last executing test programs:

5m40.904316635s ago: executing program 1 (id=38):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000c40)={'filter\x00', 0x104, 0x4, 0x3c8, 0x110, 0x110, 0x110, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@empty, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac}, {@empty, {[0x0, 0x0, 0x0, 0xff]}}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 'dvmrp0\x00', 'netdevsim0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x41}, @rand_addr=0x64010101, 0x8, 0x1}}}, {{@arp={@loopback, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg0\x00', 'veth0\x00', {}, {}, 0x0, 0x20}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x80ca, 0x8}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r2)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=r2, 0x24, 0x0, 0xda, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

5m40.894257406s ago: executing program 1 (id=39):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000"], 0x0}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000004c0)={0x0, 0x3, 0x6, @remote}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000640)={0x4}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r3, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_procfs(0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000040)="9e4aa4c0", 0x4, 0x41, &(0x7f0000000180)={0xa, 0x4e23, 0x8001, @loopback, 0xe}, 0x1c)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
sendto$inet6(r3, &(0x7f0000000700)='\x00', 0x1, 0x4090, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r3, 0x29, 0x3b, &(0x7f0000000080)=ANY=[@ANYBLOB="32140000000000000738000000020c05020001040000000000000500000000000000000000000000d80705000000000000000700000b000000003ba4000000000000c910ff01000000000000000000000000000101090000000000000000000730000000030afed0070400000000000000ff01000000000000000800000000000003000000000000"], 0xb0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

5m40.721549549s ago: executing program 1 (id=43):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82802, 0xf)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={r0, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf900000080149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d665f985881a350000ddffffff00", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "715237601a8ca5b07dcc141802c4dacf162e43ac61f7ad330000000000a04100", [0xffffffff7ffffce8, 0xa]}})

5m40.682992014s ago: executing program 1 (id=44):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYRESDEC, @ANYBLOB="fe2ecf20a9a17bd2ed7e803f830375c150a1f848f604c2c1f932d2b7163be4b2b9a5bd521d185cfbee555b27608594beba6325923aaf5db74cff01000053db92c6c5fcbba0abd975fc76bea49b00513afc856ed89d3fadeda307ca587354322803b0983cc65725ae7f45fb95e7cdb28c6b886959b7dde2c87c73f6008cf6eed7861f24b7423704b95f3d05b92d3d7ff9d392833ecd02443320b60131a350360fcc1d659e2a03cb469caf0498bacae0735a161345b3d71a55f14ef636b6f832c7a6071fce83904dfd871b6d8e03648dbaa3a039eb5673792cae80335732030f9aeabaf3bb3cc4ca5fe75271d69b2e78beb2b81fc3cf3a18a7ae93a3cdbe6599b99408275e2b4b4477c6fcf4806134e839e13533ec000000000000006a1c000000000000000000000000000000000000000000000000000069c3288311b7414705e975eb3f1b77a120", @ANYRESOCT], 0x8, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
syz_clone3(&(0x7f0000000080)={0x801400, &(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r1)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x54, 0x12, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, 0xf0ffffff}, [@INET_DIAG_REQ_BYTECODE={0x8, 0x3, "11000000"}]}, 0x54}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000508000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000840)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a5c000000090a010400000000000000000a0000040900020073797a310000000008000a40fffffffc0900010073797a3100000000080005400000000d18001280140001800c000100636f756e74657200040002800800034000000130140000001100010000000000000000000100000a895966e5618c76479deb80130f74f83a3ad698cfd1c6f7223ad0f2285704c2c09b385203a099ab4af3e5cfe35137bc0836de5f22b489d63adb42812a8f1be3deb80f8fe39ba97b30e6707230aa3a23e4258ae6ff71f73ab179e521a00b58dc74016b0d54095763b7b25ff5ff4fad8b07bd1622a11802de"], 0x84}, 0x1, 0x0, 0x0, 0x4044050}, 0x40)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x84, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/3\x00')
getdents64(r4, &(0x7f0000002f40)=""/4098, 0x1002)

5m40.490153418s ago: executing program 1 (id=47):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a38500000070000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a01010000000000000000020000000900020073797a31000000000900010073797a300000000054000380080002400000000840000380140001006272696467655f736c6176655f31000014000100776732000000000000000000000000001400010077673200000000000000000000000000080001"], 0xa8}}, 0x0)

5m40.072536222s ago: executing program 1 (id=50):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r1)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=r1, 0x24, 0x0, 0xda, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

5m39.961940966s ago: executing program 32 (id=50):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r1)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=r1, 0x24, 0x0, 0xda, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

2.527911094s ago: executing program 4 (id=4933):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001803000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$eJzs3d9rW9cdAPDvla0sP5zZYXvIAsvCkmGHLZIdL4nZQ7bB2J4C27L3zLNlYyxbxpKT2ITNYX/AYIy10Kc+9aXQP6BQ8ieUQqB9L21pKW3SPhTaRkVXUuI4UuwQWUqtzweOdO7Rvfqeo4uO7rn3cBVA3zoVEacj4kG1Wj0bEcON8kwjxWY91da7f+/WTC0lUa1e/SyJSOpltdXGtrznkcZmByPir3+K+EfyZNzy+sbidLFYWG0s5ytLK/ny+sa5haXp+cJ8YXlycuLi1KWpC1PjHWnnUERc/sNH///Pa3+8/Navbrx/7ZOxfyaN8ohH7ei0etOz6WfRNBgRq3sRrEcG0xYCAPB90DzO/3lEnI3hGEiP5gAAAID9pPrbofgmiagCAAAA+1YmnQObZHKNeQBDkcnkcvU5vD+Ow5liqVz55VxpbXm2Pld2JLKZuYViYbwxV3gksklteSLNP1o+v215MiKORcT/hg+ly7mZUnG21yc/AAAAoE8c2Tb+/3K4Pv7f4uueVQ4AAADonJFeVwAAAADYc8b/AAAAsP8Z/wMAAMC+9ucrV2qp2vz/69nr62uLpevnZgvlxdzS2kxuprS6kpsvlebTe/Yt7fR+xVJp5dexvHYzXymUK/ny+sa1pdLacuXawmN/gQ0AAAB00bGf3XkviYjN3xxKU82BXlcK6IrBZ1n5w72rB9B9A72uANAzz/T7D+wr2V5XAOi5ZIfX207eebvzdQEAAPbG6E9aX/8f2PHcwGamS1UE9ojzf9C/XP+H/uX6P/SvbAyEgTz0t51uAfr81/+r1WeqEAAA0HFDaUoyuYj0PMBQZDK5XMTRdEyQTeYWioXxiPhhRLw7nP1BbXki3TLZcc4wAAAAAAAAAAAAAAAAAAAAAAAAAFBXrSZRBQAAAPa1iMzHSXo3/4jR4TND288PHEi+Gk6fI+LGK1dfujldqaxO1Mo/f1heeblRfr4XZzAAAACA7Zrj9OY4HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA66f69WzPN1M24n/4+IkZaxR+Mg+nzwchGxOEvkhjcsl0SEQMdiL95OyKOt4qf1KoVI41atIp/qMfxj3QgPvSzO7X+53etvn+ZOJU+t/7+XUx7qOfXvv/LPOz/BlrEr5Ud3WWME3ffyLeNfzvixGDr/qcZP2nT/5zeZfy//21jo91r1VcjRlv+/iSPxcpXllby5fWNcwtL0/OF+cLy5OTExalLUxemxvNzC8VC47FljP/+9M0HT2v/4TbxR3Zo/5ldtv/buzfv/aiezT7cPHkUf+x06/1/vE38TGP//6KRr70+2sxv1vNbnXz9nZNPa/9sm/bvtP/Hdtn+s3/59we7XBUA6ILy+sbidLFYWO3rzHN9GrXDoheiFS9mpva5vgDVaJn51x68c+3IvNft6kSmp90SAACwB54cAwMAAAAAAAAAAAAAAAAAAADd1o3biWW3xdxMHztx93wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgM75LgAA///6fNJN")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

2.057657345s ago: executing program 4 (id=4936):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000240)=0x14)
setsockopt$packet_int(r2, 0x107, 0x8, &(0x7f00000002c0)=0x5, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x2, 0x5001)
r3 = socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_link_settings={0x4d, 0x32, 0xf7, 0x3, 0x80, 0x7, 0xc2, 0xc, 0x81, 0x4, [0x20040, 0x9, 0x10, 0x40, 0x80000006, 0x8, 0xfffffeff, 0x2174]}})
socket$netlink(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r4}, 0x10)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c232000, 0x3, 0x2})
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})

1.943056159s ago: executing program 4 (id=4937):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fsopen(&(0x7f0000000240)='exfat\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x44000002)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c000900", @ANYRES32=r0], 0x4c}}, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ustat(0x1, &(0x7f0000000100))

1.763357193s ago: executing program 4 (id=4941):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0xfffffff9, 0xe, 0x0, 0x0, 0x7e, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r4 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000100)=0x6)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100b61fd3a1209c84000000000000050000", @ANYRES32=0x0, @ANYBLOB="0800020001000000"], 0x24}}, 0x8000)
sendmsg$GTP_CMD_ECHOREQ(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB=':\x00\x00\x00', @ANYRES16, @ANYBLOB="100025bd7000fddbdf2503000000080002000000000008000800040000000c0003000100000000000000080005007f000001"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x4, @private1}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)={'gretap0\x00', 0x0, 0x20, 0x1, 0x5, 0x5, {{0x47, 0x4, 0x1, 0xc, 0x11c, 0x67, 0x0, 0x0, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x13, 0x42, [@dev={0xac, 0x14, 0x14, 0x3d}, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0xb1, 0x1, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x1}, {@multicast1, 0x8}, {@multicast1, 0x2b13}, {@empty, 0x6}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@private=0xa010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x9}, {@private=0xa010101, 0xb}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x60, 0x3, [{0x2, 0x3, "ad"}, {0x6, 0x4, "da61"}, {0x2, 0x3, "c2"}, {0x7, 0x9, "96973210287f01"}, {0x7, 0x4, "18a7"}, {0x1, 0xf, "a2102ec232e44e04f9ef8d8f2a"}, {0x5, 0x8, "0f312f33eb2b"}, {0x5, 0x11, "f1d5006b2ed695c91df5327e1dec08"}, {0x7, 0xd, "81ea03c3b16e232f85cd5e"}, {0x3, 0xe, "5d8f5e01f2de04c712e14752"}]}, @timestamp_addr={0x44, 0x34, 0xf9, 0x1, 0x8, [{@dev={0xac, 0x14, 0x14, 0x2a}}, {@empty, 0x8}, {@broadcast, 0x5}, {@loopback, 0x1}, {@rand_addr=0x64010101, 0x1b39}, {@rand_addr=0x64010101, 0x4d34}]}, @ssrr={0x89, 0xb, 0xe1, [@rand_addr=0x64010100, @rand_addr=0x64010100]}, @end, @noop]}}}}})
close_range(r6, 0xffffffffffffffff, 0x0)

1.717544749s ago: executing program 5 (id=4942):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f}, 0x94)
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="0000800000000180c200000086dd6012000800183a00fc000000000000000000000000000000ac5f0000000500000000000000000001076b"], 0x0)
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, @perf_bp={0x0, 0xa}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2, 0x31}, 0x48)

1.652651637s ago: executing program 5 (id=4944):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01dfffffff9a2600000021", @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

1.613972252s ago: executing program 5 (id=4947):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000240)=0x14)
setsockopt$packet_int(r2, 0x107, 0x8, &(0x7f00000002c0)=0x5, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x2, 0x5001)
r3 = socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_link_settings={0x4d, 0x32, 0xf7, 0x3, 0x80, 0x7, 0xc2, 0xc, 0x81, 0x4, [0x20040, 0x9, 0x10, 0x40, 0x80000006, 0x8, 0xfffffeff, 0x2174]}})
socket$netlink(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r4}, 0x10)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c232000, 0x3, 0x2})
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})

1.514044525s ago: executing program 5 (id=4949):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0xfffffff9, 0xe, 0x0, 0x0, 0x7e, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r4 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000100)=0x6)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100b61fd3a1209c84000000000000050000", @ANYRES32=0x0, @ANYBLOB="0800020001000000"], 0x24}}, 0x8000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)={'gretap0\x00', 0x0, 0x20, 0x1, 0x5, 0x5, {{0x47, 0x4, 0x1, 0xc, 0x11c, 0x67, 0x0, 0x0, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x13, 0x42, [@dev={0xac, 0x14, 0x14, 0x3d}, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0xb1, 0x1, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x1}, {@multicast1, 0x8}, {@multicast1, 0x2b13}, {@empty, 0x6}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@private=0xa010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x9}, {@private=0xa010101, 0xb}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x60, 0x3, [{0x2, 0x3, "ad"}, {0x6, 0x4, "da61"}, {0x2, 0x3, "c2"}, {0x7, 0x9, "96973210287f01"}, {0x7, 0x4, "18a7"}, {0x1, 0xf, "a2102ec232e44e04f9ef8d8f2a"}, {0x5, 0x8, "0f312f33eb2b"}, {0x5, 0x11, "f1d5006b2ed695c91df5327e1dec08"}, {0x7, 0xd, "81ea03c3b16e232f85cd5e"}, {0x3, 0xe, "5d8f5e01f2de04c712e14752"}]}, @timestamp_addr={0x44, 0x34, 0xf9, 0x1, 0x8, [{@dev={0xac, 0x14, 0x14, 0x2a}}, {@empty, 0x8}, {@broadcast, 0x5}, {@loopback, 0x1}, {@rand_addr=0x64010101, 0x1b39}, {@rand_addr=0x64010101, 0x4d34}]}, @ssrr={0x89, 0xb, 0xe1, [@rand_addr=0x64010100, @rand_addr=0x64010100]}, @end, @noop]}}}}})
close_range(r6, 0xffffffffffffffff, 0x0)

1.496969927s ago: executing program 0 (id=4950):
syz_open_procfs(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000180)={[{@delalloc}, {@noauto_da_alloc}, {@discard}, {@nodioread_nolock}, {@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@bsdgroups}, {@grpquota}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x68a2}}, {@nobh}, {@noload}, {@nouid32}, {@grpquota}]}, 0x1, 0x569, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x8}, 0x18)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1.408318899s ago: executing program 3 (id=4951):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = open(&(0x7f0000000280)='.\x00', 0x800, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x5, 0x0, 0xfffffc}]}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, 0x0}, 0x1f00)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))
r4 = open(&(0x7f0000000280)='.\x00', 0x181000, 0x0)
close_range(r0, r4, 0x0)

1.395150421s ago: executing program 0 (id=4952):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

1.302938942s ago: executing program 3 (id=4953):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x2c, 0x0, 0x9, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x3}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40000)
sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, 0x6, 0x6, 0x0, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0xd0}, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setresuid(0xee00, 0x0, 0x0)
prlimit64(0x0, 0xd, &(0x7f00000000c0)={0x200000000005, 0x8000000000200003}, 0x0)
setpriority(0x2, 0x0, 0xffffffffffffffcd)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)

1.23700805s ago: executing program 3 (id=4954):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f}, 0x94)
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="0000800000000180c200000086dd6012000800183a00fc000000000000000000000000000000ac5f0000000500000000000000000001076b"], 0x0)
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, @perf_bp={0x0, 0xa}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2, 0x31}, 0x48)

1.124622855s ago: executing program 3 (id=4955):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0xfffffff9, 0xe, 0x0, 0x0, 0x7e, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(r0, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000480)={0xd753, 0x80b, 0x9, 0x7, 0x8, "d2f8bf9abeb6c9fa00000000e40100"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0x6)

1.118859596s ago: executing program 0 (id=4956):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = gettid()
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r4, 0x5402, 0x0)
write$binfmt_aout(r4, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000100)=0x6)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100b61fd3a1209c84000000000000050000", @ANYRES32=0x0, @ANYBLOB="0800020001000000"], 0x24}}, 0x8000)
sendmsg$GTP_CMD_ECHOREQ(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB=':\x00\x00\x00', @ANYRES16, @ANYBLOB="100025bd7000fddbdf2503000000080002000000000008000800040000000c0003000100000000000000080005007f000001"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
fcntl$setlease(r6, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x4, @private1}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)={'gretap0\x00', 0x0, 0x20, 0x1, 0x5, 0x5, {{0x45, 0x4, 0x1, 0xc, 0x114, 0x67, 0x0, 0x0, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x13, 0x42, [@dev={0xac, 0x14, 0x14, 0x3d}, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0xb1, 0x1, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x1}, {@multicast1, 0x8}, {@multicast1, 0x2b13}, {@empty, 0x6}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@private=0xa010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x9}, {@private=0xa010101, 0xb}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x60, 0x3, [{0x2, 0x3, "ad"}, {0x6, 0x4, "da61"}, {0x2, 0x3, "c2"}, {0x7, 0x9, "96973210287f01"}, {0x7, 0x4, "18a7"}, {0x1, 0xf, "a2102ec232e44e04f9ef8d8f2a"}, {0x5, 0x8, "0f312f33eb2b"}, {0x5, 0x11, "f1d5006b2ed695c91df5327e1dec08"}, {0x7, 0xd, "81ea03c3b16e232f85cd5e"}, {0x3, 0xe, "5d8f5e01f2de04c712e14752"}]}, @timestamp_addr={0x44, 0x34, 0xf9, 0x1, 0x8, [{@dev={0xac, 0x14, 0x14, 0x2a}}, {@empty, 0x8}, {@broadcast, 0x5}, {@loopback, 0x1}, {@rand_addr=0x64010101, 0x1b39}, {@rand_addr=0x64010101, 0x4d34}]}, @end, @noop]}}}}})
close_range(r7, 0xffffffffffffffff, 0x0)

907.481293ms ago: executing program 4 (id=4957):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f0000000180)=r1}, 0x20)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000001000000"], 0x48)
r2 = syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc888, &(0x7f0000002340)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0], 0x4, 0x273, &(0x7f0000000680)="$eJzs281qE1EYxvGnH9ra2k60Wm1FfFEE3QxtvIJQWhADSm3EDxCmdqIh06RkQiUitju3Xkdx6U4Qb6AbL0BcuOvGZRfiSCexTdoUdWFGzf+3OW85fcI5vGfCWWS27r5aLuZDN+9V1dtj6pfWtS2l1Ks+1fU0xt64Pqpm67o6lv10/va9+zcy2ezsvNlcZuFa2sxGL7x7+vz1xffV4TtvRt8OaDP1cOtL+vPm+ObE1reFJ4XQCqGVylXzbLFcrnqLgW9LhbDomt26/NELfSuUQr/SMp8PyisrNfNKSyNDKxU/DM0r1azo16xatmqlZt5jr1Ay13VtZEj4mdzG/LyXSXoV+LMqlYw3I2nywExuI5EFAQCARP2d9//A5/7fCdz/u8HO/f9B4/ltxf0fAAAAAAAAAAAAAAAAAAAAAIB/wXYUOVEUOT/GI1L8hk/U+PuYpCFJw5KOSxqRNCrJkZSSdELSSUljkk5JOi1pXNIZSWclTTR9VtJ7xUGH9b+P/ncFnv/uRv+7W9OLu4PS8svV3GquPtbnM3kVFMjXlBx9jXvZUK/nrmdnpyyW0rnltUZ+bTXX15qflrNzYNrlp+t5a80PxOduN5+Ws3PA2uXTbfODunKpKe/K0YdHKivQUnwm9/Ivps1mbmb35Sfj//vfubarbf9c97D5ev4Xzkc01bY//ZrsT3bvkMLas6IXBH6FgoKCYrdI+psJnbDX9KRXAgAAAAAAAAAAAAAAAAD4HZ34OWHSewQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYL/vAQAA//94NGA9")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRESDEC=r3, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
add_key$fscrypt_v1(0x0, &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000380)={0x0, "3ff4057cbe5924464c439b8f826f00a0b3ab198e40a55462c05d329ad8430d9611dc0ff693dd1367edfa74cf2a6da5f4d68b3cfb2979dc95ee34f9c3da5707ae", 0x34}, 0x48, 0xffffffffffffffff)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000001, 0x6031, 0xffffffffffffffff, 0x4000)
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000480)='asymmetric\x00', &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)='abcdefghijklmnop', 0x0)
request_key(&(0x7f0000001d40)='asymmetric\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0xfffffffffffffffe)
munlockall()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = eventfd2(0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r7}, 0x38)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r8, 0x0, 0x115}, 0x18)
ioctl$USBDEVFS_FREE_STREAMS(r6, 0x8008551d, &(0x7f0000000000)=ANY=[@ANYBLOB="c37b98461025ba9c83"])
read$eventfd(r5, &(0x7f0000000040), 0x8)

625.14943ms ago: executing program 5 (id=4959):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_GET(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x14, r1, 0x1, 0x0, 0x0, {0x54}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0)

605.133822ms ago: executing program 5 (id=4961):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
pipe(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$P9_RGETLOCK(r4, &(0x7f0000000640)=ANY=[], 0x200002e6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='wbt_timer\x00', r3}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r6)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@FILEID_NILFS_WITHOUT_PARENT={0x20, 0x61, {0x2, 0x8000000000000001, 0x4, 0x2, 0x7fffffff}}, &(0x7f0000000100), 0x0)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x800)

361.116714ms ago: executing program 2 (id=4964):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f}, 0x94)
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="0000800000000180c200000086dd6012000800183a00fc000000000000000000000000000000ac5f0000000500000000000000000001076b"], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2, 0x31}, 0x48)

310.65661ms ago: executing program 2 (id=4965):
msgget$private(0x0, 0x480)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
ioctl$NS_GET_OWNER_UID(r1, 0xb704, &(0x7f00000000c0))
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, <r3=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r3}]}]}, 0x28}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee00}}, './bus\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x44f0)

309.72021ms ago: executing program 3 (id=4966):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

202.221454ms ago: executing program 2 (id=4967):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = open(&(0x7f0000000280)='.\x00', 0x800, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x4014)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x5, 0x0, 0xfffffc}]}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, 0x0}, 0x1f00)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))
r4 = open(&(0x7f0000000280)='.\x00', 0x181000, 0x0)
close_range(r0, r4, 0x0)

184.587986ms ago: executing program 0 (id=4968):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x4}, 0x18)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="d4000000", @ANYRES16=r1, @ANYBLOB="01000000000000000000010000001400020077673000000000000000000000000000ac0008802800008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c50000080200004000a004e2100000006fc000000000000000000000000000000570100000600050004000000240001000000000000000000000000000000000000000000000000000000000000000000300000800800030005000000240001"], 0xd4}, 0x1, 0x0, 0x0, 0x404c844}, 0x40000)

149.603411ms ago: executing program 0 (id=4969):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fsopen(&(0x7f0000000240)='exfat\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x44000002)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
getsockopt$XDP_STATISTICS(r4, 0x11b, 0x7, &(0x7f0000000280), &(0x7f00000002c0)=0x30)

138.256582ms ago: executing program 3 (id=4970):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0xfffffff9, 0xe, 0x0, 0x0, 0x7e, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r4 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000100)=0x6)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100b61fd3a1209c84000000000000050000", @ANYRES32=0x0, @ANYBLOB="0800020001000000"], 0x24}}, 0x8000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)={'gretap0\x00', 0x0, 0x20, 0x1, 0x5, 0x5, {{0x47, 0x4, 0x1, 0xc, 0x11c, 0x67, 0x0, 0x0, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x13, 0x42, [@dev={0xac, 0x14, 0x14, 0x3d}, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0xb1, 0x1, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x1}, {@multicast1, 0x8}, {@multicast1, 0x2b13}, {@empty, 0x6}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@private=0xa010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x9}, {@private=0xa010101, 0xb}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x60, 0x3, [{0x2, 0x3, "ad"}, {0x6, 0x4, "da61"}, {0x2, 0x3, "c2"}, {0x7, 0x9, "96973210287f01"}, {0x7, 0x4, "18a7"}, {0x1, 0xf, "a2102ec232e44e04f9ef8d8f2a"}, {0x5, 0x8, "0f312f33eb2b"}, {0x5, 0x11, "f1d5006b2ed695c91df5327e1dec08"}, {0x7, 0xd, "81ea03c3b16e232f85cd5e"}, {0x3, 0xe, "5d8f5e01f2de04c712e14752"}]}, @timestamp_addr={0x44, 0x34, 0xf9, 0x1, 0x8, [{@dev={0xac, 0x14, 0x14, 0x2a}}, {@empty, 0x8}, {@broadcast, 0x5}, {@loopback, 0x1}, {@rand_addr=0x64010101, 0x1b39}, {@rand_addr=0x64010101, 0x4d34}]}, @ssrr={0x89, 0xb, 0xe1, [@remote, @rand_addr=0x64010100]}, @end, @noop]}}}}})
close_range(r6, 0xffffffffffffffff, 0x0)

98.376208ms ago: executing program 2 (id=4971):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)={0x10, 0x1403, 0x400, 0x70bd2c, 0x25dfdbff}, 0x10}, 0x1, 0x0, 0x0, 0x400c040}, 0x20002801)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x1ffffffffffffffd}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000840)=ANY=[@ANYBLOB="3c010000100013070000000000000000fc0200000000000000000000000000010000000000000000000000000000000000000000000000000000002000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa000000000000000000000000000004d533000000fc00000000000000000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000ffffff7f0400000000000000000000000a00000000000000000000004c001400636d61632861657329000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000"], 0x13c}}, 0x0)

79.00871ms ago: executing program 2 (id=4972):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
syz_io_uring_setup(0x4e0, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x400252}, 0x0, 0x0)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
socket$rxrpc(0x21, 0x2, 0xa)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0x0)

50.615414ms ago: executing program 4 (id=4973):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

23.974067ms ago: executing program 2 (id=4974):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = gettid()
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r4, 0x5402, &(0x7f0000000000)={0xfffffff9, 0xe, 0x0, 0x0, 0x7e, "db8f2d2b3b7596160c6981acf8805944823a7f"})
write$binfmt_aout(r4, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000100)=0x6)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES16, @ANYBLOB="0100b61fd3a1209c84000000000000050000", @ANYRES32=0x0, @ANYBLOB="0800020001000000"], 0x24}}, 0x8000)
sendmsg$GTP_CMD_ECHOREQ(r1, 0x0, 0x10)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
fcntl$setlease(r6, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x4, @private1}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)={'gretap0\x00', 0x0, 0x20, 0x1, 0x5, 0x5, {{0x48, 0x4, 0x1, 0xc, 0x120, 0x67, 0x0, 0x0, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}, @ssrr={0x89, 0x13, 0x42, [@dev={0xac, 0x14, 0x14, 0x3d}, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0xb1, 0x1, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x1}, {@multicast1, 0x8}, {@multicast1, 0x2b13}, {@empty, 0x6}, {@dev={0xac, 0x14, 0x14, 0x16}, 0x2}, {@private=0xa010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x9}, {@private=0xa010101, 0xb}]}, @ra={0x94, 0x4}, @cipso={0x86, 0x5e, 0x3, [{0x2, 0x3, "ad"}, {0x6, 0x2}, {0x2, 0x3, "c2"}, {0x7, 0x9, "96973210287f01"}, {0x7, 0x4, "18a7"}, {0x1, 0xf, "a2102ec232e44e04f9ef8d8f2a"}, {0x5, 0x8, "0f312f33eb2b"}, {0x5, 0x11, "f1d5006b2ed695c91df5327e1dec08"}, {0x7, 0xd, "81ea03c3b16e232f85cd5e"}, {0x3, 0xe, "5d8f5e01f2de04c712e14752"}]}, @timestamp_addr={0x44, 0x34, 0xf9, 0x1, 0x8, [{@dev={0xac, 0x14, 0x14, 0x2a}}, {@empty, 0x8}, {@broadcast, 0x5}, {@loopback, 0x1}, {@rand_addr=0x64010101, 0x1b39}, {@rand_addr=0x64010101, 0x4d34}]}, @ssrr={0x89, 0xf, 0xe1, [@rand_addr=0x64010100, @remote, @rand_addr=0x64010100]}, @end, @noop]}}}}})
close_range(r7, 0xffffffffffffffff, 0x0)

0s ago: executing program 0 (id=4975):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(r3, 0x8917, &(0x7f0000000180)={'vlan1\x00', {0x2, 0x0, @local}})
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454c9, 0x1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000080)={0x0, 0x0, 0xc, 0x12, 0x100, &(0x7f0000001100)="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"})
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000007000000000000000000000004000000bb7f1a004d00feff000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x93, &(0x7f00000005c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x4c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000a00)={<r7=>0x0, 0xd8fc, 0x0, 0xe76f, 0x4, 0x2, 0x0, 0x1, {0x0, @in6={{0xa, 0x4e23, 0x4, @remote, 0xfffffffa}}, 0xe64, 0x79d6, 0x7, 0x9, 0xfffffff9}}, &(0x7f00000001c0)=0xb0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000ac0)={r7, @in={{0x2, 0x4e22, @local}}, 0x3, 0x6, 0x6, 0x6, 0x20, 0xb93b, 0x3}, &(0x7f00000002c0)=0x9c)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a74000000060a0904000000000000f3770200000048000480300001800e000100696d6d6564696174650000001c000280100002800c00028008000180fffffffb0800014000000000140001800d00010073796e70726f7879000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x9c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000002000000000f40600000a14000000020a01"], 0x3c}, 0x1, 0x0, 0x0, 0x4011}, 0x4000094)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x80d, 0x0, 0x20000001, 0x5, 0x4}, 0x1, r9}}]}, {0x0, 0xa}, {0xc}, {0xc, 0x8, {0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x1}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)

kernel console output (not intermixed with test programs):

s error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4291: mark_inode_dirty error
[  332.412739][T16657] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  332.422019][T16657] EXT4-fs (loop4): 1 truncate cleaned up
[  332.428418][T16657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.463784][T16657] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  332.488527][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.567171][T16681] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  332.576094][T16681] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  332.588037][T16682] +}[@: attempt to access beyond end of device
[  332.588037][T16682] loop5: rw=2049, sector=145, nr_sectors = 40 limit=128
[  332.602103][T16682] +}[@: attempt to access beyond end of device
[  332.602103][T16682] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  332.615883][T16682] +}[@: attempt to access beyond end of device
[  332.615883][T16682] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  332.631393][T16681] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4301: Allocating blocks 41-42 which overlap fs metadata
[  332.645914][T16681] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4301: Allocating blocks 41-42 which overlap fs metadata
[  332.660541][T16681] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4301: Failed to acquire dquot type 1
[  332.675476][T16681] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  332.695032][T16681] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4301: corrupted inode contents
[  332.718199][T16681] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4301: mark_inode_dirty error
[  332.730471][T16681] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4301: corrupted inode contents
[  332.742737][T16681] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4301: mark_inode_dirty error
[  332.754761][T16681] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4301: corrupted inode contents
[  332.767335][T16681] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  332.776230][T16681] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4301: corrupted inode contents
[  332.788723][T16681] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4301: mark_inode_dirty error
[  332.801606][T16681] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  332.811299][T16681] EXT4-fs (loop4): 1 truncate cleaned up
[  332.818051][T16681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.835821][T16681] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  332.855363][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.927295][T16692] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  332.940449][T16692] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.034642][T12150] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  333.427237][T16720] set_capacity_and_notify: 14 callbacks suppressed
[  333.427283][T16720] loop4: detected capacity change from 0 to 128
[  333.527299][T16723] __nla_validate_parse: 6 callbacks suppressed
[  333.527315][T16723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4313'.
[  334.561953][T16757] macvlan1: entered allmulticast mode
[  334.567491][T16757] veth1_vlan: entered allmulticast mode
[  334.573611][T16757] macvlan1: entered promiscuous mode
[  334.644083][T16756] macvlan1: left promiscuous mode
[  334.649287][T16756] macvlan1: left allmulticast mode
[  334.654563][T16756] veth1_vlan: left allmulticast mode
[  334.697889][T16760] loop4: detected capacity change from 0 to 2048
[  334.718787][T16760] EXT4-fs (loop4): failed to initialize system zone (-117)
[  334.729064][T16760] EXT4-fs (loop4): mount failed
[  334.762250][T16760] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4326'.
[  334.796779][T16767] FAULT_INJECTION: forcing a failure.
[  334.796779][T16767] name failslab, interval 1, probability 0, space 0, times 0
[  334.809534][T16767] CPU: 0 UID: 0 PID: 16767 Comm: syz.2.4329 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  334.809607][T16767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  334.809621][T16767] Call Trace:
[  334.809628][T16767]  <TASK>
[  334.809637][T16767]  __dump_stack+0x1d/0x30
[  334.809683][T16767]  dump_stack_lvl+0x95/0xd0
[  334.809706][T16767]  dump_stack+0x15/0x1b
[  334.809837][T16767]  should_fail_ex+0x265/0x280
[  334.809861][T16767]  should_failslab+0x8c/0xb0
[  334.809884][T16767]  __kvmalloc_node_noprof+0x149/0x6b0
[  334.809911][T16767]  ? xt_alloc_table_info+0x40/0x80
[  334.809950][T16767]  ? should_fail_ex+0xdb/0x280
[  334.809974][T16767]  xt_alloc_table_info+0x40/0x80
[  334.810008][T16767]  do_ip6t_set_ctl+0x5a5/0x840
[  334.810116][T16767]  nf_setsockopt+0x199/0x1b0
[  334.810141][T16767]  ipv6_setsockopt+0x11a/0x130
[  334.810162][T16767]  udpv6_setsockopt+0x99/0xb0
[  334.810193][T16767]  sock_common_setsockopt+0x69/0x80
[  334.810248][T16767]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  334.810271][T16767]  __sys_setsockopt+0x184/0x200
[  334.810303][T16767]  __x64_sys_setsockopt+0x64/0x80
[  334.810333][T16767]  x64_sys_call+0x21d5/0x3000
[  334.810366][T16767]  do_syscall_64+0xca/0x2b0
[  334.810447][T16767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.810472][T16767] RIP: 0033:0x7fd0daa9f749
[  334.810488][T16767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.810508][T16767] RSP: 002b:00007fd0d9507038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  334.810563][T16767] RAX: ffffffffffffffda RBX: 00007fd0dacf5fa0 RCX: 00007fd0daa9f749
[  334.810576][T16767] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  334.810588][T16767] RBP: 00007fd0d9507090 R08: 0000000000000310 R09: 0000000000000000
[  334.810601][T16767] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.810613][T16767] R13: 00007fd0dacf6038 R14: 00007fd0dacf5fa0 R15: 00007fff4df36638
[  334.810633][T16767]  </TASK>
[  335.048508][T16774] loop2: detected capacity change from 0 to 128
[  335.065528][T16774] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  335.078402][T16774] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.233904][T12500] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  335.698336][T16802] loop4: detected capacity change from 0 to 256
[  335.709989][T16802] FAT-fs (loop4): bogus number of FAT sectors
[  335.716186][T16802] FAT-fs (loop4): Can't find a valid FAT filesystem
[  335.741908][T16804] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4340'.
[  335.772072][T16806] loop2: detected capacity change from 0 to 512
[  335.780789][T16806] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  335.789629][T16806] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  335.808948][T16806] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4341: Allocating blocks 41-42 which overlap fs metadata
[  335.823404][T16806] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4341: Allocating blocks 41-42 which overlap fs metadata
[  335.837615][T16806] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.4341: Failed to acquire dquot type 1
[  335.850941][T16806] EXT4-fs error (device loop2): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  335.866188][T16806] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4341: corrupted inode contents
[  335.878670][T16806] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #12: comm syz.2.4341: mark_inode_dirty error
[  335.890517][T16806] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4341: corrupted inode contents
[  335.902866][T16806] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.4341: mark_inode_dirty error
[  335.919993][T16810] loop4: detected capacity change from 0 to 128
[  335.926637][T16806] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4341: corrupted inode contents
[  335.939121][T16806] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  335.948158][T16806] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4341: corrupted inode contents
[  335.960911][T16806] EXT4-fs error (device loop2): ext4_truncate:4635: inode #12: comm syz.2.4341: mark_inode_dirty error
[  335.974059][T16806] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  335.983610][T16806] EXT4-fs (loop2): 1 truncate cleaned up
[  335.989987][T16806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.007319][T16806] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  336.028652][T12500] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.045918][   T29] kauditd_printk_skb: 2004 callbacks suppressed
[  336.045936][   T29] audit: type=1326 audit(1768441892.697:192286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.076767][   T29] audit: type=1326 audit(1768441892.697:192287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.100589][   T29] audit: type=1326 audit(1768441892.697:192288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.124447][   T29] audit: type=1326 audit(1768441892.697:192289): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.148500][   T29] audit: type=1326 audit(1768441892.697:192290): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.172539][   T29] audit: type=1326 audit(1768441892.697:192291): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.196663][   T29] audit: type=1326 audit(1768441892.697:192292): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.220807][   T29] audit: type=1326 audit(1768441892.697:192293): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.244853][   T29] audit: type=1326 audit(1768441892.697:192294): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.268899][   T29] audit: type=1326 audit(1768441892.697:192295): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16813 comm="syz.4.4344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  336.297996][T16818] FAULT_INJECTION: forcing a failure.
[  336.297996][T16818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.311138][T16818] CPU: 0 UID: 0 PID: 16818 Comm: syz.3.4347 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  336.311218][T16818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  336.311236][T16818] Call Trace:
[  336.311245][T16818]  <TASK>
[  336.311256][T16818]  __dump_stack+0x1d/0x30
[  336.311296][T16818]  dump_stack_lvl+0x95/0xd0
[  336.311325][T16818]  dump_stack+0x15/0x1b
[  336.311352][T16818]  should_fail_ex+0x265/0x280
[  336.311388][T16818]  should_fail+0xb/0x20
[  336.311413][T16818]  should_fail_usercopy+0x1a/0x20
[  336.311481][T16818]  _copy_from_user+0x1c/0xb0
[  336.311519][T16818]  __sys_bpf+0x183/0x7c0
[  336.311604][T16818]  __x64_sys_bpf+0x41/0x50
[  336.311695][T16818]  x64_sys_call+0x28e1/0x3000
[  336.311729][T16818]  do_syscall_64+0xca/0x2b0
[  336.311801][T16818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.311824][T16818] RIP: 0033:0x7fe30acdf749
[  336.311840][T16818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.311859][T16818] RSP: 002b:00007fe309747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  336.311879][T16818] RAX: ffffffffffffffda RBX: 00007fe30af35fa0 RCX: 00007fe30acdf749
[  336.311953][T16818] RDX: 0000000000000020 RSI: 0000200000001740 RDI: 0000000000000001
[  336.311966][T16818] RBP: 00007fe309747090 R08: 0000000000000000 R09: 0000000000000000
[  336.311979][T16818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.312002][T16818] R13: 00007fe30af36038 R14: 00007fe30af35fa0 R15: 00007ffd5b418778
[  336.312022][T16818]  </TASK>
[  336.497729][T16823] loop5: detected capacity change from 0 to 512
[  336.526425][T16823] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  336.535486][T16823] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  336.549886][T16826] loop3: detected capacity change from 0 to 512
[  336.579878][T16828] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4350'.
[  336.590281][T16826] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  336.599188][T16826] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  336.620182][T16823] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4348: Allocating blocks 41-42 which overlap fs metadata
[  336.636034][T16826] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4349: Allocating blocks 41-42 which overlap fs metadata
[  336.650939][T16823] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.4348: Failed to acquire dquot type 1
[  336.662577][T16823] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  336.677529][T16823] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4348: corrupted inode contents
[  336.690083][T16823] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.4348: mark_inode_dirty error
[  336.702299][T16826] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4349: Failed to acquire dquot type 1
[  336.714090][T16826] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  336.729239][T16826] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4349: corrupted inode contents
[  336.741392][T16823] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4348: corrupted inode contents
[  336.752588][T16826] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.4349: mark_inode_dirty error
[  336.764806][T16823] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.4348: mark_inode_dirty error
[  336.765595][T16826] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4349: corrupted inode contents
[  336.788366][T16826] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.4349: mark_inode_dirty error
[  336.789347][T16823] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4348: corrupted inode contents
[  336.800162][T16826] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4349: corrupted inode contents
[  336.816608][T16823] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  336.834179][T16823] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4348: corrupted inode contents
[  336.842439][T16826] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  336.846904][T16823] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.4348: mark_inode_dirty error
[  336.855182][T16826] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4349: corrupted inode contents
[  336.877987][T16826] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.4349: mark_inode_dirty error
[  336.889324][T16826] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  336.894417][T16823] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  336.909640][T16826] EXT4-fs (loop3): 1 truncate cleaned up
[  336.915955][T16826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.930848][T16823] EXT4-fs (loop5): 1 truncate cleaned up
[  336.937995][T16823] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.955404][T16823] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  337.005589][T16826] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  337.020585][T16848] loop0: detected capacity change from 0 to 512
[  337.035268][T16848] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  337.046978][T16848] EXT4-fs (loop0): 1 truncate cleaned up
[  337.111268][T16856] loop5: detected capacity change from 0 to 128
[  337.141244][T16856] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.334905][T16868] 9p: Unknown access argument 18446744073709551615: -34
[  337.349973][T16869] 9pnet_fd: Insufficient options for proto=fd
[  337.461270][T16872] FAULT_INJECTION: forcing a failure.
[  337.461270][T16872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.474492][T16872] CPU: 0 UID: 0 PID: 16872 Comm: syz.0.4361 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  337.474527][T16872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  337.474580][T16872] Call Trace:
[  337.474590][T16872]  <TASK>
[  337.474601][T16872]  __dump_stack+0x1d/0x30
[  337.474628][T16872]  dump_stack_lvl+0x95/0xd0
[  337.474649][T16872]  dump_stack+0x15/0x1b
[  337.474670][T16872]  should_fail_ex+0x265/0x280
[  337.474726][T16872]  should_fail+0xb/0x20
[  337.474799][T16872]  should_fail_usercopy+0x1a/0x20
[  337.474828][T16872]  strncpy_from_user+0x27/0x260
[  337.474870][T16872]  getname_flags+0xae/0x3b0
[  337.474908][T16872]  __x64_sys_symlinkat+0x40/0x70
[  337.474934][T16872]  x64_sys_call+0x2a36/0x3000
[  337.474960][T16872]  do_syscall_64+0xca/0x2b0
[  337.475000][T16872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.475097][T16872] RIP: 0033:0x7f9e621df749
[  337.475124][T16872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.475145][T16872] RSP: 002b:00007f9e60c3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  337.475164][T16872] RAX: ffffffffffffffda RBX: 00007f9e62435fa0 RCX: 00007f9e621df749
[  337.475177][T16872] RDX: 0000200000000080 RSI: 0000000000000007 RDI: 0000200000000400
[  337.475189][T16872] RBP: 00007f9e60c3f090 R08: 0000000000000000 R09: 0000000000000000
[  337.475205][T16872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.475217][T16872] R13: 00007f9e62436038 R14: 00007f9e62435fa0 R15: 00007fffb3b670f8
[  337.475316][T16872]  </TASK>
[  337.707852][T16874] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4362'.
[  337.818824][T16880] @: renamed from vlan0 (while UP)
[  337.932029][T16897] bio_check_eod: 18 callbacks suppressed
[  337.932051][T16897] +}[@: attempt to access beyond end of device
[  337.932051][T16897] loop0: rw=2049, sector=145, nr_sectors = 40 limit=128
[  337.981376][T16897] +}[@: attempt to access beyond end of device
[  337.981376][T16897] loop0: rw=2049, sector=193, nr_sectors = 8 limit=128
[  337.997977][T16897] +}[@: attempt to access beyond end of device
[  337.997977][T16897] loop0: rw=2049, sector=209, nr_sectors = 8 limit=128
[  338.011764][T16897] +}[@: attempt to access beyond end of device
[  338.011764][T16897] loop0: rw=2049, sector=225, nr_sectors = 8 limit=128
[  338.025281][T16897] +}[@: attempt to access beyond end of device
[  338.025281][T16897] loop0: rw=2049, sector=241, nr_sectors = 8 limit=128
[  338.038665][T16897] +}[@: attempt to access beyond end of device
[  338.038665][T16897] loop0: rw=2049, sector=257, nr_sectors = 8 limit=128
[  338.052109][T16897] +}[@: attempt to access beyond end of device
[  338.052109][T16897] loop0: rw=2049, sector=273, nr_sectors = 9 limit=128
[  338.142849][T16905] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.157373][T16903] EXT4-fs: Ignoring removed nomblk_io_submit option
[  338.171780][ T3009] udevd[3009]: worker [3515] terminated by signal 33 (Unknown signal 33)
[  338.182094][ T3009] udevd[3009]: worker [3515] failed while handling '/devices/virtual/block/loop0'
[  338.305201][T16914] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4378'.
[  338.426572][T16916] @: renamed from vlan0 (while UP)
[  338.762329][T16942] set_capacity_and_notify: 3 callbacks suppressed
[  338.762346][T16942] loop2: detected capacity change from 0 to 128
[  338.809619][T16942] ext4 filesystem being mounted at /277/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.951000][T16946] loop4: detected capacity change from 0 to 512
[  338.963072][T16946] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  338.971836][T16946] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  339.006322][T16946] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4389: Allocating blocks 41-42 which overlap fs metadata
[  339.020671][T16946] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4389: Allocating blocks 41-42 which overlap fs metadata
[  339.035320][T16946] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4389: Failed to acquire dquot type 1
[  339.047274][T16946] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  339.062257][T16946] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4389: corrupted inode contents
[  339.075375][T16946] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4389: mark_inode_dirty error
[  339.087370][T16946] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4389: corrupted inode contents
[  339.100289][T16946] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4389: mark_inode_dirty error
[  339.112434][T16946] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4389: corrupted inode contents
[  339.128547][T16946] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  339.137708][T16946] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4389: corrupted inode contents
[  339.149993][T16946] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4389: mark_inode_dirty error
[  339.161637][T16946] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  339.170889][T16946] EXT4-fs (loop4): 1 truncate cleaned up
[  339.180503][T16946] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  339.321226][T16969] loop2: detected capacity change from 0 to 128
[  339.337449][T16969] +}[@: attempt to access beyond end of device
[  339.337449][T16969] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[  339.354597][T16969] +}[@: attempt to access beyond end of device
[  339.354597][T16969] loop2: rw=2049, sector=169, nr_sectors = 24 limit=128
[  339.368011][T16969] +}[@: attempt to access beyond end of device
[  339.368011][T16969] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  339.412786][T16973] loop5: detected capacity change from 0 to 2048
[  339.444467][T16973] EXT4-fs (loop5): failed to initialize system zone (-117)
[  339.464003][T16973] EXT4-fs (loop5): mount failed
[  339.503518][T16983] loop5: detected capacity change from 0 to 512
[  339.521305][T16983] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  339.521331][T16983] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  339.551660][T16983] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4400: Allocating blocks 41-42 which overlap fs metadata
[  339.551848][T16983] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4400: Allocating blocks 41-42 which overlap fs metadata
[  339.552136][T16983] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.4400: Failed to acquire dquot type 1
[  339.552400][T16983] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  339.552509][T16983] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4400: corrupted inode contents
[  339.552767][T16983] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.4400: mark_inode_dirty error
[  339.553152][T16983] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4400: corrupted inode contents
[  339.553489][T16983] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.4400: mark_inode_dirty error
[  339.553692][T16983] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4400: corrupted inode contents
[  339.553878][T16983] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  339.554031][T16983] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4400: corrupted inode contents
[  339.554246][T16983] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.4400: mark_inode_dirty error
[  339.554393][T16983] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  339.554731][T16983] EXT4-fs (loop5): 1 truncate cleaned up
[  339.575632][T16983] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  339.690200][T16991] loop5: detected capacity change from 0 to 128
[  340.619309][T17024] loop3: detected capacity change from 0 to 2048
[  340.645148][T17024] EXT4-fs (loop3): failed to initialize system zone (-117)
[  340.665049][T17024] EXT4-fs (loop3): mount failed
[  341.108119][T17031] loop4: detected capacity change from 0 to 1024
[  341.115084][T17031] EXT4-fs: Ignoring removed nobh option
[  341.144839][T17031] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  341.191398][T17038] loop0: detected capacity change from 0 to 512
[  341.198708][T17038] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  341.207529][T17038] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  341.227657][T17038] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4416: Allocating blocks 41-42 which overlap fs metadata
[  341.254697][T17038] __quota_error: 1235 callbacks suppressed
[  341.254717][T17038] Quota error (device loop0): write_blk: dquota write failed
[  341.268264][T17038] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  341.280711][T17038] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4416: Allocating blocks 41-42 which overlap fs metadata
[  341.295018][T17038] Quota error (device loop0): write_blk: dquota write failed
[  341.306128][   T29] audit: type=1326 audit(1768441897.957:193517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17035 comm="syz.2.4415" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd0daa9f749 code=0x0
[  341.329442][T17038] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  341.339568][T17038] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.4416: Failed to acquire dquot type 1
[  341.351483][T17038] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  341.366344][T17038] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4416: corrupted inode contents
[  341.379040][T17038] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.4416: mark_inode_dirty error
[  341.393962][T17038] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4416: corrupted inode contents
[  341.410706][T17038] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.4416: mark_inode_dirty error
[  341.424893][T17038] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4416: corrupted inode contents
[  341.437343][T17038] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  341.450111][T17038] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4416: corrupted inode contents
[  341.470293][T17038] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.4416: mark_inode_dirty error
[  341.489650][T17038] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  341.507032][T17038] EXT4-fs (loop0): 1 truncate cleaned up
[  341.524388][T17057] loop4: detected capacity change from 0 to 128
[  341.532496][T17038] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  341.542357][   T29] audit: type=1326 audit(1768441898.197:193518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17056 comm="syz.4.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  341.600522][   T29] audit: type=1326 audit(1768441898.197:193519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17056 comm="syz.4.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  341.624490][   T29] audit: type=1326 audit(1768441898.197:193520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17056 comm="syz.4.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  341.648247][   T29] audit: type=1326 audit(1768441898.197:193521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17056 comm="syz.4.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  341.672082][   T29] audit: type=1326 audit(1768441898.197:193522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17056 comm="syz.4.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  341.741755][T17068] EXT4-fs: Ignoring removed nobh option
[  341.807755][T17068] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4425'.
[  341.816818][T17068] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4425'.
[  341.958320][T17068] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4425: Allocating blocks 497-513 which overlap fs metadata
[  341.972595][T17068] EXT4-fs (loop5): pa ffff888107a9be70: logic 256, phys. 385, len 8
[  341.980729][T17068] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  342.506029][T17093] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  342.515022][T17093] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  342.532708][T17095] netlink: 824 bytes leftover after parsing attributes in process `syz.4.4434'.
[  342.548401][T17093] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4433: Allocating blocks 41-42 which overlap fs metadata
[  342.599705][T17093] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4433: Allocating blocks 41-42 which overlap fs metadata
[  342.653525][T17093] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4433: Failed to acquire dquot type 1
[  342.701541][T17093] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  342.734400][T17093] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4433: corrupted inode contents
[  342.760132][T17093] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.4433: mark_inode_dirty error
[  342.785464][T17093] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4433: corrupted inode contents
[  342.812095][T17093] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.4433: mark_inode_dirty error
[  342.838116][T17093] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4433: corrupted inode contents
[  342.864123][T17093] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  342.890174][T17093] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4433: corrupted inode contents
[  342.916435][T17093] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.4433: mark_inode_dirty error
[  342.941206][T17093] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  342.961174][T17093] EXT4-fs (loop3): 1 truncate cleaned up
[  342.984821][T17093] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  343.092793][T17109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=17109 comm=syz.3.4438
[  343.105676][T17109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=17109 comm=syz.3.4438
[  343.224098][T17112] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4438'.
[  343.233328][T17112] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4438'.
[  343.242846][T17112] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4438'.
[  343.564378][T17116] EXT4-fs (loop0): failed to initialize system zone (-117)
[  343.592865][T17116] EXT4-fs (loop0): mount failed
[  343.813549][T17123] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4442'.
[  344.011738][T17131] macvlan1: entered allmulticast mode
[  344.017490][T17131] veth1_vlan: entered allmulticast mode
[  344.123882][T17138] set_capacity_and_notify: 5 callbacks suppressed
[  344.123920][T17138] loop4: detected capacity change from 0 to 512
[  344.139698][T17130] macvlan1: left allmulticast mode
[  344.145066][T17130] veth1_vlan: left allmulticast mode
[  344.177358][T17138] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  344.186447][T17138] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  344.252840][T17147] loop5: detected capacity change from 0 to 1024
[  344.268083][T17138] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4449: Allocating blocks 41-42 which overlap fs metadata
[  344.269594][T17147] EXT4-fs: Ignoring removed nobh option
[  344.289565][T17138] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4449: Failed to acquire dquot type 1
[  344.309051][T17138] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  344.335416][T17138] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4449: corrupted inode contents
[  344.347747][T17138] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4449: mark_inode_dirty error
[  344.360745][T17138] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4449: corrupted inode contents
[  344.361754][T17147] EXT4-fs mount: 24 callbacks suppressed
[  344.361862][T17147] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.391165][T17138] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4449: mark_inode_dirty error
[  344.412430][T17138] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4449: corrupted inode contents
[  344.438189][T17138] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  344.453777][T17138] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4449: corrupted inode contents
[  344.466745][T17138] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4449: mark_inode_dirty error
[  344.495437][T17138] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  344.523300][T17138] EXT4-fs (loop4): 1 truncate cleaned up
[  344.529640][T17138] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.555704][T17138] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  344.597556][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.611541][T17155] loop2: detected capacity change from 0 to 512
[  344.627462][T17147] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4452'.
[  344.637057][T17147] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4452'.
[  344.648815][T17155] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  344.657730][T17155] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  344.682040][T17155] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4453: Allocating blocks 41-42 which overlap fs metadata
[  344.714201][T17155] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4453: Allocating blocks 41-42 which overlap fs metadata
[  344.773318][T17156] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4452: Allocating blocks 497-513 which overlap fs metadata
[  344.788001][T17155] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.4453: Failed to acquire dquot type 1
[  344.810071][T17155] EXT4-fs error (device loop2): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  344.833993][T17156] EXT4-fs (loop5): pa ffff888107a9bee0: logic 256, phys. 385, len 8
[  344.842084][T17156] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  344.862794][T17155] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4453: corrupted inode contents
[  344.887649][T17155] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #12: comm syz.2.4453: mark_inode_dirty error
[  344.912182][T17155] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4453: corrupted inode contents
[  344.938487][T17155] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.4453: mark_inode_dirty error
[  344.963633][T17155] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4453: corrupted inode contents
[  344.967563][T11955] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.005231][T17155] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  345.020222][T17164] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4456'.
[  345.041927][T17155] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4453: corrupted inode contents
[  345.099406][T17155] EXT4-fs error (device loop2): ext4_truncate:4635: inode #12: comm syz.2.4453: mark_inode_dirty error
[  345.133518][T17155] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  345.150423][T17155] EXT4-fs (loop2): 1 truncate cleaned up
[  345.177296][T17155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.206893][T17178] loop3: detected capacity change from 0 to 128
[  345.226509][T17182] loop0: detected capacity change from 0 to 128
[  345.232850][T17155] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  345.252145][T17182] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  345.272397][T17182] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.323003][T12500] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.544842][T17198] loop4: detected capacity change from 0 to 2048
[  345.596380][T17198] EXT4-fs (loop4): failed to initialize system zone (-117)
[  345.613253][T17198] EXT4-fs (loop4): mount failed
[  345.620090][T17203] loop5: detected capacity change from 0 to 512
[  345.637692][T17203] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  345.646561][T17203] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  345.666759][T17203] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4470: Allocating blocks 41-42 which overlap fs metadata
[  345.681100][T17203] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4470: Allocating blocks 41-42 which overlap fs metadata
[  345.697685][T17203] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.4470: Failed to acquire dquot type 1
[  345.713921][T17203] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  345.729208][T17203] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4470: corrupted inode contents
[  345.742030][T13579] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  345.755075][T17203] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.4470: mark_inode_dirty error
[  345.775577][T17203] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4470: corrupted inode contents
[  345.787830][T17203] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.4470: mark_inode_dirty error
[  345.799744][T17203] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4470: corrupted inode contents
[  345.813434][T17203] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  345.822272][T17203] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4470: corrupted inode contents
[  345.839330][T17203] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.4470: mark_inode_dirty error
[  345.855217][T17203] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  345.865143][T17203] EXT4-fs (loop5): 1 truncate cleaned up
[  345.871475][T17203] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.899110][T17203] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  345.910258][T17220] loop4: detected capacity change from 0 to 128
[  345.920178][T17220] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  345.949763][T17220] ext4 filesystem being mounted at /326/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.963448][T11955] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.029161][T17223] loop5: detected capacity change from 0 to 128
[  346.179188][T12150] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  346.263365][   T29] kauditd_printk_skb: 2753 callbacks suppressed
[  346.263384][   T29] audit: type=1326 audit(1768441902.917:196261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.5.4477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f38e7de2005 code=0x7ffc0000
[  346.294409][   T29] audit: type=1326 audit(1768441902.917:196262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e621d65e7 code=0x7ffc0000
[  346.318235][   T29] audit: type=1326 audit(1768441902.917:196263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9e6217b829 code=0x7ffc0000
[  346.342256][   T29] audit: type=1326 audit(1768441902.917:196264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e621d65e7 code=0x7ffc0000
[  346.366240][   T29] audit: type=1326 audit(1768441902.917:196265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9e6217b829 code=0x7ffc0000
[  346.390042][   T29] audit: type=1326 audit(1768441902.917:196266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e621d65e7 code=0x7ffc0000
[  346.413867][   T29] audit: type=1326 audit(1768441902.917:196267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9e6217b829 code=0x7ffc0000
[  346.438259][   T29] audit: type=1326 audit(1768441902.917:196268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e621d65e7 code=0x7ffc0000
[  346.461978][   T29] audit: type=1326 audit(1768441902.917:196269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9e6217b829 code=0x7ffc0000
[  346.485720][   T29] audit: type=1326 audit(1768441902.917:196270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17218 comm="syz.0.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e621d65e7 code=0x7ffc0000
[  346.771907][T17255] loop0: detected capacity change from 0 to 1024
[  346.779385][T17255] EXT4-fs: Ignoring removed nobh option
[  346.794650][T17255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.890667][T17255] __nla_validate_parse: 2 callbacks suppressed
[  346.890687][T17255] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4485'.
[  346.906766][T17255] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4485'.
[  346.952425][T17263] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  346.961416][T17263] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  346.982242][T17263] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4487: Allocating blocks 41-42 which overlap fs metadata
[  347.001631][T17263] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4487: Allocating blocks 41-42 which overlap fs metadata
[  347.015780][T17263] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.4487: Failed to acquire dquot type 1
[  347.027567][T17263] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  347.065501][T17263] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4487: corrupted inode contents
[  347.085333][T17263] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.4487: mark_inode_dirty error
[  347.103474][T17263] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4487: corrupted inode contents
[  347.115845][T17263] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.4487: mark_inode_dirty error
[  347.128067][T17263] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4487: corrupted inode contents
[  347.140496][T17263] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  347.149706][T17263] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.4487: corrupted inode contents
[  347.166432][T17263] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.4487: mark_inode_dirty error
[  347.178498][T17263] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  347.188496][T17267] EXT4-fs (loop4): failed to initialize system zone (-117)
[  347.196971][T17267] EXT4-fs (loop4): mount failed
[  347.202418][T17263] EXT4-fs (loop5): 1 truncate cleaned up
[  347.226907][T17263] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.241538][T17255] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4485: Allocating blocks 497-513 which overlap fs metadata
[  347.260122][T17255] EXT4-fs (loop0): pa ffff888107a779a0: logic 256, phys. 385, len 8
[  347.268254][T17255] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  347.279627][T17263] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  347.306408][T11955] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.355645][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.386707][T17275] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4490'.
[  347.484098][T17289] EXT4-fs (loop5): failed to initialize system zone (-117)
[  347.491471][T17289] EXT4-fs (loop5): mount failed
[  347.528024][T17293] EXT4-fs: Ignoring removed nobh option
[  347.556612][T17293] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.586750][T17299] bio_check_eod: 12 callbacks suppressed
[  347.586770][T17299] +}[@: attempt to access beyond end of device
[  347.586770][T17299] loop5: rw=2049, sector=145, nr_sectors = 40 limit=128
[  347.610633][T17299] +}[@: attempt to access beyond end of device
[  347.610633][T17299] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  347.626473][T17299] +}[@: attempt to access beyond end of device
[  347.626473][T17299] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  347.640872][T17299] +}[@: attempt to access beyond end of device
[  347.640872][T17299] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  347.654057][T17299] +}[@: attempt to access beyond end of device
[  347.654057][T17299] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  347.667505][T17299] +}[@: attempt to access beyond end of device
[  347.667505][T17299] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  347.669755][T17293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4497'.
[  347.680881][T17299] +}[@: attempt to access beyond end of device
[  347.680881][T17299] loop5: rw=2049, sector=273, nr_sectors = 9 limit=128
[  347.689355][T17293] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4497'.
[  347.779567][T17301] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4497: Allocating blocks 497-513 which overlap fs metadata
[  347.794011][T17301] EXT4-fs (loop3): pa ffff888107a77930: logic 256, phys. 385, len 8
[  347.802064][T17301] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  347.900310][T12813] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.169786][T17311] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4503'.
[  348.345079][T17324] EXT4-fs (loop0): failed to initialize system zone (-117)
[  348.352656][T17324] EXT4-fs (loop0): mount failed
[  349.064421][T17347] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4515'.
[  349.095158][T17349] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4516'.
[  349.201327][T17355] set_capacity_and_notify: 9 callbacks suppressed
[  349.201347][T17355] loop2: detected capacity change from 0 to 128
[  349.222491][T17355] +}[@: attempt to access beyond end of device
[  349.222491][T17355] loop2: rw=2049, sector=145, nr_sectors = 40 limit=128
[  349.235918][T17355] +}[@: attempt to access beyond end of device
[  349.235918][T17355] loop2: rw=2049, sector=193, nr_sectors = 8 limit=128
[  349.250060][T17355] +}[@: attempt to access beyond end of device
[  349.250060][T17355] loop2: rw=2049, sector=209, nr_sectors = 8 limit=128
[  349.332067][T17360] loop0: detected capacity change from 0 to 2048
[  349.348030][T17360] EXT4-fs (loop0): failed to initialize system zone (-117)
[  349.357638][T17360] EXT4-fs (loop0): mount failed
[  349.396058][T17369] loop0: detected capacity change from 0 to 1024
[  349.402972][T17369] EXT4-fs: Ignoring removed nobh option
[  349.415467][T17369] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.459383][T17375] loop5: detected capacity change from 0 to 128
[  349.468398][T17375] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  349.481646][T17375] ext4 filesystem being mounted at /325/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.545554][T17369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4523'.
[  349.554600][T17369] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4523'.
[  349.636562][T17378] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4523: Allocating blocks 497-513 which overlap fs metadata
[  349.651235][T17378] EXT4-fs (loop0): pa ffff888107a77930: logic 256, phys. 385, len 8
[  349.659404][T17378] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  349.740244][T11955] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  349.798855][T17382] loop5: detected capacity change from 0 to 128
[  349.887972][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.057895][T17413] loop4: detected capacity change from 0 to 128
[  350.250968][T17418] loop2: detected capacity change from 0 to 2048
[  350.275601][T17418] EXT4-fs (loop2): failed to initialize system zone (-117)
[  350.283036][T17418] EXT4-fs (loop2): mount failed
[  350.780623][T17426] loop0: detected capacity change from 0 to 512
[  350.791562][T17426] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  350.800435][T17426] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  350.837201][T17426] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4541: Allocating blocks 41-42 which overlap fs metadata
[  350.882203][T17426] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4541: Allocating blocks 41-42 which overlap fs metadata
[  350.949245][T17426] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.4541: Failed to acquire dquot type 1
[  350.995956][T17426] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  351.023398][T17435] loop4: detected capacity change from 0 to 128
[  351.057673][T17426] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4541: corrupted inode contents
[  351.073682][T17426] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.4541: mark_inode_dirty error
[  351.085552][T17426] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4541: corrupted inode contents
[  351.103451][T17426] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.4541: mark_inode_dirty error
[  351.116972][T17426] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4541: corrupted inode contents
[  351.130184][T17426] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  351.139477][T17426] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4541: corrupted inode contents
[  351.152404][T17426] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.4541: mark_inode_dirty error
[  351.164688][T17426] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  351.177069][T17426] EXT4-fs (loop0): 1 truncate cleaned up
[  351.183697][T17426] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.221174][T17440] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=17440 comm=syz.2.4546
[  351.234191][T17440] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=17440 comm=syz.2.4546
[  351.250338][T17426] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  351.273387][   T29] kauditd_printk_skb: 3093 callbacks suppressed
[  351.273438][   T29] audit: type=1326 audit(1768441907.927:199356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f45ec8d2005 code=0x7ffc0000
[  351.304919][   T29] audit: type=1326 audit(1768441907.957:199357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f45ec8965e7 code=0x7ffc0000
[  351.328813][   T29] audit: type=1326 audit(1768441907.957:199358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f45ec83b829 code=0x7ffc0000
[  351.353388][   T29] audit: type=1326 audit(1768441907.957:199359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  351.377251][   T29] audit: type=1326 audit(1768441907.957:199360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f45ec8d2005 code=0x7ffc0000
[  351.401640][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.405369][   T29] audit: type=1326 audit(1768441908.057:199361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f45ec8d2005 code=0x7ffc0000
[  351.434628][   T29] audit: type=1326 audit(1768441908.057:199362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f45ec8965e7 code=0x7ffc0000
[  351.460184][   T29] audit: type=1326 audit(1768441908.057:199363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f45ec83b829 code=0x7ffc0000
[  351.484824][   T29] audit: type=1326 audit(1768441908.057:199364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  351.508926][   T29] audit: type=1326 audit(1768441908.057:199365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17434 comm="syz.4.4544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f45ec8d2005 code=0x7ffc0000
[  352.191753][T17477] loop2: detected capacity change from 0 to 128
[  352.726812][T17494] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  352.742720][T17494] ext4 filesystem being mounted at /341/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  352.926749][T12150] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  352.973786][T17500] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  352.982554][T17500] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  353.006527][T17500] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4568: Allocating blocks 41-42 which overlap fs metadata
[  353.020922][T17500] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4568: Allocating blocks 41-42 which overlap fs metadata
[  353.035331][T17500] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.4568: Failed to acquire dquot type 1
[  353.047507][T17500] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  353.062646][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4568: corrupted inode contents
[  353.075313][T17500] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.4568: mark_inode_dirty error
[  353.087601][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4568: corrupted inode contents
[  353.100396][T17500] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.4568: mark_inode_dirty error
[  353.112797][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4568: corrupted inode contents
[  353.125224][T17500] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  353.134670][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4568: corrupted inode contents
[  353.147295][T17500] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.4568: mark_inode_dirty error
[  353.159137][T17500] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  353.169265][T17500] EXT4-fs (loop0): 1 truncate cleaned up
[  353.176027][T17500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.211696][T17500] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  353.236634][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.325727][T17514] EXT4-fs (loop3): failed to initialize system zone (-117)
[  353.353095][T17514] EXT4-fs (loop3): mount failed
[  353.396418][T17521] __nla_validate_parse: 4 callbacks suppressed
[  353.396438][T17521] netlink: 824 bytes leftover after parsing attributes in process `syz.0.4573'.
[  353.531958][T17532] EXT4-fs: inline encryption not supported
[  353.538027][T17532] EXT4-fs: Ignoring removed orlov option
[  353.579539][T17532] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  353.665524][T17532] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.720753][T17532] FAULT_INJECTION: forcing a failure.
[  353.720753][T17532] name failslab, interval 1, probability 0, space 0, times 0
[  353.734753][T17532] CPU: 0 UID: 0 PID: 17532 Comm: syz.2.4577 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  353.734817][T17532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  353.734834][T17532] Call Trace:
[  353.734841][T17532]  <TASK>
[  353.734850][T17532]  __dump_stack+0x1d/0x30
[  353.734881][T17532]  dump_stack_lvl+0x95/0xd0
[  353.734950][T17532]  dump_stack+0x15/0x1b
[  353.735049][T17532]  should_fail_ex+0x265/0x280
[  353.735177][T17532]  should_failslab+0x8c/0xb0
[  353.735211][T17532]  kmem_cache_alloc_noprof+0x69/0x4b0
[  353.735276][T17532]  ? audit_log_start+0x342/0x720
[  353.735356][T17532]  audit_log_start+0x342/0x720
[  353.735386][T17532]  ? kstrtouint+0x76/0xc0
[  353.735413][T17532]  audit_seccomp+0x48/0x100
[  353.735456][T17532]  ? __seccomp_filter+0x832/0x1260
[  353.735493][T17532]  __seccomp_filter+0x843/0x1260
[  353.735610][T17532]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  353.735650][T17532]  ? vfs_write+0x7e8/0x960
[  353.735685][T17532]  __secure_computing+0x82/0x150
[  353.735786][T17532]  syscall_trace_enter+0xcf/0x1e0
[  353.735821][T17532]  do_syscall_64+0xa4/0x2b0
[  353.735879][T17532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.735912][T17532] RIP: 0033:0x7fd0daa9f749
[  353.736094][T17532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.736182][T17532] RSP: 002b:00007fd0d9507038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[  353.736209][T17532] RAX: ffffffffffffffda RBX: 00007fd0dacf5fa0 RCX: 00007fd0daa9f749
[  353.736226][T17532] RDX: 0000000000100000 RSI: 0000000000000000 RDI: 0000200000000100
[  353.736287][T17532] RBP: 00007fd0d9507090 R08: 0000000000000000 R09: 0000000000000000
[  353.736305][T17532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.736318][T17532] R13: 00007fd0dacf6038 R14: 00007fd0dacf5fa0 R15: 00007fff4df36638
[  353.736338][T17532]  </TASK>
[  354.028564][T12500] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.412347][T17545] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4581'.
[  354.579286][T17555] set_capacity_and_notify: 8 callbacks suppressed
[  354.579306][T17555] loop0: detected capacity change from 0 to 2048
[  354.625439][T17555] EXT4-fs (loop0): failed to initialize system zone (-117)
[  354.648092][T17555] EXT4-fs (loop0): mount failed
[  354.667326][T17558] loop5: detected capacity change from 0 to 128
[  355.003766][T17578] loop3: detected capacity change from 0 to 2048
[  355.021102][T17578] EXT4-fs (loop3): failed to initialize system zone (-117)
[  355.031917][T17578] EXT4-fs (loop3): mount failed
[  355.083815][T17583] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4593'.
[  355.482320][T17601] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4599'.
[  355.759594][T17608] loop0: detected capacity change from 0 to 128
[  355.836019][T17608] bio_check_eod: 18 callbacks suppressed
[  355.836049][T17608] syz.0.4602: attempt to access beyond end of device
[  355.836049][T17608] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[  355.861673][T17608] syz.0.4602: attempt to access beyond end of device
[  355.861673][T17608] loop0: rw=2049, sector=169, nr_sectors = 24 limit=128
[  355.864452][T17612] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4604'.
[  355.896120][T17608] syz.0.4602: attempt to access beyond end of device
[  355.896120][T17608] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  355.911401][T17608] syz.0.4602: attempt to access beyond end of device
[  355.911401][T17608] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  355.928337][T17608] syz.0.4602: attempt to access beyond end of device
[  355.928337][T17608] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  355.949717][T17608] syz.0.4602: attempt to access beyond end of device
[  355.949717][T17608] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  355.963684][T17608] syz.0.4602: attempt to access beyond end of device
[  355.963684][T17608] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  355.978445][T17608] syz.0.4602: attempt to access beyond end of device
[  355.978445][T17608] loop0: rw=2049, sector=281, nr_sectors = 9 limit=128
[  356.139317][T17620] loop0: detected capacity change from 0 to 1024
[  356.170235][T17620] EXT4-fs: Ignoring removed nobh option
[  356.208281][T17620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.280648][T17624] loop3: detected capacity change from 0 to 128
[  356.308846][T17624] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  356.342369][T17624] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.380752][T17627] loop2: detected capacity change from 0 to 1024
[  356.400559][T17620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4607'.
[  356.409900][T17620] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4607'.
[  356.421918][T17627] EXT4-fs: Ignoring removed nobh option
[  356.462053][T17627] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.595345][T17628] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4607: Allocating blocks 497-513 which overlap fs metadata
[  356.675665][T17628] EXT4-fs (loop0): pa ffff888107a778c0: logic 256, phys. 385, len 8
[  356.683783][T17628] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  356.797939][T17627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4609'.
[  356.806918][T17627] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4609'.
[  356.867628][T17638] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=17638 comm=syz.4.4612
[  356.880549][T17638] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=17638 comm=syz.4.4612
[  356.908571][T12813] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  356.965028][T17634] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4609: Allocating blocks 497-513 which overlap fs metadata
[  356.993557][T17638] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4612'.
[  357.003656][   T29] kauditd_printk_skb: 5881 callbacks suppressed
[  357.003669][   T29] audit: type=1326 audit(1768441913.657:205241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.051114][T17634] EXT4-fs (loop2): pa ffff888107a9bf50: logic 256, phys. 385, len 8
[  357.059244][T17634] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  357.114332][   T29] audit: type=1326 audit(1768441913.687:205242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.138262][   T29] audit: type=1326 audit(1768441913.697:205243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.162145][   T29] audit: type=1326 audit(1768441913.697:205244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.186801][   T29] audit: type=1326 audit(1768441913.727:205245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.211729][   T29] audit: type=1326 audit(1768441913.727:205246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.235940][   T29] audit: type=1326 audit(1768441913.727:205247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.260122][   T29] audit: type=1326 audit(1768441913.727:205248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.285320][   T29] audit: type=1326 audit(1768441913.727:205249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.310836][   T29] audit: type=1326 audit(1768441913.727:205250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17640 comm="syz.3.4613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  357.343422][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.536260][T12500] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.674273][T17649] syzkaller0: entered promiscuous mode
[  357.679825][T17649] syzkaller0: entered allmulticast mode
[  357.686511][T17647] SELinux: ebitmap: truncated map
[  357.711480][T17647] SELinux: failed to load policy
[  358.051770][T17676] loop4: detected capacity change from 0 to 128
[  358.061279][T17674] loop0: detected capacity change from 0 to 512
[  358.092216][T17674] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  358.101122][T17674] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  358.199907][T17674] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4625: Allocating blocks 41-42 which overlap fs metadata
[  358.224240][T17674] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4625: Allocating blocks 41-42 which overlap fs metadata
[  358.252358][T17674] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.4625: Failed to acquire dquot type 1
[  358.265223][T17674] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  358.280390][T17674] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4625: corrupted inode contents
[  358.293376][T17674] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.4625: mark_inode_dirty error
[  358.306339][T17674] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4625: corrupted inode contents
[  358.319983][T17674] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.4625: mark_inode_dirty error
[  358.333060][T17674] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4625: corrupted inode contents
[  358.346452][T17674] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  358.356786][T17674] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4625: corrupted inode contents
[  358.369381][T17674] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.4625: mark_inode_dirty error
[  358.382229][T17674] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  358.392448][T17674] EXT4-fs (loop0): 1 truncate cleaned up
[  358.400492][T17674] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.418509][T17674] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  358.442869][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.752538][T17692] __nla_validate_parse: 5 callbacks suppressed
[  358.752605][T17692] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4630'.
[  358.790640][T17696] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=17696 comm=syz.3.4631
[  358.803637][T17696] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=17696 comm=syz.3.4631
[  358.947078][T17707] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4636'.
[  359.468978][T17726] loop0: detected capacity change from 0 to 128
[  359.801721][T17730] loop5: detected capacity change from 0 to 128
[  359.822490][T17730] +}[@: attempt to access beyond end of device
[  359.822490][T17730] loop5: rw=2049, sector=145, nr_sectors = 40 limit=128
[  359.836637][T17730] +}[@: attempt to access beyond end of device
[  359.836637][T17730] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  359.912171][T17734] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4647'.
[  360.161683][T17754] loop3: detected capacity change from 0 to 128
[  360.314121][T17759] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4657'.
[  360.420927][T17769] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4661'.
[  360.514082][T17777] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4665'.
[  360.571497][T17781] loop0: detected capacity change from 0 to 128
[  360.812129][T17783] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4668'.
[  361.073206][T17803] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4677'.
[  361.166209][T17814] netlink: 824 bytes leftover after parsing attributes in process `syz.3.4682'.
[  361.338526][T17826] SELinux: ebitmap: truncated map
[  361.345663][T17826] SELinux: failed to load policy
[  361.475933][T17842] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4693'.
[  361.570154][T17852] loop3: detected capacity change from 0 to 128
[  361.601527][T17854] loop0: detected capacity change from 0 to 128
[  361.618637][T17854] bio_check_eod: 5 callbacks suppressed
[  361.618652][T17854] syz.0.4699: attempt to access beyond end of device
[  361.618652][T17854] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[  361.652206][T17854] syz.0.4699: attempt to access beyond end of device
[  361.652206][T17854] loop0: rw=2049, sector=169, nr_sectors = 24 limit=128
[  361.667308][T17854] syz.0.4699: attempt to access beyond end of device
[  361.667308][T17854] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  361.681938][T17854] syz.0.4699: attempt to access beyond end of device
[  361.681938][T17854] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  361.697708][T17854] syz.0.4699: attempt to access beyond end of device
[  361.697708][T17854] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  361.712103][T17854] syz.0.4699: attempt to access beyond end of device
[  361.712103][T17854] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  361.726069][T17854] syz.0.4699: attempt to access beyond end of device
[  361.726069][T17854] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  361.741137][T17854] syz.0.4699: attempt to access beyond end of device
[  361.741137][T17854] loop0: rw=2049, sector=281, nr_sectors = 9 limit=128
[  361.906004][T17881] loop0: detected capacity change from 0 to 2048
[  361.925400][T17881] EXT4-fs (loop0): failed to initialize system zone (-117)
[  361.952521][T17881] EXT4-fs (loop0): mount failed
[  361.987574][T17890] loop5: detected capacity change from 0 to 128
[  362.009548][T17890] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  362.027757][T17890] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.064659][   T29] kauditd_printk_skb: 5498 callbacks suppressed
[  362.064675][   T29] audit: type=1326 audit(1768441918.717:210745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.3.4712" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x0
[  362.129719][T17903] loop4: detected capacity change from 0 to 128
[  362.148035][T17903] syz.4.4716: attempt to access beyond end of device
[  362.148035][T17903] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  362.166464][T17903] syz.4.4716: attempt to access beyond end of device
[  362.166464][T17903] loop4: rw=2049, sector=169, nr_sectors = 24 limit=128
[  362.223571][   T29] audit: type=1326 audit(1768441918.877:210746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.250082][   T29] audit: type=1326 audit(1768441918.907:210747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.273991][   T29] audit: type=1326 audit(1768441918.907:210748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.297971][   T29] audit: type=1326 audit(1768441918.907:210749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.322284][   T29] audit: type=1326 audit(1768441918.907:210750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.347148][   T29] audit: type=1326 audit(1768441918.907:210751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.370951][   T29] audit: type=1326 audit(1768441918.907:210752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.395185][   T29] audit: type=1326 audit(1768441918.907:210753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.419267][   T29] audit: type=1326 audit(1768441918.907:210754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  362.475403][T11955] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  362.536902][T17916] loop5: detected capacity change from 0 to 128
[  362.816282][T17929] loop3: detected capacity change from 0 to 1024
[  362.823491][T17929] EXT4-fs: Ignoring removed nobh option
[  362.836153][T17929] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.915890][T17929] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4725: Allocating blocks 497-513 which overlap fs metadata
[  362.930741][T17929] EXT4-fs (loop3): pa ffff888107a77930: logic 256, phys. 385, len 8
[  362.939006][T17929] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  362.989355][T12813] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.011497][T17935] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  363.025078][T17935] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.213794][T13579] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  363.291249][T17958] syzkaller0: entered promiscuous mode
[  363.296907][T17958] syzkaller0: entered allmulticast mode
[  363.505107][T17969] SELinux: ebitmap: truncated map
[  363.511364][T17969] SELinux: failed to load policy
[  364.908291][T18023] set_capacity_and_notify: 4 callbacks suppressed
[  364.908313][T18023] loop4: detected capacity change from 0 to 128
[  364.953386][T18025] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=18025 comm=syz.4.4762
[  364.967323][T18025] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=18025 comm=syz.4.4762
[  365.038240][T18029] syzkaller0: entered promiscuous mode
[  365.044521][T18029] syzkaller0: entered allmulticast mode
[  365.056123][T18031] __nla_validate_parse: 3 callbacks suppressed
[  365.056161][T18031] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4762'.
[  365.071791][T18031] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4762'.
[  365.080837][T18031] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4762'.
[  365.389384][T18050] loop5: detected capacity change from 0 to 1024
[  365.403844][T18050] EXT4-fs: Ignoring removed nobh option
[  365.440671][T18050] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.476802][T18052] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4771'.
[  365.566428][T18059] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4770'.
[  365.575685][T18059] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4770'.
[  365.675697][T18062] loop2: detected capacity change from 0 to 128
[  365.729365][T18059] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.4770: Allocating blocks 497-513 which overlap fs metadata
[  365.782397][T18059] EXT4-fs (loop5): pa ffff888107a778c0: logic 256, phys. 385, len 8
[  365.791365][T18059] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  365.906446][T18070] SELinux: ebitmap: truncated map
[  365.913677][T18070] SELinux: failed to load policy
[  365.914341][T18067] syzkaller0: entered promiscuous mode
[  365.925453][T18067] syzkaller0: entered allmulticast mode
[  365.980001][T18072] syzkaller0: entered promiscuous mode
[  365.985557][T18072] syzkaller0: entered allmulticast mode
[  366.045470][T11955] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.126997][T18086] loop0: detected capacity change from 0 to 128
[  366.375452][T18104] loop4: detected capacity change from 0 to 128
[  366.442297][T18108] syzkaller0: entered promiscuous mode
[  366.448037][T18108] syzkaller0: entered allmulticast mode
[  366.462913][T18111] loop3: detected capacity change from 0 to 1024
[  366.469928][T18111] EXT4-fs: Ignoring removed nobh option
[  366.497665][T18111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.547725][T18116] loop4: detected capacity change from 0 to 512
[  366.555519][T18116] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  366.564378][T18116] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  366.586049][T18116] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4791: Allocating blocks 41-42 which overlap fs metadata
[  366.601055][T18116] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4791: Allocating blocks 41-42 which overlap fs metadata
[  366.617569][T18116] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4791: Failed to acquire dquot type 1
[  366.629508][T18116] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  366.645007][T18116] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4791: corrupted inode contents
[  366.658487][T18116] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4791: mark_inode_dirty error
[  366.670534][T18116] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4791: corrupted inode contents
[  366.671307][T18111] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4790'.
[  366.686359][T18116] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4791: mark_inode_dirty error
[  366.695329][T18111] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4790'.
[  366.716768][T18116] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4791: corrupted inode contents
[  366.729764][T18116] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  366.739238][T18116] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4791: corrupted inode contents
[  366.751766][T18116] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4791: mark_inode_dirty error
[  366.763587][T18116] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  366.773514][T18116] EXT4-fs (loop4): 1 truncate cleaned up
[  366.779853][T18116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.799119][T18111] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4790: Allocating blocks 497-513 which overlap fs metadata
[  366.813702][T18116] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  366.816102][T18111] EXT4-fs (loop3): pa ffff888107a9be00: logic 256, phys. 385, len 8
[  366.831633][T18111] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  366.853652][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.903188][T12813] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.955625][T18124] syzkaller0: entered promiscuous mode
[  366.961196][T18124] syzkaller0: entered allmulticast mode
[  367.049469][T18139] loop5: detected capacity change from 0 to 128
[  367.058730][T18140] netlink: 'syz.0.4799': attribute type 4 has an invalid length.
[  367.066943][T18140] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4799'.
[  367.083722][T18139] bio_check_eod: 30 callbacks suppressed
[  367.083745][T18139] syz.5.4800: attempt to access beyond end of device
[  367.083745][T18139] loop5: rw=2049, sector=145, nr_sectors = 8 limit=128
[  367.114690][T18143] loop0: detected capacity change from 0 to 128
[  367.123413][T18139] syz.5.4800: attempt to access beyond end of device
[  367.123413][T18139] loop5: rw=2049, sector=161, nr_sectors = 8 limit=128
[  367.137887][T18139] syz.5.4800: attempt to access beyond end of device
[  367.137887][T18139] loop5: rw=2049, sector=177, nr_sectors = 24 limit=128
[  367.154142][T18143] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  367.167578][T18139] syz.5.4800: attempt to access beyond end of device
[  367.167578][T18139] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  367.181645][T18139] syz.5.4800: attempt to access beyond end of device
[  367.181645][T18139] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  367.185445][T18147] loop2: detected capacity change from 0 to 512
[  367.196104][T18143] ext4 filesystem being mounted at /325/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.226560][T18139] syz.5.4800: attempt to access beyond end of device
[  367.226560][T18139] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  367.240650][T18147] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  367.241733][T18149] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  367.250380][T18147] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  367.259261][T18149] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  367.280835][T18139] syz.5.4800: attempt to access beyond end of device
[  367.280835][T18139] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  367.294907][T18139] syz.5.4800: attempt to access beyond end of device
[  367.294907][T18139] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128
[  367.308900][T18139] syz.5.4800: attempt to access beyond end of device
[  367.308900][T18139] loop5: rw=2049, sector=289, nr_sectors = 9 limit=128
[  367.332601][T18147] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4801: Allocating blocks 41-42 which overlap fs metadata
[  367.347102][T18147] __quota_error: 4405 callbacks suppressed
[  367.347157][T18147] Quota error (device loop2): write_blk: dquota write failed
[  367.360470][T18147] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  367.370498][T18149] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4803: Allocating blocks 41-42 which overlap fs metadata
[  367.384810][T18149] Quota error (device loop3): write_blk: dquota write failed
[  367.392238][T18149] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5
[  367.401804][T18147] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4215: comm syz.2.4801: Allocating blocks 41-42 which overlap fs metadata
[  367.416091][T18149] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4803: Allocating blocks 41-42 which overlap fs metadata
[  367.430731][T18147] Quota error (device loop2): write_blk: dquota write failed
[  367.438871][T18149] Quota error (device loop3): write_blk: dquota write failed
[  367.446715][T18147] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  367.456893][T18149] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  367.467035][T18147] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.4801: Failed to acquire dquot type 1
[  367.479690][T18149] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4803: Failed to acquire dquot type 1
[  367.491565][T18149] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  367.509001][T18147] EXT4-fs error (device loop2): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  367.512696][T18149] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4803: corrupted inode contents
[  367.524296][T18147] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4801: corrupted inode contents
[  367.554845][T18149] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.4803: mark_inode_dirty error
[  367.566811][T18149] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4803: corrupted inode contents
[  367.580217][T18149] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.4803: mark_inode_dirty error
[  367.580909][T18147] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #12: comm syz.2.4801: mark_inode_dirty error
[  367.592287][T18149] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4803: corrupted inode contents
[  367.617623][T18149] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  367.626532][T18149] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4803: corrupted inode contents
[  367.638880][T18149] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.4803: mark_inode_dirty error
[  367.641241][T18147] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4801: corrupted inode contents
[  367.650731][T18149] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  367.671824][T18149] EXT4-fs (loop3): 1 truncate cleaned up
[  367.678049][T18149] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.695212][T18147] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.4801: mark_inode_dirty error
[  367.707794][T18149] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  367.723022][T18147] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4801: corrupted inode contents
[  367.741053][T18147] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  367.743603][T12813] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.750294][T18147] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #12: comm syz.2.4801: corrupted inode contents
[  367.771510][T18147] EXT4-fs error (device loop2): ext4_truncate:4635: inode #12: comm syz.2.4801: mark_inode_dirty error
[  367.783719][T18147] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  367.809411][T18147] EXT4-fs (loop2): 1 truncate cleaned up
[  367.817551][T18147] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.846685][T18161] +}[@: attempt to access beyond end of device
[  367.846685][T18161] loop4: rw=2049, sector=145, nr_sectors = 40 limit=128
[  367.851296][T18147] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  367.900806][   T29] audit: type=1326 audit(1768441924.547:215156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18162 comm="syz.3.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  367.926044][T12500] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.946016][   T29] audit: type=1326 audit(1768441924.547:215157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18162 comm="syz.3.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30acdf749 code=0x7ffc0000
[  368.008803][T13579] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  368.054349][T18174] EXT4-fs: Ignoring removed nobh option
[  368.066087][T18174] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.094648][T18176] syzkaller0: entered promiscuous mode
[  368.100218][T18176] syzkaller0: entered allmulticast mode
[  368.147127][T18174] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4811'.
[  368.171092][T18174] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4811: Allocating blocks 497-513 which overlap fs metadata
[  368.185648][T18174] EXT4-fs (loop0): pa ffff888107a77930: logic 256, phys. 385, len 8
[  368.193728][T18174] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  368.244758][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.294202][T18187] SELinux: ebitmap: truncated map
[  368.301955][T18187] SELinux: failed to load policy
[  369.113228][T18217] FAULT_INJECTION: forcing a failure.
[  369.113228][T18217] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.126422][T18217] CPU: 0 UID: 0 PID: 18217 Comm: syz.4.4825 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  369.126506][T18217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  369.126523][T18217] Call Trace:
[  369.126532][T18217]  <TASK>
[  369.126540][T18217]  __dump_stack+0x1d/0x30
[  369.126567][T18217]  dump_stack_lvl+0x95/0xd0
[  369.126591][T18217]  dump_stack+0x15/0x1b
[  369.126640][T18217]  should_fail_ex+0x265/0x280
[  369.126669][T18217]  should_fail+0xb/0x20
[  369.126693][T18217]  should_fail_usercopy+0x1a/0x20
[  369.126723][T18217]  _copy_from_user+0x1c/0xb0
[  369.126804][T18217]  __sys_bpf+0x183/0x7c0
[  369.126831][T18217]  __x64_sys_bpf+0x41/0x50
[  369.126866][T18217]  x64_sys_call+0x28e1/0x3000
[  369.126891][T18217]  do_syscall_64+0xca/0x2b0
[  369.126974][T18217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.126995][T18217] RIP: 0033:0x7f45ec89f749
[  369.127010][T18217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.127032][T18217] RSP: 002b:00007f45eb307038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  369.127069][T18217] RAX: ffffffffffffffda RBX: 00007f45ecaf5fa0 RCX: 00007f45ec89f749
[  369.127144][T18217] RDX: 0000000000000020 RSI: 0000200000001740 RDI: 0000000000000001
[  369.127161][T18217] RBP: 00007f45eb307090 R08: 0000000000000000 R09: 0000000000000000
[  369.127179][T18217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.127200][T18217] R13: 00007f45ecaf6038 R14: 00007f45ecaf5fa0 R15: 00007ffe45f3f108
[  369.127225][T18217]  </TASK>
[  369.181667][T18218] syzkaller0: entered promiscuous mode
[  369.297258][T18218] syzkaller0: entered allmulticast mode
[  370.276742][T18259] __nla_validate_parse: 3 callbacks suppressed
[  370.276844][T18259] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4842'.
[  370.324155][T18262] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=18262 comm=syz.0.4843
[  370.337077][T18262] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=18262 comm=syz.0.4843
[  370.409795][T18264] set_capacity_and_notify: 7 callbacks suppressed
[  370.409812][T18264] loop2: detected capacity change from 0 to 512
[  370.456372][T18264] msdos: Unknown parameter 'ÿÿÿÿ'
[  370.472333][T18267] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4843'.
[  370.481434][T18267] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4843'.
[  370.490488][T18267] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4843'.
[  370.507870][T18266] syzkaller0: entered promiscuous mode
[  370.507890][T18266] syzkaller0: entered allmulticast mode
[  370.647110][T18264] FAULT_INJECTION: forcing a failure.
[  370.647110][T18264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.660375][T18264] CPU: 1 UID: 0 PID: 18264 Comm: syz.2.4845 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  370.660409][T18264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  370.660427][T18264] Call Trace:
[  370.660435][T18264]  <TASK>
[  370.660445][T18264]  __dump_stack+0x1d/0x30
[  370.660494][T18264]  dump_stack_lvl+0x95/0xd0
[  370.660522][T18264]  dump_stack+0x15/0x1b
[  370.660543][T18264]  should_fail_ex+0x265/0x280
[  370.660565][T18264]  should_fail+0xb/0x20
[  370.660621][T18264]  should_fail_usercopy+0x1a/0x20
[  370.660650][T18264]  _copy_to_user+0x20/0xa0
[  370.660677][T18264]  simple_read_from_buffer+0xb5/0x130
[  370.660779][T18264]  proc_fail_nth_read+0x10e/0x150
[  370.660809][T18264]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  370.660840][T18264]  vfs_read+0x1a8/0x770
[  370.660862][T18264]  ? __rcu_read_unlock+0x4f/0x70
[  370.660942][T18264]  ? __fget_files+0x184/0x1c0
[  370.660982][T18264]  ? mutex_lock+0x58/0x90
[  370.661018][T18264]  ksys_read+0xda/0x1a0
[  370.661084][T18264]  __x64_sys_read+0x40/0x50
[  370.661108][T18264]  x64_sys_call+0x2889/0x3000
[  370.661139][T18264]  do_syscall_64+0xca/0x2b0
[  370.661185][T18264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.661234][T18264] RIP: 0033:0x7fd0daa9e15c
[  370.661250][T18264] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  370.661272][T18264] RSP: 002b:00007fd0d9507030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  370.661295][T18264] RAX: ffffffffffffffda RBX: 00007fd0dacf5fa0 RCX: 00007fd0daa9e15c
[  370.661310][T18264] RDX: 000000000000000f RSI: 00007fd0d95070a0 RDI: 000000000000000f
[  370.661323][T18264] RBP: 00007fd0d9507090 R08: 0000000000000000 R09: 0000000000000000
[  370.661336][T18264] R10: 00000000000000c6 R11: 0000000000000246 R12: 0000000000000001
[  370.661353][T18264] R13: 00007fd0dacf6038 R14: 00007fd0dacf5fa0 R15: 00007fff4df36638
[  370.661491][T18264]  </TASK>
[  370.816320][T18290] netlink: 824 bytes leftover after parsing attributes in process `syz.4.4852'.
[  370.886830][T18293] FAULT_INJECTION: forcing a failure.
[  370.886830][T18293] name failslab, interval 1, probability 0, space 0, times 0
[  370.899709][T18293] CPU: 0 UID: 0 PID: 18293 Comm: syz.2.4853 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  370.899782][T18293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  370.899796][T18293] Call Trace:
[  370.899804][T18293]  <TASK>
[  370.899813][T18293]  __dump_stack+0x1d/0x30
[  370.899839][T18293]  dump_stack_lvl+0x95/0xd0
[  370.899879][T18293]  dump_stack+0x15/0x1b
[  370.899956][T18293]  should_fail_ex+0x265/0x280
[  370.899980][T18293]  should_failslab+0x8c/0xb0
[  370.900004][T18293]  kmem_cache_alloc_noprof+0x69/0x4b0
[  370.900027][T18293]  ? getname_flags+0x80/0x3b0
[  370.900131][T18293]  getname_flags+0x80/0x3b0
[  370.900157][T18293]  path_setxattrat+0x223/0x310
[  370.900202][T18293]  __x64_sys_lsetxattr+0x71/0x90
[  370.900235][T18293]  x64_sys_call+0x2ef0/0x3000
[  370.900302][T18293]  do_syscall_64+0xca/0x2b0
[  370.900355][T18293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.900378][T18293] RIP: 0033:0x7fd0daa9f749
[  370.900394][T18293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.900413][T18293] RSP: 002b:00007fd0d9507038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  370.900502][T18293] RAX: ffffffffffffffda RBX: 00007fd0dacf5fa0 RCX: 00007fd0daa9f749
[  370.900545][T18293] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000400
[  370.900558][T18293] RBP: 00007fd0d9507090 R08: 0000000000000000 R09: 0000000000000000
[  370.900571][T18293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.900584][T18293] R13: 00007fd0dacf6038 R14: 00007fd0dacf5fa0 R15: 00007fff4df36638
[  370.900605][T18293]  </TASK>
[  371.135370][T18295] SELinux: ebitmap: truncated map
[  371.152207][T18295] SELinux: failed to load policy
[  371.165191][T18298] loop4: detected capacity change from 0 to 128
[  371.263377][T18305] loop2: detected capacity change from 0 to 128
[  371.268619][T18300] syzkaller0: entered promiscuous mode
[  371.275528][T18300] syzkaller0: entered allmulticast mode
[  371.440303][T18316] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4863'.
[  371.835974][T18346] syzkaller0: entered promiscuous mode
[  371.841571][T18346] syzkaller0: entered allmulticast mode
[  372.014766][T18349] syzkaller0: entered promiscuous mode
[  372.020316][T18349] syzkaller0: entered allmulticast mode
[  372.116387][T18352] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4874'.
[  372.360969][   T29] kauditd_printk_skb: 5958 callbacks suppressed
[  372.360988][   T29] audit: type=1326 audit(1768441929.007:221116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.393338][   T29] audit: type=1326 audit(1768441929.037:221117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.418913][   T29] audit: type=1326 audit(1768441929.067:221118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.446003][T18377] loop4: detected capacity change from 0 to 128
[  372.469689][T18377] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  372.482391][   T29] audit: type=1326 audit(1768441929.107:221119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.496937][T18377] ext4 filesystem being mounted at /401/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.506323][   T29] audit: type=1326 audit(1768441929.127:221120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.540534][   T29] audit: type=1326 audit(1768441929.127:221121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.565030][   T29] audit: type=1326 audit(1768441929.167:221122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.589281][   T29] audit: type=1326 audit(1768441929.167:221123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.613188][   T29] audit: type=1326 audit(1768441929.167:221124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.637063][   T29] audit: type=1326 audit(1768441929.197:221125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18357 comm="syz.0.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f9e621df749 code=0x7ffc0000
[  372.790036][T12150] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  372.995642][T18401] FAULT_INJECTION: forcing a failure.
[  372.995642][T18401] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.008831][T18401] CPU: 0 UID: 0 PID: 18401 Comm: syz.2.4890 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  373.008867][T18401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  373.008885][T18401] Call Trace:
[  373.008894][T18401]  <TASK>
[  373.008927][T18401]  __dump_stack+0x1d/0x30
[  373.009020][T18401]  dump_stack_lvl+0x95/0xd0
[  373.009049][T18401]  dump_stack+0x15/0x1b
[  373.009076][T18401]  should_fail_ex+0x265/0x280
[  373.009171][T18401]  should_fail+0xb/0x20
[  373.009198][T18401]  should_fail_usercopy+0x1a/0x20
[  373.009230][T18401]  _copy_from_user+0x1c/0xb0
[  373.009309][T18401]  ___sys_sendmsg+0xc1/0x1d0
[  373.009411][T18401]  __sys_sendmmsg+0x178/0x300
[  373.009459][T18401]  __x64_sys_sendmmsg+0x57/0x70
[  373.009515][T18401]  x64_sys_call+0x1e28/0x3000
[  373.009578][T18401]  do_syscall_64+0xca/0x2b0
[  373.009665][T18401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.009691][T18401] RIP: 0033:0x7fd0daa9f749
[  373.009708][T18401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.009754][T18401] RSP: 002b:00007fd0d9507038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  373.009850][T18401] RAX: ffffffffffffffda RBX: 00007fd0dacf5fa0 RCX: 00007fd0daa9f749
[  373.009923][T18401] RDX: 0000000000000002 RSI: 0000200000000a40 RDI: 0000000000000006
[  373.009940][T18401] RBP: 00007fd0d9507090 R08: 0000000000000000 R09: 0000000000000000
[  373.009955][T18401] R10: 0000000004004040 R11: 0000000000000246 R12: 0000000000000001
[  373.009972][T18401] R13: 00007fd0dacf6038 R14: 00007fd0dacf5fa0 R15: 00007fff4df36638
[  373.009998][T18401]  </TASK>
[  373.260658][T18407] SELinux: ebitmap: truncated map
[  373.266536][T18407] SELinux: failed to load policy
[  373.412769][T18423] netlink: 824 bytes leftover after parsing attributes in process `syz.2.4898'.
[  373.700992][T18436] loop4: detected capacity change from 0 to 512
[  373.711628][T18436] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  373.721780][T18436] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4903: bg 0: block 104: invalid block bitmap
[  373.736316][T18436] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  373.745545][T18436] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4903: invalid indirect mapped block 1 (level 1)
[  373.762148][T18436] EXT4-fs (loop4): 1 truncate cleaned up
[  373.768848][T18436] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.784131][T18436] EXT4-fs error (device loop4): __ext4_iget:5426: inode #13: block 7962: comm syz.4.4903: invalid block
[  373.816987][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.065228][T18461] netlink: 824 bytes leftover after parsing attributes in process `syz.4.4909'.
[  374.462557][T18475] loop2: detected capacity change from 0 to 128
[  374.534159][T18475] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  374.603655][T18475] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  374.771128][T18495] loop4: detected capacity change from 0 to 128
[  374.912324][T18498] loop4: detected capacity change from 0 to 128
[  375.002838][T12500] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  375.794403][T18528] loop4: detected capacity change from 0 to 512
[  375.832554][T18528] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  375.841567][T18528] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  375.905683][T18528] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4933: Allocating blocks 41-42 which overlap fs metadata
[  375.944847][T18528] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4933: Allocating blocks 41-42 which overlap fs metadata
[  375.979888][T18528] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4933: Failed to acquire dquot type 1
[  375.991985][T18528] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  376.007479][T18528] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4933: corrupted inode contents
[  376.020205][T18528] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4933: mark_inode_dirty error
[  376.033005][T18528] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4933: corrupted inode contents
[  376.045751][T18528] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4933: mark_inode_dirty error
[  376.057442][T18528] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4933: corrupted inode contents
[  376.069900][T18528] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  376.080079][T18528] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4933: corrupted inode contents
[  376.094577][T18528] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4933: mark_inode_dirty error
[  376.124594][T18528] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  376.142749][T18528] EXT4-fs (loop4): 1 truncate cleaned up
[  376.153683][T18528] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.171303][T18536] loop0: detected capacity change from 0 to 1024
[  376.180550][T18536] EXT4-fs: Ignoring removed nobh option
[  376.189426][T18528] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  376.217116][T18536] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.230559][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.386082][T18547] syzkaller0: entered promiscuous mode
[  376.390659][T18536] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4935: Allocating blocks 497-513 which overlap fs metadata
[  376.391865][T18547] syzkaller0: entered allmulticast mode
[  376.424744][T18536] EXT4-fs (loop0): pa ffff888107a9bd90: logic 256, phys. 385, len 8
[  376.432896][T18536] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  376.500466][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.619927][T18563] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4944'.
[  376.655914][T18564] syzkaller0: entered promiscuous mode
[  376.661753][T18564] syzkaller0: entered allmulticast mode
[  376.679783][T18570] loop2: detected capacity change from 0 to 128
[  376.808698][T18584] loop0: detected capacity change from 0 to 1024
[  376.817994][T18584] EXT4-fs: Ignoring removed nobh option
[  376.846225][T18584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.862164][T18584] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  376.892789][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.916706][T18592] loop0: detected capacity change from 0 to 512
[  376.924541][T18592] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  376.933307][T18592] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  376.956234][T18592] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4952: Allocating blocks 41-42 which overlap fs metadata
[  376.970768][T18592] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.4952: Allocating blocks 41-42 which overlap fs metadata
[  376.987334][T18592] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.4952: Failed to acquire dquot type 1
[  376.999065][T18592] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  377.013929][T18592] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4952: corrupted inode contents
[  377.026457][T18592] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.4952: mark_inode_dirty error
[  377.038339][T18592] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4952: corrupted inode contents
[  377.053363][T18592] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.4952: mark_inode_dirty error
[  377.065645][T18592] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4952: corrupted inode contents
[  377.078083][T18592] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  377.087189][T18592] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.4952: corrupted inode contents
[  377.099564][T18592] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.4952: mark_inode_dirty error
[  377.111345][T18592] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  377.120770][T18592] EXT4-fs (loop0): 1 truncate cleaned up
[  377.134897][T18592] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.149769][T18592] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  377.168793][T13579] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.391757][T18609] loop4: detected capacity change from 0 to 128
[  377.401632][   T29] kauditd_printk_skb: 981 callbacks suppressed
[  377.401651][   T29] audit: type=1326 audit(1768441934.047:222099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.433307][   T29] audit: type=1326 audit(1768441934.047:222100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.457928][   T29] audit: type=1326 audit(1768441934.087:222101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.481975][   T29] audit: type=1326 audit(1768441934.087:222102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.505883][   T29] audit: type=1326 audit(1768441934.087:222103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.529956][   T29] audit: type=1326 audit(1768441934.087:222104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.553789][   T29] audit: type=1326 audit(1768441934.087:222105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.577652][   T29] audit: type=1326 audit(1768441934.087:222106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.601423][   T29] audit: type=1326 audit(1768441934.087:222107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.625215][   T29] audit: type=1326 audit(1768441934.087:222108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18608 comm="syz.4.4957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45ec89f749 code=0x7ffc0000
[  377.985223][T18638] loop3: detected capacity change from 0 to 128
[  378.000433][T18636] SELinux: ebitmap: truncated map
[  378.006643][T18638] bio_check_eod: 6 callbacks suppressed
[  378.006661][T18638] +}[@: attempt to access beyond end of device
[  378.006661][T18638] loop3: rw=2049, sector=145, nr_sectors = 40 limit=128
[  378.015492][T18636] SELinux: failed to load policy
[  378.028868][T18638] +}[@: attempt to access beyond end of device
[  378.028868][T18638] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128
[  378.043938][T18638] +}[@: attempt to access beyond end of device
[  378.043938][T18638] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[  378.057640][T18638] +}[@: attempt to access beyond end of device
[  378.057640][T18638] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  378.071311][T18638] +}[@: attempt to access beyond end of device
[  378.071311][T18638] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[  378.084762][T18638] +}[@: attempt to access beyond end of device
[  378.084762][T18638] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[  378.103945][T18638] +}[@: attempt to access beyond end of device
[  378.103945][T18638] loop3: rw=2049, sector=273, nr_sectors = 9 limit=128
[  378.163516][T18645] syzkaller0: entered promiscuous mode
[  378.169071][T18645] syzkaller0: entered allmulticast mode
[  378.222601][T18653] loop2: detected capacity change from 0 to 128
[  378.252062][T18655] loop4: detected capacity change from 0 to 512
[  378.263833][T18655] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  378.272897][T18655] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  378.295820][T18655] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4973: Allocating blocks 41-42 which overlap fs metadata
[  378.318263][T18655] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.4973: Allocating blocks 41-42 which overlap fs metadata
[  378.333735][T18655] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.4973: Failed to acquire dquot type 1
[  378.345769][T18655] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  378.361696][T18655] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4973: corrupted inode contents
[  378.374145][T18655] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.4973: mark_inode_dirty error
[  378.387341][T18655] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4973: corrupted inode contents
[  378.387633][T18655] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.4973: mark_inode_dirty error
[  378.387911][T18655] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4973: corrupted inode contents
[  378.388080][T18655] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  378.388256][T18655] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.4973: corrupted inode contents
[  378.388389][T18655] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.4973: mark_inode_dirty error
[  378.388516][T18655] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  378.388856][T18655] EXT4-fs (loop4): 1 truncate cleaned up
[  378.389401][T18655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.395138][T11999] ==================================================================
[  378.395173][T11999] BUG: KCSAN: data-race in set_nlink / set_nlink
[  378.395204][T11999] 
[  378.395212][T11999] write to 0xffff888107970c50 of 4 bytes by task 3009 on cpu 1:
[  378.395233][T11999]  set_nlink+0x99/0xb0
[  378.395257][T11999]  kernfs_iop_permission+0x1e2/0x220
[  378.395298][T11999]  inode_permission+0x2de/0x3c0
[  378.395324][T11999]  link_path_walk+0x779/0xe30
[  378.395348][T11999]  path_openat+0x1c0/0x23b0
[  378.395386][T11999]  do_filp_open+0x109/0x230
[  378.395424][T11999]  do_sys_openat2+0xa6/0x150
[  378.395460][T11999]  __x64_sys_openat+0xf2/0x120
[  378.418488][T18655] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  378.418659][T11999]  x64_sys_call+0x2b07/0x3000
[  378.568641][T11999]  do_syscall_64+0xca/0x2b0
[  378.573191][T11999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.579554][T11999] 
[  378.581919][T11999] read to 0xffff888107970c50 of 4 bytes by task 11999 on cpu 0:
[  378.589673][T11999]  set_nlink+0x29/0xb0
[  378.593813][T11999]  kernfs_iop_permission+0x1e2/0x220
[  378.599128][T11999]  inode_permission+0x2de/0x3c0
[  378.604006][T11999]  link_path_walk+0x779/0xe30
[  378.608709][T11999]  path_openat+0x1c0/0x23b0
[  378.613248][T11999]  do_filp_open+0x109/0x230
[  378.617786][T11999]  do_sys_openat2+0xa6/0x150
[  378.622584][T11999]  __x64_sys_openat+0xf2/0x120
[  378.627385][T11999]  x64_sys_call+0x2b07/0x3000
[  378.632090][T11999]  do_syscall_64+0xca/0x2b0
[  378.636632][T11999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.642550][T11999] 
[  378.644887][T11999] value changed: 0x0000000d -> 0x0000000e
[  378.650620][T11999] 
[  378.652961][T11999] Reported by Kernel Concurrency Sanitizer on:
[  378.659218][T11999] CPU: 0 UID: 0 PID: 11999 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  378.668704][T11999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  378.678874][T11999] ==================================================================
[  378.739893][T12150] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.756129][T18665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4975'.
[  378.766097][T18665] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4975'.
[  378.775217][T18665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4975'.