HyRb0+CZrN+IiNsTbT5/vdzR3N3o/ebh3Tkiu+12vv5MtFt/0tb6E23Wn4Ht7054Rp3Xv/vxD3RY/y72GOPrz/5f6Bj/RnXl/WPt4iet+EmH+G/3GP/mxge3Oj1X/yLiZNu/P8lDsbp8P8TIzFzW7lerle6dv07d7Vx/xJFH4idJI2rSvf4rPdb/7uZv8+td4p863v3934o/+NC8/DPxYTOPNCJuNR/z/saOGMcXvv/m0cjJ+nb86Q6vf/v3/81W/Z/3WP+PXw6u9DgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGtKIGIokLbXaaVoqRRyNiP/GkTSrVGunZyrLi9P5cxHDUUhn5rLyaEQUt/pJ3h9rtO/3z+7oj0fEf344vBV0LiuXpirZdL+LBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOVoRAxFkpYiIo2I34tpWir1OysAAABg1w33OwEAAABgz7n+BwAAgP3vaa//k13OAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjXLl64kG/1zXvXpvL+9NXV5fnK1TPT5ep8aWF5qjRVWbpSmq1UZrNyaaqy8LjjpRExdj6WV0Zq5WptpLq6dnmhsrxYuzy3MDlbvlwuPJeqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFJDjS1JSxGRNtppWipF/CsihqOQzMxl5dGI+HdE3C0WBvP+WL+TBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNdVV9fmJ7OsvPRyN+r7q5yeG5FEvABpdGh80nxXuo1J1iP6nmraTPRZjhPxJLOuP+Zl6XfjlT6tRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9Fd1dW1+MsvKS9V+ZwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB/pT8lEZFvJ4snhnY+ezD5o9h4jIh3Pr300cpkrbY0lu//tbW/9nFz/9kHJl5/njUAAADAvvfakwzevk7fvo4HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoVXV1bX4yy8pLe9iIG/2uEgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBp/BwAA//9Js7nR")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
recvfrom$l2tp6(r2, &(0x7f0000000340)=""/18, 0x6b, 0x2220, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x20)
write$P9_RREADLINK(r2, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000f40)=ANY=[], 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00fd583bf43affffff0000"], 0x48)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc0000000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0014000004000000000000000000000000000000000000000000b13a7b511c"], 0x50)
ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000300)={'veth0_vlan\x00', 0x840b})
write(r1, &(0x7f00000001c0)="b5890f4555fb7fb05a4bd3d0f763c639913231bf2fd4fcb4603b27141816285c33f498a6607b20d5c2ea41042c12ce822279fa2865114682a5b9295be7de43f5bfe883782b5926547a222f4d0e52b0471b3463a44ea5c993ae62d5ba0693e6970c067b08f972b5663b32154a60660edbe4938f36960dd5b31623901324d436109aedd85ce0fe931d1797577656653575260a85e5747ff1eedfbcd340183acf223970114e7d6143", 0xa7)
syz_open_dev$evdev(&(0x7f0000001380), 0x1, 0x20442)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)

818.058495ms ago: executing program 3 (id=318):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000300)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kfree\x00', r5}, 0x18)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000040)={0x3ffffffffffffe96, &(0x7f0000000000)=[{0x2020, 0x5}]})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r8)
getsockname$packet(r8, &(0x7f0000000680)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r8)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f00000005c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000500)={&(0x7f00000007c0)={0x13c, r10, 0x300, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7f142597}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5428}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xaf6f}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xa}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6c}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffa}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2f5f}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x804}, 0x42840)
sendmsg$nl_route_sched(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, r9, {}, {0x1}, {0x4, 0x3d}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0x1}}}, 0x24}}, 0x10)

697.273536ms ago: executing program 2 (id=319):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000300)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kfree\x00', r5}, 0x18)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000040)={0x3ffffffffffffe96, &(0x7f0000000000)=[{0x2020, 0x5}]})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r8)
getsockname$packet(r8, &(0x7f0000000680)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r8)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f00000005c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000500)={&(0x7f00000007c0)={0x13c, r10, 0x300, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7f142597}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5428}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xaf6f}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xa}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6c}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffa}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2f5f}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x804}, 0x42840)
sendmsg$nl_route_sched(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, r9, {}, {0x1}, {0x4, 0x3d}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0x1}}}, 0x24}}, 0x10)

560.850907ms ago: executing program 3 (id=320):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x42, 0x61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

369.348758ms ago: executing program 2 (id=321):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000700000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x34, r2, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000001200)='./file0\x00', 0x21081e, &(0x7f00000001c0)={[{@nodelalloc}, {@oldalloc}, {@usrjquota}]}, 0x1, 0x506, &(0x7f00000009c0)="$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")

155.14523ms ago: executing program 2 (id=322):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
write$tun(r0, &(0x7f0000000640)={@val={0xa, 0x10}, @void, @eth={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}, @void, {@ipv6={0x86dd, @udp={0x3, 0x6, "501c44", 0x1b3, 0x11, 0x0, @mcast1, @mcast1, {[@hopopts={0x3b, 0x0, '\x00', [@ra={0x5, 0x2, 0x4e}]}, @routing={0x32, 0x8, 0x2, 0x4, 0x0, [@private0, @remote, @loopback, @remote]}, @hopopts={0x0, 0x1, '\x00', [@ra={0x5, 0x2, 0x63}, @ra={0x5, 0x2, 0x7}]}, @dstopts={0x89}, @srh={0x2c, 0x4, 0x4, 0x2, 0x9, 0x40, 0x7fff, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}, @routing={0x5e, 0x10, 0x1, 0x9, 0x0, [@private1, @private1={0xfc, 0x1, '\x00', 0x1}, @private1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @local, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback]}], {0x4e21, 0x4e24, 0x93, 0x0, @gue={{0x1, 0x0, 0x2, 0x3, 0x0, @void}, "f52c22b9b41c98056bff9ee6b7a41034b748a2b187b5cacf19e6391e6a1d6db2862a58b578d7423df660a1f5e2980b1e152cf85917a9e682fa334c00a64784958db6b24ce6aea92ce7d05fca4f9f7bbeed2127572ee7f28c03db95bdc8c6d6afe43abeaa01ee06fb3c1d0f9fecf3381b1149eb235921c7f84c56b5c23627bf8bc71a008e67525d"}}}}}}}}, 0x1ed)

137.64543ms ago: executing program 1 (id=323):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x9}, 0x18)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@ipv4_newaddr={0x18, 0x14, 0x121}, 0x18}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000140)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000200)="00001f4fa367", 0x0, 0x800004, 0x10030, 0x1, 0x0})
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="275bd9cb63f28d27ca7600bb810b602ea1b1286151d067ad1eae111663c70bc5b017052c260d4f3497ec68ffbcc047862f22f3252705b5038168f6567b0d7ab963ae7d70a1e82a14e98ea307d8910d5a23579c4e8cf870b1bc870ece2f3f162b9bf626d6b639a9af8276f89b36e08fc967cf4eb2ae8172ecccd397725d58d71fdbddec147d93dce9f9e7a3e573d0c0fe2a6622eea65328792815c9bf4ad6904b5d80a152be8d77ccb7646a60a92b5a9dc1824cddd14ca9fdc39092e9b03386aa43a32d9e940b8524909f89065a6212bc6a3ad926445bdb0e1400fd87c4f37985f0a962af12e86d69b84bac5b0000"], 0x50)
pread64(r2, &(0x7f0000000cc0)=""/147, 0x93, 0xfa35)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bond0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}, {0x2, 0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x8, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x2]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x5}]}}]}, 0xa4}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r4, 0x89f2, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000500)={'syztnl1\x00', r6, 0x20, 0x7800, 0x1, 0xc0, {{0x47, 0x4, 0x2, 0x2d, 0x11c, 0x65, 0x0, 0x9, 0x2f, 0x0, @remote, @local, {[@cipso={0x86, 0x26, 0x0, [{0x0, 0xa, "1b46d1f9a0d58d11"}, {0x0, 0x12, "4402c6968c91396360dd13d1f36db642"}, {0x7, 0x4, "f1a8"}]}, @generic={0x82, 0x9, "7fcd1ddf7e6717"}, @ssrr={0x89, 0x1b, 0x43, [@private=0xa010101, @private=0xa010101, @empty, @loopback, @multicast2, @multicast1]}, @cipso={0x86, 0x34, 0x2, [{0x0, 0x7, "6cc562eac5"}, {0x2, 0xa, "b6b86de5e7303538"}, {0x0, 0x3, "83"}, {0x0, 0xf, "fcec5242138a21b7882ad22a76"}, {0x1, 0xb, "a622471d2aa5b38f02"}]}, @cipso={0x86, 0x15, 0xfffffffffffffff8, [{0x2, 0xf, "89125b6f6fa81a59d989639a10"}]}, @cipso={0x86, 0x3f, 0xffffffffffffffff, [{0x6, 0xe, "1e8ca5207294192a0598c7f9"}, {0x7, 0xf, "30e20602bfe8f0e5bf9bf9ab62"}, {0x5, 0xa, "337e53144f92a77b"}, {0x0, 0xb, "3e3c329cc41cc4f8a4"}, {0x7, 0x7, "e8e81c0bbb"}]}, @ra={0x94, 0x4, 0x1}, @end, @cipso={0x86, 0x30, 0x95a0e077e1f4a12c, [{0x7, 0x6, "37615bc9"}, {0x2, 0x12, "dbd9c390b565b9906ed5d66501169afa"}, {0x2, 0x4, "b0be"}, {0x7, 0xe, "61fd42b219ddc6273dfbf49d"}]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d621ffbc9a4fd39b0631f6dde53a9a53608c10556e5734eb84049761471ce540c772e2d9f8004e26f7fcc059c062234d5595f6dba87b81d0806fb0289ce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d70300000000000000d9b912ef9f1dcc4ff8546fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f231b6d753a7be428ba953df6c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8a9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2a9e99e30816127f46a1aae33d4d63d716c0975e1ce4a655362e7062ff6ab3934555c0184021b829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47910000118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8be1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f80492461d273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c528df8000000d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b1e152ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d1bfa928e2ba458ecd989cb3581a3f270ad48255ac0dad4923e3e36629589ff6b0ceb3438e4b432dd454c04be2d538aaa072b5d7f0a349f1a75f01b5c203d4bdde6ff12de9a3ad97e2edefb5e0b0326bd25f6fd1d108efa9d30a98838156ff00000000000000cdbf91f7582ab314be3e67b8c9459564c856339a80919ecf839560c62e69df8667b274cc53f83f2086cfd2664252471fad9081824d60741d663ee258705c364e162b84a09870acd0a19399103474444f4fa12dcbd10b40195b6088513029b60a34e4161fe48c092693eb07dc8ddcba2eac2efe30b285a877c862c73ff8a60cf73f1b17da0000000000005664181c1f28cd2880e6872bae932eaf4b0000000000007b662c0fe22cfd6d4bd7b851ae928cebeec6375b16af342e93c39d97e5d74d5a8e96c15fdcde7526b0af54b145e61b042c1e600390590a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)
bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000040)={r8, 0xffffffffffffffff, 0x10, 0x0, @val=@iter={0x0}}, 0x20)

90.4588ms ago: executing program 2 (id=324):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ff9}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="04000000050000000000000000000000747ab8b9a5d6cab18e000000"], 0x50)
alarm(0x9)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xfffff024}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newtaction={0xd4, 0x30, 0x48b, 0x1, 0x0, {}, [{0xc0, 0x1, [@m_ctinfo={0x50, 0x2, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x1, 0x80000001, 0x0, 0x9, 0x5}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7fffffff}]}, {0x4}, {0xc}, {0xc}}}, @m_connmark={0x6c, 0x4, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0xffffffff, 0x5, 0x8, 0xffff38f4}, 0x7567}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x10001, 0xbdfc, 0x8, 0x5, 0x3}, 0x401}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1cfaaf00", @ANYRES16, @ANYBLOB="030301000000000000000600000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x8084)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

58.50589ms ago: executing program 2 (id=325):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300), 0x106, 0x8}}, 0x20)
close_range(r1, r1, 0x0)

54.78639ms ago: executing program 1 (id=326):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xe, 0x4, &(0x7f0000000340)=ANY=[@ANYRESHEX=r0], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @sk_skb=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mm_page_free\x00', r2, 0x0, 0xfff}, 0x18)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f00000000c0)=0x7)
syz_open_procfs(r3, &(0x7f00000001c0)='net/netfilter\x00')
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000400)='./file0\x00', &(0x7f0000000000), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)
getitimer(0x2, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r5}, 0x38)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x29, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x4e8, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)
ftruncate(r1, 0x5)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0}, 0x28)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0xffffe000)

0s ago: executing program 2 (id=327):
r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r2)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'})

kernel console output (not intermixed with test programs):

e } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   38.112447][ T3493] loop0: detected capacity change from 0 to 512
[   38.117467][   T29] audit: type=1400 audit(1762770439.119:136): avc:  denied  { setopt } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   38.124429][ T3493] ext4: Unknown parameter 'obj_role'
[   38.142843][   T29] audit: type=1400 audit(1762770439.149:137): avc:  denied  { create } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.168336][   T29] audit: type=1400 audit(1762770439.149:138): avc:  denied  { write } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.188395][   T29] audit: type=1400 audit(1762770439.149:139): avc:  denied  { read } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.208355][   T29] audit: type=1400 audit(1762770439.149:140): avc:  denied  { create } for  pid=3481 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   38.246425][ T3325] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.253834][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.312585][   T29] audit: type=1400 audit(1762770439.159:141): avc:  denied  { allowed } for  pid=3492 comm="syz.0.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   38.331721][   T29] audit: type=1326 audit(1762770439.159:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3492 comm="syz.0.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   38.373452][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.382911][ T3497] can: request_module (can-proto-3) failed.
[   38.413590][ T3497] loop2: detected capacity change from 0 to 2048
[   38.436189][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.460875][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.494962][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.533553][ T3508] loop4: detected capacity change from 0 to 1024
[   38.557788][ T3307] Alternate GPT is invalid, using primary GPT.
[   38.564313][ T3307]  loop2: p2 p3 p7
[   38.566073][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.580126][ T3508] =======================================================
[   38.580126][ T3508] WARNING: The mand mount option has been deprecated and
[   38.580126][ T3508]          and is ignored by this kernel. Remove the mand
[   38.580126][ T3508]          option from the mount to silence this warning.
[   38.580126][ T3508] =======================================================
[   38.626833][ T3516] loop3: detected capacity change from 0 to 512
[   38.639517][ T3497] Alternate GPT is invalid, using primary GPT.
[   38.645882][ T3497]  loop2: p2 p3 p7
[   38.650426][ T3516] EXT4-fs: Ignoring removed nobh option
[   38.675118][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.684943][ T3508] EXT4-fs: Ignoring removed nobh option
[   38.696270][ T3516] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   38.717013][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.755121][ T3508] EXT4-fs: Ignoring removed bh option
[   38.761284][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.783807][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #3: comm syz.3.4: corrupted inode contents
[   38.808053][ T3508] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   38.822234][ T3516] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #3: comm syz.3.4: mark_inode_dirty error
[   38.841610][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   38.852565][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #3: comm syz.3.4: corrupted inode contents
[   38.868887][ T3508] EXT4-fs (loop4): can't mount with commit=, fs mounted w/o journal
[   38.938410][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   38.946250][ T3516] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.4: mark_inode_dirty error
[   38.950232][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   38.989939][ T3508] loop4: detected capacity change from 0 to 512
[   38.998551][ T3516] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.4: Failed to acquire dquot type 0
[   39.026532][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.4: corrupted inode contents
[   39.032257][ T3508] ------------[ cut here ]------------
[   39.043694][ T3508] EA inode 11 i_nlink=2
[   39.044040][ T3508] WARNING: CPU: 1 PID: 3508 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x36a/0x380
[   39.058634][ T3508] Modules linked in:
[   39.062633][ T3508] CPU: 1 UID: 0 PID: 3508 Comm: syz.4.5 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   39.072278][ T3508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   39.082395][ T3508] RIP: 0010:ext4_xattr_inode_update_ref+0x36a/0x380
[   39.089060][ T3508] Code: 90 49 8d 7e 40 e8 c6 fc b8 ff 4d 8b 6e 40 4c 89 e7 e8 da f7 b8 ff 41 8b 56 48 48 c7 c7 83 d1 55 86 4c 89 ee e8 47 f8 67 ff 90 <0f> 0b 90 90 e9 ff fe ff ff e8 c8 e5 b5 03 0f 1f 84 00 00 00 00 00
[   39.099659][ T3516] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #16: comm syz.3.4: mark_inode_dirty error
[   39.108738][ T3508] RSP: 0018:ffffc900029bf5a0 EFLAGS: 00010246
[   39.126209][ T3508] RAX: 2821f287c2b9d900 RBX: ffff88811ac0e468 RCX: 0000000000080000
[   39.134253][ T3508] RDX: ffffc90006e9d000 RSI: 000000000001742d RDI: 000000000001742e
[   39.142304][ T3508] RBP: 0000000000000002 R08: 0001c900029bf427 R09: 0000000000000000
[   39.150334][ T3508] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88811ac0e418
[   39.158385][ T3508] R13: 000000000000000b R14: ffff88811ac0e3d0 R15: 0000000000000001
[   39.166422][ T3508] FS:  00007faf1fb4f6c0(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000
[   39.175487][ T3508] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   39.182174][ T3508] CR2: 00007f22d482a000 CR3: 000000011b5d0000 CR4: 00000000003506f0
[   39.186347][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.4: corrupted inode contents
[   39.190193][ T3508] Call Trace:
[   39.190204][ T3508]  <TASK>
[   39.190232][ T3508]  ext4_xattr_set_entry+0x77f/0x1020
[   39.213518][ T3508]  ext4_xattr_ibody_set+0x184/0x3c0
[   39.218817][ T3508]  ext4_expand_extra_isize_ea+0xcbb/0x11f0
[   39.224694][ T3508]  __ext4_expand_extra_isize+0x246/0x280
[   39.230441][ T3508]  __ext4_mark_inode_dirty+0x29d/0x3f0
[   39.236109][ T3508]  ext4_evict_inode+0x80e/0xd90
[   39.241067][ T3508]  ? __pfx_ext4_evict_inode+0x10/0x10
[   39.246498][ T3508]  evict+0x2e3/0x550
[   39.250471][ T3508]  ? __dquot_initialize+0x146/0x7c0
[   39.251584][ T3516] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.4: mark_inode_dirty error
[   39.255751][ T3508]  iput+0x4ed/0x650
[   39.270675][ T3508]  ext4_process_orphan+0x1a9/0x1c0
[   39.275828][ T3508]  ext4_orphan_cleanup+0x6a8/0xa00
[   39.281074][ T3508]  ext4_fill_super+0x3483/0x3810
[   39.286053][ T3508]  ? snprintf+0x86/0xb0
[   39.290326][ T3508]  ? set_blocksize+0x1a8/0x310
[   39.295116][ T3508]  ? sb_set_blocksize+0xe3/0x100
[   39.300115][ T3508]  ? setup_bdev_super+0x30e/0x370
[   39.304294][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.4: corrupted inode contents
[   39.305168][ T3508]  ? __pfx_ext4_fill_super+0x10/0x10
[   39.322070][ T3508]  get_tree_bdev_flags+0x291/0x300
[   39.327271][ T3508]  ? __pfx_ext4_fill_super+0x10/0x10
[   39.332678][ T3508]  get_tree_bdev+0x1f/0x30
[   39.337133][ T3508]  ext4_get_tree+0x1c/0x30
[   39.341623][ T3508]  vfs_get_tree+0x57/0x1d0
[   39.346108][ T3508]  do_new_mount+0x24d/0x660
[   39.350749][ T3508]  path_mount+0x4a5/0xb70
[   39.352473][ T3516] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[   39.355126][ T3508]  ? user_path_at+0x109/0x130
[   39.368418][ T3508]  __se_sys_mount+0x28c/0x2e0
[   39.373160][ T3508]  __x64_sys_mount+0x67/0x80
[   39.377854][ T3508]  x64_sys_call+0x2b51/0x3000
[   39.382575][ T3508]  do_syscall_64+0xd2/0x200
[   39.387109][ T3508]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   39.392371][ T3516] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.4: corrupted inode contents
[   39.393300][ T3508]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   39.410631][ T3508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.416543][ T3508] RIP: 0033:0x7faf210f0e6a
[   39.421040][ T3508] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.439635][ T3516] EXT4-fs error (device loop3): ext4_truncate:4637: inode #16: comm syz.3.4: mark_inode_dirty error
[   39.440758][ T3508] RSP: 002b:00007faf1fb4ee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   39.459919][ T3508] RAX: ffffffffffffffda RBX: 00007faf1fb4eef0 RCX: 00007faf210f0e6a
[   39.467991][ T3508] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007faf1fb4eeb0
[   39.476005][ T3508] RBP: 0000200000000180 R08: 00007faf1fb4eef0 R09: 0000000000800700
[   39.484107][ T3508] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   39.492128][ T3508] R13: 00007faf1fb4eeb0 R14: 000000000000046f R15: 000000000000002c
[   39.500179][ T3508]  </TASK>
[   39.503217][ T3508] ---[ end trace 0000000000000000 ]---
[   39.514738][ T3508] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.5: iget: bad extra_isize 90 (inode size 256)
[   39.518622][ T3516] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[   39.549212][ T3508] EXT4-fs (loop4): Remounting filesystem read-only
[   39.555835][ T3508] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -30)
[   39.577699][ T3508] EXT4-fs (loop4): 1 orphan inode deleted
[   39.592892][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.593743][ T3508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.615107][ T3516] EXT4-fs (loop3): 1 truncate cleaned up
[   39.618324][ T3536] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9'.
[   39.621465][ T3516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.647432][ T3516] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.675714][ T3516] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.706197][ T3538] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   39.727907][ T3508] syz.4.5 (3508) used greatest stack depth: 10680 bytes left
[   39.755379][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.774180][ T3511] lo speed is unknown, defaulting to 1000
[   39.782195][ T3511] lo speed is unknown, defaulting to 1000
[   39.789209][ T3511] lo speed is unknown, defaulting to 1000
[   39.795482][ T3511] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   39.803494][ T3511] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   39.835148][ T3543] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12'.
[   39.844054][ T3543] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12'.
[   39.845906][ T3538] syz.1.10 (3538) used greatest stack depth: 10160 bytes left
[   39.880399][ T3511] lo speed is unknown, defaulting to 1000
[   39.886537][ T3511] lo speed is unknown, defaulting to 1000
[   39.899698][ T3511] lo speed is unknown, defaulting to 1000
[   39.906186][ T3511] lo speed is unknown, defaulting to 1000
[   39.923791][ T3511] lo speed is unknown, defaulting to 1000
[   39.952794][ T3546] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   39.975603][ T3548] netlink: 52 bytes leftover after parsing attributes in process `syz.1.13'.
[   40.000989][ T3548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13'.
[   40.018548][ T3546] xt_hashlimit: max too large, truncated to 1048576
[   40.059618][ T3516] syz.3.4 (3516) used greatest stack depth: 9680 bytes left
[   40.106746][ T3550] can: request_module (can-proto-3) failed.
[   40.220591][ T3550] loop3: detected capacity change from 0 to 2048
[   40.240129][ T3555] loop2: detected capacity change from 0 to 512
[   40.271486][ T3555] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.322024][ T3555] ext4 filesystem being mounted at /2/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.337318][    C1] hrtimer: interrupt took 36101 ns
[   40.401837][ T3520] Alternate GPT is invalid, using primary GPT.
[   40.408491][ T3520]  loop3: p2 p3 p7
[   40.426754][ T3540] Set syz1 is full, maxelem 65536 reached
[   40.450665][ T3550] Alternate GPT is invalid, using primary GPT.
[   40.457217][ T3550]  loop3: p2 p3 p7
[   40.573303][ T3564] netlink: 'syz.3.17': attribute type 10 has an invalid length.
[   40.581025][ T3564] netlink: 65015 bytes leftover after parsing attributes in process `syz.3.17'.
[   40.588603][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   40.602910][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   40.602952][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   40.779742][ T3566] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18'.
[   40.957330][ T3581] loop3: detected capacity change from 0 to 512
[   41.016403][ T3581] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.088481][ T3581] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   41.123459][ T3571] loop4: detected capacity change from 0 to 32768
[   41.134242][ T3581] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.173382][ T3555] syz.2.15 (3555) used greatest stack depth: 9544 bytes left
[   41.182455][ T3571]  loop4: p1 p2 p3 < > p4 < p5 p6 >
[   41.188210][ T3571] loop4: p1 start 460800 is beyond EOD, truncated
[   41.194756][ T3571] loop4: p2 size 83886080 extends beyond EOD, truncated
[   41.203817][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.243464][ T3571] loop4: p5 start 460800 is beyond EOD, truncated
[   41.250061][ T3571] loop4: p6 size 83886080 extends beyond EOD, truncated
[   41.260234][ T3591] netlink: 'syz.2.21': attribute type 6 has an invalid length.
[   41.352834][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   41.354016][ T3598] udevd[3598]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   41.364198][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   41.389035][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   41.409107][ T3594] loop3: detected capacity change from 0 to 4096
[   41.433218][ T3603] smc: net device bond0 applied user defined pnetid SYZ0
[   41.449683][ T3600] can: request_module (can-proto-3) failed.
[   41.457169][ T3594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.472779][ T3603] loop0: detected capacity change from 0 to 512
[   41.505132][ T3603] EXT4-fs: Ignoring removed oldalloc option
[   41.518234][ T3606] loop4: detected capacity change from 0 to 512
[   41.573711][ T3603] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   41.590301][ T3600] loop2: detected capacity change from 0 to 2048
[   41.612068][ T3609] can: request_module (can-proto-3) failed.
[   41.618794][ T3603] EXT4-fs (loop0): too many log groups per flexible block group
[   41.628084][ T3603] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   41.635319][ T3603] EXT4-fs (loop0): mount failed
[   41.674465][ T3600] Alternate GPT is invalid, using primary GPT.
[   41.680879][ T3600]  loop2: p2 p3 p7
[   41.714576][ T3619] can: request_module (can-proto-3) failed.
[   41.723673][ T3623] loop0: detected capacity change from 0 to 512
[   41.794388][ T3627] mmap: syz.0.30 (3627) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   41.806456][ T3609] loop1: detected capacity change from 0 to 2048
[   41.847048][ T3627] loop0: detected capacity change from 0 to 128
[   41.868749][ T3619] loop4: detected capacity change from 0 to 2048
[   41.883811][ T3627] syz.0.30: attempt to access beyond end of device
[   41.883811][ T3627] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128
[   41.911553][ T3629] loop2: detected capacity change from 0 to 1024
[   41.921691][ T3619] Alternate GPT is invalid, using primary GPT.
[   41.928180][ T3619]  loop4: p2 p3 p7
[   41.937615][ T3629] EXT4-fs: Ignoring removed nobh option
[   41.939190][ T3609] Alternate GPT is invalid, using primary GPT.
[   41.949668][ T3609]  loop1: p2 p3 p7
[   41.955293][ T3629] EXT4-fs: Ignoring removed bh option
[   41.970198][ T3629] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   42.002681][ T3004] Alternate GPT is invalid, using primary GPT.
[   42.009253][ T3004]  loop4: p2 p3 p7
[   42.039659][ T3629] EXT4-fs (loop2): can't mount with commit=, fs mounted w/o journal
[   42.081833][ T3632] can: request_module (can-proto-3) failed.
[   42.142688][ T3629] loop2: detected capacity change from 0 to 512
[   42.208374][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.232475][ T3629] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.31: iget: bad extra_isize 90 (inode size 256)
[   42.246338][ T3638] loop0: detected capacity change from 0 to 8192
[   42.248965][ T3632] loop1: detected capacity change from 0 to 2048
[   42.266478][ T3629] EXT4-fs (loop2): Remounting filesystem read-only
[   42.273521][ T3629] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[   42.283189][ T3629] EXT4-fs (loop2): 1 orphan inode deleted
[   42.289773][ T3629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.314239][ T3505] Alternate GPT is invalid, using primary GPT.
[   42.320833][ T3505]  loop1: p2 p3 p7
[   42.337172][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.372443][ T3632] Alternate GPT is invalid, using primary GPT.
[   42.378936][ T3632]  loop1: p2 p3 p7
[   42.390256][ T3651] batman_adv: batadv0: Adding interface: vlan2
[   42.396447][ T3651] batman_adv: batadv0: The MTU of interface vlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   42.422148][ T3651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.427275][ T3655] loop2: detected capacity change from 0 to 512
[   42.433024][ T3651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.449013][ T3651] batman_adv: batadv0: Not using interface vlan2 (retrying later): interface not active
[   42.462884][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[   42.495516][ T3655] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   42.574618][ T3655] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   42.590192][ T3655] EXT4-fs (loop2): 1 truncate cleaned up
[   42.596488][ T3655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.699715][ T3655] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   42.764583][ T3655] lo speed is unknown, defaulting to 1000
[   43.058365][   T29] kauditd_printk_skb: 707 callbacks suppressed
[   43.058382][   T29] audit: type=1400 audit(1762770444.119:848): avc:  denied  { shutdown } for  pid=3722 comm="syz.4.39" laddr=fe80::12 lport=48006 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   43.098971][ T3731] lo speed is unknown, defaulting to 1000
[   43.105777][ T3731] lo speed is unknown, defaulting to 1000
[   43.122085][   T29] audit: type=1400 audit(1762770444.159:849): avc:  denied  { getopt } for  pid=3722 comm="syz.4.39" laddr=fe80::12 lport=48006 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   43.127640][ T3731] lo speed is unknown, defaulting to 1000
[   43.175756][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.193470][ T3731] infiniband s
z1: set active
[   43.198459][ T3731] infiniband s
z1: added lo
[   43.203643][ T3401] lo speed is unknown, defaulting to 1000
[   43.229450][ T3731] RDS/IB: s
z1: added
[   43.233570][ T3731] smc: adding ib device s
z1 with port count 1
[   43.240570][ T3731] smc:    ib device s
z1 port 1 has no pnetid
[   43.246775][ T3401] lo speed is unknown, defaulting to 1000
[   43.255011][   T29] audit: type=1400 audit(1762770444.309:850): avc:  denied  { setcurrent } for  pid=3740 comm="syz.2.40" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   43.274423][   T29] audit: type=1401 audit(1762770444.309:851): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[   43.292384][ T3731] lo speed is unknown, defaulting to 1000
[   43.321775][   T29] audit: type=1400 audit(1762770444.369:852): avc:  denied  { execute } for  pid=3740 comm="syz.2.40" path="/7/cpu.stat" dev="tmpfs" ino=65 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   43.344896][ T3731] lo speed is unknown, defaulting to 1000
[   43.380798][ T3731] lo speed is unknown, defaulting to 1000
[   43.416649][ T3731] lo speed is unknown, defaulting to 1000
[   43.476233][ T3731] lo speed is unknown, defaulting to 1000
[   43.627572][ T3746] loop2: detected capacity change from 0 to 128
[   43.653163][ T3746] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.680491][ T3677] loop1: detected capacity change from 0 to 512
[   43.717572][ T3746] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.742653][ T3677] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.38: bad orphan inode 11862016
[   43.769148][ T3677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   43.783292][ T2967] IPVS: starting estimator thread 0...
[   43.787506][   T29] audit: type=1400 audit(1762770444.849:853): avc:  denied  { setopt } for  pid=3748 comm="syz.4.42" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   43.790047][ T3677] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.877362][ T3755] IPVS: using max 2640 ests per chain, 132000 per kthread
[   43.888689][ T3677] capability: warning: `syz.1.38' uses deprecated v2 capabilities in a way that may be insecure
[   43.927222][   T29] audit: type=1326 audit(1762770444.979:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3762 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf210ef6c9 code=0x7ffc0000
[   43.957790][ T3763] loop4: detected capacity change from 0 to 512
[   43.964703][ T3763] ext4: Unknown parameter 'obj_role'
[   43.977631][ T3746] Zero length message leads to an empty skb
[   43.993578][   T29] audit: type=1326 audit(1762770445.009:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3762 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7faf210ef6c9 code=0x7ffc0000
[   44.016919][   T29] audit: type=1326 audit(1762770445.009:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3762 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf210ef6c9 code=0x7ffc0000
[   44.040610][   T29] audit: type=1326 audit(1762770445.009:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3762 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf210ef6c9 code=0x7ffc0000
[   44.080551][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.153926][ T3768] loop2: detected capacity change from 0 to 2048
[   44.163295][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   44.197035][ T3768] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.247985][ T3777] loop1: detected capacity change from 0 to 512
[   44.258992][ T3768] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.275033][ T3777] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   44.296402][ T3777] EXT4-fs (loop1): orphan cleanup on readonly fs
[   44.333623][ T3777] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.48: bg 0: block 248: padding at end of block bitmap is not set
[   44.357766][ T3777] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.48: Failed to acquire dquot type 1
[   44.378065][ T3777] EXT4-fs (loop1): 1 truncate cleaned up
[   44.384546][ T3777] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.430530][ T3768] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.46: bg 0: block 345: padding at end of block bitmap is not set
[   44.458000][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.477419][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   44.477750][ T3658] Bluetooth: hci0: command 0x1003 tx timeout
[   44.534477][ T3783] loop3: detected capacity change from 0 to 1024
[   44.538601][ T3784] program syz.2.49 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   44.543953][ T3783] EXT4-fs: Ignoring removed nobh option
[   44.563101][ T3783] EXT4-fs: Ignoring removed bh option
[   44.569107][ T3783] EXT4-fs (loop3): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   44.597230][ T3783] EXT4-fs (loop3): can't mount with commit=, fs mounted w/o journal
[   44.684266][ T3787] loop3: detected capacity change from 0 to 512
[   44.690717][ T3789] loop0: detected capacity change from 0 to 1024
[   44.700399][ T3787] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #18: comm syz.3.51: iget: bad extra_isize 90 (inode size 256)
[   44.713953][ T3787] EXT4-fs (loop3): Remounting filesystem read-only
[   44.719160][ T3789] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   44.721235][ T3787] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[   44.733150][ T3789] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.743915][ T3787] EXT4-fs (loop3): 1 orphan inode deleted
[   44.758438][ T3787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.760581][ T3789] EXT4-fs error (device loop0): ext4_lookup:1779: inode #2: comm syz.0.50: bad inode number: 15
[   44.785370][ T3789] EXT4-fs error (device loop0): ext4_lookup:1779: inode #2: comm syz.0.50: bad inode number: 15
[   44.796539][ T3789] EXT4-fs error (device loop0): ext4_lookup:1779: inode #2: comm syz.0.50: bad inode number: 15
[   44.820155][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   44.865213][ T3796] loop0: detected capacity change from 0 to 512
[   44.866357][ T3797] loop2: detected capacity change from 0 to 1024
[   44.878518][ T3796] EXT4-fs: Ignoring removed oldalloc option
[   44.884942][ T3777] syz.1.48 (3777) used greatest stack depth: 9200 bytes left
[   44.894618][ T3796] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   44.903923][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.915227][ T3797] EXT4-fs: Ignoring removed nobh option
[   44.922817][ T3797] EXT4-fs: Ignoring removed bh option
[   44.937676][ T3796] EXT4-fs (loop0): too many log groups per flexible block group
[   44.945845][ T3797] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   44.958944][ T3797] EXT4-fs (loop2): can't mount with commit=, fs mounted w/o journal
[   44.980650][ T3796] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   44.988015][ T3796] EXT4-fs (loop0): mount failed
[   44.993393][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.097812][ T3808] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   45.106214][ T3813] loop4: detected capacity change from 0 to 1024
[   45.113182][ T3814] loop2: detected capacity change from 0 to 1024
[   45.115384][ T3813] EXT4-fs: Ignoring removed nobh option
[   45.125394][ T3813] EXT4-fs: Ignoring removed bh option
[   45.138520][ T3814] EXT4-fs: Ignoring removed nobh option
[   45.144450][ T3814] EXT4-fs: Ignoring removed bh option
[   45.152764][ T3814] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   45.163578][ T3813] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   45.180231][ T3814] EXT4-fs (loop2): can't mount with commit=, fs mounted w/o journal
[   45.189636][ T3813] EXT4-fs (loop4): can't mount with commit=, fs mounted w/o journal
[   45.214390][ T3818] Invalid ELF header magic: != ELF
[   45.232922][ T3814] loop2: detected capacity change from 0 to 512
[   45.242935][ T3814] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.60: iget: bad extra_isize 90 (inode size 256)
[   45.259144][ T3827] loop1: detected capacity change from 0 to 512
[   45.265823][ T3813] loop4: detected capacity change from 0 to 512
[   45.272836][ T3814] EXT4-fs (loop2): Remounting filesystem read-only
[   45.276682][ T3827] EXT4-fs: Ignoring removed oldalloc option
[   45.284556][ T3814] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[   45.296124][ T3827] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   45.314421][ T3814] EXT4-fs (loop2): 1 orphan inode deleted
[   45.321836][ T3827] EXT4-fs (loop1): too many log groups per flexible block group
[   45.325771][ T3814] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.330128][ T3827] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   45.348440][ T3827] EXT4-fs (loop1): mount failed
[   45.354026][ T3813] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.55: iget: bad extra_isize 90 (inode size 256)
[   45.367951][ T3813] EXT4-fs (loop4): Remounting filesystem read-only
[   45.380828][ T3813] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -30)
[   45.390789][ T3813] EXT4-fs (loop4): 1 orphan inode deleted
[   45.397082][ T3813] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.422837][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.459680][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.460303][ T3837] loop2: detected capacity change from 0 to 512
[   45.525815][ T3837] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   45.548596][ T3837] EXT4-fs (loop2): orphan cleanup on readonly fs
[   45.552475][ T3849] loop1: detected capacity change from 0 to 256
[   45.557924][ T3837] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.65: bg 0: block 248: padding at end of block bitmap is not set
[   45.576520][ T3841] IPv6: Can't replace route, no match found
[   45.589023][ T3849] FAT-fs (loop1): bogus sectors per cluster 223
[   45.595308][ T3849] FAT-fs (loop1): Can't find a valid FAT filesystem
[   45.605370][ T3837] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.65: Failed to acquire dquot type 1
[   45.633406][ T3837] EXT4-fs (loop2): 1 truncate cleaned up
[   45.640886][ T3837] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   45.743848][ T3855] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.59'.
[   45.757830][ T3856] netlink: 28 bytes leftover after parsing attributes in process `syz.1.71'.
[   45.777469][ T3855] netlink: zone id is out of range
[   45.782650][ T3855] netlink: zone id is out of range
[   45.787992][ T3855] netlink: zone id is out of range
[   45.793180][ T3855] netlink: zone id is out of range
[   45.798507][ T3855] netlink: zone id is out of range
[   45.803825][ T3855] netlink: zone id is out of range
[   45.821877][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.833269][ T3855] netlink: zone id is out of range
[   45.838467][ T3855] netlink: zone id is out of range
[   45.860941][ T3855] netlink: set zone limit has 8 unknown bytes
[   45.906426][ T3859] loop2: detected capacity change from 0 to 512
[   45.926222][ T3859] EXT4-fs: Ignoring removed nobh option
[   45.986985][ T3870] loop2: detected capacity change from 0 to 128
[   45.995473][ T3870] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.019841][ T3870] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   46.118816][ T3879] FAULT_INJECTION: forcing a failure.
[   46.118816][ T3879] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   46.120504][ T3881] loop4: detected capacity change from 0 to 2048
[   46.131982][ T3879] CPU: 1 UID: 0 PID: 3879 Comm: syz.3.80 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   46.132082][ T3879] Tainted: [W]=WARN
[   46.132112][ T3879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   46.132130][ T3879] Call Trace:
[   46.132140][ T3879]  <TASK>
[   46.132151][ T3879]  __dump_stack+0x1d/0x30
[   46.132182][ T3879]  dump_stack_lvl+0xe8/0x140
[   46.132212][ T3879]  dump_stack+0x15/0x1b
[   46.132236][ T3879]  should_fail_ex+0x265/0x280
[   46.132264][ T3879]  should_fail+0xb/0x20
[   46.132336][ T3879]  should_fail_usercopy+0x1a/0x20
[   46.132365][ T3879]  _copy_from_iter+0xd2/0xe80
[   46.132497][ T3879]  ? avc_has_perm_noaudit+0x1b1/0x200
[   46.132528][ T3879]  ? blake2s_update+0x134/0x160
[   46.132563][ T3879]  write_pool_user+0x7c/0x1e0
[   46.132595][ T3879]  ? import_ubuf+0xe8/0x120
[   46.132623][ T3879]  ? __pfx_random_ioctl+0x10/0x10
[   46.132706][ T3879]  random_ioctl+0x2cc/0x400
[   46.132748][ T3879]  __se_sys_ioctl+0xce/0x140
[   46.132778][ T3879]  __x64_sys_ioctl+0x43/0x50
[   46.132865][ T3879]  x64_sys_call+0x1816/0x3000
[   46.132897][ T3879]  do_syscall_64+0xd2/0x200
[   46.132926][ T3879]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.133022][ T3879]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   46.133069][ T3879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.133099][ T3879] RIP: 0033:0x7ffa7c81f6c9
[   46.133120][ T3879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.133145][ T3879] RSP: 002b:00007ffa7b287038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   46.133193][ T3879] RAX: ffffffffffffffda RBX: 00007ffa7ca75fa0 RCX: 00007ffa7c81f6c9
[   46.133211][ T3879] RDX: 000020000000fec0 RSI: 0000000040085203 RDI: 0000000000000003
[   46.133228][ T3879] RBP: 00007ffa7b287090 R08: 0000000000000000 R09: 0000000000000000
[   46.133243][ T3879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.133280][ T3879] R13: 00007ffa7ca76038 R14: 00007ffa7ca75fa0 R15: 00007ffe955adea8
[   46.133334][ T3879]  </TASK>
[   46.142274][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   46.352001][ T3900] loop0: detected capacity change from 0 to 512
[   46.372336][ T3896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.381741][ T3881] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   46.394432][ T3896] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.408685][ T3881] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   46.409178][ T3914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.83'.
[   46.426720][ T3881] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   46.432243][ T3914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.83'.
[   46.444404][ T3881] EXT4-fs (loop4): This should not happen!! Data will be lost
[   46.444404][ T3881] 
[   46.444426][ T3881] EXT4-fs (loop4): Total free blocks count 0
[   46.444442][ T3881] EXT4-fs (loop4): Free/Dirty block details
[   46.474923][ T3881] EXT4-fs (loop4): free_blocks=2415919104
[   46.480795][ T3881] EXT4-fs (loop4): dirty_blocks=16
[   46.485927][ T3881] EXT4-fs (loop4): Block reservation details
[   46.492041][ T3881] EXT4-fs (loop4): i_reserved_data_blocks=1
[   46.518601][ T3881] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.81: corrupted in-inode xattr: invalid size in ea xattr
[   46.535003][ T3881] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.81: corrupted in-inode xattr: invalid size in ea xattr
[   46.546968][ T3920] loop2: detected capacity change from 0 to 512
[   46.572764][ T3920] ext4: Unknown parameter 'obj_role'
[   46.586511][ T3918] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.81: corrupted in-inode xattr: invalid size in ea xattr
[   46.604524][ T3923] Invalid ELF header magic: != ELF
[   46.605120][ T3881] netlink: 16 bytes leftover after parsing attributes in process `syz.4.81'.
[   46.628290][ T3928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.85'.
[   46.637351][ T3928] netlink: 108 bytes leftover after parsing attributes in process `syz.2.85'.
[   46.640920][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   46.646338][ T3928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.85'.
[   46.667452][ T3928] netlink: 108 bytes leftover after parsing attributes in process `syz.2.85'.
[   46.676351][ T3928] netlink: 84 bytes leftover after parsing attributes in process `syz.2.85'.
[   46.679475][ T3931] loop4: detected capacity change from 0 to 128
[   46.691804][ T3931] vfat: Unknown parameter '0x0000000000000000'
[   46.746560][ T3933] can0: slcan on ptm0.
[   46.758973][ T3938] vlan2: entered allmulticast mode
[   46.811613][ T3938] loop4: detected capacity change from 0 to 256
[   46.847583][ T3932] can0 (unregistered): slcan off ptm0.
[   46.909153][ T3956] Invalid ELF header magic: != ELF
[   47.024172][ T3977] loop4: detected capacity change from 0 to 2048
[   47.175292][ T3988] loop2: detected capacity change from 0 to 512
[   47.182952][ T3988] ext4: Unknown parameter 'obj_role'
[   47.212262][ T3990] FAULT_INJECTION: forcing a failure.
[   47.212262][ T3990] name failslab, interval 1, probability 0, space 0, times 1
[   47.224992][ T3990] CPU: 1 UID: 0 PID: 3990 Comm: syz.2.96 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   47.225098][ T3990] Tainted: [W]=WARN
[   47.225106][ T3990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   47.225120][ T3990] Call Trace:
[   47.225128][ T3990]  <TASK>
[   47.225137][ T3990]  __dump_stack+0x1d/0x30
[   47.225162][ T3990]  dump_stack_lvl+0xe8/0x140
[   47.225247][ T3990]  dump_stack+0x15/0x1b
[   47.225267][ T3990]  should_fail_ex+0x265/0x280
[   47.225289][ T3990]  should_failslab+0x8c/0xb0
[   47.225323][ T3990]  kmem_cache_alloc_noprof+0x50/0x480
[   47.225355][ T3990]  ? security_inode_alloc+0x37/0x100
[   47.225380][ T3990]  security_inode_alloc+0x37/0x100
[   47.225403][ T3990]  inode_init_always_gfp+0x4b7/0x500
[   47.225463][ T3990]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   47.225534][ T3990]  alloc_inode+0x58/0x170
[   47.225560][ T3990]  new_inode+0x1d/0xe0
[   47.225607][ T3990]  shmem_get_inode+0x244/0x750
[   47.225633][ T3990]  __shmem_file_setup+0x113/0x210
[   47.225655][ T3990]  shmem_file_setup+0x3b/0x50
[   47.225731][ T3990]  __se_sys_memfd_create+0x2c3/0x590
[   47.225760][ T3990]  __x64_sys_memfd_create+0x31/0x40
[   47.225786][ T3990]  x64_sys_call+0x2ac2/0x3000
[   47.225858][ T3990]  do_syscall_64+0xd2/0x200
[   47.225880][ T3990]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   47.225911][ T3990]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   47.225969][ T3990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.225992][ T3990] RIP: 0033:0x7fea00f9f6c9
[   47.226009][ T3990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.226029][ T3990] RSP: 002b:00007fe9ffa06d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   47.226050][ T3990] RAX: ffffffffffffffda RBX: 0000000000001063 RCX: 00007fea00f9f6c9
[   47.226064][ T3990] RDX: 00007fe9ffa06dec RSI: 0000000000000000 RDI: 00007fea01022960
[   47.226153][ T3990] RBP: 0000200000001080 R08: 00007fe9ffa06b07 R09: 0000000000000000
[   47.226166][ T3990] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   47.226181][ T3990] R13: 00007fe9ffa06dec R14: 00007fe9ffa06df0 R15: 00007ffebc8cf568
[   47.226201][ T3990]  </TASK>
[   47.480869][ T3994] loop2: detected capacity change from 0 to 2048
[   47.498902][ T3994] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   47.513495][ T3994] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   47.529207][ T3994] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   47.541475][ T3994] EXT4-fs (loop2): This should not happen!! Data will be lost
[   47.541475][ T3994] 
[   47.551521][ T3994] EXT4-fs (loop2): Total free blocks count 0
[   47.557568][ T3994] EXT4-fs (loop2): Free/Dirty block details
[   47.563476][ T3994] EXT4-fs (loop2): free_blocks=2415919104
[   47.569365][ T3994] EXT4-fs (loop2): dirty_blocks=16
[   47.574558][ T3994] EXT4-fs (loop2): Block reservation details
[   47.580594][ T3994] EXT4-fs (loop2): i_reserved_data_blocks=1
[   47.588961][ T3994] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.98: corrupted in-inode xattr: invalid size in ea xattr
[   47.603599][ T3994] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.98: corrupted in-inode xattr: invalid size in ea xattr
[   47.618412][ T3994] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.98: corrupted in-inode xattr: invalid size in ea xattr
[   47.641515][ T3438] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   47.755820][ T4007] netlink: 'syz.2.101': attribute type 6 has an invalid length.
[   47.763387][ T4009] netlink: 'syz.1.102': attribute type 6 has an invalid length.
[   47.859046][ T4019] loop2: detected capacity change from 0 to 512
[   47.871270][ T4019] EXT4-fs: Ignoring removed oldalloc option
[   47.883445][ T4019] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   47.906564][ T4023] loop1: detected capacity change from 0 to 1024
[   47.913611][ T4023] EXT4-fs: Ignoring removed nobh option
[   47.919538][ T4023] EXT4-fs: Ignoring removed bh option
[   47.926381][ T4019] EXT4-fs (loop2): too many log groups per flexible block group
[   47.928007][ T4023] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   47.940570][ T4019] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   47.947654][ T4023] EXT4-fs (loop1): can't mount with commit=, fs mounted w/o journal
[   47.950905][ T4019] EXT4-fs (loop2): mount failed
[   47.973546][ T4023] loop1: detected capacity change from 0 to 512
[   47.999129][ T4023] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #18: comm syz.1.109: iget: bad extra_isize 90 (inode size 256)
[   48.025141][ T4028] loop3: detected capacity change from 0 to 2048
[   48.042319][ T4023] EXT4-fs (loop1): Remounting filesystem read-only
[   48.057847][ T4023] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30)
[   48.068243][ T4028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   48.076177][ T4033] loop2: detected capacity change from 0 to 512
[   48.080344][   T29] kauditd_printk_skb: 382 callbacks suppressed
[   48.080356][   T29] audit: type=1326 audit(1762770449.129:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.087817][ T4023] EXT4-fs (loop1): 1 orphan inode deleted
[   48.092787][   T29] audit: type=1326 audit(1762770449.129:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.120487][ T4033] ext4: Unknown parameter 'obj_role'
[   48.121931][   T29] audit: type=1326 audit(1762770449.129:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.146063][ T4023] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.150515][   T29] audit: type=1326 audit(1762770449.129:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.177635][ T4034] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.110: corrupted in-inode xattr: invalid size in ea xattr
[   48.185836][   T29] audit: type=1326 audit(1762770449.129:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.246524][   T29] audit: type=1326 audit(1762770449.129:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.246962][ T4028] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.110: corrupted in-inode xattr: invalid size in ea xattr
[   48.269903][   T29] audit: type=1326 audit(1762770449.129:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.290213][ T4028] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.110: corrupted in-inode xattr: invalid size in ea xattr
[   48.307372][   T29] audit: type=1326 audit(1762770449.129:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.344989][   T29] audit: type=1326 audit(1762770449.129:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.368721][   T29] audit: type=1326 audit(1762770449.129:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.2.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea00f9f6c9 code=0x7ffc0000
[   48.375288][ T4036] loop2: detected capacity change from 0 to 128
[   48.414809][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   48.442007][ T4039] netlink: 'syz.2.114': attribute type 6 has an invalid length.
[   48.451428][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.486449][ T4040] loop3: detected capacity change from 0 to 512
[   48.504901][ T4040] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   48.532053][ T4046] loop2: detected capacity change from 0 to 1024
[   48.539225][ T4046] ext4: Unknown parameter 'uid<00000000000000000000'
[   48.552646][ T4040] EXT4-fs (loop3): orphan cleanup on readonly fs
[   48.567052][ T4040] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.113: bg 0: block 248: padding at end of block bitmap is not set
[   48.606655][ T4040] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.113: Failed to acquire dquot type 1
[   48.636221][ T4040] EXT4-fs (loop3): 1 truncate cleaned up
[   48.651108][ T4055] can: request_module (can-proto-3) failed.
[   48.657544][ T4057] Set syz1 is full, maxelem 2 reached
[   48.657977][ T4040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   48.671103][ T4057] loop4: detected capacity change from 0 to 512
[   48.704363][ T4057] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.710606][ T4055] loop2: detected capacity change from 0 to 2048
[   48.724315][ T4057] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   48.739740][ T4057] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.122: corrupted inode contents
[   48.752213][ T4057] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.122: mark_inode_dirty error
[   48.767198][ T3639] Alternate GPT is invalid, using primary GPT.
[   48.767272][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.773707][ T3639]  loop2: p2 p3 p7
[   48.786383][ T4057] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.122: corrupted inode contents
[   48.809177][ T4055] Alternate GPT is invalid, using primary GPT.
[   48.815625][ T4055]  loop2: p2 p3 p7
[   48.820027][ T4066] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   48.863797][ T4070] netlink: 'syz.1.126': attribute type 6 has an invalid length.
[   48.878134][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.905680][ T4072] loop4: detected capacity change from 0 to 512
[   48.915582][ T4072] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   49.002481][ T4078] loop4: detected capacity change from 0 to 512
[   49.020719][ T4078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.041453][ T4078] ext4 filesystem being mounted at /28/wÅü5ÔTÕÔ)­`)Y�Fæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.060253][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   49.077871][ T4078] syz.4.130 uses obsolete (PF_INET,SOCK_PACKET)
[   49.084135][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   49.096193][ T3598] udevd[3598]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   49.148746][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   49.164713][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   49.310165][ T4090] netlink: 'syz.1.134': attribute type 10 has an invalid length.
[   49.318173][ T4090] batadv0: entered allmulticast mode
[   49.324431][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.327718][ T4090] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.341950][ T4090] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   49.362746][ T4093] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   49.407781][ T4099] loop4: detected capacity change from 0 to 512
[   49.415209][ T4099] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   49.424937][ T4099] EXT4-fs (loop4): orphan cleanup on readonly fs
[   49.432076][ T4099] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.135: bg 0: block 248: padding at end of block bitmap is not set
[   49.446769][ T4099] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.135: Failed to acquire dquot type 1
[   49.459682][ T4099] EXT4-fs (loop4): 1 truncate cleaned up
[   49.466072][ T4099] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.520269][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.535703][ T4105] loop0: detected capacity change from 0 to 4096
[   49.546912][ T4105] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.570797][ T4109] netlink: 'syz.4.139': attribute type 6 has an invalid length.
[   49.600443][ T4111] FAULT_INJECTION: forcing a failure.
[   49.600443][ T4111] name failslab, interval 1, probability 0, space 0, times 0
[   49.603864][ T4101] random: crng reseeded on system resumption
[   49.613163][ T4111] CPU: 1 UID: 0 PID: 4111 Comm: syz.4.140 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   49.613207][ T4111] Tainted: [W]=WARN
[   49.613218][ T4111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   49.613308][ T4111] Call Trace:
[   49.613319][ T4111]  <TASK>
[   49.613329][ T4111]  __dump_stack+0x1d/0x30
[   49.613413][ T4111]  dump_stack_lvl+0xe8/0x140
[   49.613440][ T4111]  dump_stack+0x15/0x1b
[   49.613463][ T4111]  should_fail_ex+0x265/0x280
[   49.613527][ T4111]  should_failslab+0x8c/0xb0
[   49.613566][ T4111]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   49.613656][ T4111]  ? __alloc_skb+0x101/0x320
[   49.613834][ T4111]  __alloc_skb+0x101/0x320
[   49.613873][ T4111]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[   49.613920][ T4111]  ? __pfx_rtnetlink_event+0x10/0x10
[   49.613950][ T4111]  rtnetlink_event+0x18c/0x200
[   49.614040][ T4111]  raw_notifier_call_chain+0x6f/0x1b0
[   49.614144][ T4111]  ? call_netdevice_notifiers_info+0x9c/0x100
[   49.614180][ T4111]  call_netdevice_notifiers_info+0xae/0x100
[   49.614214][ T4111]  call_netdevice_notifiers+0x48/0x70
[   49.614255][ T4111]  ipvlan_device_event+0x30e/0x5b0
[   49.614373][ T4111]  ? __pfx_ipvlan_device_event+0x10/0x10
[   49.614415][ T4111]  raw_notifier_call_chain+0x6f/0x1b0
[   49.614446][ T4111]  ? call_netdevice_notifiers_info+0x9c/0x100
[   49.614488][ T4111]  call_netdevice_notifiers_info+0xae/0x100
[   49.614555][ T4111]  call_netdevice_notifiers+0x48/0x70
[   49.614586][ T4111]  dev_ifsioc+0x552/0xaa0
[   49.614612][ T4111]  ? __rcu_read_unlock+0x4f/0x70
[   49.614648][ T4111]  dev_ioctl+0x70a/0x960
[   49.614675][ T4111]  sock_do_ioctl+0x197/0x220
[   49.614724][ T4111]  sock_ioctl+0x41b/0x610
[   49.614751][ T4111]  ? __pfx_sock_ioctl+0x10/0x10
[   49.614853][ T4111]  __se_sys_ioctl+0xce/0x140
[   49.614880][ T4111]  __x64_sys_ioctl+0x43/0x50
[   49.614904][ T4111]  x64_sys_call+0x1816/0x3000
[   49.615006][ T4111]  do_syscall_64+0xd2/0x200
[   49.615032][ T4111]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   49.615066][ T4111]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   49.615107][ T4111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.615206][ T4111] RIP: 0033:0x7faf210ef6c9
[   49.615264][ T4111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.615285][ T4111] RSP: 002b:00007faf1fb4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   49.615309][ T4111] RAX: ffffffffffffffda RBX: 00007faf21345fa0 RCX: 00007faf210ef6c9
[   49.615324][ T4111] RDX: 0000200000000000 RSI: 0000000000008937 RDI: 0000000000000004
[   49.615339][ T4111] RBP: 00007faf1fb4f090 R08: 0000000000000000 R09: 0000000000000000
[   49.615353][ T4111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.615368][ T4111] R13: 00007faf21346038 R14: 00007faf21345fa0 R15: 00007ffcc93c06b8
[   49.615412][ T4111]  </TASK>
[   49.900626][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.910389][ T4113] FAULT_INJECTION: forcing a failure.
[   49.910389][ T4113] name failslab, interval 1, probability 0, space 0, times 0
[   49.923137][ T4113] CPU: 1 UID: 0 PID: 4113 Comm: syz.4.142 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   49.923175][ T4113] Tainted: [W]=WARN
[   49.923181][ T4113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   49.923272][ T4113] Call Trace:
[   49.923279][ T4113]  <TASK>
[   49.923286][ T4113]  __dump_stack+0x1d/0x30
[   49.923308][ T4113]  dump_stack_lvl+0xe8/0x140
[   49.923397][ T4113]  dump_stack+0x15/0x1b
[   49.923420][ T4113]  should_fail_ex+0x265/0x280
[   49.923446][ T4113]  should_failslab+0x8c/0xb0
[   49.923555][ T4113]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[   49.923597][ T4113]  ? security_netlbl_sid_to_secattr+0xab/0x140
[   49.923677][ T4113]  ? should_fail_ex+0xdb/0x280
[   49.923701][ T4113]  kstrdup+0x3e/0xd0
[   49.923795][ T4113]  security_netlbl_sid_to_secattr+0xab/0x140
[   49.923816][ T4113]  selinux_netlbl_sock_genattr+0xa8/0x260
[   49.923847][ T4113]  selinux_netlbl_socket_post_create+0x68/0x100
[   49.923886][ T4113]  selinux_socket_post_create+0x214/0x2a0
[   49.924002][ T4113]  security_socket_post_create+0x5d/0xb0
[   49.924112][ T4113]  __sock_create+0x362/0x5b0
[   49.924146][ T4113]  sock_create_kern+0x38/0x50
[   49.924179][ T4113]  mptcp_subflow_create_socket+0x84/0x500
[   49.924265][ T4113]  __mptcp_nmpc_sk+0xb5/0x3d0
[   49.924381][ T4113]  mptcp_sendmsg_fastopen+0x90/0x320
[   49.924496][ T4113]  mptcp_sendmsg+0xcf0/0xf50
[   49.924531][ T4113]  ? avc_has_perm+0xf7/0x180
[   49.924631][ T4113]  ? selinux_socket_sendmsg+0x175/0x1b0
[   49.924680][ T4113]  ? __pfx_mptcp_sendmsg+0x10/0x10
[   49.924777][ T4113]  inet_sendmsg+0xc5/0xd0
[   49.924803][ T4113]  __sock_sendmsg+0x102/0x180
[   49.924838][ T4113]  ____sys_sendmsg+0x31e/0x4e0
[   49.924946][ T4113]  ___sys_sendmsg+0x17b/0x1d0
[   49.924983][ T4113]  __x64_sys_sendmsg+0xd4/0x160
[   49.925006][ T4113]  x64_sys_call+0x191e/0x3000
[   49.925075][ T4113]  do_syscall_64+0xd2/0x200
[   49.925102][ T4113]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   49.925166][ T4113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.925190][ T4113] RIP: 0033:0x7faf210ef6c9
[   49.925234][ T4113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.925252][ T4113] RSP: 002b:00007faf1fb4f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   49.925272][ T4113] RAX: ffffffffffffffda RBX: 00007faf21345fa0 RCX: 00007faf210ef6c9
[   49.925288][ T4113] RDX: 000000003000c041 RSI: 0000200000000080 RDI: 0000000000000003
[   49.925305][ T4113] RBP: 00007faf1fb4f090 R08: 0000000000000000 R09: 0000000000000000
[   49.925321][ T4113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.925337][ T4113] R13: 00007faf21346038 R14: 00007faf21345fa0 R15: 00007ffcc93c06b8
[   49.925363][ T4113]  </TASK>
[   50.305006][ T4124] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[   50.311705][ T4124] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   50.319953][ T4124] vhci_hcd vhci_hcd.0: Device attached
[   50.326239][ T4125] vhci_hcd: connection closed
[   50.326399][ T3484] vhci_hcd: stop threads
[   50.335448][ T3484] vhci_hcd: release socket
[   50.339917][ T3484] vhci_hcd: disconnect device
[   50.455107][ T4138] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   50.530839][ T4141] loop4: detected capacity change from 0 to 512
[   50.566406][ T4143] Invalid ELF header magic: != ELF
[   50.574575][ T4141] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.584286][ T4141] EXT4-fs (loop4): orphan cleanup on readonly fs
[   50.591757][ T4141] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.149: bg 0: block 248: padding at end of block bitmap is not set
[   50.606715][ T4141] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.149: Failed to acquire dquot type 1
[   50.618770][ T4141] EXT4-fs (loop4): 1 truncate cleaned up
[   50.625225][ T4141] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   50.665910][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.084443][ T4162] loop0: detected capacity change from 0 to 128
[   51.321961][ T4164] loop3: detected capacity change from 0 to 512
[   51.328723][ T4164] EXT4-fs: Ignoring removed oldalloc option
[   51.337904][ T4164] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   51.360076][ T4164] EXT4-fs (loop3): too many log groups per flexible block group
[   51.369013][ T4164] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   51.380332][ T4164] EXT4-fs (loop3): mount failed
[   51.427129][ T4172] netlink: 'syz.3.158': attribute type 6 has an invalid length.
[   51.532687][ T4178] loop3: detected capacity change from 0 to 512
[   51.685558][ T4178] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.711492][ T4179] lo speed is unknown, defaulting to 1000
[   51.726608][ T4178] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.751560][ T4181] loop4: detected capacity change from 0 to 8192
[   51.758707][ T4179] lo speed is unknown, defaulting to 1000
[   51.829050][ T3639]  loop4: p2 p3 p4
[   51.833016][ T3639] loop4: p2 start 2936012800 is beyond EOD, truncated
[   51.839837][ T3639] loop4: p3 start 1912602624 is beyond EOD, truncated
[   51.846661][ T3639] loop4: p4 size 656640 extends beyond EOD, truncated
[   51.859867][ T4178] FAULT_INJECTION: forcing a failure.
[   51.859867][ T4178] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.873092][ T4178] CPU: 1 UID: 0 PID: 4178 Comm: syz.3.160 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   51.873129][ T4178] Tainted: [W]=WARN
[   51.873136][ T4178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   51.873150][ T4178] Call Trace:
[   51.873157][ T4178]  <TASK>
[   51.873164][ T4178]  __dump_stack+0x1d/0x30
[   51.873193][ T4178]  dump_stack_lvl+0xe8/0x140
[   51.873217][ T4178]  dump_stack+0x15/0x1b
[   51.873238][ T4178]  should_fail_ex+0x265/0x280
[   51.873261][ T4178]  should_fail+0xb/0x20
[   51.873280][ T4178]  should_fail_usercopy+0x1a/0x20
[   51.873384][ T4178]  strncpy_from_user+0x25/0x230
[   51.873415][ T4178]  ? __rb_insert_augmented+0x76/0x2c0
[   51.873469][ T4178]  strncpy_from_user_nofault+0x68/0xf0
[   51.873494][ T4178]  bpf_probe_read_compat_str+0xb4/0x130
[   51.873566][ T4178]  bpf_prog_59ea531272c1e515+0x3e/0x44
[   51.873596][ T4178]  bpf_trace_run3+0x10f/0x1d0
[   51.873629][ T4178]  ? audit_log_end+0x23d/0x250
[   51.873664][ T4178]  ? audit_log_end+0x23d/0x250
[   51.873687][ T4178]  __traceiter_kmem_cache_free+0x38/0x60
[   51.873716][ T4178]  ? audit_log_end+0x23d/0x250
[   51.873795][ T4178]  kmem_cache_free+0x329/0x3d0
[   51.873834][ T4178]  audit_log_end+0x23d/0x250
[   51.873860][ T4178]  audit_seccomp+0xdc/0x100
[   51.873901][ T4178]  __seccomp_filter+0x83e/0x1250
[   51.873931][ T4178]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   51.874067][ T4178]  ? vfs_write+0x7e8/0x960
[   51.874103][ T4178]  __secure_computing+0x82/0x150
[   51.874132][ T4178]  syscall_trace_enter+0xcf/0x1e0
[   51.874164][ T4178]  do_syscall_64+0xac/0x200
[   51.874281][ T4178]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   51.874343][ T4178]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   51.874385][ T4178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.874411][ T4178] RIP: 0033:0x7ffa7c81f6c9
[   51.874429][ T4178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.874507][ T4178] RSP: 002b:00007ffa7b287038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   51.874530][ T4178] RAX: ffffffffffffffda RBX: 00007ffa7ca75fa0 RCX: 00007ffa7c81f6c9
[   51.874545][ T4178] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000004
[   51.874566][ T4178] RBP: 00007ffa7b287090 R08: 0000000000000000 R09: 0000000000000000
[   51.874580][ T4178] R10: 0000000020080058 R11: 0000000000000246 R12: 0000000000000001
[   51.874594][ T4178] R13: 00007ffa7ca76038 R14: 00007ffa7ca75fa0 R15: 00007ffe955adea8
[   51.874616][ T4178]  </TASK>
[   51.887974][ T4181]  loop4: p2 p3 p4
[   52.129402][ T4181] loop4: p2 start 2936012800 is beyond EOD, truncated
[   52.136210][ T4181] loop4: p3 start 1912602624 is beyond EOD, truncated
[   52.143046][ T4181] loop4: p4 size 656640 extends beyond EOD, truncated
[   52.191431][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.232884][ T4200] loop2: detected capacity change from 0 to 2048
[   52.271630][ T4204] can: request_module (can-proto-3) failed.
[   52.272023][ T4200] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   52.293821][ T4200] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   52.315628][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   52.354888][ T4204] loop4: detected capacity change from 0 to 2048
[   52.361929][ T4200] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   52.374215][ T4200] EXT4-fs (loop2): This should not happen!! Data will be lost
[   52.374215][ T4200] 
[   52.384037][ T4210] loop0: detected capacity change from 0 to 512
[   52.383994][ T4200] EXT4-fs (loop2): Total free blocks count 0
[   52.384057][ T4200] EXT4-fs (loop2): Free/Dirty block details
[   52.384072][ T4200] EXT4-fs (loop2): free_blocks=2415919104
[   52.408109][ T4200] EXT4-fs (loop2): dirty_blocks=16
[   52.413272][ T4200] EXT4-fs (loop2): Block reservation details
[   52.418056][ T4210] EXT4-fs: Ignoring removed oldalloc option
[   52.419290][ T4200] EXT4-fs (loop2): i_reserved_data_blocks=1
[   52.431943][ T4210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   52.440718][ T4200] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.166: corrupted in-inode xattr: invalid size in ea xattr
[   52.456615][ T4210] EXT4-fs (loop0): too many log groups per flexible block group
[   52.464638][ T4210] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   52.467052][ T3639] Alternate GPT is invalid, using primary GPT.
[   52.471806][ T4200] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.166: corrupted in-inode xattr: invalid size in ea xattr
[   52.477832][ T3639]  loop4: p2 p3 p7
[   52.507372][ T4210] EXT4-fs (loop0): mount failed
[   52.523317][ T4217] can: request_module (can-proto-3) failed.
[   52.533081][ T4204] Alternate GPT is invalid, using primary GPT.
[   52.534248][ T4200] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.166: corrupted in-inode xattr: invalid size in ea xattr
[   52.539503][ T4204]  loop4: p2 p3 p7
[   52.555466][ T4200] __nla_validate_parse: 10 callbacks suppressed
[   52.555485][ T4200] netlink: 16 bytes leftover after parsing attributes in process `syz.2.166'.
[   52.673002][ T4223] loop1: detected capacity change from 0 to 1024
[   52.703743][ T4217] loop3: detected capacity change from 0 to 2048
[   52.710450][ T3733] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   52.747575][ T4223] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   52.748090][ T3520] Alternate GPT is invalid, using primary GPT.
[   52.766098][ T3520]  loop3: p2 p3 p7
[   52.780801][ T4223] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.803434][ T4217] Alternate GPT is invalid, using primary GPT.
[   52.809906][ T4217]  loop3: p2 p3 p7
[   52.814261][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   52.824025][ T4228] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   52.880507][ T3004] Alternate GPT is invalid, using primary GPT.
[   52.883287][ T4237] loop1: detected capacity change from 0 to 128
[   52.886908][ T3004]  loop3: p2 p3 p7
[   52.994199][ T4237] lo speed is unknown, defaulting to 1000
[   52.995584][ T4249] FAULT_INJECTION: forcing a failure.
[   52.995584][ T4249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.011755][ T4237] lo speed is unknown, defaulting to 1000
[   53.013081][ T4249] CPU: 1 UID: 0 PID: 4249 Comm: syz.4.181 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   53.013178][ T4249] Tainted: [W]=WARN
[   53.013245][ T4249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   53.013261][ T4249] Call Trace:
[   53.013270][ T4249]  <TASK>
[   53.013280][ T4249]  __dump_stack+0x1d/0x30
[   53.013310][ T4249]  dump_stack_lvl+0xe8/0x140
[   53.013337][ T4249]  dump_stack+0x15/0x1b
[   53.013360][ T4249]  should_fail_ex+0x265/0x280
[   53.013386][ T4249]  should_fail+0xb/0x20
[   53.013456][ T4249]  should_fail_usercopy+0x1a/0x20
[   53.013490][ T4249]  _copy_from_user+0x1c/0xb0
[   53.013679][ T4249]  memdup_user+0x5e/0xd0
[   53.013717][ T4249]  strndup_user+0x68/0xb0
[   53.013755][ T4249]  perf_ioctl+0x58a/0x12e0
[   53.013792][ T4249]  ? ioctl_has_perm+0x289/0x2a0
[   53.013890][ T4249]  ? do_vfs_ioctl+0x866/0xe10
[   53.013919][ T4249]  ? selinux_file_ioctl+0x308/0x3a0
[   53.013976][ T4249]  ? __fget_files+0x184/0x1c0
[   53.014032][ T4249]  ? __pfx_perf_ioctl+0x10/0x10
[   53.014069][ T4249]  __se_sys_ioctl+0xce/0x140
[   53.014099][ T4249]  __x64_sys_ioctl+0x43/0x50
[   53.014196][ T4249]  x64_sys_call+0x1816/0x3000
[   53.014270][ T4249]  do_syscall_64+0xd2/0x200
[   53.014299][ T4249]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   53.014373][ T4249]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   53.014427][ T4249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.014504][ T4249] RIP: 0033:0x7faf210ef6c9
[   53.014526][ T4249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.014553][ T4249] RSP: 002b:00007faf1fb4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.014580][ T4249] RAX: ffffffffffffffda RBX: 00007faf21345fa0 RCX: 00007faf210ef6c9
[   53.014649][ T4249] RDX: 00002000000001c0 RSI: 0000000040082406 RDI: 0000000000000005
[   53.014672][ T4249] RBP: 00007faf1fb4f090 R08: 0000000000000000 R09: 0000000000000000
[   53.014689][ T4249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.014745][ T4249] R13: 00007faf21346038 R14: 00007faf21345fa0 R15: 00007ffcc93c06b8
[   53.014770][ T4249]  </TASK>
[   53.028147][ T4251] loop3: detected capacity change from 0 to 512
[   53.095985][ T4252] syz.1.176: attempt to access beyond end of device
[   53.095985][ T4252] loop1: rw=0, sector=121, nr_sectors = 920 limit=128
[   53.157201][   T29] kauditd_printk_skb: 481 callbacks suppressed
[   53.157220][   T29] audit: type=1326 audit(1762770454.209:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4236 comm="syz.1.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   53.168894][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   53.180013][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   53.188443][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   53.202235][ T4251] EXT4-fs: Ignoring removed oldalloc option
[   53.209455][   T29] audit: type=1326 audit(1762770454.259:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4236 comm="syz.1.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   53.220700][ T4251] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   53.310648][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   53.319329][ T4251] EXT4-fs (loop3): too many log groups per flexible block group
[   53.367770][ T4251] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   53.376718][ T4251] EXT4-fs (loop3): mount failed
[   53.422241][ T4260] loop4: detected capacity change from 0 to 2048
[   53.462642][ T4262] loop3: detected capacity change from 0 to 128
[   53.479309][   T29] audit: type=1326 audit(1762770454.539:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.502738][   T29] audit: type=1326 audit(1762770454.539:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.526148][   T29] audit: type=1326 audit(1762770454.539:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.549559][   T29] audit: type=1326 audit(1762770454.539:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.572925][   T29] audit: type=1326 audit(1762770454.539:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.596297][   T29] audit: type=1326 audit(1762770454.539:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.619693][   T29] audit: type=1326 audit(1762770454.539:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.643043][   T29] audit: type=1326 audit(1762770454.539:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4263 comm="syz.0.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f13beb7f6c9 code=0x7ffc0000
[   53.666915][ T4264] can: request_module (can-proto-3) failed.
[   53.683470][ T4271] loop3: detected capacity change from 0 to 512
[   53.684881][ T4268] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   53.690938][ T4260] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   53.704558][ T4264] loop0: detected capacity change from 0 to 2048
[   53.713653][ T4260] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   53.737517][ T4260] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   53.749842][ T4260] EXT4-fs (loop4): This should not happen!! Data will be lost
[   53.749842][ T4260] 
[   53.759532][ T4260] EXT4-fs (loop4): Total free blocks count 0
[   53.765658][ T4260] EXT4-fs (loop4): Free/Dirty block details
[   53.771588][ T4260] EXT4-fs (loop4): free_blocks=2415919104
[   53.777434][ T4260] EXT4-fs (loop4): dirty_blocks=16
[   53.782547][ T4260] EXT4-fs (loop4): Block reservation details
[   53.788571][ T4260] EXT4-fs (loop4): i_reserved_data_blocks=1
[   53.798673][ T4278] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.184: corrupted in-inode xattr: invalid size in ea xattr
[   53.817555][ T4260] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.184: corrupted in-inode xattr: invalid size in ea xattr
[   53.817716][ T4271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.844486][ T4271] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.855446][ T4260] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.184: corrupted in-inode xattr: invalid size in ea xattr
[   53.869234][ T3639] Alternate GPT is invalid, using primary GPT.
[   53.871361][ T4260] netlink: 16 bytes leftover after parsing attributes in process `syz.4.184'.
[   53.875933][ T3639]  loop0: p2 p3 p7
[   53.899738][ T3484] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   53.915684][ T4264] Alternate GPT is invalid, using primary GPT.
[   53.922127][ T4264]  loop0: p2 p3 p7
[   54.014804][ T4292] FAULT_INJECTION: forcing a failure.
[   54.014804][ T4292] name failslab, interval 1, probability 0, space 0, times 0
[   54.027660][ T4292] CPU: 0 UID: 0 PID: 4292 Comm: syz.0.192 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   54.027781][ T4292] Tainted: [W]=WARN
[   54.027790][ T4292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   54.027806][ T4292] Call Trace:
[   54.027814][ T4292]  <TASK>
[   54.027824][ T4292]  __dump_stack+0x1d/0x30
[   54.027854][ T4292]  dump_stack_lvl+0xe8/0x140
[   54.027878][ T4292]  dump_stack+0x15/0x1b
[   54.027929][ T4292]  should_fail_ex+0x265/0x280
[   54.027948][ T4292]  ? io_ring_ctx_alloc+0x38/0x670
[   54.027975][ T4292]  should_failslab+0x8c/0xb0
[   54.028082][ T4292]  __kmalloc_cache_noprof+0x4c/0x4a0
[   54.028192][ T4292]  io_ring_ctx_alloc+0x38/0x670
[   54.028223][ T4292]  ? io_uring_fill_params+0x27f/0x300
[   54.028301][ T4292]  io_uring_create+0x134/0x630
[   54.028336][ T4292]  __se_sys_io_uring_setup+0x1f7/0x210
[   54.028384][ T4292]  __x64_sys_io_uring_setup+0x31/0x40
[   54.028422][ T4292]  x64_sys_call+0x2b25/0x3000
[   54.028453][ T4292]  do_syscall_64+0xd2/0x200
[   54.028526][ T4292]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   54.028587][ T4289] can: request_module (can-proto-0) failed.
[   54.028625][ T4292]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   54.028674][ T4292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.028716][ T4292] RIP: 0033:0x7f13beb7f6c9
[   54.028735][ T4292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.028758][ T4292] RSP: 002b:00007f13bd5defc8 EFLAGS: 00000206 ORIG_RAX: 00000000000001a9
[   54.028790][ T4292] RAX: ffffffffffffffda RBX: 00007f13bedd5fa0 RCX: 00007f13beb7f6c9
[   54.028869][ T4292] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000002c0d
[   54.028885][ T4292] RBP: 0000200000000400 R08: 0000000000000000 R09: 0000000000000000
[   54.028900][ T4292] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   54.028913][ T4292] R13: 0000000000000000 R14: 0000000000002c0d R15: 0000000000000000
[   54.028948][ T4292]  </TASK>
[   54.041186][ T4285] netlink: 12 bytes leftover after parsing attributes in process `syz.1.190'.
[   54.187954][ T4299] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4299 comm=syz.1.190
[   54.264518][ T4285] netlink: 4 bytes leftover after parsing attributes in process `syz.1.190'.
[   54.326770][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.343353][ T4306] loop4: detected capacity change from 0 to 512
[   54.351640][ T4306] EXT4-fs: Ignoring removed oldalloc option
[   54.369857][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.376040][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.387771][ T4311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.194'.
[   54.398869][ T4306] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.443085][ T4306] EXT4-fs (loop4): too many log groups per flexible block group
[   54.451190][ T4306] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   54.456208][ T4305] infiniband syz1: set active
[   54.462833][ T4305] infiniband syz1: added vcan0
[   54.463704][ T4306] EXT4-fs (loop4): mount failed
[   54.467711][ T3426] vcan0 speed is unknown, defaulting to 1000
[   54.502778][ T4305] RDS/IB: syz1: added
[   54.506885][ T4305] smc: adding ib device syz1 with port count 1
[   54.513309][ T4305] smc:    ib device syz1 port 1 has no pnetid
[   54.519601][ T3426] vcan0 speed is unknown, defaulting to 1000
[   54.526073][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.562476][ T4321] loop4: detected capacity change from 0 to 2048
[   54.584658][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.598558][ T4325] loop1: detected capacity change from 0 to 1024
[   54.608704][ T4325] EXT4-fs: Ignoring removed nobh option
[   54.614521][ T4325] EXT4-fs: Ignoring removed bh option
[   54.622096][ T4321] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   54.638340][ T4325] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   54.638337][ T4321] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   54.638370][ T4321] EXT4-fs (loop4): This should not happen!! Data will be lost
[   54.638370][ T4321] 
[   54.670076][ T4321] EXT4-fs (loop4): Total free blocks count 0
[   54.676110][ T4321] EXT4-fs (loop4): Free/Dirty block details
[   54.679406][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.682035][ T4321] EXT4-fs (loop4): free_blocks=2415919104
[   54.693754][ T4321] EXT4-fs (loop4): dirty_blocks=16
[   54.698935][ T4321] EXT4-fs (loop4): Block reservation details
[   54.704920][ T4321] EXT4-fs (loop4): i_reserved_data_blocks=1
[   54.719444][ T4321] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.199: corrupted in-inode xattr: invalid size in ea xattr
[   54.723037][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.735908][ T4325] EXT4-fs (loop1): can't mount with commit=, fs mounted w/o journal
[   54.748732][ T4321] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.199: corrupted in-inode xattr: invalid size in ea xattr
[   54.764100][ T4321] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.199: corrupted in-inode xattr: invalid size in ea xattr
[   54.779113][ T4321] netlink: 16 bytes leftover after parsing attributes in process `syz.4.199'.
[   54.783750][ T4305] vcan0 speed is unknown, defaulting to 1000
[   54.806661][   T37] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   54.819137][   T37] EXT4-fs (loop4): This should not happen!! Data will be lost
[   54.819137][   T37] 
[   54.838307][ T4325] loop1: detected capacity change from 0 to 512
[   54.887965][ T4325] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #18: comm syz.1.202: iget: bad extra_isize 90 (inode size 256)
[   54.907581][ T4325] EXT4-fs (loop1): Remounting filesystem read-only
[   54.918894][ T4325] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30)
[   54.935662][ T4333] loop0: detected capacity change from 0 to 8192
[   54.943759][ T4325] EXT4-fs (loop1): 1 orphan inode deleted
[   54.987681][ T3639]  loop0: p1 p2 p3 p4
[   54.993201][ T3639] loop0: p3 start 331777 is beyond EOD, truncated
[   54.999731][ T3639] loop0: p4 size 262238 extends beyond EOD, truncated
[   55.012762][ T4338] loop3: detected capacity change from 0 to 512
[   55.019809][ T4338] ext4: Unknown parameter 'obj_role'
[   55.025577][ T4333]  loop0: p1 p2 p3 p4
[   55.045215][ T4333] loop0: p3 start 331777 is beyond EOD, truncated
[   55.051767][ T4333] loop0: p4 size 262238 extends beyond EOD, truncated
[   55.061992][ T4343] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   55.095055][ T4347] loop3: detected capacity change from 0 to 512
[   55.103671][ T4333] SELinux: failed to load policy
[   55.118170][ T4349] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   55.119635][ T4347] EXT4-fs: Ignoring removed oldalloc option
[   55.132668][ T4347] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.159467][ T4347] EXT4-fs (loop3): too many log groups per flexible block group
[   55.167877][ T4347] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   55.200196][ T4347] EXT4-fs (loop3): mount failed
[   55.228472][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   55.239629][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   55.241336][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   55.281311][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   55.291225][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   55.293101][ T4362] FAULT_INJECTION: forcing a failure.
[   55.293101][ T4362] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.302710][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   55.314168][ T4362] CPU: 0 UID: 0 PID: 4362 Comm: syz.2.214 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   55.314214][ T4362] Tainted: [W]=WARN
[   55.314225][ T4362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   55.314242][ T4362] Call Trace:
[   55.314253][ T4362]  <TASK>
[   55.314264][ T4362]  __dump_stack+0x1d/0x30
[   55.314295][ T4362]  dump_stack_lvl+0xe8/0x140
[   55.314397][ T4362]  dump_stack+0x15/0x1b
[   55.314423][ T4362]  should_fail_ex+0x265/0x280
[   55.314451][ T4362]  should_fail+0xb/0x20
[   55.314543][ T4362]  should_fail_usercopy+0x1a/0x20
[   55.314572][ T4362]  _copy_from_user+0x1c/0xb0
[   55.314610][ T4362]  ___sys_sendmsg+0xc1/0x1d0
[   55.314676][ T4362]  __x64_sys_sendmsg+0xd4/0x160
[   55.314715][ T4362]  x64_sys_call+0x191e/0x3000
[   55.314798][ T4362]  do_syscall_64+0xd2/0x200
[   55.314843][ T4362]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   55.314883][ T4362]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   55.314931][ T4362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.315007][ T4362] RIP: 0033:0x7fea00f9f6c9
[   55.315041][ T4362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.315066][ T4362] RSP: 002b:00007fe9ffa07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.315090][ T4362] RAX: ffffffffffffffda RBX: 00007fea011f5fa0 RCX: 00007fea00f9f6c9
[   55.315108][ T4362] RDX: 0000000000004080 RSI: 0000200000000180 RDI: 0000000000000004
[   55.315125][ T4362] RBP: 00007fe9ffa07090 R08: 0000000000000000 R09: 0000000000000000
[   55.315142][ T4362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.315204][ T4362] R13: 00007fea011f6038 R14: 00007fea011f5fa0 R15: 00007ffebc8cf568
[   55.315231][ T4362]  </TASK>
[   55.489466][ T4371] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.203'.
[   55.509743][ T4371] net_ratelimit: 7 callbacks suppressed
[   55.509761][ T4371] netlink: zone id is out of range
[   55.520502][ T4371] netlink: zone id is out of range
[   55.525835][ T4371] netlink: zone id is out of range
[   55.531380][ T4371] netlink: zone id is out of range
[   55.536671][ T4371] netlink: zone id is out of range
[   55.547734][ T4373] syz.2.217 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   55.582156][ T4371] netlink: zone id is out of range
[   55.587397][ T4371] netlink: zone id is out of range
[   55.602429][ T4371] netlink: set zone limit has 8 unknown bytes
[   55.688157][ T4381] FAULT_INJECTION: forcing a failure.
[   55.688157][ T4381] name failslab, interval 1, probability 0, space 0, times 0
[   55.700952][ T4381] CPU: 1 UID: 0 PID: 4381 Comm: syz.0.220 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   55.700985][ T4381] Tainted: [W]=WARN
[   55.700993][ T4381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   55.701010][ T4381] Call Trace:
[   55.701017][ T4381]  <TASK>
[   55.701025][ T4381]  __dump_stack+0x1d/0x30
[   55.701095][ T4381]  dump_stack_lvl+0xe8/0x140
[   55.701197][ T4381]  dump_stack+0x15/0x1b
[   55.701215][ T4381]  should_fail_ex+0x265/0x280
[   55.701252][ T4381]  should_failslab+0x8c/0xb0
[   55.701289][ T4381]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   55.701355][ T4381]  ? __alloc_skb+0x101/0x320
[   55.701407][ T4381]  __alloc_skb+0x101/0x320
[   55.701518][ T4381]  ? audit_log_start+0x342/0x720
[   55.701545][ T4381]  audit_log_start+0x3a0/0x720
[   55.701566][ T4381]  ? kstrtouint+0x76/0xc0
[   55.701604][ T4381]  audit_seccomp+0x48/0x100
[   55.701682][ T4381]  ? __seccomp_filter+0x82d/0x1250
[   55.701791][ T4381]  __seccomp_filter+0x83e/0x1250
[   55.701845][ T4381]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   55.701877][ T4381]  ? vfs_write+0x7e8/0x960
[   55.701905][ T4381]  ? __rcu_read_unlock+0x4f/0x70
[   55.701940][ T4381]  ? __fget_files+0x184/0x1c0
[   55.702009][ T4381]  __secure_computing+0x82/0x150
[   55.702041][ T4381]  syscall_trace_enter+0xcf/0x1e0
[   55.702080][ T4381]  do_syscall_64+0xac/0x200
[   55.702147][ T4381]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   55.702246][ T4381]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   55.702358][ T4381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.702377][ T4381] RIP: 0033:0x7f13beb7f6c9
[   55.702391][ T4381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.702407][ T4381] RSP: 002b:00007f13bd5df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000073
[   55.702430][ T4381] RAX: ffffffffffffffda RBX: 00007f13bedd5fa0 RCX: 00007f13beb7f6c9
[   55.702511][ T4381] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   55.702526][ T4381] RBP: 00007f13bd5df090 R08: 0000000000000000 R09: 0000000000000000
[   55.702540][ T4381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.702553][ T4381] R13: 00007f13bedd6038 R14: 00007f13bedd5fa0 R15: 00007ffc906388b8
[   55.702571][ T4381]  </TASK>
[   55.953700][ T4373] loop2: detected capacity change from 0 to 512
[   56.032554][ T4382] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.121472][ T4382] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.168810][ T4384] netlink: 28 bytes leftover after parsing attributes in process `syz.4.221'.
[   56.182707][ T4382] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.224528][ T4388] loop0: detected capacity change from 0 to 512
[   56.241677][ T4382] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.310190][ T4382] debugfs: 'netdev@ffff888109846558' already exists in 'ref_tracker'
[   56.346698][ T4379] loop3: detected capacity change from 0 to 512
[   56.355352][ T4379] ext4: Unknown parameter 'obj_role'
[   56.358934][ T3733] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.361792][ T4388] EXT4-fs: Ignoring removed bh option
[   56.372714][ T4384] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.221' sets config #0
[   56.383704][ T3733] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.400173][ T3733] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.411753][ T4384] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.221' sets config #1
[   56.428962][ T4388] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.439418][   T31] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.472702][ T4384] lo speed is unknown, defaulting to 1000
[   56.478843][ T4384] lo speed is unknown, defaulting to 1000
[   56.513577][ T4384] vcan0 speed is unknown, defaulting to 1000
[   56.569848][ T4388] FAULT_INJECTION: forcing a failure.
[   56.569848][ T4388] name failslab, interval 1, probability 0, space 0, times 0
[   56.575467][ T4399] loop1: detected capacity change from 0 to 512
[   56.582552][ T4388] CPU: 0 UID: 0 PID: 4388 Comm: syz.0.223 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   56.582587][ T4388] Tainted: [W]=WARN
[   56.582601][ T4388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   56.582639][ T4388] Call Trace:
[   56.582647][ T4388]  <TASK>
[   56.582658][ T4388]  __dump_stack+0x1d/0x30
[   56.582755][ T4388]  dump_stack_lvl+0xe8/0x140
[   56.582851][ T4388]  dump_stack+0x15/0x1b
[   56.582874][ T4388]  should_fail_ex+0x265/0x280
[   56.582943][ T4388]  should_failslab+0x8c/0xb0
[   56.582981][ T4388]  __kmalloc_noprof+0xa5/0x570
[   56.583085][ T4388]  ? alloc_pipe_info+0x1c9/0x350
[   56.583121][ T4388]  alloc_pipe_info+0x1c9/0x350
[   56.583182][ T4388]  splice_direct_to_actor+0x592/0x680
[   56.583213][ T4388]  ? kstrtouint_from_user+0x9f/0xf0
[   56.583285][ T4388]  ? __pfx_direct_splice_actor+0x10/0x10
[   56.583316][ T4388]  ? __rcu_read_unlock+0x4f/0x70
[   56.583348][ T4388]  ? get_pid_task+0x96/0xd0
[   56.583379][ T4388]  ? avc_policy_seqno+0x15/0x30
[   56.583469][ T4388]  ? selinux_file_permission+0x1e4/0x320
[   56.583512][ T4388]  do_splice_direct+0xda/0x150
[   56.583615][ T4388]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   56.583654][ T4388]  do_sendfile+0x380/0x650
[   56.583702][ T4388]  __x64_sys_sendfile64+0x105/0x150
[   56.583745][ T4388]  x64_sys_call+0x2bb4/0x3000
[   56.583806][ T4388]  do_syscall_64+0xd2/0x200
[   56.583833][ T4388]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.583906][ T4388]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   56.583947][ T4388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.583974][ T4388] RIP: 0033:0x7f13beb7f6c9
[   56.583992][ T4388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.584015][ T4388] RSP: 002b:00007f13bd5df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   56.584037][ T4388] RAX: ffffffffffffffda RBX: 00007f13bedd5fa0 RCX: 00007f13beb7f6c9
[   56.584081][ T4388] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007
[   56.584096][ T4388] RBP: 00007f13bd5df090 R08: 0000000000000000 R09: 0000000000000000
[   56.584112][ T4388] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[   56.584128][ T4388] R13: 00007f13bedd6038 R14: 00007f13bedd5fa0 R15: 00007ffc906388b8
[   56.584152][ T4388]  </TASK>
[   56.589186][ T4400] netlink: 'syz.4.221': attribute type 4 has an invalid length.
[   56.657669][ T4399] EXT4-fs: Ignoring removed oldalloc option
[   56.672144][ T3415] lo speed is unknown, defaulting to 1000
[   56.790694][ T4399] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.798077][ T3415] s
z1: Port: 1 Link DOWN
[   56.864815][ T4399] EXT4-fs (loop1): too many log groups per flexible block group
[   56.873359][ T3401] lo speed is unknown, defaulting to 1000
[   56.879514][ T4399] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   56.886931][ T4399] EXT4-fs (loop1): mount failed
[   56.945631][ T4410] netlink: 32 bytes leftover after parsing attributes in process `syz.4.230'.
[   56.955386][ T4410] FAULT_INJECTION: forcing a failure.
[   56.955386][ T4410] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.968608][ T4410] CPU: 1 UID: 0 PID: 4410 Comm: syz.4.230 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   56.968695][ T4410] Tainted: [W]=WARN
[   56.968704][ T4410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   56.968720][ T4410] Call Trace:
[   56.968728][ T4410]  <TASK>
[   56.968738][ T4410]  __dump_stack+0x1d/0x30
[   56.968810][ T4410]  dump_stack_lvl+0xe8/0x140
[   56.968830][ T4410]  dump_stack+0x15/0x1b
[   56.968852][ T4410]  should_fail_ex+0x265/0x280
[   56.968934][ T4410]  should_fail+0xb/0x20
[   56.968949][ T4410]  should_fail_usercopy+0x1a/0x20
[   56.968971][ T4410]  _copy_to_user+0x20/0xa0
[   56.969100][ T4410]  simple_read_from_buffer+0xb5/0x130
[   56.969166][ T4410]  proc_fail_nth_read+0x10e/0x150
[   56.969206][ T4410]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   56.969245][ T4410]  vfs_read+0x1a8/0x770
[   56.969344][ T4410]  ? __rcu_read_unlock+0x4f/0x70
[   56.969378][ T4410]  ? __fget_files+0x184/0x1c0
[   56.969414][ T4410]  ksys_read+0xda/0x1a0
[   56.969444][ T4410]  __x64_sys_read+0x40/0x50
[   56.969552][ T4410]  x64_sys_call+0x27c0/0x3000
[   56.969580][ T4410]  do_syscall_64+0xd2/0x200
[   56.969601][ T4410]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.969637][ T4410]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   56.969714][ T4410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.969802][ T4410] RIP: 0033:0x7faf210ee0dc
[   56.969822][ T4410] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   56.969846][ T4410] RSP: 002b:00007faf1fb4f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   56.969870][ T4410] RAX: ffffffffffffffda RBX: 00007faf21345fa0 RCX: 00007faf210ee0dc
[   56.969884][ T4410] RDX: 000000000000000f RSI: 00007faf1fb4f0a0 RDI: 0000000000000004
[   56.969895][ T4410] RBP: 00007faf1fb4f090 R08: 0000000000000000 R09: 0000000000000000
[   56.969921][ T4410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.969937][ T4410] R13: 00007faf21346038 R14: 00007faf21345fa0 R15: 00007ffcc93c06b8
[   56.969961][ T4410]  </TASK>
[   57.021470][ T4409] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   57.021470][ T4409]    program syz.0.227 not setting count and/or reply_len properly
[   57.056593][ T4415] loop2: detected capacity change from 0 to 1024
[   57.207807][ T4419] loop4: detected capacity change from 0 to 128
[   57.209236][ T4415] EXT4-fs (loop2): stripe (6) is not aligned with cluster size (16), stripe is disabled
[   57.229117][ T4419] ext4 filesystem being mounted at /53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.232625][ T4416] bridge0: entered promiscuous mode
[   57.272459][ T4416] bridge0: port 3(macsec1) entered blocking state
[   57.279003][ T4416] bridge0: port 3(macsec1) entered disabled state
[   57.285741][ T4416] macsec1: entered allmulticast mode
[   57.291095][ T4416] bridge0: entered allmulticast mode
[   57.299243][ T4416] macsec1: left allmulticast mode
[   57.304365][ T4416] bridge0: left allmulticast mode
[   57.358324][ T4416] bridge0: left promiscuous mode
[   57.457789][ T4430] loop3: detected capacity change from 0 to 512
[   57.464802][ T4430] ext4: Unknown parameter 'obj_role'
[   57.620263][ T4439] netlink: 83992 bytes leftover after parsing attributes in process `syz.1.231'.
[   57.637620][ T4439] netlink: zone id is out of range
[   57.642791][ T4439] netlink: zone id is out of range
[   57.758028][ T4450] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[   57.784707][ T4436] loop4: detected capacity change from 0 to 1024
[   57.806896][ T4436] EXT4-fs: Ignoring removed orlov option
[   57.835594][ T4453] can: request_module (can-proto-3) failed.
[   57.870404][ T4464] loop2: detected capacity change from 0 to 512
[   57.877594][ T4464] ext4: Unknown parameter 'obj_role'
[   57.915607][ T4442] netlink: 'syz.4.238': attribute type 7 has an invalid length.
[   57.923410][ T4442] netlink: 148 bytes leftover after parsing attributes in process `syz.4.238'.
[   57.957035][ T4453] loop0: detected capacity change from 0 to 2048
[   58.018729][ T4473] process 'syz.1.249' launched '/dev/fd/5' with NULL argv: empty string added
[   58.039937][ T3505] Alternate GPT is invalid, using primary GPT.
[   58.046343][ T3505]  loop0: p2 p3 p7
[   58.115718][ T4453] Alternate GPT is invalid, using primary GPT.
[   58.122143][ T4453]  loop0: p2 p3 p7
[   58.161683][   T29] kauditd_printk_skb: 397 callbacks suppressed
[   58.161699][   T29] audit: type=1326 audit(1762770459.219:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.191382][   T29] audit: type=1326 audit(1762770459.219:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.214780][   T29] audit: type=1326 audit(1762770459.219:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f13beb7ec47 code=0x7ffc0000
[   58.238123][   T29] audit: type=1326 audit(1762770459.219:2127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.261573][   T29] audit: type=1326 audit(1762770459.219:2128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f13beb7ec47 code=0x7ffc0000
[   58.284993][   T29] audit: type=1326 audit(1762770459.219:2129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.308394][   T29] audit: type=1326 audit(1762770459.219:2130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.331737][   T29] audit: type=1326 audit(1762770459.219:2131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.355174][   T29] audit: type=1326 audit(1762770459.219:2132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f13beb7ddba code=0x7ffc0000
[   58.378527][   T29] audit: type=1326 audit(1762770459.219:2133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4452 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f13beb7ec47 code=0x7ffc0000
[   58.550932][ T4490] netlink: 12 bytes leftover after parsing attributes in process `syz.1.255'.
[   58.562226][ T4492] FAULT_INJECTION: forcing a failure.
[   58.562226][ T4492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.575394][ T4492] CPU: 1 UID: 0 PID: 4492 Comm: syz.0.257 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   58.575466][ T4492] Tainted: [W]=WARN
[   58.575474][ T4492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   58.575489][ T4492] Call Trace:
[   58.575497][ T4492]  <TASK>
[   58.575507][ T4492]  __dump_stack+0x1d/0x30
[   58.575585][ T4492]  dump_stack_lvl+0xe8/0x140
[   58.575609][ T4492]  dump_stack+0x15/0x1b
[   58.575674][ T4492]  should_fail_ex+0x265/0x280
[   58.575694][ T4492]  should_fail+0xb/0x20
[   58.575714][ T4492]  should_fail_usercopy+0x1a/0x20
[   58.575788][ T4492]  _copy_to_user+0x20/0xa0
[   58.575817][ T4492]  simple_read_from_buffer+0xb5/0x130
[   58.575849][ T4492]  proc_fail_nth_read+0x10e/0x150
[   58.575890][ T4492]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   58.575978][ T4492]  vfs_read+0x1a8/0x770
[   58.576056][ T4492]  ? __rcu_read_unlock+0x4f/0x70
[   58.576089][ T4492]  ? __fget_files+0x184/0x1c0
[   58.576224][ T4492]  ksys_read+0xda/0x1a0
[   58.576257][ T4492]  __x64_sys_read+0x40/0x50
[   58.576289][ T4492]  x64_sys_call+0x27c0/0x3000
[   58.576318][ T4492]  do_syscall_64+0xd2/0x200
[   58.576393][ T4492]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   58.576449][ T4492]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   58.576479][ T4492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.576583][ T4492] RIP: 0033:0x7f13beb7e0dc
[   58.576604][ T4492] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   58.576623][ T4492] RSP: 002b:00007f13bd5df030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   58.576642][ T4492] RAX: ffffffffffffffda RBX: 00007f13bedd5fa0 RCX: 00007f13beb7e0dc
[   58.576658][ T4492] RDX: 000000000000000f RSI: 00007f13bd5df0a0 RDI: 0000000000000006
[   58.576673][ T4492] RBP: 00007f13bd5df090 R08: 0000000000000000 R09: 0000000000000000
[   58.576687][ T4492] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000001
[   58.576702][ T4492] R13: 00007f13bedd6038 R14: 00007f13bedd5fa0 R15: 00007ffc906388b8
[   58.576726][ T4492]  </TASK>
[   58.851868][ T4490] netlink: 'syz.1.255': attribute type 1 has an invalid length.
[   58.900475][ T4500] Invalid ELF header magic: != ELF
[   58.914418][ T4496] loop1: detected capacity change from 0 to 512
[   58.958135][ T4496] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   59.003896][ T4496] EXT4-fs (loop1): mount failed
[   59.074068][ T4508] 9pnet: Could not find request transport: f
[   59.098452][ T4511] netlink: 28 bytes leftover after parsing attributes in process `syz.1.262'.
[   59.107406][ T4511] netlink: 108 bytes leftover after parsing attributes in process `syz.1.262'.
[   59.116479][ T4511] FAULT_INJECTION: forcing a failure.
[   59.116479][ T4511] name failslab, interval 1, probability 0, space 0, times 0
[   59.129280][ T4511] CPU: 0 UID: 0 PID: 4511 Comm: syz.1.262 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   59.129339][ T4511] Tainted: [W]=WARN
[   59.129346][ T4511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   59.129361][ T4511] Call Trace:
[   59.129369][ T4511]  <TASK>
[   59.129377][ T4511]  __dump_stack+0x1d/0x30
[   59.129510][ T4511]  dump_stack_lvl+0xe8/0x140
[   59.129534][ T4511]  dump_stack+0x15/0x1b
[   59.129556][ T4511]  should_fail_ex+0x265/0x280
[   59.129618][ T4511]  ? tcf_ct_init+0x416/0xe80
[   59.129634][ T4511]  should_failslab+0x8c/0xb0
[   59.129682][ T4511]  __kmalloc_cache_noprof+0x4c/0x4a0
[   59.129725][ T4511]  tcf_ct_init+0x416/0xe80
[   59.129748][ T4511]  ? _raw_spin_unlock+0x26/0x50
[   59.129826][ T4511]  tcf_action_init_1+0x36a/0x4a0
[   59.129857][ T4511]  tcf_action_init+0x267/0x6d0
[   59.129903][ T4511]  tc_ctl_action+0x291/0x830
[   59.129973][ T4511]  ? __pfx_tc_ctl_action+0x10/0x10
[   59.130070][ T4511]  rtnetlink_rcv_msg+0x65a/0x6d0
[   59.130101][ T4511]  netlink_rcv_skb+0x123/0x220
[   59.130136][ T4511]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   59.130175][ T4511]  rtnetlink_rcv+0x1c/0x30
[   59.130268][ T4511]  netlink_unicast+0x5c0/0x690
[   59.130466][ T4511]  netlink_sendmsg+0x58b/0x6b0
[   59.130567][ T4511]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.130593][ T4511]  __sock_sendmsg+0x145/0x180
[   59.130619][ T4511]  ____sys_sendmsg+0x31e/0x4e0
[   59.130686][ T4511]  ___sys_sendmsg+0x17b/0x1d0
[   59.130722][ T4511]  __x64_sys_sendmsg+0xd4/0x160
[   59.130815][ T4511]  x64_sys_call+0x191e/0x3000
[   59.130838][ T4511]  do_syscall_64+0xd2/0x200
[   59.130861][ T4511]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   59.130934][ T4511]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   59.130974][ T4511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.130996][ T4511] RIP: 0033:0x7f8fda93f6c9
[   59.131013][ T4511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.131036][ T4511] RSP: 002b:00007f8fd93a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.131131][ T4511] RAX: ffffffffffffffda RBX: 00007f8fdab95fa0 RCX: 00007f8fda93f6c9
[   59.131147][ T4511] RDX: 0000000000000000 RSI: 0000200000007940 RDI: 0000000000000004
[   59.131163][ T4511] RBP: 00007f8fd93a7090 R08: 0000000000000000 R09: 0000000000000000
[   59.131178][ T4511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.131193][ T4511] R13: 00007f8fdab96038 R14: 00007f8fdab95fa0 R15: 00007ffd5e3b96d8
[   59.131298][ T4511]  </TASK>
[   59.448197][ T4516] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.259'.
[   59.622115][ T4520] loop4: detected capacity change from 0 to 2048
[   59.897793][ T4528] loop2: detected capacity change from 0 to 512
[   59.933858][ T4520] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   59.999836][ T4528] ext4: Unknown parameter 'obj_role'
[   60.031412][ T4530] can: request_module (can-proto-3) failed.
[   60.068378][ T4520] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   60.080673][ T4520] EXT4-fs (loop4): This should not happen!! Data will be lost
[   60.080673][ T4520] 
[   60.090443][ T4520] EXT4-fs (loop4): Total free blocks count 0
[   60.096534][ T4520] EXT4-fs (loop4): Free/Dirty block details
[   60.102497][ T4520] EXT4-fs (loop4): free_blocks=2415919104
[   60.108274][ T4520] EXT4-fs (loop4): dirty_blocks=16
[   60.113407][ T4520] EXT4-fs (loop4): Block reservation details
[   60.119427][ T4520] EXT4-fs (loop4): i_reserved_data_blocks=1
[   60.131197][ T4520] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.266: corrupted in-inode xattr: invalid size in ea xattr
[   60.157098][ T4532] loop0: detected capacity change from 0 to 2048
[   60.163716][ T4520] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.266: corrupted in-inode xattr: invalid size in ea xattr
[   60.196021][ T4520] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #12: comm syz.4.266: corrupted in-inode xattr: invalid size in ea xattr
[   60.212722][ T4520] netlink: 16 bytes leftover after parsing attributes in process `syz.4.266'.
[   60.239391][   T31] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   60.251928][   T31] EXT4-fs (loop4): This should not happen!! Data will be lost
[   60.251928][   T31] 
[   60.284811][ T4532] Alternate GPT is invalid, using primary GPT.
[   60.291434][ T4532]  loop0: p2 p3 p7
[   60.352467][ T3004] Alternate GPT is invalid, using primary GPT.
[   60.359020][ T3004]  loop0: p2 p3 p7
[   60.586632][ T4558] Invalid ELF header magic: != ELF
[   60.942149][ T4567] loop3: detected capacity change from 0 to 512
[   60.951630][ T4567] ext4: Unknown parameter 'obj_role'
[   61.160642][ T4575] loop3: detected capacity change from 0 to 512
[   61.177825][ T4576] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.279'.
[   61.276502][ T4576] net_ratelimit: 15 callbacks suppressed
[   61.276519][ T4576] netlink: zone id is out of range
[   61.287453][ T4576] netlink: zone id is out of range
[   61.379722][ T4578] loop2: detected capacity change from 0 to 512
[   61.391258][ T4576] netlink: zone id is out of range
[   61.400223][ T4576] netlink: zone id is out of range
[   61.410483][ T4578] EXT4-fs: Ignoring removed oldalloc option
[   61.425542][ T4576] netlink: zone id is out of range
[   61.483539][ T4576] netlink: zone id is out of range
[   61.490145][ T4581] loop1: detected capacity change from 0 to 512
[   61.506987][ T4576] netlink: zone id is out of range
[   61.512197][ T4576] netlink: zone id is out of range
[   61.515323][ T4578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.527928][ T4575] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.281: couldn't read orphan inode 26 (err -116)
[   61.539869][ T4581] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.540459][ T4575] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.558194][ T4576] netlink: set zone limit has 8 unknown bytes
[   61.605944][ T4581] EXT4-fs (loop1): orphan cleanup on readonly fs
[   61.607720][ T4574] lo speed is unknown, defaulting to 1000
[   61.616507][ T4581] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.282: bg 0: block 248: padding at end of block bitmap is not set
[   61.618706][ T4574] lo speed is unknown, defaulting to 1000
[   61.632773][ T4581] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.282: Failed to acquire dquot type 1
[   61.650262][ T4581] EXT4-fs (loop1): 1 truncate cleaned up
[   61.669156][ T4578] EXT4-fs (loop2): too many log groups per flexible block group
[   61.676509][ T4574] vcan0 speed is unknown, defaulting to 1000
[   61.691392][ T4591] can: request_module (can-proto-3) failed.
[   61.699417][ T4578] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   61.706648][ T4578] EXT4-fs (loop2): mount failed
[   61.738995][ T4590] loop4: detected capacity change from 0 to 2048
[   61.803775][ T3639] Alternate GPT is invalid, using primary GPT.
[   61.810188][ T3639]  loop4: p2 p3 p7
[   61.819861][ T4598] loop2: detected capacity change from 0 to 512
[   61.826657][ T4602] loop0: detected capacity change from 0 to 512
[   61.828874][ T4598] EXT4-fs: Ignoring removed oldalloc option
[   61.840396][ T4602] ext4: Unknown parameter 'obj_role'
[   61.855972][ T4598] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.884863][ T4590] Alternate GPT is invalid, using primary GPT.
[   61.891283][ T4590]  loop4: p2 p3 p7
[   61.915618][ T4604] loop1: detected capacity change from 0 to 256
[   61.929763][ T4598] EXT4-fs (loop2): too many log groups per flexible block group
[   61.938896][ T4604] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   61.941700][ T4598] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   61.980111][ T3004] Alternate GPT is invalid, using primary GPT.
[   61.986654][ T3004]  loop4: p2 p3 p7
[   61.990725][ T4598] EXT4-fs (loop2): mount failed
[   62.069233][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   62.101674][ T4612] loop3: detected capacity change from 0 to 2048
[   62.126180][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   62.144599][ T4618] loop2: detected capacity change from 0 to 128
[   62.152529][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   62.166994][ T4618] syz.2.298: attempt to access beyond end of device
[   62.166994][ T4618] loop2: rw=2049, sector=138, nr_sectors = 2 limit=128
[   62.216484][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   62.228392][ T4621] veth0_vlan: entered allmulticast mode
[   62.235346][ T3505] udevd[3505]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   62.247873][ T4612] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   62.264576][ T3598] udevd[3598]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   62.318533][ T4621] veth0_vlan: left promiscuous mode
[   62.330157][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   62.340465][ T4621] veth0_vlan: entered promiscuous mode
[   62.358756][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   62.371156][ T3639] udevd[3639]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   62.385130][ T4612] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   62.397611][ T4612] EXT4-fs (loop3): This should not happen!! Data will be lost
[   62.397611][ T4612] 
[   62.407339][ T4612] EXT4-fs (loop3): Total free blocks count 0
[   62.413391][ T4612] EXT4-fs (loop3): Free/Dirty block details
[   62.419337][ T4612] EXT4-fs (loop3): free_blocks=2415919104
[   62.425203][ T4612] EXT4-fs (loop3): dirty_blocks=16
[   62.430353][ T4612] EXT4-fs (loop3): Block reservation details
[   62.436374][ T4612] EXT4-fs (loop3): i_reserved_data_blocks=1
[   62.479834][ T4635] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.295: corrupted in-inode xattr: invalid size in ea xattr
[   62.501776][ T4637] loop1: detected capacity change from 0 to 1024
[   62.520388][ T4634] loop2: detected capacity change from 0 to 512
[   62.539218][ T4612] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.295: corrupted in-inode xattr: invalid size in ea xattr
[   62.541818][ T4637] EXT4-fs: Ignoring removed nobh option
[   62.581854][ T4634] EXT4-fs (loop2): too many log groups per flexible block group
[   62.591478][ T4634] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   62.601930][ T4612] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #12: comm syz.3.295: corrupted in-inode xattr: invalid size in ea xattr
[   62.626799][ T4637] EXT4-fs: Ignoring removed bh option
[   62.634847][ T4634] EXT4-fs (loop2): mount failed
[   62.652443][ T4637] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   62.697200][ T4630] netlink: 16 bytes leftover after parsing attributes in process `syz.3.295'.
[   62.710170][ T4637] EXT4-fs (loop1): can't mount with commit=, fs mounted w/o journal
[   62.730976][ T4641] loop4: detected capacity change from 0 to 4096
[   62.755863][ T4641] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.777936][ T4637] loop1: detected capacity change from 0 to 512
[   62.802030][ T4637] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #18: comm syz.1.303: iget: bad extra_isize 90 (inode size 256)
[   62.828208][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   62.840509][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[   62.840509][   T12] 
[   62.907093][ T4651] loop2: detected capacity change from 0 to 512
[   62.914041][ T4651] EXT4-fs: Ignoring removed oldalloc option
[   62.920961][ T4637] EXT4-fs (loop1): Remounting filesystem read-only
[   62.927780][ T4637] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30)
[   62.937008][ T4651] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.946343][ T4637] EXT4-fs (loop1): 1 orphan inode deleted
[   62.971425][ T4651] EXT4-fs (loop2): too many log groups per flexible block group
[   62.987569][ T4651] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   62.993188][ T4656] loop3: detected capacity change from 0 to 512
[   62.994414][ T4651] EXT4-fs (loop2): mount failed
[   63.086963][ T4656] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.111355][ T4662] loop1: detected capacity change from 0 to 128
[   63.140038][ T4656] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.308: corrupted inode contents
[   63.155382][ T4664] Set syz1 is full, maxelem 2 reached
[   63.183004][   T29] kauditd_printk_skb: 407 callbacks suppressed
[   63.183023][   T29] audit: type=1326 audit(1762770464.239:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.212742][   T29] audit: type=1326 audit(1762770464.239:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.214269][ T4656] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.308: mark_inode_dirty error
[   63.317887][ T4656] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.308: corrupted inode contents
[   63.338416][   T29] audit: type=1326 audit(1762770464.389:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.361801][   T29] audit: type=1326 audit(1762770464.389:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.385397][   T29] audit: type=1326 audit(1762770464.389:2542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.408741][   T29] audit: type=1326 audit(1762770464.389:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.432241][ T4669] loop2: detected capacity change from 0 to 512
[   63.432899][ T4669] ext4: Unknown parameter 'obj_role'
[   63.438711][   T29] audit: type=1326 audit(1762770464.389:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.467329][   T29] audit: type=1326 audit(1762770464.389:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.490698][   T29] audit: type=1326 audit(1762770464.389:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.514275][   T29] audit: type=1326 audit(1762770464.389:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fda93f6c9 code=0x7ffc0000
[   63.698252][ T4678] netlink: 12 bytes leftover after parsing attributes in process `syz.3.318'.
[   63.734418][ T4673] loop4: detected capacity change from 0 to 2048
[   63.747665][ T4677] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4677 comm=syz.3.318
[   63.748002][ T4677] netlink: 4 bytes leftover after parsing attributes in process `syz.3.318'.
[   63.756852][ T4673] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.778838][ T4680] netlink: 12 bytes leftover after parsing attributes in process `syz.2.319'.
[   63.800417][ T4682] Invalid ELF header magic: != ELF
[   63.841817][ T4688] lo speed is unknown, defaulting to 1000
[   63.848247][ T4688] lo speed is unknown, defaulting to 1000
[   63.874411][ T4691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.908473][ T4691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   63.916636][ T4680] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4680 comm=syz.2.319
[   63.932964][ T4688] vcan0 speed is unknown, defaulting to 1000
[   63.941189][ T4680] netlink: 4 bytes leftover after parsing attributes in process `syz.2.319'.
[   63.957016][ T4693] loop3: detected capacity change from 0 to 1024
[   63.977541][ T4693] EXT4-fs: Ignoring removed orlov option
[   64.169646][ T4698] loop2: detected capacity change from 0 to 512
[   64.177653][ T4698] EXT4-fs: Ignoring removed oldalloc option
[   64.216760][ T4698] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.240293][ T4698] EXT4-fs (loop2): too many log groups per flexible block group
[   64.248079][ T4698] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   64.254881][ T4698] EXT4-fs (loop2): mount failed
[   64.511661][ T4715] xt_hashlimit: max too large, truncated to 1048576
[   64.552563][ T4693] ==================================================================
[   64.560787][ T4693] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[   64.568697][ T4693] 
[   64.571043][ T4693] write to 0xffff88811ac220f4 of 4 bytes by task 4696 on cpu 0:
[   64.578850][ T4693]  xas_set_mark+0x12b/0x140
[   64.583362][ T4693]  __folio_start_writeback+0x155/0x390
[   64.588834][ T4693]  ext4_bio_write_folio+0x5ad/0x9f0
[   64.594053][ T4693]  mpage_process_page_bufs+0x4a1/0x620
[   64.599523][ T4693]  mpage_prepare_extent_to_map+0x786/0xc00
[   64.605372][ T4693]  ext4_do_writepages+0xa05/0x2750
[   64.610508][ T4693]  ext4_writepages+0x176/0x300
[   64.615289][ T4693]  do_writepages+0x1c6/0x310
[   64.619888][ T4693]  file_write_and_wait_range+0x156/0x2c0
[   64.625543][ T4693]  generic_buffers_fsync_noflush+0x45/0x120
[   64.631470][ T4693]  ext4_sync_file+0x1ab/0x690
[   64.636263][ T4693]  vfs_fsync_range+0x10d/0x130
[   64.641053][ T4693]  ext4_buffered_write_iter+0x34f/0x3c0
[   64.646619][ T4693]  ext4_file_write_iter+0x387/0xf60
[   64.651821][ T4693]  iter_file_splice_write+0x666/0xa60
[   64.657215][ T4693]  direct_splice_actor+0x156/0x2a0
[   64.662332][ T4693]  splice_direct_to_actor+0x312/0x680
[   64.667708][ T4693]  do_splice_direct+0xda/0x150
[   64.672495][ T4693]  do_sendfile+0x380/0x650
[   64.676951][ T4693]  __x64_sys_sendfile64+0x105/0x150
[   64.682165][ T4693]  x64_sys_call+0x2bb4/0x3000
[   64.686846][ T4693]  do_syscall_64+0xd2/0x200
[   64.691352][ T4693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.697248][ T4693] 
[   64.699575][ T4693] read to 0xffff88811ac220f4 of 4 bytes by task 4693 on cpu 1:
[   64.707120][ T4693]  __writeback_single_inode+0x1f9/0x7c0
[   64.712670][ T4693]  writeback_single_inode+0x16d/0x3f0
[   64.718074][ T4693]  sync_inode_metadata+0x5b/0x90
[   64.723026][ T4693]  generic_buffers_fsync_noflush+0xd9/0x120
[   64.728928][ T4693]  ext4_sync_file+0x1ab/0x690
[   64.733611][ T4693]  vfs_fsync_range+0x10d/0x130
[   64.738384][ T4693]  ext4_buffered_write_iter+0x34f/0x3c0
[   64.743936][ T4693]  ext4_file_write_iter+0x387/0xf60
[   64.749146][ T4693]  iter_file_splice_write+0x666/0xa60
[   64.754526][ T4693]  direct_splice_actor+0x156/0x2a0
[   64.759671][ T4693]  splice_direct_to_actor+0x312/0x680
[   64.765056][ T4693]  do_splice_direct+0xda/0x150
[   64.769821][ T4693]  do_sendfile+0x380/0x650
[   64.774267][ T4693]  __x64_sys_sendfile64+0x105/0x150
[   64.779502][ T4693]  x64_sys_call+0x2bb4/0x3000
[   64.784195][ T4693]  do_syscall_64+0xd2/0x200
[   64.788702][ T4693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.794601][ T4693] 
[   64.796924][ T4693] value changed: 0x0a000021 -> 0x04000021
[   64.802639][ T4693] 
[   64.804959][ T4693] Reported by Kernel Concurrency Sanitizer on:
[   64.811113][ T4693] CPU: 1 UID: 0 PID: 4693 Comm: syz.3.320 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   64.822320][ T4693] Tainted: [W]=WARN
[   64.826119][ T4693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   64.836196][ T4693] ==================================================================
[   65.002504][   T37] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 345: padding at end of block bitmap is not set
[   65.017540][   T37] EXT4-fs (loop4): Remounting filesystem read-only